$ rpki-client -vvf rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft File: QMCQUT8kAYkgsVHapVRJwV3IS-s.mft (raw, json) Hash identifier: 8aUFFpb/o0zGA6vWJAfEjO/r92pb/hC0g3zy6gF1zH8= Subject key identifier: DC:74:6F:92:7B:AD:45:A8:D6:E5:1C:AE:1A:C7:DF:33:EF:35:0E:09 Authority key identifier: 40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB Certificate issuer: /CN=A9111ED2/serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Certificate serial: 09E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft Manifest number: 09DA Signing time: Fri 08 Aug 2025 20:15:47 +0000 Manifest this update: Fri 08 Aug 2025 20:15:47 +0000 Manifest next update: Fri 15 Aug 2025 20:15:47 +0000 Files and hashes: 1: QMCQUT8kAYkgsVHapVRJwV3IS-s.crl (hash: CG+IQ9bn1Xeg4hpXOfcs0cJUvPouBML1nvYnyVuVtFI=) 2: 1E809CD0845111EAA961467EC4F9AE02.roa (hash: daFA8yMRnffIfjJ7fLZ41ES4LLpPtN0oWTU77ItHPkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2530 (0x9e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111ED2, serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Validity Not Before: Aug 8 20:15:47 2025 GMT Not After : Aug 15 20:15:47 2025 GMT Subject: CN=68965af3-6f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:24:f8:d9:58:64:66:81:d1:e7:d6:21:f2:72: 56:a8:2f:ef:1e:a5:af:0e:fa:9e:17:bf:f4:72:f6: fa:94:66:42:4b:d5:e1:a1:0b:d6:17:c1:93:fa:2f: b3:fa:82:18:ac:fc:03:7f:17:65:5d:30:46:9a:37: 74:2a:6f:b2:9d:bc:64:2c:2f:d2:50:47:b2:85:5a: 17:5d:2b:e7:d4:c6:1c:34:16:8a:40:66:42:c2:75: 94:aa:19:79:3b:86:c6:65:2f:1d:73:ae:12:63:61: c0:c2:90:4d:74:b3:80:27:28:93:2c:de:39:c7:2c: bb:47:f8:36:f4:0a:29:75:04:ae:3d:31:f7:d9:82: 55:3d:5d:64:42:36:e8:c1:53:50:4c:62:e9:88:b4: 18:45:80:71:37:b5:0b:8f:39:83:16:2f:3e:ac:4b: ed:31:34:50:62:13:a3:54:cc:03:be:d7:7d:f2:0d: 94:15:6b:1e:85:6f:c0:d2:ff:eb:7b:35:a0:52:3f: 5b:ec:c9:50:4e:3c:36:c7:62:74:5f:25:31:ce:70: a2:e8:41:ef:57:f5:c9:54:2b:45:e9:42:38:68:ec: a1:9f:ca:f6:98:f2:62:34:ed:d7:1b:8b:9c:ec:f2: bd:7f:03:27:77:31:9c:0a:c8:e4:37:cf:e9:06:22: a5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:74:6F:92:7B:AD:45:A8:D6:E5:1C:AE:1A:C7:DF:33:EF:35:0E:09 X509v3 Authority Key Identifier: keyid:40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:3b:5b:39:c9:3a:92:9d:28:57:d5:ee:e3:89:ec:36:15:0a: 