$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: oHCH5qv/apfuK7WanxVxombnIczj8OCOp7cko+bHdU4= Subject key identifier: A3:27:94:50:15:2D:BF:67:DD:C5:0E:E7:3A:F7:BF:BE:DA:06:8B:8C Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0AEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0AE0 Signing time: Tue 22 Jul 2025 19:42:12 +0000 Manifest this update: Tue 22 Jul 2025 19:42:11 +0000 Manifest next update: Tue 29 Jul 2025 19:42:11 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: 4mjw9ZEN02BRxuQeZE0KvypS86pE2Xv2rzYznnAhtRs=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2798 (0xaee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Jul 22 19:42:11 2025 GMT Not After : Jul 29 19:42:11 2025 GMT Subject: CN=687fe994-d5c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a3:3e:38:fc:60:b7:07:4d:47:c9:8b:14:ab: fc:c9:24:ca:2b:0f:ae:6c:9a:4d:8e:a6:f5:b1:d7: 07:c5:f2:65:61:39:bf:b0:78:66:08:15:14:2f:05: 9d:24:30:d3:f0:00:a9:ab:35:69:0f:8a:9c:9c:31: 94:c7:42:de:a0:3a:f1:7c:fd:09:fb:af:f4:e2:15: 6a:fe:37:fa:e2:c5:50:77:87:92:76:07:fc:04:c9: 73:07:f5:bf:c5:5b:13:23:78:f5:d9:85:1c:9b:52: 6b:f0:6e:aa:67:4e:4f:80:8c:40:c8:a4:35:b6:4c: 6c:2d:67:f5:2d:01:c4:bf:c5:cc:d6:0a:fd:0e:76: 76:c8:ee:4c:69:10:31:2f:86:5e:82:dd:d2:79:35: c1:44:46:82:57:40:b1:cc:56:b8:e9:c6:64:4d:cc: a7:b4:95:7e:eb:de:9e:1f:70:4c:64:f2:82:aa:f5: f0:ef:38:2d:b1:46:be:26:f8:da:35:60:90:f3:5e: ad:69:2a:59:8c:1f:33:08:96:6d:f2:5a:5f:22:32: 70:ab:9a:d8:0a:12:1e:c1:1a:e9:9a:15:bd:83:f4: 33:4d:f5:78:72:57:3c:61:8f:90:4b:e2:f2:24:44: fe:44:f1:a9:1b:0c:1a:2d:e3:60:9d:e2:44:54:c2: 09:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:27:94:50:15:2D:BF:67:DD:C5:0E:E7:3A:F7:BF:BE:DA:06:8B:8C X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:54:e7:b4:10:a3:b4:9d:15:6b:83:b7:3d:90:40:25:79:f5: f5:07:2e:e2:e4:f2:d5:8f:8b:c5:a7:5c:93:07:2f:e5:64:57: 3f:fe:8d:77:f9:8a:b4:f5:63:73:91:a9:76:0a:83:1a:1f:0e: 7a:cf:18:b6:fc:ed:da:5e:10:61:01:57:e6:25:64:f9:9b:7b: bf:6f:d0:73:60:38:9c:ca:3f:10:28:cf:74:71:a8:ca:bb:f4: a1:8d:8a:ba:db:58:05:b3:b4:d8:18:b9:da:df:b1:28:86:b2: d1:2c:4d:a2:b1:b0:b6:75:57:8e:cf:5d:3c:d5:c1:a7:84:e2: 65:4d:05:da:29:71:9a:f2:23:81:bf:95:2a:4d:39:9d:8b:e9: 32:19:5c:30:3a:48:3f:25:87:94:12:00:86:8f:04:5d:f8:cd: f1:99:52:5e:6c:ca:54:60:00:a1:bc:25:fc:f0:20:ab:28:f5: 5b:e1:2b:80:98:05:18:c4:69:00:0b:33:16:2e:1b:0e:ad:15: db:5a:04:cc:d4:de:a5:12:23:fe:e5:06:3f:8e:41:7d:65:5f: 5c:0d:61:7c:4f:b4:26:cc:31:60:57:4c:7a:63:be:ca:5a:94: f0:c9:14:e8:f7:eb:93:bf:68:65:4f:6d:5c:5d:ab:3f:19:c8: 06:87:f8:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUwNzIyMTk0MjExWhcNMjUwNzI5MTk0MjExWjAYMRYwFAYD VQQDEw02ODdmZTk5NC1kNWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KM+OPxgtwdNR8mLFKv8ySTKKw+ubJpNjqb1sdcHxfJlYTm/sHhmCBUULwWd JDDT8ACpqzVpD4qcnDGUx0LeoDrxfP0J+6/04hVq/jf64sVQd4eSdgf8BMlzB/W/ xVsTI3j12YUcm1Jr8G6qZ05PgIxAyKQ1tkxsLWf1LQHEv8XM1gr9DnZ2yO5MaRAx L4Zegt3SeTXBREaCV0CxzFa46cZkTcyntJV+696eH3BMZPKCqvXw7zgtsUa+Jvja NWCQ816taSpZjB8zCJZt8lpfIjJwq5rYChIewRrpmhW9g/QzTfV4clc8YY+QS+Ly JET+RPGpGwwaLeNgneJEVMIJlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMnlFAV Lb9n3cUO5zr3v77aBouMMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqVOe0EKO0nRVrg7c9kEAlefX1By7i5PLVj4vFp1yTBy/lZFc//o13 +Yq09WNzkal2CoMaHw56zxi2/O3aXhBhAVfmJWT5m3u/b9BzYDicyj8QKM90cajK u/ShjYq621gFs7TYGLna37EohrLRLE2isbC2dVeOz1081cGnhOJlTQXaKXGa8iOB v5UqTTmdi+kyGVwwOkg/JYeUEgCGjwRd+M3xmVJebMpUYAChvCX88CCrKPVb4SuA mAUYxGkACzMWLhsOrRXbWgTM1N6lEiP+5QY/jkF9ZV9cDWF8T7QmzDFgV0x6Y77K WpTwyRTo9+uTv2hlT21cXas/GcgGh/ip -----END CERTIFICATE-----Generated at Wed Jul 23 17:32:32 2025 by rpki-client