$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft File: Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft (raw, json) Hash identifier: liMTKFiGfRezlP3UFdxQ4RvBX6C0wQ/3e2Xc4gY03W8= Subject key identifier: FA:4C:2A:04:71:B1:FC:3D:2E:1D:8A:BA:48:F4:85:BF:EA:B5:2D:B1 Authority key identifier: 42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 Certificate issuer: /CN=A914EAE4/serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Certificate serial: 1B35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft Manifest number: 1B31 Signing time: Fri 08 Aug 2025 16:27:22 +0000 Manifest this update: Fri 08 Aug 2025 16:27:21 +0000 Manifest next update: Fri 15 Aug 2025 16:27:21 +0000 Files and hashes: 1: Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl (hash: LyitaZjvb1as5yJfVIw0VLH5rQ2r+J4cF+eG5n00xlc=) 2: 7E1ADD74E00E11EDA7E1B640C4F9AE02.roa (hash: l8rbVcrxpBL4K1nr5JzCpQg12eUyxOnsIOK36gYUlKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6965 (0x1b35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Validity Not Before: Aug 8 16:27:21 2025 GMT Not After : Aug 15 16:27:21 2025 GMT Subject: CN=68962569-4fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cd:cc:e9:d0:a8:ea:b6:94:d1:ae:ed:fc:c9: 4a:3c:d4:e9:12:76:9d:ed:0b:c5:3a:da:4c:e5:bf: 50:b8:5e:3a:71:1c:2a:73:e6:83:ea:3b:e3:00:11: ef:20:3a:39:e3:7d:a8:8e:53:68:9b:1b:79:c5:f5: 49:1b:3a:99:1d:2e:92:83:50:5e:c8:3d:62:af:49: 8a:78:79:31:2e:43:e7:ac:39:c6:9c:d6:99:ea:00: e5:a3:50:ef:66:12:11:1e:6d:88:85:26:03:86:c2: ca:b5:63:cf:92:55:6c:9c:ea:cd:c1:9f:43:f6:df: 82:47:9f:c7:ff:69:f8:d6:44:7c:a0:6f:f9:19:50: 99:81:d0:d5:5f:d3:4a:b6:2c:53:e5:a4:b2:b2:e5: 3c:f6:df:22:1b:2b:00:82:22:6e:01:99:bd:b5:a6: 49:c2:14:d7:0d:20:1d:82:ac:18:3a:dd:f1:55:66: d9:89:eb:df:dd:1c:4a:21:ae:07:b7:09:38:e1:6d: 6f:01:65:13:1c:5f:ac:3a:a4:62:c7:55:98:b0:16: e0:4e:04:b3:a0:99:31:d4:7b:f1:34:b2:84:be:65: 1e:44:19:a5:2f:51:02:85:43:6b:80:99:53:19:95: a3:5f:aa:1b:ea:f8:2e:08:d1:2f:93:ac:46:ed:fe: 40:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:4C:2A:04:71:B1:FC:3D:2E:1D:8A:BA:48:F4:85:BF:EA:B5:2D:B1 X509v3 Authority Key Identifier: keyid:42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:5f:de:69:e5:1b:de:e0:df:dc:dd:94:fc:27:8b:1a:09:36: ef:ab:2f:18:6f:03:b9:59:15:65:63:a3:42:b1:9b:7b:92:6f: 17:72:64:c2:98:1e:56:ff:66:51:e8:da:74:cc:78:46:23:94: 3a:ce:fe:73:d0:56:61:fc:42:12:bb:f0:95:47:a9:ab:40:44: 2a:7b:d1:86:c5:1c:a1:b2:3b:f2:c2:7b:c8:88:fa:ff:20:57: 4a:c5:2a:5a:ad:4c:09:88:a0:82:9f:9d:ce:d2:57:d6:1c:e8: aa:b1:f4:bf:64:89:21:e2:a1:fb:e7:07:c5:07:38:8a:49:a7: 16:cd:b6:a4:fc:d2:9d:5d:ce:42:be:8a:fe:fb:7b:62:b4:4f: 51:df:e5:8a:83:c0:98:95:0b:d8:50:7f:d8:b0:40:2d:e7:84: eb:71:ba:1a:9e:28:ae:37:c0:64:95:7c:00:ac:64:5d:1c:9b: eb:a7:9a:3f:92:56:07:b4:12:a8:4d:da:9d:67:ed:e9:b9:29: 0a:b4:0d:a7:6b:5d:48:1d:3d:2e:6e:45:a8:a3:6b:61:02:db: b3:fd:eb:bd:19:85:a2:fc:5a:dc:f7:da:09:30:4a:22:ba:ad: 9b:07:03:8b:b0:48:8e:e7:0a:f0:20:6c:0d:85:6f:f3:8a:8e: 77:81:02:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKDQyOUVDRTE5MzhDQzg5MjRCMTExMDk2NUM5Q0Y0Rjk2 NDg2MDIwMTgwHhcNMjUwODA4MTYyNzIxWhcNMjUwODE1MTYyNzIxWjAYMRYwFAYD VQQDEw02ODk2MjU2OS00ZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs3M6dCo6raU0a7t/MlKPNTpEnad7QvFOtpM5b9QuF46cRwqc+aD6jvjABHv IDo5432ojlNomxt5xfVJGzqZHS6Sg1BeyD1ir0mKeHkxLkPnrDnGnNaZ6gDlo1Dv ZhIRHm2IhSYDhsLKtWPPklVsnOrNwZ9D9t+CR5/H/2n41kR8oG/5GVCZgdDVX9NK tixT5aSysuU89t8iGysAgiJuAZm9taZJwhTXDSAdgqwYOt3xVWbZievf3RxKIa4H twk44W1vAWUTHF+sOqRix1WYsBbgTgSzoJkx1HvxNLKEvmUeRBmlL1EChUNrgJlT GZWjX6ob6vguCNEvk6xG7f5A0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpMKgRx sfw9Lh2Kukj0hb/qtS2xMB8GA1UdIwQYMBaAFEKezhk4zIkksREJZcnPT5ZIYCAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC81RUNDMTVBQTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlTU3hFUWxseWM5UGxraGdJ QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FwN09HVGpNaVNTeEVRbGx5YzlQbGtoZ0lCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUFFNC81RUNDMTVBQTI1NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlT U3hFUWxseWM5UGxraGdJQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAX95p5Rve4N/c3ZT8J4saCTbvqy8YbwO5WRVlY6NCsZt7km8XcmTC mB5W/2ZR6Np0zHhGI5Q6zv5z0FZh/EISu/CVR6mrQEQqe9GGxRyhsjvywnvIiPr/ IFdKxSparUwJiKCCn53O0lfWHOiqsfS/ZIkh4qH75wfFBziKSacWzbak/NKdXc5C vor++3titE9R3+WKg8CYlQvYUH/YsEAt54TrcboaniiuN8BklXwArGRdHJvrp5o/ klYHtBKoTdqdZ+3puSkKtA2na11IHT0ubkWoo2thAtuz/eu9GYWi/Frc99oJMEoi uq2bBwOLsEiO5wrwIGwNhW/zio53gQK1 -----END CERTIFICATE-----Generated at Sat Aug 9 15:17:05 2025 by rpki-client