2c:7e:fc:ea:17:b3:55:8a:53:5b:42:04:64:ad:4f:c5:4a:9c: 43:2a:04:b9:da:80:61:69:27:3e:37:19:ca:6d:95:4d:33:68: c6:24:cf:e3:3b:16:28:6f:8e:66:63:a5:5f:02:ad:01:4e:c7: 3d:9e:ef:0c:56:69:e6:58:b0:ab:fe:3e:dc:0c:87:bc:3e:54: f8:77:c8:b2:24:f0:91:1f:0c:41:0c:1f:17:23:77:13:2c:5d: fe:d2:ad:13:89:7b:f6:33:dc:ec:cb:65:ab:bc:ba:e2:6f:40: 04:4a:41:5d:40:ee:71:2f:ed:36:11:94:bd:99:dc:5f:94:f5: 7c:53:ee:ee:f0:27:2c:1c:37:cd:cd:bc:a0:55:f0:25:69:1e: a1:f7:75:b8:78:6e:bd:d3:ba:ab:af:28:ed:20:ce:72:d0:c8: 7f:da:fc:a6:f5:f1:81:f9:a0:64:47:2f:99:f3:2c:9f:16:a9: 92:f5:6b:0f:26:7a:09:d1:90:67:c9:b9:93:68:03:0e:dc:c2: 8a:cb:45:e2:18:94:37:69:9d:1a:e2:93:3c:b6:f9:03:42:5b: 42:82:fb:ce:42:c4:52:0f:d1:65:77:a4:c2:71:07:be:5d:85: 68:ee:80:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFFRDIxMTAvBgNVBAUTKDQwQzA5MDUxM0YyNDAxODkyMEIxNTFEQUE1NTQ0OUMx NURDODRCRUIwHhcNMjUwODA4MjAxNTQ3WhcNMjUwODE1MjAxNTQ3WjAYMRYwFAYD VQQDEw02ODk2NWFmMy02ZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCT42VhkZoHR59Yh8nJWqC/vHqWvDvqeF7/0cvb6lGZCS9XhoQvWF8GT+i+z +oIYrPwDfxdlXTBGmjd0Km+ynbxkLC/SUEeyhVoXXSvn1MYcNBaKQGZCwnWUqhl5 O4bGZS8dc64SY2HAwpBNdLOAJyiTLN45xyy7R/g29AopdQSuPTH32YJVPV1kQjbo wVNQTGLpiLQYRYBxN7ULjzmDFi8+rEvtMTRQYhOjVMwDvtd98g2UFWsehW/A0v/r ezWgUj9b7MlQTjw2x2J0XyUxznCi6EHvV/XJVCtF6UI4aOyhn8r2mPJiNO3XG4uc 7PK9fwMndzGcCsjkN8/pBiKl0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNx0b5J7 rUWo1uUcrhrH3zPvNQ4JMB8GA1UdIwQYMBaAFEDAkFE/JAGJILFR2qVUScFdyEvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUVEMi82MjFFODYxMDg0 NTAxMUVBODA0N0NFN0RDNEY5QUUwMi9RTUNRVVQ4a0FZa2dzVkhhcFZSSndWM0lT LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNQ1FVVDhrQVlrZ3NWSGFwVlJKd1YzSVMtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUVEMi82MjFFODYxMDg0NTAxMUVBODA0N0NFN0RDNEY5QUUwMi9RTUNRVVQ4a0FZ a2dzVkhhcFZSSndWM0lTLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmO1s5yTqSnShX1e7jiew2FQosfvzqF7NVilNbQgRkrU/FSpxDKgS5 2oBhaSc+NxnKbZVNM2jGJM/jOxYob45mY6VfAq0BTsc9nu8MVmnmWLCr/j7cDIe8 PlT4d8iyJPCRHwxBDB8XI3cTLF3+0q0TiXv2M9zsy2WrvLrib0AESkFdQO5xL+02 EZS9mdxflPV8U+7u8CcsHDfNzbygVfAlaR6h93W4eG6907qrryjtIM5y0Mh/2vym 9fGB+aBkRy+Z8yyfFqmS9WsPJnoJ0ZBnybmTaAMO3MKKy0XiGJQ3aZ0a4pM8tvkD QltCgvvOQsRSD9Fld6TCcQe+XYVo7oBj -----END CERTIFICATE-----Generated at Sun Aug 10 18:50:46 2025 by rpki-client