$ rpki-client -vvf rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft File: 1QTYGQKxg4soKun0XE3D-BeOJO4.mft (raw, json) Hash identifier: 0Xnfc470nu1G4OjDzCkCI5/0BadP1FXBCee9cXrzTCY= Subject key identifier: 99:4E:20:5A:4B:58:06:90:65:6F:CA:E6:DC:AA:6F:0F:64:C1:15:77 Authority key identifier: D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE Certificate issuer: /CN=A913A74D/serialNumber=D504D81902B1838B282AE9F45C4DC3F8178E24EE Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft Manifest number: 0884 Signing time: Fri 08 Aug 2025 20:58:33 +0000 Manifest this update: Fri 08 Aug 2025 20:58:33 +0000 Manifest next update: Fri 15 Aug 2025 20:58:33 +0000 Files and hashes: 1: 1QTYGQKxg4soKun0XE3D-BeOJO4.crl (hash: wXd7nMk83ELBxKGXZgxIOPoJZn1BISoJ01btHVqfLog=) 2: 833D8D9AC72711EA8890F311C4F9AE02.roa (hash: Fp3IoCNith1vGTf69ryDz+R4pr7DX4NONp6q1LMxCoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.crl rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A74D, serialNumber=D504D81902B1838B282AE9F45C4DC3F8178E24EE Validity Not Before: Aug 8 20:58:33 2025 GMT Not After : Aug 15 20:58:33 2025 GMT Subject: CN=689664f9-efe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5a:61:bf:ce:ca:c5:9f:ff:c4:f3:b9:91:a6: af:f6:49:8b:7a:91:e3:ff:71:cc:50:fe:f9:61:30: 01:bd:93:5d:bc:ba:d7:d7:93:43:0f:76:5c:db:a5: b2:3e:bf:b4:4f:6a:09:91:3d:d7:79:66:b8:7e:f9: c8:5c:96:27:d0:87:e6:a8:7c:ad:e8:d7:ae:8b:ac: b5:bb:94:b1:5b:77:70:4b:9f:c4:0e:54:9e:81:0c: ba:6e:b1:8b:50:00:27:1b:93:6b:4e:a7:30:c6:a1: 59:16:2a:a8:22:59:87:87:7f:8a:37:91:14:7a:61: f7:ac:e7:5c:e4:0f:ae:e9:0a:6f:41:74:89:73:5e: 66:a7:8a:1e:87:57:61:b6:ee:00:91:2a:d8:80:3b: df:86:c1:8d:dc:4f:28:ca:0c:0c:40:3a:64:d8:fe: 15:c6:e6:04:ec:02:7f:1d:d9:1f:af:e7:fc:75:54: 22:20:3f:c5:0b:cd:5a:3f:c5:b4:57:26:c7:fe:41: 7d:44:47:d1:3b:f0:7f:49:b7:4d:a1:cd:a8:d8:da: fc:db:5a:d6:3d:fe:af:a6:ee:42:09:cd:1b:87:7a: 70:5d:85:2a:7f:60:12:2e:d9:74:35:91:82:6e:5f: 41:52:65:8e:e0:a7:8a:69:19:16:54:57:6f:a0:ba: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:4E:20:5A:4B:58:06:90:65:6F:CA:E6:DC:AA:6F:0F:64:C1:15:77 X509v3 Authority Key Identifier: keyid:D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:68:10:b3:c8:bb:63:fb:d4:71:9c:78:2d:b5:a7:ad:91:1f: e9:39:24:64:7f:62:29:80:68:83:78:94:6e:f6:04:27:4b:14: 