$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft File: qJaxcL8NiHI_NsesIIeFSqKEvXE.mft (raw, json) Hash identifier: y+3blXAp7UlmbDYgh/c6mYVFhkzs1IhThawM/fkZ7SY= Subject key identifier: 96:9A:4C:6E:66:B9:E7:81:03:2F:1F:25:EF:C2:8B:98:5F:E3:59:FD Authority key identifier: A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 Certificate issuer: /CN=A913DF3B/serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Certificate serial: 056F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft Manifest number: 056A Signing time: Fri 08 Aug 2025 23:45:57 +0000 Manifest this update: Fri 08 Aug 2025 23:45:57 +0000 Manifest next update: Fri 15 Aug 2025 23:45:57 +0000 Files and hashes: 1: qJaxcL8NiHI_NsesIIeFSqKEvXE.crl (hash: Q7J/bFI9/TwxY6mhsyro4+jKmyYVyLToFHoueblTdLY=) 2: 8D7E9B7EF03D11EB804DF61FC4F9AE02.roa (hash: K0g8xWII4g0z2vzjoBYClHiJj2EJk6kk9zBp36ie6T4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF3B, serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Validity Not Before: Aug 8 23:45:57 2025 GMT Not After : Aug 15 23:45:57 2025 GMT Subject: CN=68968c35-66ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7e:e1:02:df:f9:df:37:de:85:9c:ad:33:ae: 28:bb:2d:be:81:a3:59:77:26:ee:28:14:68:5b:e6: 2d:d1:0e:b9:68:81:cd:f8:4c:1b:a8:ae:ca:dd:16: 4c:3a:bb:7c:f1:0b:b4:f1:26:72:80:db:6f:d2:04: de:b6:00:1d:82:d7:a5:74:56:88:ee:83:a8:c4:9c: 96:05:db:5b:7e:b8:f3:83:da:3d:4c:10:80:fb:77: 83:a9:46:a4:59:3f:f3:ca:5b:9d:79:e8:b6:50:30: 96:31:91:b5:af:58:e2:d3:40:72:f1:b3:9e:a0:4d: d4:ea:fe:72:9d:5c:c2:d8:8b:52:08:1a:9d:e5:99: 3e:1d:59:de:60:42:6b:d6:55:a6:a1:a3:7e:8b:47: 5d:53:cd:dd:d0:2f:3e:a2:2a:2b:7a:d3:c4:17:49: aa:5c:e2:e7:ef:4e:3b:46:34:94:42:98:6d:15:ff: 74:de:7e:ce:e4:0a:de:b0:12:29:8a:15:36:7f:f5: be:36:a0:cd:8b:28:ac:eb:05:fd:e4:90:72:f4:a1: 52:85:3c:fa:93:d0:9e:e8:66:c7:b6:bb:29:7e:0c: d3:db:bd:e7:ed:c6:33:07:bf:ea:65:7b:69:41:4b: 1f:39:2f:0f:4e:f5:41:c2:19:a6:e4:b1:d8:36:53: 29:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9A:4C:6E:66:B9:E7:81:03:2F:1F:25:EF:C2:8B:98:5F:E3:59:FD X509v3 Authority Key Identifier: keyid:A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:6c:79:65:d2:c2:8d:87:4d:3f:30:f0:03:4b:b5:8f:92:6a: d3:a1:5d:c6:63:2b:54:b6:56:57:5d:96:e9:6b:9e:81:bc:1b: bb:88:a4:43:f4:b6:a0:a1:82:4e:c6:1a:b7:ee:5a:32:b7:ee: 98:0c:e8:43:63:df:f5:e4:82:3d:84:7f:9c:5b:77:d0:19:42: b6:b9:c8:56:e4:5b:01:3f:13:ac:6f:9b:ba:75:67:6d:eb:6f: 6a:54:87:99:c5:9e:1b:2a:b2:b3:df:23:63:75:52:63:07:78: a8:9e:90:52:56:f6:f6:8a:64:d4:05:3d:d9:5b:e8:3f:d7:c9: a4:72:c1:27:01:cf:06:30:0d:1e:41:bc:1b:dd:5f:4c:42:fa: d5:67:a7:d2:37:05:da:3a:e2:33:36:9f:0e:53:ee:92:4d:c8: 66:6f:31:64:6e:57:13:01:9a:16:a9:05:52:e5:c8:3a:c5:91: e2:e8:36:fc:90:22:66:91:a8:34:3e:eb:1e:db:9c:16:59:82: 5c:88:87:d9:de:d4:b3:f7:e7:1f:08:d3:8b:75:76:b3:c4:3e: 3d:e8:c6:e9:68:af:c5:fa:1c:fc:28:47:ea:a4:03:95:84:e0: 3b:79:2b:7c:39:93:e5:71:a6:4d:d8:17:10:f0:c7:00:a5:f6: 04:df:e4:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGM0IxMTAvBgNVBAUTKEE4OTZCMTcwQkYwRDg4NzIzRjM2QzdBQzIwODc4NTRB QTI4NEJENzEwHhcNMjUwODA4MjM0NTU3WhcNMjUwODE1MjM0NTU3WjAYMRYwFAYD VQQDEw02ODk2OGMzNS02NmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyn7hAt/53zfehZytM64ouy2+gaNZdybuKBRoW+Yt0Q65aIHN+EwbqK7K3RZM Ort88Qu08SZygNtv0gTetgAdgteldFaI7oOoxJyWBdtbfrjzg9o9TBCA+3eDqUak WT/zyludeei2UDCWMZG1r1ji00By8bOeoE3U6v5ynVzC2ItSCBqd5Zk+HVneYEJr 1lWmoaN+i0ddU83d0C8+oioretPEF0mqXOLn7047RjSUQphtFf903n7O5AresBIp ihU2f/W+NqDNiyis6wX95JBy9KFShTz6k9Ce6GbHtrspfgzT273n7cYzB7/qZXtp QUsfOS8PTvVBwhmm5LHYNlMp+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaaTG5m ueeBAy8fJe/Ci5hf41n9MB8GA1UdIwQYMBaAFKiWsXC/DYhyPzbHrCCHhUqihL1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYzQi9DREJBODEyRUYw M0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlISV9Oc2VzSUllRlNxS0V2 WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKYXhjTDhOaUhJX05zZXNJSWVGU3FLRXZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REYzQi9DREJBODEyRUYwM0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlI SV9Oc2VzSUllRlNxS0V2WEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtbHll0sKNh00/MPADS7WPkmrToV3GYytUtlZXXZbpa56BvBu7iKRD 9LagoYJOxhq37loyt+6YDOhDY9/15II9hH+cW3fQGUK2uchW5FsBPxOsb5u6dWdt 629qVIeZxZ4bKrKz3yNjdVJjB3ionpBSVvb2imTUBT3ZW+g/18mkcsEnAc8GMA0e Qbwb3V9MQvrVZ6fSNwXaOuIzNp8OU+6STchmbzFkblcTAZoWqQVS5cg6xZHi6Db8 kCJmkag0Puse25wWWYJciIfZ3tSz9+cfCNOLdXazxD496MbpaK/F+hz8KEfqpAOV hOA7eSt8OZPlcaZN2BcQ8McApfYE3+S5 -----END CERTIFICATE-----Generated at Sat Aug 9 20:51:57 2025 by rpki-client