$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: N1HVlMqbMDW6kkaCya0sih1POhe4UujVSSyc09JyrlA= Subject key identifier: 24:70:3A:F4:0A:9C:ED:1E:29:0C:05:0C:BA:58:3A:16:26:6F:AD:02 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 24D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24B8 Signing time: Thu 04 Sep 2025 15:51:55 +0000 Manifest this update: Thu 04 Sep 2025 15:51:55 +0000 Manifest next update: Thu 11 Sep 2025 15:51:55 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: aLGFA6KhkO6kq4r3TYuHTCCS9Fmzk4V4OQLO/8k8G6s=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mECvLTKiNtfSmorR6F/JjM52Np+0S4zr3je4uTIkUj8=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: dltD8ogNsgEp1LNwu/hSjpxIyXjpYdO8Yd4ZGWGZBuI=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: tv9RdWOPyxWE44FO50AuecGDdKWojTS5Z904qdTlAMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9432 (0x24d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Sep 4 15:51:55 2025 GMT Not After : Sep 11 15:51:55 2025 GMT Subject: CN=68b9b59b-a973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4a:25:99:9d:d1:2b:a1:b8:3b:f1:b9:4b:55: 6b:dc:6d:02:3e:f5:aa:7e:5d:83:1b:ec:ce:86:6f: aa:4d:52:b4:f6:4f:25:4c:9d:96:49:db:dc:08:fe: 41:99:df:1d:e6:a0:e6:ea:18:e9:4a:5e:93:39:2f: 14:94:5f:62:b8:ac:20:b8:b7:0d:78:30:05:b6:19: 9a:06:3e:28:19:36:5d:3b:e6:57:ff:83:7c:ab:a6: d6:25:e8:3b:1b:7b:a8:34:76:60:d8:87:ab:fe:92: 0a:49:76:b2:22:de:7f:11:39:6f:57:bc:bd:b7:e9: 9c:6e:33:75:48:b1:be:08:af:5a:a7:0e:ab:7d:25: c9:26:97:f8:4d:bc:de:19:e6:14:f7:dc:20:16:60: e3:ab:38:27:1a:0e:d3:1a:8e:dd:8c:be:17:6b:f6: 04:cc:04:98:7a:4b:d4:24:7e:eb:66:e8:84:44:36: 62:d8:52:39:a6:aa:c1:a2:2b:78:c3:47:d7:2b:09: 2c:8e:14:79:fa:c4:71:e8:37:18:b8:d5:1c:3d:e9: b4:e6:e0:ff:ee:92:b1:fb:20:a2:0d:2e:40:ac:31: 62:41:38:85:6b:7f:70:e8:61:26:96:ae:42:a7:77: 26:d3:38:e2:39:d0:ed:dd:4a:37:b3:d7:37:53:ca: ec:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:70:3A:F4:0A:9C:ED:1E:29:0C:05:0C:BA:58:3A:16:26:6F:AD:02 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:36:69:7d:be:ec:a6:cd:42:64:7e:d9:97:33:5f:67:de:84: e0:5f:aa:8a:d8:32:99:15:ed:07:b0:4a:9e:07:98:1c:b7:59: 66:a1:05:1c:57:d9:d4:31:8e:d0:a7:d8:96:68:fd:d3:4a:a7: 47:c4:b1:64:b7:3c:b6:79:ae:9c:ff:45:12:0f:cf:18:5d:d4: 6d:b5:72:05:06:34:e3:8c:c2:d5:43:32:41:4c:3a:19:d3:9f: 80:5e:fc:50:a2:29:4b:1b:27:9d:57:4d:13:ad:2c:c0:15:76: 08:da:e2:65:4a:9a:1a:92:1d:85:37:81:4a:f1:00:ec:df:ae: 8f:50:5c:19:6b:58:85:60:99:92:a9:5f:1f:7e:f0:ec:b8:a7: f2:a2:ce:f2:3b:6d:27:1e:17:fc:7d:fe:69:28:4c:bc:c8:06: 1b:94:45:f8:e2:9e:f1:24:ae:d9:17:39:27:6d:33:75:6d:c3: f7:2f:e3:f2:fe:86:82:60:2b:6d:a8:92:cf:ad:fd:02:21:86: ec:9a:91:e9:9d:34:0c:41:4f:05:a2:41:11:d3:eb:1d:93:af: f7:8f:d5:81:fd:d1:d4:09:d4:66:51:30:ec:52:1a:e8:ec:1d: 69:50:21:74:d9:ba:12:5e:3c:f4:35:ca:9b:fd:ed:c7:2c:e8: ea:2e:f9:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUwOTA0MTU1MTU1WhcNMjUwOTExMTU1MTU1WjAYMRYwFAYD VQQDEw02OGI5YjU5Yi1hOTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0olmZ3RK6G4O/G5S1Vr3G0CPvWqfl2DG+zOhm+qTVK09k8lTJ2WSdvcCP5B md8d5qDm6hjpSl6TOS8UlF9iuKwguLcNeDAFthmaBj4oGTZdO+ZX/4N8q6bWJeg7 G3uoNHZg2Ier/pIKSXayIt5/ETlvV7y9t+mcbjN1SLG+CK9apw6rfSXJJpf4Tbze GeYU99wgFmDjqzgnGg7TGo7djL4Xa/YEzASYekvUJH7rZuiERDZi2FI5pqrBoit4 w0fXKwksjhR5+sRx6DcYuNUcPem05uD/7pKx+yCiDS5ArDFiQTiFa39w6GEmlq5C p3cm0zjiOdDt3Uo3s9c3U8rsswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRwOvQK nO0eKQwFDLpYOhYmb60CMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCNml9vuymzUJkftmXM19n3oTgX6qK2DKZFe0HsEqeB5gct1lmoQUc V9nUMY7Qp9iWaP3TSqdHxLFktzy2ea6c/0USD88YXdRttXIFBjTjjMLVQzJBTDoZ 05+AXvxQoilLGyedV00TrSzAFXYI2uJlSpoakh2FN4FK8QDs366PUFwZa1iFYJmS qV8ffvDsuKfyos7yO20nHhf8ff5pKEy8yAYblEX44p7xJK7ZFzknbTN1bcP3L+Py /oaCYCttqJLPrf0CIYbsmpHpnTQMQU8FokER0+sdk6/3j9WB/dHUCdRmUTDsUhro 7B1pUCF02boSXjz0Ncqb/e3HLOjqLvlk -----END CERTIFICATE-----Generated at Sat Sep 6 08:15:00 2025 by rpki-client