$ rpki-client -vvf rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft File: QstM8CH28_wMgcT98cl9dCEAMXs.mft (raw, json) Hash identifier: VQxrV/djdv4RdbdCMV1FHf56GThtpbgdsz7KcppNO8I= Subject key identifier: 1F:70:0A:56:99:01:AE:A3:29:70:C6:23:69:FC:8E:A7:82:FC:60:E0 Authority key identifier: 42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B Certificate issuer: /CN=A9113B73/serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Certificate serial: 0765 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft Manifest number: 075C Signing time: Fri 08 Aug 2025 22:03:49 +0000 Manifest this update: Fri 08 Aug 2025 22:03:49 +0000 Manifest next update: Fri 15 Aug 2025 22:03:49 +0000 Files and hashes: 1: QstM8CH28_wMgcT98cl9dCEAMXs.crl (hash: Y+bdz344xrUO8HKdmLGSRI91Vf38nrEZxe9dPcgMyBw=) 2: 038C732E874611EB83B41D39C4F9AE02.roa (hash: xDFL83BDJofXsoqgs4IapCDppXS9oRsh4Talz2QouY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113B73, serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Validity Not Before: Aug 8 22:03:49 2025 GMT Not After : Aug 15 22:03:49 2025 GMT Subject: CN=68967445-345f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6d:12:89:7b:10:87:16:58:8b:a6:dd:c7:41: 8c:6c:cf:96:9c:da:83:fe:13:19:6e:2f:f1:c5:f0: 17:20:2d:85:1e:40:9e:37:64:45:bf:86:07:ac:e6: 2e:c7:96:49:c7:6a:d1:aa:4f:6c:4f:57:00:dc:16: bb:fc:47:6d:83:b5:d6:1d:d3:06:e4:93:d0:ec:0d: 47:de:61:56:20:91:a6:68:07:6d:83:71:c8:23:28: 4a:b4:15:e9:1d:71:1a:f4:a9:e1:19:17:d4:04:f0: f8:c9:67:74:f9:6d:66:cb:f3:22:36:15:22:e0:20: b9:ef:07:58:d4:ed:3c:83:b2:61:72:3c:c4:16:ef: 01:15:5a:58:b7:7c:71:ca:7a:b6:35:8b:6d:b5:6e: 2b:b2:27:1f:bb:c5:3c:5e:ee:04:67:22:d8:67:f1: 3e:a9:70:85:93:0a:9d:0f:d3:69:83:bf:e6:c7:b5: 29:a1:d5:b7:b7:b1:e1:99:a8:4d:e0:76:2a:68:97: 7f:5e:0f:a8:27:ba:0f:de:07:62:95:b0:88:e6:99: 54:4c:4a:b2:c7:03:84:c7:1e:b2:af:56:c0:54:44: e4:d5:2d:4d:e8:82:68:53:54:7e:06:09:84:ec:fc: 5f:53:db:d1:bf:8a:a9:49:c6:ee:56:f9:c5:43:3b: 54:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:70:0A:56:99:01:AE:A3:29:70:C6:23:69:FC:8E:A7:82:FC:60:E0 X509v3 Authority Key Identifier: keyid:42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:49:e3:ba:e1:b2:30:cb:9d:d6:52:f2:c7:06:ab:9a:27:4e: ee:4e:77:f3:b0:23:d0:f3:b2:2a:0b:9c:84:cc:48:57:2a:2e: 5c:91:84:7a:5d:b1:68:1e:90:cd:dd:74:b8:54:cf:f8:40:3b: d4:52:6c:f0:2b:d1:2f:80:44:a3:52:45:a7:43:41:a7:bf:db: 49:e7:cb:e8:a0:c4:3c:19:e7:ee:86:cf:ec:26:98:cc:8c:73: 7b:34:7c:08:af:6e:5b:f5:3d:27:73:ce:48:9a:6b:23:75:cb: b8:dd:37:0d:c7:f8:e8:19:3d:3b:09:cd:a1:b4:12:e5:21:a8: e4:0f:e3:8c:82:b8:82:97:57:8d:93:82:bd:d5:79:7f:ce:aa: ad:c7:a5:43:dd:08:e1:4d:77:e4:a3:0b:e3:85:0a:46:09:19: 5f:39:c9:38:41:02:a0:e5:5e:36:84:14:0a:72:35:c3:04:b4: 0f:71:1e:e1:3c:84:5d:f2:2a:67:f3:95:e1:b2:0a:cd:44:a7: 42:57:a4:0c:b7:2b:8d:e7:4e:b9:47:6f:b3:c3:46:de:b2:8a: 29:bc:5b:c9:5f:c7:e5:cb:51:81:d6:8b:c0:be:ed:36:5f:f8: c7:9e:3e:51:3f:bf:8b:14:43:6a:b6:1b:97:4a:69:97:0d:4f: cb:b1:11:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCNzMxMTAvBgNVBAUTKDQyQ0I0Q0YwMjFGNkYzRkMwQzgxQzRGREYxQzk3RDc0 MjEwMDMxN0IwHhcNMjUwODA4MjIwMzQ5WhcNMjUwODE1MjIwMzQ5WjAYMRYwFAYD VQQDEw02ODk2NzQ0NS0zNDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlm0SiXsQhxZYi6bdx0GMbM+WnNqD/hMZbi/xxfAXIC2FHkCeN2RFv4YHrOYu x5ZJx2rRqk9sT1cA3Ba7/Edtg7XWHdMG5JPQ7A1H3mFWIJGmaAdtg3HIIyhKtBXp HXEa9KnhGRfUBPD4yWd0+W1my/MiNhUi4CC57wdY1O08g7JhcjzEFu8BFVpYt3xx ynq2NYtttW4rsicfu8U8Xu4EZyLYZ/E+qXCFkwqdD9Npg7/mx7UpodW3t7HhmahN 4HYqaJd/Xg+oJ7oP3gdilbCI5plUTEqyxwOExx6yr1bAVETk1S1N6IJoU1R+BgmE 7PxfU9vRv4qpScbuVvnFQztU4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9wClaZ Aa6jKXDGI2n8jqeC/GDgMB8GA1UdIwQYMBaAFELLTPAh9vP8DIHE/fHJfXQhADF7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0I3My9CQTYzNTk4MjJG RTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhfd01nY1Q5OGNsOWRDRUFN WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzdE04Q0gyOF93TWdjVDk4Y2w5ZENFQU1Ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0I3My9CQTYzNTk4MjJGRTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhf d01nY1Q5OGNsOWRDRUFNWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYSeO64bIwy53WUvLHBquaJ07uTnfzsCPQ87IqC5yEzEhXKi5ckYR6 XbFoHpDN3XS4VM/4QDvUUmzwK9EvgESjUkWnQ0Gnv9tJ58vooMQ8Gefuhs/sJpjM jHN7NHwIr25b9T0nc85Immsjdcu43TcNx/joGT07Cc2htBLlIajkD+OMgriCl1eN k4K91Xl/zqqtx6VD3QjhTXfkowvjhQpGCRlfOck4QQKg5V42hBQKcjXDBLQPcR7h PIRd8ipn85XhsgrNRKdCV6QMtyuN5065R2+zw0besoopvFvJX8fly1GB1ovAvu02 X/jHnj5RP7+LFENqthuXSmmXDU/LsRG7 -----END CERTIFICATE-----Generated at Sat Aug 9 22:49:46 2025 by rpki-client