$ rpki-client -vvf rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft File: rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft (raw, json) Hash identifier: GNIP019QpJzAiWQBbUbcbqpGH3A89uIoeqtX98uuo+I= Subject key identifier: 80:10:E1:7A:F8:F7:E3:05:25:47:2F:EE:8E:2E:DB:A7:9E:BE:5A:82 Authority key identifier: AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 Certificate issuer: /CN=A917799C/serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft Manifest number: 1F Signing time: Mon 25 Aug 2025 08:25:14 +0000 Manifest this update: Mon 25 Aug 2025 08:25:14 +0000 Manifest next update: Mon 01 Sep 2025 08:25:14 +0000 Files and hashes: 1: rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl (hash: +uvOTE6nRN0M/6tlTwwrsO0n3AwnTcD3UkkAOZN+efk=) 2: 1A10CA38554511F0BE9D290EC4F9AE02.roa (hash: +cgq7m1m+3yCjZbwy4Qcjluah/ZFibIuVd5FM/B6ZOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 08:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917799C, serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Validity Not Before: Aug 25 08:25:14 2025 GMT Not After : Sep 1 08:25:14 2025 GMT Subject: CN=68ac1dea-3911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7f:7d:0f:63:0e:47:8c:9d:2b:67:1c:1d:65: d7:3c:fc:2e:73:c7:1c:fb:27:83:bc:e8:69:85:9c: 54:41:7e:7a:fa:3f:b1:61:d7:ad:c9:23:cc:65:72: ea:b1:99:f2:05:b7:d8:f0:a9:cc:c4:98:bc:bf:6d: cc:3e:0e:93:b5:6b:9e:cc:a4:f5:df:09:93:65:ac: e3:1b:a4:af:af:2b:50:73:d8:9a:65:cb:4a:99:87: 2f:f2:48:c4:a9:bb:bc:b2:59:71:5c:92:e8:34:34: 61:c9:e8:5d:05:34:72:39:ca:a1:81:87:cb:fa:b5: 51:9f:38:8a:ed:ff:23:e8:f1:cc:31:99:fa:15:83: f9:02:e5:d5:a1:9a:6f:e3:ef:c8:a9:26:9b:0e:81: 0c:e8:eb:c7:b4:a1:7b:93:db:ea:8a:fe:27:00:39: 2d:01:1f:b6:52:3e:14:89:44:33:55:c1:93:9b:78: 45:4e:9a:f6:77:67:b2:23:c1:3d:46:55:de:79:93: 63:91:32:81:6b:68:15:0b:3e:6a:db:e4:9b:e0:4d: 16:9d:93:fd:58:72:d8:fc:37:29:83:92:4b:2a:17: f0:78:2f:f1:14:44:c2:df:f6:44:5c:2a:6b:c2:fb: 80:ca:a0:bb:12:dc:38:9b:70:6f:1b:fe:04:fc:98: 88:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:10:E1:7A:F8:F7:E3:05:25:47:2F:EE:8E:2E:DB:A7:9E:BE:5A:82 X509v3 Authority Key Identifier: keyid:AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:51:83:da:c6:92:87:c1:ad:56:68:76:e1:7f:54:92:e5:18: 25:1f:11:bb:ed:65:b3:ce:a7:72:0f:5e:e1:e5:ed:09:8e:73: 2b:0c:d5:69:28:e1:81:45:22:a1:b0:d5:b1:6a:c7:e8:a2:b2: 02:45:89:e8:2b:10:c5:07:21:74:b8:65:c8:78:42:71:7f:87: 5f:47:c3:11:1d:04:e5:71:12:72:02:0a:c2:5d:70:b8:7c:21: f3:8d:df:9c:98:97:52:21:8a:30:05:1e:39:06:39:73:4e:39: 55:87:7c:c5:cf:d8:8c:08:fa:f4:1a:17:4b:28:2e:67:76:92: 5a:ab:0f:e8:19:eb:a3:f9:1a:e1:d4:b4:04:62:8e:80:a6:ef: fa:29:89:51:03:06:c0:d8:76:f7:ea:c4:d9:dd:31:03:f7:74: d2:ca:09:0b:61:24:30:f1:f6:34:06:99:59:49:b8:67:bd:d8: 0f:c6:d9:ef:ea:59:e5:01:66:5d:8d:d6:b1:60:3f:4b:ca:f2: 7a:e2:7b:b8:04:a5:07:15:f6:b6:09:08:72:f5:9b:51:bc:88: 10:98:86:ce:be:31:41:94:0b:bd:4d:d8:ba:c2:26:01:29:14: 4e:ce:22:c7:a2:0a:70:3c:37:47:36:50:df:c8:5b:78:97:72: 28:db:6c:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Nzk5QzExMC8GA1UEBRMoQUQwNzAyNDAyOTNBQ0RDNTI0Q0ExMzM2NTgyRDcwQzIx OUZDQzdFMDAeFw0yNTA4MjUwODI1MTRaFw0yNTA5MDEwODI1MTRaMBgxFjAUBgNV BAMTDTY4YWMxZGVhLTM5MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbf30PYw5HjJ0rZxwdZdc8/C5zxxz7J4O86GmFnFRBfnr6P7Fh163JI8xlcuqx mfIFt9jwqczEmLy/bcw+DpO1a57MpPXfCZNlrOMbpK+vK1Bz2Jply0qZhy/ySMSp u7yyWXFckug0NGHJ6F0FNHI5yqGBh8v6tVGfOIrt/yPo8cwxmfoVg/kC5dWhmm/j 78ipJpsOgQzo68e0oXuT2+qK/icAOS0BH7ZSPhSJRDNVwZObeEVOmvZ3Z7IjwT1G Vd55k2ORMoFraBULPmrb5JvgTRadk/1Yctj8NymDkksqF/B4L/EURMLf9kRcKmvC +4DKoLsS3DibcG8b/gT8mIjlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgBDhevj3 4wUlRy/uji7bp56+WoIwHwYDVR0jBBgwFoAUrQcCQCk6zcUkyhM2WC1wwhn8x+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3OTlDLzJEMzM1RTZBNTU0 NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNVa3loTTJXQzF3d2huOHgt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclFjQ1FDazZ6Y1VreWhNMldDMXd3aG44eC1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 OTlDLzJEMzM1RTZBNTU0NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNV a3loTTJXQzF3d2huOHgtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH1Rg9rGkofBrVZoduF/VJLlGCUfEbvtZbPOp3IPXuHl7QmOcysM1Wko 4YFFIqGw1bFqx+iisgJFiegrEMUHIXS4Zch4QnF/h19HwxEdBOVxEnICCsJdcLh8 IfON35yYl1IhijAFHjkGOXNOOVWHfMXP2IwI+vQaF0soLmd2klqrD+gZ66P5GuHU tARijoCm7/opiVEDBsDYdvfqxNndMQP3dNLKCQthJDDx9jQGmVlJuGe92A/G2e/q WeUBZl2N1rFgP0vK8nrie7gEpQcV9rYJCHL1m1G8iBCYhs6+MUGUC71N2LrCJgEp FE7OIseiCnA8N0c2UN/IW3iXcijbbB0= -----END CERTIFICATE-----Generated at Mon Aug 25 23:56:43 2025 by rpki-client