$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: uw52pC3mLAwf8/G/tV/nVkx+02vqEE3KZuTvXzyA6sU= Subject key identifier: F0:2E:B6:BE:03:EE:4F:77:A1:68:88:31:E1:29:58:6F:2F:B3:F2:6F Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: D7 Signing time: Thu 07 Aug 2025 06:05:20 +0000 Manifest this update: Thu 07 Aug 2025 06:05:20 +0000 Manifest next update: Thu 14 Aug 2025 06:05:20 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: 7I5L2JaPYUrtCC61KxwM41Y2Rfko73Y3A30EGWMHxns=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Aug 7 06:05:20 2025 GMT Not After : Aug 14 06:05:20 2025 GMT Subject: CN=68944220-0d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:11:13:3c:c0:82:8d:f1:a2:76:cc:55:62:07: 77:65:4d:2b:80:97:67:5b:ab:cd:53:41:41:2e:02: 78:22:c3:f4:2a:08:b1:31:33:52:95:a0:c3:70:a6: 73:03:4f:f4:c0:9a:e2:85:19:47:6c:d3:e4:2e:28: 02:e0:1e:11:cb:77:bb:2c:14:69:fb:19:b6:8c:a8: f8:29:c5:48:11:a3:f0:bb:e8:91:95:7a:2e:12:13: e0:33:8a:e6:0f:56:66:8c:8a:cf:62:e7:06:2f:18: 8a:37:96:01:dc:90:12:59:43:67:15:ef:15:76:9d: d3:ec:5d:bf:eb:a0:cc:b4:53:ef:fd:be:9a:cc:80: 04:f8:9b:b5:30:d7:3e:cc:5d:58:a7:0a:42:f6:90: 30:15:97:e6:51:f0:c1:95:da:db:c5:73:b2:b4:2b: 7c:e9:8b:37:66:d8:e5:2a:0c:20:e8:dc:04:ba:9d: 22:50:89:e6:57:15:76:57:dc:ec:22:60:86:25:e0: 73:45:b5:db:2d:54:a3:21:7e:50:51:60:a9:55:98: 0a:c7:df:78:d7:0c:ee:df:34:a6:96:69:8a:e5:93: b6:1c:17:ee:de:c1:d4:54:1f:38:c2:bc:6c:d4:64: d1:ac:3d:f9:15:8a:35:82:7a:18:8a:58:9c:25:b6: 65:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:2E:B6:BE:03:EE:4F:77:A1:68:88:31:E1:29:58:6F:2F:B3:F2:6F X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:dc:9b:bb:74:7c:da:5c:a1:e1:e1:de:2e:5a:3b:17:ae:13: d5:46:17:36:8e:7a:a2:9f:2d:f7:31:5c:93:8e:90:4d:28:19: 5a:32:3a:fe:b5:a0:cf:f0:92:dc:9d:f8:83:fd:1d:f8:50:7f: 8c:77:d1:0e:68:65:68:7c:39:2c:dc:93:e5:2d:72:dc:36:98: 13:3e:04:52:2f:95:5f:7d:fe:7d:1a:ba:92:97:c7:0f:98:ef: ce:39:67:2e:4b:41:5c:17:06:61:45:db:46:6c:0b:85:9c:82: 59:77:f5:94:4c:71:2e:51:5c:ce:72:b1:7d:fd:b0:32:97:17: d1:de:59:91:5b:5b:5a:25:1c:18:73:8b:9e:f0:4f:f5:22:99: bf:4c:8b:7c:fe:fc:3e:99:9a:fc:e3:14:a3:86:30:81:1f:f5: 8e:a5:23:3a:11:dd:53:59:76:00:dd:d8:ee:7c:d4:b8:a6:77: 52:ab:9a:16:7c:55:53:33:7b:22:03:6e:97:27:92:9b:4e:6d: d9:90:2a:1d:9d:21:24:09:11:8a:f5:b4:3e:43:d5:a2:47:bc: 56:38:d9:25:93:77:d7:4f:69:fd:e8:a0:3a:17:3c:5b:ca:0b: 61:e0:18:ea:57:d7:c2:ff:fa:1f:4f:c7:40:e4:cc:7e:5e:22: 83:55:3c:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwODA3MDYwNTIwWhcNMjUwODE0MDYwNTIwWjAYMRYwFAYD VQQDEw02ODk0NDIyMC0wZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hETPMCCjfGidsxVYgd3ZU0rgJdnW6vNU0FBLgJ4IsP0KgixMTNSlaDDcKZz A0/0wJrihRlHbNPkLigC4B4Ry3e7LBRp+xm2jKj4KcVIEaPwu+iRlXouEhPgM4rm D1ZmjIrPYucGLxiKN5YB3JASWUNnFe8Vdp3T7F2/66DMtFPv/b6azIAE+Ju1MNc+ zF1YpwpC9pAwFZfmUfDBldrbxXOytCt86Ys3ZtjlKgwg6NwEup0iUInmVxV2V9zs ImCGJeBzRbXbLVSjIX5QUWCpVZgKx9941wzu3zSmlmmK5ZO2HBfu3sHUVB84wrxs 1GTRrD35FYo1gnoYilicJbZlwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAutr4D 7k93oWiIMeEpWG8vs/JvMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR3Ju7dHzaXKHh4d4uWjsXrhPVRhc2jnqiny33MVyTjpBNKBlaMjr+ taDP8JLcnfiD/R34UH+Md9EOaGVofDks3JPlLXLcNpgTPgRSL5Vfff59GrqSl8cP mO/OOWcuS0FcFwZhRdtGbAuFnIJZd/WUTHEuUVzOcrF9/bAylxfR3lmRW1taJRwY c4ue8E/1Ipm/TIt8/vw+mZr84xSjhjCBH/WOpSM6Ed1TWXYA3djufNS4pndSq5oW fFVTM3siA26XJ5KbTm3ZkCodnSEkCRGK9bQ+Q9WiR7xWONklk3fXT2n96KA6Fzxb ygth4BjqV9fC//ofT8dA5Mx+XiKDVTwc -----END CERTIFICATE-----Generated at Sat Aug 9 02:52:00 2025 by rpki-client