$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: 5Qq9TqKGPY3IxfSTaQZXaTNgJq3XEPNY6PLvAnHTk3o= Subject key identifier: A9:05:82:0A:A0:9B:44:55:BB:ED:0C:BE:C1:7C:BB:02:2C:16:7D:0F Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: 83 Signing time: Tue 29 Jul 2025 07:10:23 +0000 Manifest this update: Tue 29 Jul 2025 07:10:23 +0000 Manifest next update: Tue 05 Aug 2025 07:10:23 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: ZBbSNMt48erGBHToCIGvtBuYtStMe2cNjBDyRJaO6iU=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 Aug 2025 07:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Validity Not Before: Jul 29 07:10:23 2025 GMT Not After : Aug 5 07:10:23 2025 GMT Subject: CN=688873df-7626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:80:91:71:9f:33:4a:e4:50:c4:ab:e2:4d:02: 18:d2:12:e2:60:87:83:b9:00:df:39:67:05:f5:1d: f5:56:3a:9a:55:ca:b0:42:24:9c:0c:34:0d:00:73: ff:a6:c0:4d:3c:0b:65:7c:e6:93:50:64:49:df:46: 24:4d:38:f5:61:23:50:8b:fe:dd:a5:23:41:67:9a: 73:97:99:07:85:b6:19:39:08:0e:0f:67:31:83:ff: 0e:60:6f:01:4d:67:01:81:70:a9:4f:7e:d1:e3:7c: 9b:f2:cb:a9:f5:aa:e8:b1:c2:1a:3b:33:56:66:f7: 93:43:c1:21:b2:a1:ab:f4:0e:e6:94:26:6a:57:98: 07:0b:5e:40:1a:7c:63:b8:ea:54:a6:4d:86:1f:dc: 8a:f1:16:10:e1:0b:50:c8:38:d3:09:c7:7f:ec:05: 56:89:7b:15:e2:e4:9b:b3:15:d9:69:b9:82:b7:96: 75:c8:a8:56:b9:dd:7a:26:e3:1b:8d:18:33:7c:f5: fe:41:b2:a0:71:56:15:a4:c3:ed:d1:60:73:08:8c: 5b:33:85:cd:18:1a:ba:33:d6:32:31:58:d8:67:44: 61:50:62:c5:a0:72:a1:4b:19:a6:cf:f7:cd:e1:aa: 91:d1:fc:9a:c5:71:6e:e4:0f:84:85:b2:9e:b5:6f: 1a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:05:82:0A:A0:9B:44:55:BB:ED:0C:BE:C1:7C:BB:02:2C:16:7D:0F X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ab:63:e1:c2:37:05:00:06:18:99:c7:b1:50:63:b6:30:c1: c5:7e:3f:a5:e5:bc:eb:2f:26:1f:fc:c8:6f:7e:59:3e:df:b1: dc:41:22:80:1d:95:17:1e:4c:83:7d:da:34:66:5b:09:e7:54: 36:cf:55:bb:30:85:e1:d7:39:fb:7c:61:f0:3a:cc:49:37:77: 82:57:ff:9f:21:2e:be:29:41:7b:39:bb:99:fa:e2:40:a8:fe: 81:e2:ac:a6:21:78:35:a8:6e:7f:e2:33:da:45:51:a7:17:cf: d3:38:9b:8c:c2:5e:ec:83:e5:a9:63:82:3e:4e:56:8d:fc:c1: 92:75:48:d0:0f:ba:79:8d:cb:da:ae:e6:65:af:49:bf:52:76: 84:c6:09:c7:7a:f3:fb:44:e4:1d:15:9a:12:a6:35:38:38:89: 1c:8e:a1:36:66:4f:72:bd:11:ea:b9:8c:3a:ed:3e:9d:c8:ae: aa:6e:42:20:89:f6:96:3d:17:34:8e:fa:2e:bd:a0:12:bb:e7: b1:b6:24:01:69:a8:50:d3:50:f9:72:d1:af:a7:83:0c:91:fa: 2a:48:1b:d0:1f:82:e4:3b:ef:e0:c6:3f:38:ff:ca:ad:35:06: fe:b6:f0:71:11:94:10:3c:a8:a1:45:ce:e9:e5:14:5f:fb:84: 93:9c:73:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRFRkUxMTAvBgNVBAUTKEE4MjkyRjYyMDRDODIxM0Q3OTFGQTZDQ0FBRjU3ODUx OTRFRjgxQTAwHhcNMjUwNzI5MDcxMDIzWhcNMjUwODA1MDcxMDIzWjAYMRYwFAYD VQQDEw02ODg4NzNkZi03NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ICRcZ8zSuRQxKviTQIY0hLiYIeDuQDfOWcF9R31VjqaVcqwQiScDDQNAHP/ psBNPAtlfOaTUGRJ30YkTTj1YSNQi/7dpSNBZ5pzl5kHhbYZOQgOD2cxg/8OYG8B TWcBgXCpT37R43yb8sup9aroscIaOzNWZveTQ8EhsqGr9A7mlCZqV5gHC15AGnxj uOpUpk2GH9yK8RYQ4QtQyDjTCcd/7AVWiXsV4uSbsxXZabmCt5Z1yKhWud16JuMb jRgzfPX+QbKgcVYVpMPt0WBzCIxbM4XNGBq6M9YyMVjYZ0RhUGLFoHKhSxmmz/fN 4aqR0fyaxXFu5A+EhbKetW8aHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkFggqg m0RVu+0MvsF8uwIsFn0PMB8GA1UdIwQYMBaAFKgpL2IEyCE9eR+mzKr1eFGU74Gg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREVGRS8xMTY0Q0FFMEE1 MTYxMUVGODkwRUNEM0VDNEY5QUUwMi9xQ2t2WWdUSUlUMTVINmJNcXZWNFVaVHZn YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REVGRS8xMTY0Q0FFMEE1MTYxMUVGODkwRUNEM0VDNEY5QUUwMi9xQ2t2WWdUSUlU MTVINmJNcXZWNFVaVHZnYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApq2PhwjcFAAYYmcexUGO2MMHFfj+l5bzrLyYf/Mhvflk+37HcQSKA HZUXHkyDfdo0ZlsJ51Q2z1W7MIXh1zn7fGHwOsxJN3eCV/+fIS6+KUF7ObuZ+uJA qP6B4qymIXg1qG5/4jPaRVGnF8/TOJuMwl7sg+WpY4I+TlaN/MGSdUjQD7p5jcva ruZlr0m/UnaExgnHevP7ROQdFZoSpjU4OIkcjqE2Zk9yvRHquYw67T6dyK6qbkIg ifaWPRc0jvouvaASu+extiQBaahQ01D5ctGvp4MMkfoqSBvQH4LkO+/gxj84/8qt NQb+tvBxEZQQPKihRc7p5RRf+4STnHO/ -----END CERTIFICATE-----Generated at Thu Jul 31 07:40:42 2025 by rpki-client