$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: uOVpWWuDIMguSRnwyV6vWgxGi1OTnbFpOflptf7PAd4= Subject key identifier: DE:3D:87:AC:71:03:D9:9E:FE:76:26:C8:AA:B9:ED:5F:81:59:6B:B0 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 6E Signing time: Sat 09 Aug 2025 07:23:16 +0000 Manifest this update: Sat 09 Aug 2025 07:23:15 +0000 Manifest next update: Sat 16 Aug 2025 07:23:15 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: B1dcjgh5ZchQgNvzlbYmyLmdGJPzcghQKNcEz2culnU=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Aug 9 07:23:15 2025 GMT Not After : Aug 16 07:23:15 2025 GMT Subject: CN=6896f763-e109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9a:b3:60:ca:07:f3:de:a2:78:83:68:b9:3e: fc:68:c5:8a:e3:46:db:29:e8:1c:d5:b3:9d:fa:fc: cc:96:40:d3:7b:30:61:fd:fa:a0:16:29:f1:e1:3a: 6d:8d:1a:f7:2a:82:7a:7b:c0:0b:54:e1:2e:71:dd: 37:3d:86:30:31:96:81:83:d5:77:a5:6d:b8:a3:f8: 05:10:0f:0a:3e:f8:56:ef:de:ab:a4:ba:16:05:71: df:27:27:48:fc:49:d6:ef:89:98:fd:5d:24:83:ae: ed:49:fb:90:82:53:b0:3b:49:73:5b:09:86:77:ae: 58:0d:da:0c:cd:e8:20:ac:c7:ba:8b:09:a4:07:be: 27:17:9a:77:4a:6f:83:63:7d:8d:fb:5f:25:5c:55: b3:9a:41:46:a4:c1:4a:41:ec:0c:21:4b:51:14:eb: 5e:1c:79:ca:b3:c3:27:db:89:39:a5:e8:fd:f2:01: 80:72:cf:8c:1b:99:ea:75:2c:58:4d:58:dc:1c:0b: 88:9a:7f:db:0c:8b:d6:80:6a:1f:95:33:22:56:22: b3:6e:e4:b8:28:ec:3d:ea:38:75:06:be:26:48:0c: 5b:2d:4c:ef:b3:9c:be:16:28:57:07:99:26:20:05: 3b:dc:ea:2f:bf:c0:30:2c:d2:fd:cf:88:ca:60:ea: 88:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3D:87:AC:71:03:D9:9E:FE:76:26:C8:AA:B9:ED:5F:81:59:6B:B0 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:6f:3d:78:ee:65:49:d0:72:01:73:69:eb:4a:03:46:5d:f9: 0a:24:c0:d2:82:b4:dc:e7:0f:1a:37:5d:0d:b4:2b:ab:49:93: fa:2d:45:1b:22:00:bc:59:02:2f:4e:b1:a1:a4:74:33:18:c7: f2:64:f5:0d:da:87:4b:16:57:81:79:41:16:e1:04:0d:8b:60: 7c:12:20:3d:4e:5a:6d:1d:40:3e:cb:cc:93:8b:4d:4a:ee:07: 99:51:0e:81:61:c4:ee:23:87:cb:77:ad:b1:10:9b:69:6e:53: 71:b7:09:cf:9a:40:93:3e:91:8e:4c:64:f3:17:89:34:56:41: e3:c2:9e:d5:a4:a9:48:a3:e9:69:30:c4:b4:ff:21:78:f9:e8: 33:c8:56:53:95:b6:f8:38:e1:ba:92:a2:7f:85:5a:d4:b9:67: b3:36:ee:7e:2e:d7:97:ee:87:4a:ce:2f:b2:3e:64:67:88:f1: ab:5f:35:a2:22:f6:af:c5:c1:70:aa:5c:98:5f:d4:a3:63:ef: 3b:25:7d:5b:fe:3e:e8:8e:18:c2:bd:59:cc:85:99:10:b3:67: b2:18:77:9a:19:ee:bb:be:d6:1d:7b:ab:f4:fb:5d:20:68:43: af:fd:a4:81:f7:12:b1:a2:bb:99:51:4c:70:bb:05:ff:f6:df: ea:de:c5:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTA4MDkwNzIzMTVaFw0yNTA4MTYwNzIzMTVaMBgxFjAUBgNV BAMTDTY4OTZmNzYzLWUxMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+mrNgygfz3qJ4g2i5PvxoxYrjRtsp6BzVs536/MyWQNN7MGH9+qAWKfHhOm2N Gvcqgnp7wAtU4S5x3Tc9hjAxloGD1Xelbbij+AUQDwo++Fbv3qukuhYFcd8nJ0j8 SdbviZj9XSSDru1J+5CCU7A7SXNbCYZ3rlgN2gzN6CCsx7qLCaQHvicXmndKb4Nj fY37XyVcVbOaQUakwUpB7AwhS1EU614cecqzwyfbiTml6P3yAYByz4wbmep1LFhN WNwcC4iaf9sMi9aAah+VMyJWIrNu5Lgo7D3qOHUGviZIDFstTO+znL4WKFcHmSYg BTvc6i+/wDAs0v3PiMpg6oi9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3j2HrHED 2Z7+dibIqrntX4FZa7AwHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALxvPXjuZUnQcgFzaetKA0Zd+QokwNKCtNznDxo3XQ20K6tJk/otRRsi ALxZAi9OsaGkdDMYx/Jk9Q3ah0sWV4F5QRbhBA2LYHwSID1OWm0dQD7LzJOLTUru B5lRDoFhxO4jh8t3rbEQm2luU3G3Cc+aQJM+kY5MZPMXiTRWQePCntWkqUij6Wkw xLT/IXj56DPIVlOVtvg44bqSon+FWtS5Z7M27n4u15fuh0rOL7I+ZGeI8atfNaIi 9q/FwXCqXJhf1KNj7zslfVv+PuiOGMK9WcyFmRCzZ7IYd5oZ7ru+1h17q/T7XSBo Q6/9pIH3ErGiu5lRTHC7Bf/23+rexWs= -----END CERTIFICATE-----Generated at Sun Aug 10 19:00:48 2025 by rpki-client