$ rpki-client -vvf rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft File: q0w-Na78VbW6NYykBu2WJqQiD9A.mft (raw, json) Hash identifier: /RE7wJypeNf20xxYIKDC9nIyBKM9u1rbprSmAiyxQA0= Subject key identifier: D6:89:53:E6:13:FF:24:5C:71:01:78:FB:C0:AF:20:C3:27:BF:9A:7C Authority key identifier: AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 Certificate issuer: /CN=A914A553/serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Certificate serial: 0ADB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft Manifest number: 0ACD Signing time: Sun 10 Aug 2025 19:30:34 +0000 Manifest this update: Sun 10 Aug 2025 19:30:33 +0000 Manifest next update: Sun 17 Aug 2025 19:30:33 +0000 Files and hashes: 1: q0w-Na78VbW6NYykBu2WJqQiD9A.crl (hash: Wjf0ldbF5/ID6wsGoxzLjl1CFdnGHaXQNeK4SbONa80=) 2: 7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa (hash: kRz4OHfhPxe5EPvefvMi3Xao6izuUxMq6U5mJJMpf2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2779 (0xadb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A553, serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Validity Not Before: Aug 10 19:30:33 2025 GMT Not After : Aug 17 19:30:33 2025 GMT Subject: CN=6898f359-9c86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:09:99:0e:fb:78:02:1f:2f:f6:dd:8f:06:21: 1d:4b:f5:8d:66:08:2b:c0:d8:c5:53:3a:4b:5b:49: 1d:14:5a:6d:5c:f9:75:ae:cc:85:63:2a:f1:7f:eb: 6e:09:e8:14:d1:3c:25:c2:60:d5:c0:9b:4c:e0:57: 7a:f8:ae:78:6e:b5:b3:3e:ea:11:5e:5e:69:2f:fb: 05:a6:eb:38:c8:fe:cf:4d:ce:d7:83:8d:47:6f:3c: 1e:97:0c:22:9e:46:be:16:6e:6e:28:9e:a3:4f:54: be:ad:3c:fb:79:03:0a:d2:ee:1c:ec:a2:5c:7f:53: f7:40:ad:69:93:c3:19:82:20:17:62:52:98:8b:30: 15:5a:01:a7:10:d0:fe:0c:54:3a:cc:3e:d7:e5:5c: ed:47:22:fc:0a:e3:7b:41:0b:1f:9c:fa:12:08:68: ef:89:d9:ab:7b:2c:fb:79:ec:86:bb:7c:7b:ae:ee: 62:a4:81:86:f6:d8:57:fb:70:39:ab:0a:42:08:af: 5e:0f:37:7a:e7:0f:ce:40:f5:da:44:f1:ad:9b:e1: 56:8d:ae:3f:c3:80:93:08:75:54:0b:07:6e:e7:29: 23:7c:5b:99:de:9c:75:a3:05:04:69:05:bb:e3:75: b1:27:1e:b9:14:f4:45:c0:00:58:ae:9b:a0:f8:0f: 75:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:89:53:E6:13:FF:24:5C:71:01:78:FB:C0:AF:20:C3:27:BF:9A:7C X509v3 Authority Key Identifier: keyid:AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:78:bc:f8:e7:1f:28:e6:b7:ee:44:66:01:9e:bd:e1:b8:52: c4:87:23:33:33:a2:45:97:08:cf:b6:aa:81:1d:d8:60:3e:69: f9:8f:ef:95:9f:24:55:ac:9b:fa:4d:f6:66:a1:e2:3f:46:d1: 40:d6:9a:fe:64:fc:8d:3f:93:c4:22:47:2f:c3:9f:2f:25:21: ab:6f:95:81:b8:d8:04:4e:33:18:eb:df:f4:47:e0:18:9e:bd: 2e:5d:75:ba:44:5c:2c:52:10:e6:65:10:5e:e4:a7:25:f5:a2: 0b:ae:2a:b7:7d:5f:6b:71:88:34:ef:58:16:4d:e6:ef:19:df: cd:8b:c4:7a:39:b2:d7:ec:fc:af:11:74:88:90:45:8b:43:6b: be:9a:b4:a0:db:49:f6:bd:d8:fc:8e:ee:6a:79:0f:33:06:80: 0f:43:5c:36:ba:d4:3a:9c:99:0a:0c:49:19:f6:fe:2c:dc:1b: 26:22:fa:24:46:a5:56:d9:34:5d:70:29:8d:b9:b3:05:97:8e: 9d:b5:6b:23:56:aa:07:4c:6e:a8:e6:7c:67:cb:44:43:dd:c1: a8:29:5d:0b:e4:44:6e:f5:4b:a4:fe:db:e5:f1:9a:9b:7e:81: db:bb:59:dd:e8:18:a2:8c:a3:23:a0:75:4e:ea:e7:5b:38:b4: d7:d7:f6:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1NTMxMTAvBgNVBAUTKEFCNEMzRTM1QUVGQzU1QjVCQTM1OENBNDA2RUQ5NjI2 QTQyMjBGRDAwHhcNMjUwODEwMTkzMDMzWhcNMjUwODE3MTkzMDMzWjAYMRYwFAYD VQQDEw02ODk4ZjM1OS05Yzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQmZDvt4Ah8v9t2PBiEdS/WNZggrwNjFUzpLW0kdFFptXPl1rsyFYyrxf+tu CegU0TwlwmDVwJtM4Fd6+K54brWzPuoRXl5pL/sFpus4yP7PTc7Xg41Hbzwelwwi nka+Fm5uKJ6jT1S+rTz7eQMK0u4c7KJcf1P3QK1pk8MZgiAXYlKYizAVWgGnEND+ DFQ6zD7X5VztRyL8CuN7QQsfnPoSCGjvidmreyz7eeyGu3x7ru5ipIGG9thX+3A5 qwpCCK9eDzd65w/OQPXaRPGtm+FWja4/w4CTCHVUCwdu5ykjfFuZ3px1owUEaQW7 43WxJx65FPRFwABYrpug+A91LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaJU+YT /yRccQF4+8CvIMMnv5p8MB8GA1UdIwQYMBaAFKtMPjWu/FW1ujWMpAbtliakIg/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU1My85NUM4QTNFNDU3 QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZiVzZOWXlrQnUyV0pxUWlE OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Ewdy1OYTc4VmJXNk5ZeWtCdTJXSnFRaUQ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTU1My85NUM4QTNFNDU3QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZi VzZOWXlrQnUyV0pxUWlEOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWeLz45x8o5rfuRGYBnr3huFLEhyMzM6JFlwjPtqqBHdhgPmn5j++V nyRVrJv6TfZmoeI/RtFA1pr+ZPyNP5PEIkcvw58vJSGrb5WBuNgETjMY69/0R+AY nr0uXXW6RFwsUhDmZRBe5Kcl9aILriq3fV9rcYg071gWTebvGd/Ni8R6ObLX7Pyv EXSIkEWLQ2u+mrSg20n2vdj8ju5qeQ8zBoAPQ1w2utQ6nJkKDEkZ9v4s3BsmIvok RqVW2TRdcCmNubMFl46dtWsjVqoHTG6o5nxny0RD3cGoKV0L5ERu9Uuk/tvl8Zqb foHbu1nd6BiijKMjoHVO6udbOLTX1/ae -----END CERTIFICATE-----Generated at Sun Aug 10 21:07:55 2025 by rpki-client