$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: ainnFpZsfwoAMB8io11iVPdCKdnlcKyS63ntyl0YR9Y= Subject key identifier: F4:4C:7A:7A:57:BF:F3:9A:AE:3B:C0:0C:3E:A9:9D:B4:89:0D:DC:6C Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 07F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 07F2 Signing time: Tue 12 Aug 2025 21:16:54 +0000 Manifest this update: Tue 12 Aug 2025 21:16:54 +0000 Manifest next update: Tue 19 Aug 2025 21:16:54 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: dPuzH2FELr2SMVaIBgvMDiq396z+MNOI6Sb6kUWPuw0=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: Xm1qupXC//oXbz29OwYv/8QXpHuz3gLyZUWmRlVaUYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Aug 12 21:16:54 2025 GMT Not After : Aug 19 21:16:54 2025 GMT Subject: CN=689baf46-476c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:58:89:3a:e4:c8:93:71:ba:b9:a0:11:8a:6f: 65:c7:0e:4b:0a:56:3e:93:d7:81:0f:0e:9f:be:29: 04:cf:5e:84:08:0e:ce:1b:b1:52:8a:73:96:b5:d6: 5b:fb:0f:62:ba:c5:58:00:60:d6:d6:25:b2:fe:33: a6:ec:ca:c8:dd:5d:93:03:44:00:4b:29:ad:68:94: 23:34:d5:29:28:e0:d0:49:00:0c:87:e7:42:94:fa: 2a:14:04:36:2c:97:95:82:f3:b5:a1:75:26:bb:b4: 9f:16:37:98:c1:b8:d2:7a:d2:24:b4:32:71:ae:82: f2:19:ab:96:55:c7:a1:fb:bb:f2:d7:38:5f:1a:ad: 06:e8:d3:77:69:d8:a7:52:46:19:4b:40:27:17:d3: b9:50:ce:b2:ef:e2:22:c2:ec:21:a6:ad:d2:f3:d7: 09:11:2a:bb:c6:b0:b5:df:75:61:e3:ee:64:84:6e: 4c:9e:8a:1d:42:db:a4:4a:7c:d1:f7:79:dd:3a:c7: 2d:26:5c:02:80:da:07:52:c9:25:36:de:63:20:04: 32:47:4f:38:86:f6:46:6b:74:64:66:1d:75:b6:6b: 3a:7b:4f:a4:25:72:ae:6f:3d:c9:c3:76:f0:01:62: 63:6f:c2:1f:aa:4b:c2:f6:d8:b6:d7:17:f0:40:1a: 64:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4C:7A:7A:57:BF:F3:9A:AE:3B:C0:0C:3E:A9:9D:B4:89:0D:DC:6C X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:27:ff:63:9f:1f:ca:85:e8:63:be:94:f0:18:6d:8d:cd:41: 60:3b:72:95:76:b7:4c:c9:11:57:18:6d:b2:cb:3d:1a:15:e5: 1a:bc:27:1c:d0:95:8d:60:81:52:3e:02:ea:04:23:6b:fb:36: a4:72:f5:8f:7e:8a:4f:98:e9:24:89:3d:17:89:af:79:13:03: fb:9f:d5:5a:ac:8f:7b:54:d3:87:04:e2:b9:ab:a5:6c:60:7d: 3c:97:1a:51:50:14:58:48:d4:07:ed:74:da:57:13:ec:82:b5: b6:01:bb:cd:f1:57:bf:ea:41:da:f4:2b:23:20:95:30:e3:62: ac:5d:17:4a:6a:45:eb:1c:9e:b4:fa:ee:18:2d:d1:0f:b2:c0: d7:94:57:96:ea:f2:ff:6e:01:0c:ff:cd:9a:f5:36:59:97:3c: 1c:a8:d3:7a:b2:df:31:7f:50:48:ff:ea:2d:a8:5c:ed:8c:72: 82:fc:1c:a0:a3:5f:5a:fd:f1:c3:d4:0f:6c:af:7b:26:29:d2: 47:5f:19:d9:cb:bd:55:ad:d6:c2:16:c8:91:56:69:12:4d:f4: 6c:06:de:98:e2:a8:58:8e:a8:70:9b:ae:b6:06:f0:5f:4b:30: 24:d3:ba:fd:04:23:05:f3:67:79:52:cc:9a:c7:90:80:63:e2: fd:63:22:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjUwODEyMjExNjU0WhcNMjUwODE5MjExNjU0WjAYMRYwFAYD VQQDEw02ODliYWY0Ni00NzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ViJOuTIk3G6uaARim9lxw5LClY+k9eBDw6fvikEz16ECA7OG7FSinOWtdZb +w9iusVYAGDW1iWy/jOm7MrI3V2TA0QASymtaJQjNNUpKODQSQAMh+dClPoqFAQ2 LJeVgvO1oXUmu7SfFjeYwbjSetIktDJxroLyGauWVceh+7vy1zhfGq0G6NN3adin UkYZS0AnF9O5UM6y7+Iiwuwhpq3S89cJESq7xrC133Vh4+5khG5MnoodQtukSnzR 93ndOsctJlwCgNoHUsklNt5jIAQyR084hvZGa3RkZh11tms6e0+kJXKubz3Jw3bw AWJjb8IfqkvC9ti21xfwQBpkHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRMenpX v/OarjvADD6pnbSJDdxsMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrJ/9jnx/KhehjvpTwGG2NzUFgO3KVdrdMyRFXGG2yyz0aFeUavCcc 0JWNYIFSPgLqBCNr+zakcvWPfopPmOkkiT0Xia95EwP7n9VarI97VNOHBOK5q6Vs YH08lxpRUBRYSNQH7XTaVxPsgrW2AbvN8Ve/6kHa9CsjIJUw42KsXRdKakXrHJ60 +u4YLdEPssDXlFeW6vL/bgEM/82a9TZZlzwcqNN6st8xf1BI/+otqFztjHKC/Byg o19a/fHD1A9sr3smKdJHXxnZy71VrdbCFsiRVmkSTfRsBt6Y4qhYjqhwm662BvBf SzAk07r9BCMF82d5Usyax5CAY+L9YyKc -----END CERTIFICATE-----Generated at Wed Aug 13 08:53:49 2025 by rpki-client