$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json) Hash identifier: OOFGnNfZU/1euGxidTWpbzzZUH4MeH8q15a1G7Dtcw8= Subject key identifier: E1:CD:61:18:56:6B:55:5D:0B:EC:C5:BC:E4:B6:B7:A2:C9:32:42:F2 Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B Certificate issuer: /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Certificate serial: 07F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft Manifest number: 07EA Signing time: Sun 24 Aug 2025 21:04:16 +0000 Manifest this update: Sun 24 Aug 2025 21:04:16 +0000 Manifest next update: Sun 31 Aug 2025 21:04:16 +0000 Files and hashes: 1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: oMjgTXXueJgOQ6kWbtqFX6KDrTHy3nhqw9jarfNKCU8=) 2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2033 (0x7f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Validity Not Before: Aug 24 21:04:16 2025 GMT Not After : Aug 31 21:04:16 2025 GMT Subject: CN=68ab7e50-d41a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0d:fc:25:44:42:86:fd:12:73:1c:7c:dd:ca: df:89:e0:4f:4c:51:5b:f3:58:69:f3:09:9c:31:e5: b7:65:40:ac:e8:e4:63:67:40:65:a8:be:e1:9e:fb: d8:be:e3:53:c4:64:4e:6e:8b:c5:f6:63:22:e1:90: b5:fa:2a:e0:2c:56:b1:fa:bf:51:dd:f8:0c:12:e5: 3d:13:90:c3:1a:2c:8b:40:05:67:2b:39:fc:3d:50: c0:ac:ae:15:35:15:a9:e6:28:71:91:3b:17:b2:41: 8c:13:db:fa:ac:cf:9b:b2:73:3d:62:6f:7d:95:9b: cf:0b:ad:83:e1:7f:c3:56:5f:31:f4:01:4c:b0:35: ed:75:5d:a9:a8:8a:73:ef:14:c6:d4:43:7a:74:49: 89:43:34:bf:03:51:a5:8e:c4:2b:93:b2:af:af:08: c5:ca:46:23:4b:e0:54:ac:af:ea:2b:d9:c7:93:43: 79:4c:97:57:ed:99:55:00:ba:9a:5a:b9:bf:8e:a6: b5:c2:8a:ea:51:c9:05:3c:7f:d6:8e:60:26:31:bf: 41:09:b7:46:93:ce:d7:1a:85:ee:a8:8c:c9:f4:96: d6:25:b4:b2:33:63:49:77:cb:ef:b4:93:f8:8d:1f: 05:cb:8c:d0:9f:c9:0d:90:b7:8b:5a:01:ee:37:e4: f5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:CD:61:18:56:6B:55:5D:0B:EC:C5:BC:E4:B6:B7:A2:C9:32:42:F2 X509v3 Authority Key Identifier: keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:46:cf:95:9e:63:67:1a:55:27:fd:4b:db:de:70:88:89:e5: ac:75:62:a7:92:f2:35:c4:d9:f9:59:fe:62:6b:14:23:39:60: 15:4e:b2:d2:fe:4f:52:a2:42:3d:cf:7b:f3:30:62:63:f2:ae: 43:00:29:ee:1f:a8:97:a4:84:19:68:ac:27:12:d6:0a:52:af: 7f:01:9b:be:3a:53:f8:3d:c0:6c:ef:61:cf:4c:09:a7:7d:e0: 5d:0c:7a:04:f9:f6:f7:71:6f:c6:79:67:f2:40:95:d6:86:ba: 3d:dd:6c:0f:3c:9c:a2:8c:e1:ae:f5:54:31:41:46:04:b9:bc: e6:1b:59:0f:d4:b3:9d:23:7b:ad:6a:c4:4a:58:a2:09:cf:8c: d2:50:ff:12:6c:35:95:39:47:11:49:54:19:4d:aa:44:15:87: ec:ea:0e:09:aa:67:a2:81:8b:46:09:e2:19:46:50:2c:17:d6: 1c:e2:7f:44:b6:88:4d:fe:c0:59:18:cc:5f:f9:ff:1e:da:f5: 73:fe:ad:9a:e9:84:0a:4a:53:77:02:5b:dd:69:b9:42:96:04: 4a:8c:19:62:e8:25:6a:e1:a3:0e:6f:5e:c9:37:a8:54:3b:bf: 70:9c:38:e5:0f:ce:a7:7c:1e:d7:47:25:6b:a2:d1:fa:52:a2: 72:be:ae:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGNEMxMTAvBgNVBAUTKDQxRTM4MEEwQzlGQUJDQzEwRjhFQTMyOTYzNTJFNkE3 ODc4RDM1M0IwHhcNMjUwODI0MjEwNDE2WhcNMjUwODMxMjEwNDE2WjAYMRYwFAYD VQQDEw02OGFiN2U1MC1kNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6A38JURChv0Scxx83crfieBPTFFb81hp8wmcMeW3ZUCs6ORjZ0BlqL7hnvvY vuNTxGRObovF9mMi4ZC1+irgLFax+r9R3fgMEuU9E5DDGiyLQAVnKzn8PVDArK4V NRWp5ihxkTsXskGME9v6rM+bsnM9Ym99lZvPC62D4X/DVl8x9AFMsDXtdV2pqIpz 7xTG1EN6dEmJQzS/A1GljsQrk7KvrwjFykYjS+BUrK/qK9nHk0N5TJdX7ZlVALqa Wrm/jqa1worqUckFPH/WjmAmMb9BCbdGk87XGoXuqIzJ9JbWJbSyM2NJd8vvtJP4 jR8Fy4zQn8kNkLeLWgHuN+T1DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHNYRhW a1VdC+zFvOS2t6LJMkLyMB8GA1UdIwQYMBaAFEHjgKDJ+rzBD46jKWNS5qeHjTU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEY0Qy85NDA3NjVGQ0Y5 NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZNRVBqcU1wWTFMbXA0ZU5O VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlT0FvTW42dk1FUGpxTXBZMUxtcDRlTk5Ucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEY0Qy85NDA3NjVGQ0Y5NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZN RVBqcU1wWTFMbXA0ZU5OVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBURs+VnmNnGlUn/Uvb3nCIieWsdWKnkvI1xNn5Wf5iaxQjOWAVTrLS /k9SokI9z3vzMGJj8q5DACnuH6iXpIQZaKwnEtYKUq9/AZu+OlP4PcBs72HPTAmn feBdDHoE+fb3cW/GeWfyQJXWhro93WwPPJyijOGu9VQxQUYEubzmG1kP1LOdI3ut asRKWKIJz4zSUP8SbDWVOUcRSVQZTapEFYfs6g4JqmeigYtGCeIZRlAsF9Yc4n9E tohN/sBZGMxf+f8e2vVz/q2a6YQKSlN3AlvdablClgRKjBli6CVq4aMOb17JN6hU O79wnDjlD86nfB7XRyVrotH6UqJyvq5K -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:55 2025 by rpki-client