$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: PS/W90qgKOtj9mtXBO+mN5Ktxuv9bA7J9Hlmc8AQ+eY= Subject key identifier: 71:02:4D:FA:74:E3:66:99:A4:30:42:5E:5C:0F:2B:34:D6:A6:B5:F9 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 0258 Signing time: Sat 09 Aug 2025 02:21:33 +0000 Manifest this update: Sat 09 Aug 2025 02:21:33 +0000 Manifest next update: Sat 16 Aug 2025 02:21:33 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: JRTkA6m5v7eQRAuRUZ61sjX4zKNLunbhvN1dMUllick=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Aug 9 02:21:33 2025 GMT Not After : Aug 16 02:21:33 2025 GMT Subject: CN=6896b0ad-d37c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6e:c6:05:50:24:b5:00:10:d8:68:74:14:cc: 1c:dc:6d:c7:bc:af:bc:1c:89:30:82:ee:ff:1b:ed: 20:8f:b8:b9:bf:0f:5f:0c:86:ac:47:d9:5b:74:aa: 2e:0d:10:8c:8c:da:57:5e:40:91:d6:e2:5b:b1:8b: 39:cd:08:67:da:9d:38:74:1a:a5:27:5f:08:18:3d: 2c:89:bc:99:48:b5:c7:e1:8a:fa:d2:28:68:b6:82: 13:51:0c:fc:46:da:ec:d1:65:46:b1:9e:34:48:d6: aa:e2:8e:70:09:b0:49:c2:9c:ed:7a:5f:7b:72:e0: f6:ab:5a:4f:bc:44:f1:2e:8d:e7:cd:12:9b:e6:d9: 87:1b:19:52:6c:42:ce:90:59:56:cb:50:02:9e:73: 5c:7f:dc:4f:8b:c9:c0:3b:28:f8:91:3a:d4:43:55: e8:1b:37:95:af:f8:5e:24:cc:42:eb:3f:7b:11:f7: d1:36:d1:5b:fa:9e:f7:48:dc:df:05:67:ab:3f:9c: c3:4c:6f:e5:69:d5:50:ec:6f:cb:f9:f4:a2:57:91: 8f:d4:06:41:dc:09:f6:64:91:67:de:9a:66:1a:f0: 77:44:34:c5:0c:59:08:7a:eb:92:26:71:8b:3c:76: 53:64:24:81:ac:11:bb:49:14:54:78:67:50:2e:ed: 8f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:02:4D:FA:74:E3:66:99:A4:30:42:5E:5C:0F:2B:34:D6:A6:B5:F9 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:1a:24:fa:45:39:8d:8e:62:e0:80:1e:bb:07:8a:7c:ea:90: 38:47:cd:14:4a:6d:f9:41:6d:58:af:75:96:0d:90:a4:5e:68: 2f:ab:55:fe:23:e4:10:a4:6e:50:5d:81:5f:5a:86:c7:84:c4: 11:bd:0c:c2:0e:38:4a:08:99:6d:4c:e3:62:0b:96:02:ff:38: 8e:14:c7:b1:37:5c:04:32:79:ac:c0:ae:51:1e:55:07:7d:c2: 47:c3:2e:2c:52:ee:f9:cc:d1:94:ba:88:c5:d5:d1:d5:c4:8e: dc:64:8c:49:aa:8f:b2:7a:c2:bc:4a:3c:04:d2:51:8f:98:fa: 36:f1:eb:76:b0:ea:c8:9f:d0:cc:d3:c2:50:ae:f7:b3:fc:5e: eb:56:7b:e0:7a:b8:e4:28:06:c0:bd:83:67:66:07:04:97:56: 8b:2a:ce:ce:f0:4f:f2:61:02:6d:4a:db:88:c3:3f:34:6f:8a: b8:b9:05:b2:83:3f:37:3c:d4:94:da:40:67:ad:b6:fc:0d:dc: 8a:11:59:76:bc:36:b6:e8:04:e2:6c:25:32:fa:9d:23:4c:67: 44:46:25:6b:8f:ee:e2:73:5d:98:bd:a9:b8:ca:3b:b4:9d:2b: 41:18:9f:59:4f:73:eb:2e:06:bd:8e:d7:da:8d:4c:33:32:dc: 5a:70:19:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUwODA5MDIyMTMzWhcNMjUwODE2MDIyMTMzWjAYMRYwFAYD VQQDEw02ODk2YjBhZC1kMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr27GBVAktQAQ2Gh0FMwc3G3HvK+8HIkwgu7/G+0gj7i5vw9fDIasR9lbdKou DRCMjNpXXkCR1uJbsYs5zQhn2p04dBqlJ18IGD0sibyZSLXH4Yr60ihotoITUQz8 Rtrs0WVGsZ40SNaq4o5wCbBJwpztel97cuD2q1pPvETxLo3nzRKb5tmHGxlSbELO kFlWy1ACnnNcf9xPi8nAOyj4kTrUQ1XoGzeVr/heJMxC6z97EffRNtFb+p73SNzf BWerP5zDTG/ladVQ7G/L+fSiV5GP1AZB3An2ZJFn3ppmGvB3RDTFDFkIeuuSJnGL PHZTZCSBrBG7SRRUeGdQLu2P7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHECTfp0 42aZpDBCXlwPKzTWprX5MB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDGiT6RTmNjmLggB67B4p86pA4R80USm35QW1Yr3WWDZCkXmgvq1X+ I+QQpG5QXYFfWobHhMQRvQzCDjhKCJltTONiC5YC/ziOFMexN1wEMnmswK5RHlUH fcJHwy4sUu75zNGUuojF1dHVxI7cZIxJqo+yesK8SjwE0lGPmPo28et2sOrIn9DM 08JQrvez/F7rVnvgerjkKAbAvYNnZgcEl1aLKs7O8E/yYQJtStuIwz80b4q4uQWy gz83PNSU2kBnrbb8DdyKEVl2vDa26ATibCUy+p0jTGdERiVrj+7ic12Yvam4yju0 nStBGJ9ZT3PrLga9jtfajUwzMtxacBm2 -----END CERTIFICATE-----Generated at Sun Aug 10 18:54:59 2025 by rpki-client