$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft File: QvY5Q1NTT7CXXsweC49bZSOvr8U.mft (raw, json) Hash identifier: bMtV4kalzEu3Yzvg5mpO5eT3urpXAAUdXIDT5d64lNo= Subject key identifier: 73:C1:1B:0A:A8:73:E6:14:3B:0B:39:6B:D5:73:2C:C3:F6:75:2A:40 Authority key identifier: 42:F6:39:43:53:53:4F:B0:97:5E:CC:1E:0B:8F:5B:65:23:AF:AF:C5 Certificate issuer: /CN=A91178F4/serialNumber=42F6394353534FB0975ECC1E0B8F5B6523AFAFC5 Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft Manifest number: 0BDF Signing time: Sun 10 Aug 2025 18:52:49 +0000 Manifest this update: Sun 10 Aug 2025 18:52:48 +0000 Manifest next update: Sun 17 Aug 2025 18:52:48 +0000 Files and hashes: 1: QvY5Q1NTT7CXXsweC49bZSOvr8U.crl (hash: WELYX5CZP315GdMRHnk3MDDKoeF/KAkGSmPHUUPqXWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.crl rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91178F4, serialNumber=42F6394353534FB0975ECC1E0B8F5B6523AFAFC5 Validity Not Before: Aug 10 18:52:48 2025 GMT Not After : Aug 17 18:52:48 2025 GMT Subject: CN=6898ea80-0a86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cf:42:fb:ac:e3:01:50:40:68:23:74:21:6b: f1:ea:0b:d3:41:89:cf:8f:e3:ed:be:94:b1:f6:b3: 0d:1c:41:51:4b:24:80:a0:94:8b:8d:4a:a1:ac:e2: 58:e9:ef:99:ae:81:8d:49:59:1a:a7:ea:2c:de:1c: 5f:a0:1e:e7:66:20:dd:7e:65:a5:e9:6c:7e:dd:79: 6c:58:9a:14:59:82:72:6f:10:07:1f:e6:69:00:9e: 0c:4b:b8:bf:8b:df:7a:42:2b:14:00:3c:f7:57:ed: b5:6d:bf:0d:e5:c2:78:40:fd:b2:8e:16:d9:f8:a3: 87:fd:49:44:ef:24:9a:f7:1d:c6:73:fe:67:60:9c: 3f:cc:41:a4:c9:18:b8:0c:7a:1a:96:b1:91:88:19: 6a:73:81:69:b6:cc:a5:42:f3:9f:08:0d:6e:46:0e: 8d:be:6e:58:63:01:d0:66:7b:08:ab:e9:87:dc:32: 62:75:db:c5:4c:3f:35:a5:4f:07:33:44:0c:c1:dd: c7:9e:f9:39:4e:8f:7c:e0:29:2b:94:05:46:49:2d: 1f:ec:64:55:7c:09:8b:c2:78:fd:09:e0:a0:1e:38: 44:3a:86:62:ae:e5:74:47:dc:d2:39:89:af:e2:97: 35:3a:c5:e9:94:a0:3a:43:7b:29:bb:3c:48:31:70: 07:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C1:1B:0A:A8:73:E6:14:3B:0B:39:6B:D5:73:2C:C3:F6:75:2A:40 X509v3 Authority Key Identifier: keyid:42:F6:39:43:53:53:4F:B0:97:5E:CC:1E:0B:8F:5B:65:23:AF:AF:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:0d:a4:6b:b3:a5:ed:df:0a:f3:70:8d:28:6f:0c:45:1e:ac: 1f:e5:96:d7:da:50:8d:45:8e:ba:87:c2:ac:11:ad:52:2f:c1: 