8a:74:3f:fb:7a:5d:89:57:eb:83:b0:7d:d5:ca:8c:ec:07:67: 29:2d:0a:ca:68:8d:75:32:dd:ef:7f:ee:df:a5:3d:45:71:8f: 17:5a:d9:1c:99:62:d6:5a:73:4a:f2:64:b3:f6:8c:38:25:f6: a4:88:f4:7e:77:d5:0b:c2:10:b5:33:9f:9b:cc:8d:8e:0d:df: 58:f9:2c:3f:7c:63:08:d1:ed:72:57:e2:32:f3:99:5c:5d:84: 95:8b:4c:61:cc:cb:a3:6d:5e:40:5a:46:68:05:65:3e:0a:93: 07:c6:1b:d7:b0:19:52:8a:a5:ba:18:e8:b2:e2:b9:3c:74:b2: 67:21:1c:a3:5b:0b:b7:af:51:3e:36:4e:c8:5f:a6:d9:86:e0: 8f:17:88:4b:2c:b4:8f:ba:a3:f4:63:6b:c9:a7:79:1d:07:fe: 91:8b:1f:21:66:e5:5e:54:b4:3d:30:7b:05:05:f5:46:c1:ea: 2f:64:8d:0e:4d:11:9b:c1:b3:00:69:fc:5f:86:25:04:3e:a9: 0e:3a:78:99:62:83:86:6b:28:e6:9e:2f:a4:22:4e:99:46:dc: 3c:a7:13:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3NEQxMTAvBgNVBAUTKEQ1MDREODE5MDJCMTgzOEIyODJBRTlGNDVDNERDM0Y4 MTc4RTI0RUUwHhcNMjUwODA4MjA1ODMzWhcNMjUwODE1MjA1ODMzWjAYMRYwFAYD VQQDEw02ODk2NjRmOS1lZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFphv87KxZ//xPO5kaav9kmLepHj/3HMUP75YTABvZNdvLrX15NDD3Zc26Wy Pr+0T2oJkT3XeWa4fvnIXJYn0IfmqHyt6Neui6y1u5SxW3dwS5/EDlSegQy6brGL UAAnG5NrTqcwxqFZFiqoIlmHh3+KN5EUemH3rOdc5A+u6QpvQXSJc15mp4oeh1dh tu4AkSrYgDvfhsGN3E8oygwMQDpk2P4VxuYE7AJ/Hdkfr+f8dVQiID/FC81aP8W0 VybH/kF9REfRO/B/SbdNoc2o2Nr821rWPf6vpu5CCc0bh3pwXYUqf2ASLtl0NZGC bl9BUmWO4KeKaRkWVFdvoLrvXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlOIFpL WAaQZW/K5tyqbw9kwRV3MB8GA1UdIwQYMBaAFNUE2BkCsYOLKCrp9FxNw/gXjiTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTc0RC82OEExRDU1QUM3 MjYxMUVBOTk1NUU0MTBDNEY5QUUwMi8xUVRZR1FLeGc0c29LdW4wWEUzRC1CZU9K TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRVFlHUUt4ZzRzb0t1bjBYRTNELUJlT0pPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0RC82OEExRDU1QUM3MjYxMUVBOTk1NUU0MTBDNEY5QUUwMi8xUVRZR1FLeGc0 c29LdW4wWEUzRC1CZU9KTzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXaBCzyLtj+9RxnHgttaetkR/pOSRkf2IpgGiDeJRu9gQnSxSKdD/7 el2JV+uDsH3VyozsB2cpLQrKaI11Mt3vf+7fpT1FcY8XWtkcmWLWWnNK8mSz9ow4 JfakiPR+d9ULwhC1M5+bzI2ODd9Y+Sw/fGMI0e1yV+Iy85lcXYSVi0xhzMujbV5A WkZoBWU+CpMHxhvXsBlSiqW6GOiy4rk8dLJnIRyjWwu3r1E+Nk7IX6bZhuCPF4hL LLSPuqP0Y2vJp3kdB/6Rix8hZuVeVLQ9MHsFBfVGweovZI0OTRGbwbMAafxfhiUE PqkOOniZYoOGayjmni+kIk6ZRtw8pxPY -----END CERTIFICATE-----Generated at Sun Aug 10 04:28:49 2025 by rpki-client