$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: wrB+z4WDXfmEBZaEInzgjOd9msg6TE46v0qCuWTAh64= Subject key identifier: F3:B1:AF:17:E4:49:4B:31:1C:01:75:5A:07:A8:7C:58:D8:F6:AA:0C Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: 79 Signing time: Wed 09 Jul 2025 07:41:38 +0000 Manifest this update: Wed 09 Jul 2025 07:41:37 +0000 Manifest next update: Wed 16 Jul 2025 07:41:37 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: SeAzhxgKSEcd1LtfG//ATaCOrM5OI7iQJ9NtprLREJg=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Jul 2025 07:11:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Validity Not Before: Jul 9 07:41:37 2025 GMT Not After : Jul 16 07:41:37 2025 GMT Subject: CN=686e1d32-7e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ed:e2:80:f1:cc:f8:b2:42:33:55:d4:85:39: 6b:dd:03:b1:e8:cd:29:f9:cd:6e:62:61:37:9b:2b: 94:75:f4:a9:97:2a:1a:8d:5d:85:94:0a:86:2d:b2: d2:96:08:ef:c5:56:48:89:04:e6:d9:c1:14:36:63: 33:3c:88:74:12:b8:8b:39:f8:2d:f9:9c:24:22:a5: 22:32:3c:1b:f6:f6:6d:4d:fc:b0:77:f9:0b:e1:a7: 0d:8f:6a:d7:8d:84:15:9a:fb:6e:5e:04:29:3f:d2: 75:9f:bf:7e:7b:fc:63:f3:85:dd:8c:f8:9d:f9:0b: 88:ba:60:72:91:49:a7:d9:7a:ba:0e:cd:e2:d1:a0: e7:72:f9:7b:93:32:8d:03:6a:9e:8b:07:fd:39:d8: 49:86:f7:42:95:9d:3b:8c:1f:7c:8c:ec:39:23:09: f3:ef:bb:a6:68:af:7d:27:e8:df:8f:e9:e6:73:b9: f2:dd:16:eb:81:18:45:cd:bc:6f:cd:40:f1:b2:a8: 5e:c5:fd:e0:d8:7a:39:0c:fe:fb:9f:b5:d5:8e:2d: 62:33:39:16:7a:fc:c8:bc:b4:15:02:a2:0a:7e:c6: 2a:ac:81:07:de:40:64:1d:cc:93:17:9e:de:11:d8: 67:f5:31:8e:7c:94:7b:ad:ba:80:aa:1b:25:fa:48: f6:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B1:AF:17:E4:49:4B:31:1C:01:75:5A:07:A8:7C:58:D8:F6:AA:0C X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:f7:b5:df:7e:68:a0:16:13:4e:3d:2e:af:c3:e5:39:28:d7: 71:9e:5e:b3:a8:c5:c9:20:f1:ac:19:81:a6:8d:f2:eb:5e:da: 14:2c:72:2e:e3:fa:10:68:20:4c:73:20:e3:5a:a7:4b:c8:b5: 2e:17:06:06:be:43:de:b1:8f:ef:db:e8:dd:12:28:60:a1:27: f1:ef:e5:0a:82:65:f8:68:ce:17:dd:2f:de:e7:66:c3:f9:54: f7:9b:9f:c5:5f:c5:9c:47:79:00:5c:f7:44:0b:e3:37:a4:25: 5a:27:b1:1b:6f:3d:ca:22:dc:fb:85:9f:ef:01:fd:6f:94:4e: 71:01:f0:e1:ff:10:72:14:e3:4f:eb:88:ea:3d:20:72:dd:5b: dd:49:d9:91:32:87:5c:a8:fc:c3:2d:49:f7:54:22:70:d1:a7: fe:18:e2:0e:62:6e:32:9d:28:8a:94:0c:87:a8:75:c5:84:07: 0f:1e:ae:58:c6:66:57:cc:42:02:f9:87:fc:2d:e2:77:b5:2e: 1e:86:da:92:6e:00:57:60:6d:a9:22:e5:89:06:8c:24:8e:b1: ed:87:7f:bb:ad:f5:6c:92:af:4a:19:f6:20:cd:7c:03:d2:65: 50:c3:fe:32:1f:57:d5:9f:3f:14:bd:28:76:20:f3:b5:57:61: 3d:9e:d4:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REVGRTExMC8GA1UEBRMoQTgyOTJGNjIwNEM4MjEzRDc5MUZBNkNDQUFGNTc4NTE5 NEVGODFBMDAeFw0yNTA3MDkwNzQxMzdaFw0yNTA3MTYwNzQxMzdaMBgxFjAUBgNV BAMTDTY4NmUxZDMyLTdlM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/7eKA8cz4skIzVdSFOWvdA7HozSn5zW5iYTebK5R19KmXKhqNXYWUCoYtstKW CO/FVkiJBObZwRQ2YzM8iHQSuIs5+C35nCQipSIyPBv29m1N/LB3+Qvhpw2PateN hBWa+25eBCk/0nWfv357/GPzhd2M+J35C4i6YHKRSafZeroOzeLRoOdy+XuTMo0D ap6LB/052EmG90KVnTuMH3yM7DkjCfPvu6Zor30n6N+P6eZzufLdFuuBGEXNvG/N QPGyqF7F/eDYejkM/vuftdWOLWIzORZ6/Mi8tBUCogp+xiqsgQfeQGQdzJMXnt4R 2Gf1MY58lHutuoCqGyX6SPZzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU87GvF+RJ SzEcAXVaB6h8WNj2qgwwHwYDVR0jBBgwFoAUqCkvYgTIIT15H6bMqvV4UZTvgaAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERUZFLzExNjRDQUUwQTUx NjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdh QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUNrdllnVElJVDE1SDZiTXF2VjRVWlR2Z2FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RUZFLzExNjRDQUUwQTUxNjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQx NUg2Yk1xdlY0VVpUdmdhQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACf3td9+aKAWE049Lq/D5Tko13GeXrOoxckg8awZgaaN8ute2hQsci7j +hBoIExzIONap0vItS4XBga+Q96xj+/b6N0SKGChJ/Hv5QqCZfhozhfdL97nZsP5 VPebn8VfxZxHeQBc90QL4zekJVonsRtvPcoi3PuFn+8B/W+UTnEB8OH/EHIU40/r iOo9IHLdW91J2ZEyh1yo/MMtSfdUInDRp/4Y4g5ibjKdKIqUDIeodcWEBw8erljG ZlfMQgL5h/wt4ne1Lh6G2pJuAFdgbaki5YkGjCSOse2Hf7ut9WySr0oZ9iDNfAPS ZVDD/jIfV9WfPxS9KHYg87VXYT2e1I4= -----END CERTIFICATE-----Generated at Wed Jul 9 09:07:51 2025 by rpki-client