$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft File: QcdXFCmaV43RkP0fcwlVsf2awfQ.mft (raw, json) Hash identifier: DNmx5rDMzqanCtxNmYzgvWGM/EHpCHk1DOehltoEL8Q= Subject key identifier: 8F:54:E6:AD:34:3A:02:D3:B5:44:D2:2E:ED:CF:51:14:09:B0:E6:37 Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft Manifest number: 26 Signing time: Thu 21 Aug 2025 08:03:17 +0000 Manifest this update: Thu 21 Aug 2025 08:03:16 +0000 Manifest next update: Thu 28 Aug 2025 08:03:16 +0000 Files and hashes: 1: QcdXFCmaV43RkP0fcwlVsf2awfQ.crl (hash: 5lJvmRNnzn6mOVdoGk4d89GcWxUeJI0l3xAPfnfJGh0=) 2: C425CEE64B8211F0A94CFD82C4F9AE02.roa (hash: fil/oQotRM+MIGw/cNqLrz8OgmoOYQq+ywbG5ZxtQK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 08:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Aug 21 08:03:16 2025 GMT Not After : Aug 28 08:03:16 2025 GMT Subject: CN=68a6d2c5-ca10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:06:6b:84:f7:19:b3:1c:69:24:ea:a1:59:83: 1e:6e:eb:27:fc:c4:3d:06:90:cc:0d:87:ce:ef:cc: fc:a2:de:a0:a8:c9:51:f9:2f:d3:51:fa:19:31:85: 72:d7:76:15:71:0e:70:38:36:2a:4f:1a:86:05:b9: 72:d4:00:43:26:44:a7:86:19:16:15:68:0e:26:16: ef:d7:a3:3e:b6:99:2b:4e:48:12:66:43:77:69:e3: 24:b4:4f:ff:18:8f:b1:90:fa:06:a2:a2:27:cc:e6: cf:95:44:7c:92:23:e6:f6:d9:96:a1:70:51:ca:f2: cb:c5:2d:12:06:05:83:a7:81:90:8d:85:ff:12:fe: 27:18:ad:45:b2:00:e9:8d:19:97:0a:07:09:8e:49: 18:20:b6:34:58:3c:4c:29:85:12:df:52:72:c0:e1: c5:05:5b:78:f7:78:5e:29:55:be:78:71:62:cb:6d: 05:00:7e:59:bc:52:17:09:5a:d3:8c:43:9d:64:cc: 7a:d3:fb:cf:ed:2e:f1:7a:9e:6d:4b:e6:90:82:96: a4:15:73:9e:ac:45:56:1a:10:89:dc:57:ff:36:1c: 7c:02:f1:46:e7:75:e2:3a:a5:b7:f1:fa:93:2f:d3: 41:c9:c8:85:c2:c9:2d:12:e6:49:d5:af:45:c3:d4: 51:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:54:E6:AD:34:3A:02:D3:B5:44:D2:2E:ED:CF:51:14:09:B0:E6:37 X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:81:47:dd:fc:3e:1a:36:45:b9:fc:11:d8:ca:8f:39:5b:80: ef:d7:13:7f:95:4b:aa:65:04:24:fa:1d:f2:64:69:40:b9:4c: 03:48:30:03:67:38:62:d5:dd:6a:f3:e9:e0:7b:43:75:5a:30: 48:8a:4b:0e:16:43:54:0b:ed:95:49:0c:7b:a4:77:98:7a:ec: 35:91:b7:9d:58:17:a8:d1:24:19:f6:1f:ca:d7:b0:9b:01:c8: e4:e8:84:29:05:9b:39:e6:b1:ed:c3:ac:c3:47:2d:ed:d4:31: c8:bd:89:46:20:4d:19:aa:4a:aa:da:e3:a1:13:8b:98:37:f9: cb:7e:5a:ea:b8:3b:61:e6:da:be:e8:63:14:cb:e3:47:1f:66: 9e:ab:6c:c4:25:cf:7c:29:0e:61:e4:a4:19:7e:b0:58:7a:a8: 47:9a:b9:3a:3e:32:ab:92:d8:cc:69:dc:25:98:5b:5e:ac:97: a7:da:6f:dc:38:2d:77:42:1f:67:88:92:4d:ae:c4:27:da:b0: 31:a7:ca:c3:52:46:87:c7:25:1c:08:a2:f3:e3:a2:63:e7:d1: c1:d0:2e:0e:e7:01:c2:9f:9e:2e:89:33:34:77:46:d2:ff:11: 9f:23:9a:ba:35:44:bb:1f:29:89:c7:12:0b:f3:62:77:d8:c3: 6d:51:77:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUE4QjExMC8GA1UEBRMoNDFDNzU3MTQyOTlBNTc4REQxOTBGRDFGNzMwOTU1QjFG RDlBQzFGNDAeFw0yNTA4MjEwODAzMTZaFw0yNTA4MjgwODAzMTZaMBgxFjAUBgNV BAMTDTY4YTZkMmM1LWNhMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTBmuE9xmzHGkk6qFZgx5u6yf8xD0GkMwNh87vzPyi3qCoyVH5L9NR+hkxhXLX dhVxDnA4NipPGoYFuXLUAEMmRKeGGRYVaA4mFu/Xoz62mStOSBJmQ3dp4yS0T/8Y j7GQ+gaioifM5s+VRHySI+b22ZahcFHK8svFLRIGBYOngZCNhf8S/icYrUWyAOmN GZcKBwmOSRggtjRYPEwphRLfUnLA4cUFW3j3eF4pVb54cWLLbQUAflm8UhcJWtOM Q51kzHrT+8/tLvF6nm1L5pCClqQVc56sRVYaEIncV/82HHwC8UbndeI6pbfx+pMv 00HJyIXCyS0S5knVr0XD1FHjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj1TmrTQ6 AtO1RNIu7c9RFAmw5jcwHwYDVR0jBBgwFoAUQcdXFCmaV43RkP0fcwlVsf2awfQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQThCL0JBMDhBQTQyNEI4 MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdm US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWNkWEZDbWFWNDNSa1AwZmN3bFZzZjJhd2ZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QThCL0JBMDhBQTQyNEI4MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQz UmtQMGZjd2xWc2YyYXdmUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAN2BR938Pho2Rbn8EdjKjzlbgO/XE3+VS6plBCT6HfJkaUC5TANIMANn OGLV3Wrz6eB7Q3VaMEiKSw4WQ1QL7ZVJDHukd5h67DWRt51YF6jRJBn2H8rXsJsB yOTohCkFmznmse3DrMNHLe3UMci9iUYgTRmqSqra46ETi5g3+ct+Wuq4O2Hm2r7o YxTL40cfZp6rbMQlz3wpDmHkpBl+sFh6qEeauTo+MquS2Mxp3CWYW16sl6fab9w4 LXdCH2eIkk2uxCfasDGnysNSRofHJRwIovPjomPn0cHQLg7nAcKfni6JMzR3RtL/ EZ8jmro1RLsfKYnHEgvzYnfYw21Rd08= -----END CERTIFICATE-----Generated at Sat Aug 23 02:59:47 2025 by rpki-client