$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft File: Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft (raw, json) Hash identifier: Svi3FYxEXE3qe8Q8PFthjefUn1z2TI14Yhe6QgFc7TE= Subject key identifier: C6:E8:E6:5D:13:A8:CA:6C:4E:12:80:8B:E1:A2:8A:F9:F9:A4:E5:A5 Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 0841 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft Manifest number: 1396 Signing time: Sun 24 Aug 2025 19:03:51 +0000 Manifest this update: Sun 24 Aug 2025 19:03:50 +0000 Manifest next update: Sun 31 Aug 2025 19:03:50 +0000 Files and hashes: 1: Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl (hash: QAmNsAkttkyJbw0ItwZPezAXfQAkGUGYGd8cfKXw8Kc=) 2: B65A4FACE18C11ECB1697F55C4F9AE02.roa (hash: 5zkE6RPNVvetKuzik8vsy3mHeLDd3Wj/ciaGchVH9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Aug 24 19:03:50 2025 GMT Not After : Aug 31 19:03:50 2025 GMT Subject: CN=68ab6217-c746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bc:5a:69:b5:f9:14:75:e2:5b:b7:e1:58:ee: d3:58:19:0b:7b:cd:21:2d:1c:c9:bc:65:22:3f:29: 00:07:ac:05:5c:46:11:79:05:5a:a5:cf:05:7f:59: fc:bb:34:0e:66:bf:4d:00:9c:c7:43:f0:94:73:77: 4c:2b:07:b8:e0:02:54:05:c7:d8:8b:15:08:2d:5b: 75:09:b8:fa:b4:a0:77:7c:00:44:83:1d:dc:fb:b6: 44:83:a6:9c:ec:49:4e:56:ad:9e:31:3d:b7:70:d2: 68:e1:d7:f2:39:f7:d9:73:54:3a:1f:da:ad:7b:67: 2c:0d:f1:4e:bf:b6:dc:63:1c:a5:a3:75:8f:4a:1c: f6:b8:37:a1:83:6a:a1:70:ff:bc:95:3e:0b:be:20: 48:93:c9:66:15:05:5d:98:0c:9e:37:3e:d4:77:e2: 70:17:84:3c:f9:89:70:3c:b5:31:f8:f9:a8:26:05: e5:93:a2:66:17:90:94:08:b5:1a:9b:0b:4f:22:c6: 61:03:17:92:d3:ff:f7:02:57:67:27:fc:d4:11:2f: d6:c8:0c:f0:44:bd:d3:29:35:31:d3:89:05:83:47: ec:de:1b:9c:b4:58:b0:2e:77:68:78:8a:6e:bf:af: ce:c3:f8:ee:e8:74:1e:7d:e7:91:ce:db:0d:0e:6b: eb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E8:E6:5D:13:A8:CA:6C:4E:12:80:8B:E1:A2:8A:F9:F9:A4:E5:A5 X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:56:60:0b:e1:83:f6:25:1a:d9:5a:11:63:01:8e:9d:88:bb: f4:40:71:99:95:2d:35:89:df:9f:e6:a9:56:37:8a:9a:ed:ea: f0:06:e7:96:07:aa:ba:5b:fb:90:ed:d9:cf:f0:55:52:22:c9: 4d:38:3c:17:af:87:bf:57:b9:8a:ed:13:57:e8:61:98:4b:53: fe:f6:3c:ac:27:1a:73:f9:30:fb:17:c8:c6:1b:70:13:a3:d9: 0c:25:f9:6f:ca:41:05:db:42:4b:96:0c:08:ce:b7:1b:c2:6f: 26:db:17:e7:21:d3:12:c1:c6:e1:cc:50:06:68:dd:da:45:9e: d0:e0:cd:00:c1:20:3f:04:b2:b3:fe:b1:99:c0:6d:9f:3f:a0: ee:34:78:d8:4c:5a:7b:42:c6:1d:68:d5:ea:f5:6b:7c:4d:7a: cf:06:a0:04:ed:ad:50:1e:85:23:9e:00:ac:b3:f5:b3:38:d1: f4:c8:e8:5d:62:50:27:79:f8:4f:3b:fe:67:ae:e3:29:11:51: ce:50:6a:41:ca:e1:ea:fe:b6:bd:7b:30:16:00:4a:94:1e:34: 4b:6e:ad:35:91:19:90:86:29:c0:86:bf:5e:e0:48:71:a8:d0: 4f:5e:12:35:fc:75:3e:2e:15:5e:d5:0b:2b:e5:02:00:64:2c: 31:76:6c:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjUwODI0MTkwMzUwWhcNMjUwODMxMTkwMzUwWjAYMRYwFAYD VQQDEw02OGFiNjIxNy1jNzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLxaabX5FHXiW7fhWO7TWBkLe80hLRzJvGUiPykAB6wFXEYReQVapc8Ff1n8 uzQOZr9NAJzHQ/CUc3dMKwe44AJUBcfYixUILVt1Cbj6tKB3fABEgx3c+7ZEg6ac 7ElOVq2eMT23cNJo4dfyOffZc1Q6H9qte2csDfFOv7bcYxylo3WPShz2uDehg2qh cP+8lT4LviBIk8lmFQVdmAyeNz7Ud+JwF4Q8+YlwPLUx+PmoJgXlk6JmF5CUCLUa mwtPIsZhAxeS0//3AldnJ/zUES/WyAzwRL3TKTUx04kFg0fs3huctFiwLndoeIpu v6/Ow/ju6HQefeeRztsNDmvrQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbo5l0T qMpsThKAi+Giivn5pOWlMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBBMS85MjU2MEE2QTM3NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNG REp5RWlHcXBUT2pQVU1KUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArVmAL4YP2JRrZWhFjAY6diLv0QHGZlS01id+f5qlWN4qa7erwBueW B6q6W/uQ7dnP8FVSIslNODwXr4e/V7mK7RNX6GGYS1P+9jysJxpz+TD7F8jGG3AT o9kMJflvykEF20JLlgwIzrcbwm8m2xfnIdMSwcbhzFAGaN3aRZ7Q4M0AwSA/BLKz /rGZwG2fP6DuNHjYTFp7QsYdaNXq9Wt8TXrPBqAE7a1QHoUjngCss/WzONH0yOhd YlAnefhPO/5nruMpEVHOUGpByuHq/ra9ezAWAEqUHjRLbq01kRmQhinAhr9e4Ehx qNBPXhI1/HU+LhVe1Qsr5QIAZCwxdmyk -----END CERTIFICATE-----Generated at Sun Aug 24 21:54:07 2025 by rpki-client