$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: v3RABeJ7TCMvFTvzb7iBHu+KSfqOgFwrqnlmEs6VjAs= Subject key identifier: DF:B1:50:FB:B6:C6:9E:81:BB:4A:92:D3:78:6F:45:09:4A:A5:04:EF Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 014A Signing time: Thu 21 Aug 2025 04:21:46 +0000 Manifest this update: Thu 21 Aug 2025 04:21:46 +0000 Manifest next update: Thu 28 Aug 2025 04:21:46 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: X7tjbFim/7szqCUZoSMHnzMldZTnUUKNyPUumUOdOHU=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Aug 21 04:21:46 2025 GMT Not After : Aug 28 04:21:46 2025 GMT Subject: CN=68a69eda-9104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c2:3b:bd:cd:9e:59:91:7e:b9:36:eb:73:7d: d6:4e:65:06:93:dc:e4:f8:06:4a:5a:a3:5e:79:b5: 9c:e3:a2:b5:32:3c:79:28:2f:d3:34:40:f3:30:a4: 33:79:ea:55:44:f5:a7:04:d3:fc:a2:28:53:13:74: e0:f5:34:0f:1b:3e:d8:1a:9d:cb:eb:f0:10:8d:d3: ad:26:90:07:e4:10:91:d4:67:5b:db:89:76:df:7c: 64:bb:b2:a3:7a:b4:3a:3b:ac:dc:c0:a9:95:fa:ce: 71:19:58:e5:52:52:c1:84:35:8b:fa:44:bb:9d:ef: fa:9f:50:45:8e:a1:cf:ac:1f:85:e5:ad:80:c8:9a: ab:d4:54:e6:69:4b:3d:82:b5:40:02:a7:0c:1f:5e: 21:e7:4f:61:1b:cc:5f:37:9e:c0:82:ea:00:ed:77: 35:67:86:82:0c:a1:8b:b9:0b:bc:d4:98:ed:e6:4e: b3:13:c5:a2:8e:0c:c5:e9:52:6b:fb:af:56:8d:47: 04:47:04:c0:f9:29:ad:26:f7:e7:f0:2b:31:18:23: 91:d4:ce:0b:c0:6f:5b:4e:44:76:0f:0c:d7:c3:3f: 0b:9b:f3:65:df:0d:b6:77:05:a5:75:eb:c2:bc:82: d8:7c:f1:6e:41:00:d7:0e:ba:a4:f0:9e:3a:5f:cc: e5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B1:50:FB:B6:C6:9E:81:BB:4A:92:D3:78:6F:45:09:4A:A5:04:EF X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:3d:8d:99:bf:09:ed:f4:f6:af:85:e6:a6:c4:a1:75:12:8a: 6b:ae:4e:71:e7:24:0d:09:0d:0b:5f:59:10:d2:07:e8:a6:52: e8:4c:56:a5:d6:8f:1e:ac:8d:f0:dc:f2:59:6e:f3:00:38:43: 9c:87:55:8b:47:57:a9:87:51:01:83:f8:e6:e5:11:fc:a8:f9: 4c:3d:eb:83:61:fc:df:cd:7b:12:4f:51:0b:5c:a0:7c:6b:9f: d8:a4:c0:2f:62:92:69:43:bd:10:3d:27:e5:dd:10:88:6d:84: 22:c5:95:59:c9:aa:95:88:e5:ef:02:d8:78:fd:d4:83:35:04: 28:fb:24:86:b2:b0:f6:d1:f6:a2:f8:32:f4:65:11:00:24:6d: 6f:55:03:e8:13:39:b5:c6:a9:17:19:e8:2d:4b:16:81:6f:c1: b9:7c:bf:e4:65:6d:bb:7c:ee:88:51:b1:ce:e4:ad:bf:71:86: 01:cf:69:d8:60:4f:c4:fa:54:9e:da:10:9c:de:61:84:80:2b: fa:45:62:24:b9:b3:03:2d:ec:ba:3c:6f:88:01:5f:8c:7d:e2: 48:61:78:3f:ce:7d:8e:d3:c2:53:ad:cc:d4:bd:37:75:0d:f6: 19:bc:5b:38:e3:66:08:f5:b1:24:af:77:a7:d3:ac:55:15:88: 38:65:2b:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUwODIxMDQyMTQ2WhcNMjUwODI4MDQyMTQ2WjAYMRYwFAYD VQQDEw02OGE2OWVkYS05MTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcI7vc2eWZF+uTbrc33WTmUGk9zk+AZKWqNeebWc46K1Mjx5KC/TNEDzMKQz eepVRPWnBNP8oihTE3Tg9TQPGz7YGp3L6/AQjdOtJpAH5BCR1Gdb24l233xku7Kj erQ6O6zcwKmV+s5xGVjlUlLBhDWL+kS7ne/6n1BFjqHPrB+F5a2AyJqr1FTmaUs9 grVAAqcMH14h509hG8xfN57AguoA7Xc1Z4aCDKGLuQu81Jjt5k6zE8WijgzF6VJr +69WjUcERwTA+SmtJvfn8CsxGCOR1M4LwG9bTkR2DwzXwz8Lm/Nl3w22dwWldevC vILYfPFuQQDXDrqk8J46X8zl+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+xUPu2 xp6Bu0qS03hvRQlKpQTvMB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWPY2Zvwnt9PavheamxKF1Eoprrk5x5yQNCQ0LX1kQ0gfoplLoTFal 1o8erI3w3PJZbvMAOEOch1WLR1eph1EBg/jm5RH8qPlMPeuDYfzfzXsST1ELXKB8 a5/YpMAvYpJpQ70QPSfl3RCIbYQixZVZyaqViOXvAth4/dSDNQQo+ySGsrD20fai +DL0ZREAJG1vVQPoEzm1xqkXGegtSxaBb8G5fL/kZW27fO6IUbHO5K2/cYYBz2nY YE/E+lSe2hCc3mGEgCv6RWIkubMDLey6PG+IAV+MfeJIYXg/zn2O08JTrczUvTd1 DfYZvFs442YI9bEkr3en06xVFYg4ZSsm -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:11 2025 by rpki-client