$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: OAe4OTxWNAI17RlUU3liakIdCIUPtzhChALhlEDpISA= Subject key identifier: D4:15:F0:CB:C7:7C:73:BA:84:02:F1:2E:87:A7:27:A8:02:12:EC:1A Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 066D Signing time: Fri 08 Aug 2025 22:52:56 +0000 Manifest this update: Fri 08 Aug 2025 22:52:56 +0000 Manifest next update: Fri 15 Aug 2025 22:52:56 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: 3JAvvzQrHfgC0m99OMuP8d7qsB2dkS5nnZV5/jSj/8I=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Aug 8 22:52:56 2025 GMT Not After : Aug 15 22:52:56 2025 GMT Subject: CN=68967fc8-e650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:77:4e:7e:9a:29:7c:72:d0:4c:57:35:79: 31:f8:38:5d:90:d3:96:06:04:06:19:fb:9e:c7:97: 15:1d:44:69:2f:0d:34:28:fa:f9:d9:cf:a3:a1:63: ba:04:ba:f7:ff:b9:fe:0e:97:f8:11:ed:51:0c:d7: c2:1c:cd:e5:38:08:61:bd:a4:1f:ff:a0:93:cd:cd: 3e:a3:27:59:a8:d1:d5:26:8d:2f:f1:89:97:69:95: ce:9c:9f:26:73:30:b5:a3:52:77:75:99:9c:6f:54: 75:b3:f1:aa:d8:86:57:f0:5f:11:43:f0:b3:08:aa: 1e:27:da:0e:4a:94:fc:a7:41:9d:9f:e7:37:c9:30: c1:1c:f2:c1:37:69:5b:f4:4e:85:23:d4:bc:18:56: 6d:a8:1a:7c:ae:f9:b1:53:f4:4d:ba:15:36:4d:a1: b3:59:a9:e0:00:f9:75:1c:c8:c2:3c:37:60:5b:7b: 57:1e:1e:fd:ab:b4:bd:b9:42:dd:a5:c9:a1:f9:3d: f9:eb:10:17:19:91:9f:a9:b5:51:48:6b:a6:7c:3f: 45:a4:84:08:22:ff:8c:94:45:24:86:8d:8e:4a:d9: 31:af:07:c3:76:f5:d0:2a:01:f7:66:56:d2:2d:ed: d8:02:6f:5d:ac:b5:03:25:07:15:48:6a:c6:bd:2c: 5c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:15:F0:CB:C7:7C:73:BA:84:02:F1:2E:87:A7:27:A8:02:12:EC:1A X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:7d:0a:6d:a9:a5:35:0c:ce:82:a4:8b:6f:b9:f7:f2:34:46: 09:d7:94:6b:3b:2d:07:8a:3c:3f:7f:e0:86:0c:43:40:2f:73: 4c:59:68:b8:7c:1c:82:f5:36:41:54:24:65:9e:b2:22:a0:0a: 08:ce:2b:86:07:02:91:50:55:1e:36:06:d0:9d:ad:a5:e2:2c: ad:84:13:bb:15:02:f1:c7:56:a2:30:11:29:6e:6f:58:5e:c8: e6:0f:f4:ed:9f:5a:5b:e2:01:03:ca:10:a6:33:2b:16:4e:75: 56:15:52:be:09:53:60:19:b5:74:1f:9c:df:d5:d2:04:7c:a7: c0:68:90:b2:5a:df:29:06:29:bc:a7:7d:d5:0e:72:f0:ee:2c: d3:bc:4b:f7:1d:de:3b:58:0b:a5:46:88:1f:e8:d6:72:45:fe: f5:f5:38:fc:94:1f:d7:e0:69:71:17:f7:ca:22:d3:f2:f9:3e: 45:66:79:0c:3e:9b:a9:45:5d:e7:a9:71:90:ca:55:74:d9:c8: b2:92:d2:ae:08:08:0b:18:46:26:36:0c:43:32:f2:9b:18:f2: 38:da:d4:de:5b:7b:18:21:ad:82:5c:26:16:3a:de:b8:ae:a0: b0:3d:9e:1a:8a:96:b5:82:59:9d:8c:43:99:5d:ce:8a:f0:84: 47:c1:ec:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUwODA4MjI1MjU2WhcNMjUwODE1MjI1MjU2WjAYMRYwFAYD VQQDEw02ODk2N2ZjOC1lNjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIJ3Tn6aKXxy0ExXNXkx+DhdkNOWBgQGGfuex5cVHURpLw00KPr52c+joWO6 BLr3/7n+Dpf4Ee1RDNfCHM3lOAhhvaQf/6CTzc0+oydZqNHVJo0v8YmXaZXOnJ8m czC1o1J3dZmcb1R1s/Gq2IZX8F8RQ/CzCKoeJ9oOSpT8p0Gdn+c3yTDBHPLBN2lb 9E6FI9S8GFZtqBp8rvmxU/RNuhU2TaGzWangAPl1HMjCPDdgW3tXHh79q7S9uULd pcmh+T356xAXGZGfqbVRSGumfD9FpIQIIv+MlEUkho2OStkxrwfDdvXQKgH3ZlbS Le3YAm9drLUDJQcVSGrGvSxcjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQV8MvH fHO6hALxLoenJ6gCEuwaMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABfQptqaU1DM6CpItvuffyNEYJ15RrOy0Hijw/f+CGDENAL3NMWWi4 fByC9TZBVCRlnrIioAoIziuGBwKRUFUeNgbQna2l4iythBO7FQLxx1aiMBEpbm9Y XsjmD/Ttn1pb4gEDyhCmMysWTnVWFVK+CVNgGbV0H5zf1dIEfKfAaJCyWt8pBim8 p33VDnLw7izTvEv3Hd47WAulRogf6NZyRf719Tj8lB/X4GlxF/fKItPy+T5FZnkM PpupRV3nqXGQylV02ciyktKuCAgLGEYmNgxDMvKbGPI42tTeW3sYIa2CXCYWOt64 rqCwPZ4aipa1glmdjEOZXc6K8IRHwewV -----END CERTIFICATE-----Generated at Sat Aug 9 10:38:43 2025 by rpki-client