46:ea:a5:53:a7:cb:db:1d:39:20:23:16:b3:67:54:43:8d:1b: 08:fe:0e:28:60:8f:42:ca:fb:94:e4:93:f8:f8:78:8e:e9:5b: 56:e6:04:9d:a4:b0:53:96:dc:0a:44:d8:27:9f:ed:bf:91:c0: 6b:ed:21:f2:71:af:7c:98:1c:4f:e7:8d:72:2a:f4:49:b9:4e: ec:1d:96:c5:18:b0:75:ef:a5:c9:68:9d:ec:0f:25:b4:0b:2e: e8:6a:72:5c:ec:f0:28:20:ca:05:ae:57:58:b2:9e:2a:b2:60: e3:d4:ed:f7:49:ff:87:90:96:c2:6b:5d:4a:b1:92:49:ca:96: 37:9a:45:78:a7:6f:af:d9:f8:74:ca:3a:bd:aa:9a:77:4d:bd: eb:44:b3:cd:65:96:07:d2:63:81:e9:81:dc:bb:8d:3d:41:a9: ed:9c:cc:d7:9b:a2:fc:6b:d2:65:c3:31:5d:8f:70:a8:a1:40: d9:64:8d:03:42:dc:f0:3c:a5:48:9e:ba:39:db:2c:fc:19:d4: 34:b7:6b:7c:0f:f3:b1:55:d8:e2:72:c2:73:a5:8e:71:17:9a: fc:de:fa:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4RjQxMTAvBgNVBAUTKDQyRjYzOTQzNTM1MzRGQjA5NzVFQ0MxRTBCOEY1QjY1 MjNBRkFGQzUwHhcNMjUwODEwMTg1MjQ4WhcNMjUwODE3MTg1MjQ4WjAYMRYwFAYD VQQDEw02ODk4ZWE4MC0wYTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts9C+6zjAVBAaCN0IWvx6gvTQYnPj+PtvpSx9rMNHEFRSySAoJSLjUqhrOJY 6e+ZroGNSVkap+os3hxfoB7nZiDdfmWl6Wx+3XlsWJoUWYJybxAHH+ZpAJ4MS7i/ i996QisUADz3V+21bb8N5cJ4QP2yjhbZ+KOH/UlE7ySa9x3Gc/5nYJw/zEGkyRi4 DHoalrGRiBlqc4FptsylQvOfCA1uRg6Nvm5YYwHQZnsIq+mH3DJiddvFTD81pU8H M0QMwd3Hnvk5To984CkrlAVGSS0f7GRVfAmLwnj9CeCgHjhEOoZiruV0R9zSOYmv 4pc1OsXplKA6Q3spuzxIMXAH8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPBGwqo c+YUOws5a9VzLMP2dSpAMB8GA1UdIwQYMBaAFEL2OUNTU0+wl17MHguPW2Ujr6/F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9ENzA2NUUzNDIx MzIxMUVBOUEwNUZGNDBDNEY5QUUwMi9Rdlk1UTFOVFQ3Q1hYc3dlQzQ5YlpTT3Zy OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F2WTVRMU5UVDdDWFhzd2VDNDliWlNPdnI4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzhGNC9ENzA2NUUzNDIxMzIxMUVBOUEwNUZGNDBDNEY5QUUwMi9Rdlk1UTFOVFQ3 Q1hYc3dlQzQ5YlpTT3ZyOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTDaRrs6Xt3wrzcI0obwxFHqwf5ZbX2lCNRY66h8KsEa1SL8FG6qVT p8vbHTkgIxazZ1RDjRsI/g4oYI9CyvuU5JP4+HiO6VtW5gSdpLBTltwKRNgnn+2/ kcBr7SHyca98mBxP541yKvRJuU7sHZbFGLB176XJaJ3sDyW0Cy7oanJc7PAoIMoF rldYsp4qsmDj1O33Sf+HkJbCa11KsZJJypY3mkV4p2+v2fh0yjq9qpp3Tb3rRLPN ZZYH0mOB6YHcu409QantnMzXm6L8a9JlwzFdj3CooUDZZI0DQtzwPKVInro52yz8 GdQ0t2t8D/OxVdjicsJzpY5xF5r83vrh -----END CERTIFICATE-----Generated at Sun Aug 10 21:01:05 2025 by rpki-client