$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft File: QNg3fKpabquREz6WLv9-IbURPbk.mft (raw, json) Hash identifier: rgtcfEfp0BWQDYGtjvkyZDxmE0qB4YZ0Vum8amzePjg= Subject key identifier: 7A:71:27:65:6F:5A:37:1C:EB:1B:2E:48:E6:C1:6F:77:D1:03:CA:0E Authority key identifier: 40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 Certificate issuer: /CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft Manifest number: 0247 Signing time: Sat 09 Aug 2025 02:24:15 +0000 Manifest this update: Sat 09 Aug 2025 02:24:15 +0000 Manifest next update: Sat 16 Aug 2025 02:24:15 +0000 Files and hashes: 1: QNg3fKpabquREz6WLv9-IbURPbk.crl (hash: 8q0+aHWKyvWGbfbRMcP5jwpKnVYhNk3ZDX5U573NmvI=) 2: 5E24BEAADA7C11ED8156D867C4F9AE02.roa (hash: ktK9vCE7vIpwa3GinrPFia6DHxl96KzteCFThN1eca8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D4C, serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Validity Not Before: Aug 9 02:24:15 2025 GMT Not After : Aug 16 02:24:15 2025 GMT Subject: CN=6896b14f-8457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d5:02:81:89:6a:36:a5:15:f1:f4:bd:8d:bb: 7e:65:92:04:08:09:6d:e5:eb:d3:bc:33:ff:e8:74: 47:16:4e:0f:c6:b6:e5:a8:a7:d6:f0:6f:49:d4:c6: ec:fa:67:2b:75:c6:d5:72:17:8d:4b:d5:28:63:63: 2f:50:e0:f2:5f:74:55:2b:1a:b6:64:26:46:89:81: a0:87:9d:07:97:4d:32:43:7f:42:01:cf:80:a4:1b: 76:bf:89:48:01:ca:53:85:be:c8:73:20:53:7b:7c: 8b:69:67:c4:24:d2:87:9a:9b:fc:17:e8:16:9d:d8: a4:be:d4:80:69:84:d4:e6:0e:7a:67:91:a1:40:bc: 5a:30:b3:be:a9:22:e3:89:77:17:69:95:d6:92:a5: 8d:67:4f:af:40:7a:49:bb:45:52:70:69:a0:6d:83: 5c:4e:7a:e3:dc:69:11:ed:85:9e:0b:46:9b:c9:4b: ec:e2:23:fe:e3:eb:15:72:ad:b6:ce:0d:54:87:ee: 60:08:d2:00:a1:3d:49:e5:16:cc:58:73:2a:a7:f0: b2:ee:d0:90:11:6c:8c:83:73:30:16:1d:90:13:82: bd:59:2d:d7:72:84:aa:b6:1b:71:c9:74:56:9d:72: ae:c1:45:7f:62:f9:ed:2c:84:06:87:dd:70:53:a6: ba:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:71:27:65:6F:5A:37:1C:EB:1B:2E:48:E6:C1:6F:77:D1:03:CA:0E X509v3 Authority Key Identifier: keyid:40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:b7:ff:7f:6c:0d:a5:e9:20:08:de:f2:9f:4b:a2:b1:5b:2b: ac:c0:b3:e8:6f:9c:14:e9:70:5a:22:a4:08:27:d3:0e:21:82: f5:31:4a:42:61:f6:50:0a:e1:1d:86:1a:31:c0:e7:a8:71:6e: 94:76:80:d4:16:9b:de:3b:a8:65:71:b5:7f:c7:13:54:d9:b1: df:d8:40:5f:69:a4:09:be:75:15:d5:a5:56:73:5a:ff:a0:00: 86:07:86:4c:1c:c8:f5:ac:2e:24:ba:f9:00:00:d4:7e:e7:22: 5e:c7:4e:43:d3:3a:de:15:28:4a:68:8f:90:de:e5:e5:de:d9: dd:11:00:88:58:bf:d6:98:7f:62:4f:0c:b3:2a:27:85:7e:37: 1b:38:0a:5e:0e:34:1f:6b:27:92:91:a3:21:2f:3c:69:f8:1c: a4:c9:b7:f5:a7:c6:e9:38:70:22:43:49:a5:d0:f3:3e:09:93: 63:87:95:a6:eb:a5:b2:f4:e4:51:4b:2f:ce:52:c9:ec:2b:61: fe:f5:79:28:0a:45:a9:5b:7b:63:f2:6a:4f:00:ee:f7:d5:fa: 57:6f:94:10:92:4c:4b:8f:39:3b:8b:0f:fa:00:ad:b6:f3:4b: 34:c5:af:8e:e8:0c:64:e6:76:a9:b8:64:87:59:66:66:12:7e: 22:da:7a:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVENEMxMTAvBgNVBAUTKDQwRDgzNzdDQUE1QTZFQUI5MTEzM0U5NjJFRkY3RTIx QjUxMTNEQjkwHhcNMjUwODA5MDIyNDE1WhcNMjUwODE2MDIyNDE1WjAYMRYwFAYD VQQDEw02ODk2YjE0Zi04NDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9UCgYlqNqUV8fS9jbt+ZZIECAlt5evTvDP/6HRHFk4PxrblqKfW8G9J1Mbs +mcrdcbVcheNS9UoY2MvUODyX3RVKxq2ZCZGiYGgh50Hl00yQ39CAc+ApBt2v4lI AcpThb7IcyBTe3yLaWfEJNKHmpv8F+gWndikvtSAaYTU5g56Z5GhQLxaMLO+qSLj iXcXaZXWkqWNZ0+vQHpJu0VScGmgbYNcTnrj3GkR7YWeC0abyUvs4iP+4+sVcq22 zg1Uh+5gCNIAoT1J5RbMWHMqp/Cy7tCQEWyMg3MwFh2QE4K9WS3XcoSqthtxyXRW nXKuwUV/YvntLIQGh91wU6a6GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpxJ2Vv Wjcc6xsuSObBb3fRA8oOMB8GA1UdIwQYMBaAFEDYN3yqWm6rkRM+li7/fiG1ET25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQ0Qy9GNDIyRkQxMjMy NTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJxdVJFejZXTHY5LUliVVJQ YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOZzNmS3BhYnF1UkV6NldMdjktSWJVUlBiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQ0Qy9GNDIyRkQxMjMyNTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJx dVJFejZXTHY5LUliVVJQYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvt/9/bA2l6SAI3vKfS6KxWyuswLPob5wU6XBaIqQIJ9MOIYL1MUpC YfZQCuEdhhoxwOeocW6UdoDUFpveO6hlcbV/xxNU2bHf2EBfaaQJvnUV1aVWc1r/ oACGB4ZMHMj1rC4kuvkAANR+5yJex05D0zreFShKaI+Q3uXl3tndEQCIWL/WmH9i TwyzKieFfjcbOApeDjQfayeSkaMhLzxp+Bykybf1p8bpOHAiQ0ml0PM+CZNjh5Wm 66Wy9ORRSy/OUsnsK2H+9XkoCkWpW3tj8mpPAO731fpXb5QQkkxLjzk7iw/6AK22 80s0xa+O6Axk5napuGSHWWZmEn4i2npM -----END CERTIFICATE-----Generated at Sun Aug 10 13:58:49 2025 by rpki-client