$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft File: QP0nMwGov44nCXYsZPSuom0q4LQ.mft (raw, json) Hash identifier: duqoB5gDay7INbmY1SlfCtBK2AX2F7KA57Gcn6fY6gA= Subject key identifier: 78:24:D2:BF:13:40:42:89:06:06:57:7B:BE:AD:15:19:41:DD:57:38 Authority key identifier: 40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 Certificate issuer: /CN=A9164860/serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft Manifest number: 0145 Signing time: Sun 20 Jul 2025 17:10:58 +0000 Manifest this update: Sun 20 Jul 2025 17:10:58 +0000 Manifest next update: Sun 27 Jul 2025 17:10:58 +0000 Files and hashes: 1: QP0nMwGov44nCXYsZPSuom0q4LQ.crl (hash: D4zr3gB2s50G8jbb6SW/3JQlzydVP/NAYRddRD9fkXo=) 2: 26BFE5FE841611EEB980955AC4F9AE02.roa (hash: mR7p6xLL+eywaq3IEYtE5q1FtrVRKFEpVD4lZkW4skg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860, serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Validity Not Before: Jul 20 17:10:58 2025 GMT Not After : Jul 27 17:10:58 2025 GMT Subject: CN=687d2322-ccb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:35:ad:53:ba:20:81:ee:fa:b9:70:b1:21:08: c2:24:67:62:b9:3c:ea:ad:a4:1d:ef:c9:0d:d0:d2: 69:77:66:3f:15:77:c0:68:27:72:35:0f:fc:4c:5c: d1:00:a4:fe:57:da:83:21:85:8d:7b:0b:c7:0d:7c: 29:30:88:f8:ee:a0:ed:99:1f:21:61:4a:20:de:a7: 45:d4:5d:da:18:32:6a:29:ab:e1:ce:9b:0b:6d:40: c6:dd:81:40:72:a8:35:c1:9c:2e:e5:72:42:60:ff: 76:50:46:f8:d8:c0:1d:81:a2:93:53:ad:4f:dd:b6: 7b:fb:ca:6e:73:bc:21:96:39:c6:28:5b:0f:94:a0: 78:19:88:24:87:3a:54:57:ed:29:3d:ff:a5:69:be: 48:8e:90:80:2c:be:d4:e0:26:c3:20:9a:64:88:7f: 1d:cb:61:6b:02:87:01:b3:5c:3d:ad:2a:1c:3d:19: 69:65:c6:9d:6c:0d:54:ed:6a:2c:16:b6:9d:cc:fb: 68:0b:a8:dc:52:2f:f1:44:41:5f:5e:31:e2:9b:46: 5a:e1:bd:e6:49:a4:3a:bc:7b:b4:6d:1d:7e:2e:a2: 3e:a9:84:38:a7:69:13:38:3b:cd:5d:01:a8:73:dc: b4:b5:90:9d:a4:ba:e0:f3:43:81:c5:48:83:9e:77: b6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:24:D2:BF:13:40:42:89:06:06:57:7B:BE:AD:15:19:41:DD:57:38 X509v3 Authority Key Identifier: keyid:40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:41:33:11:e1:0d:77:85:a6:2f:fb:c5:25:a1:1f:41:6d:18: f8:0c:82:4b:12:17:38:a3:24:50:ba:f7:5a:ca:1f:20:ca:7a: cc:3a:be:51:a0:5a:97:b4:c9:25:bc:53:f6:d9:2c:d2:67:21: f9:c5:71:8f:ab:c9:fd:bf:b0:e0:69:80:85:f3:82:80:28:10: 8d:b4:ea:e0:9c:65:fb:91:c1:52:9d:6e:67:93:5e:71:e7:0d: 7b:69:a6:d2:6f:06:a2:e9:de:e0:75:10:0e:da:c1:96:bf:0a: 05:8f:1b:8d:82:e9:35:1a:fd:fa:9c:b2:fb:7d:31:70:69:e3: dd:38:56:b1:3c:8c:36:a0:13:2f:34:5e:d6:e7:6e:fe:8d:07: 92:fd:d9:4d:ff:b5:85:a0:99:fc:7b:03:76:f7:15:df:7e:c9: a4:3e:97:89:8e:e6:f2:2b:9f:c4:da:86:57:35:4a:a6:86:51: 8d:14:bd:00:0b:bb:33:7a:81:ee:82:43:3f:15:f5:6a:ae:f6: 96:33:ef:30:d8:97:e1:25:f5:28:98:a0:94:51:ea:d5:5b:e9: cf:9f:51:4e:a4:05:9f:66:09:72:61:87:9c:00:9b:2b:c1:ba: c8:fa:e5:22:b7:7e:04:d0:03:cb:6b:33:a3:be:a8:d1:45:8e: 53:41:9e:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKDQwRkQyNzMzMDFBOEJGOEUyNzA5NzYyQzY0RjRBRUEy NkQyQUUwQjQwHhcNMjUwNzIwMTcxMDU4WhcNMjUwNzI3MTcxMDU4WjAYMRYwFAYD VQQDEw02ODdkMjMyMi1jY2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DWtU7ogge76uXCxIQjCJGdiuTzqraQd78kN0NJpd2Y/FXfAaCdyNQ/8TFzR AKT+V9qDIYWNewvHDXwpMIj47qDtmR8hYUog3qdF1F3aGDJqKavhzpsLbUDG3YFA cqg1wZwu5XJCYP92UEb42MAdgaKTU61P3bZ7+8puc7whljnGKFsPlKB4GYgkhzpU V+0pPf+lab5IjpCALL7U4CbDIJpkiH8dy2FrAocBs1w9rSocPRlpZcadbA1U7Wos FradzPtoC6jcUi/xREFfXjHim0Za4b3mSaQ6vHu0bR1+LqI+qYQ4p2kTODvNXQGo c9y0tZCdpLrg80OBxUiDnne2sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgk0r8T QEKJBgZXe76tFRlB3Vc4MB8GA1UdIwQYMBaAFED9JzMBqL+OJwl2LGT0rqJtKuC0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC82QkVBRTA4ODdC MzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0NG5DWFlzWlBTdW9tMHE0 TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FQMG5Nd0dvdjQ0bkNYWXNaUFN1b20wcTRMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDg2MC82QkVBRTA4ODdCMzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0 NG5DWFlzWlBTdW9tMHE0TFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuQTMR4Q13haYv+8UloR9BbRj4DIJLEhc4oyRQuvdayh8gynrMOr5R oFqXtMklvFP22SzSZyH5xXGPq8n9v7DgaYCF84KAKBCNtOrgnGX7kcFSnW5nk15x 5w17aabSbwai6d7gdRAO2sGWvwoFjxuNguk1Gv36nLL7fTFwaePdOFaxPIw2oBMv NF7W527+jQeS/dlN/7WFoJn8ewN29xXffsmkPpeJjubyK5/E2oZXNUqmhlGNFL0A C7szeoHugkM/FfVqrvaWM+8w2JfhJfUomKCUUerVW+nPn1FOpAWfZglyYYecAJsr wbrI+uUit34E0APLazOjvqjRRY5TQZ4h -----END CERTIFICATE-----Generated at Sun Jul 20 18:51:12 2025 by rpki-client