$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: ZaaK/9JJ2Mbgxkhy1PO7JbkRt5BoNoTWsqrJxMDsikQ= Subject key identifier: 0E:FD:2E:1B:2A:4E:CF:75:A3:4D:00:40:32:08:EB:88:3A:56:BD:E0 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 0146 Signing time: Wed 13 Aug 2025 04:50:08 +0000 Manifest this update: Wed 13 Aug 2025 04:50:08 +0000 Manifest next update: Wed 20 Aug 2025 04:50:08 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: d0g6ODt01riI1Hs8VC3oszaCjNp9XFc4QxwAhA2ZPL4=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 04:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Aug 13 04:50:08 2025 GMT Not After : Aug 20 04:50:08 2025 GMT Subject: CN=689c1980-68a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:60:59:44:fe:00:12:82:2b:ab:c5:07:8e:a3: 1a:5a:72:6b:d1:d7:bd:02:96:ce:e0:6b:81:d2:5a: 86:c8:73:c6:08:10:e6:5c:52:8e:c4:15:16:f6:b4: 31:04:98:4b:51:2a:14:7c:15:c4:13:c3:26:40:8d: 11:75:46:35:0e:e3:80:67:4b:96:1c:88:f1:b3:89: 0d:85:0f:7d:4a:1e:23:b8:8d:77:1f:09:0f:64:e2: fa:b2:2e:d2:52:79:89:b2:d5:65:02:51:9c:66:36: 6f:49:98:9e:a2:ac:06:a1:9b:70:bc:c9:2e:b9:c2: ff:4b:4d:a9:d9:9c:99:63:14:d4:07:35:c8:1a:76: 75:3d:72:b6:9c:3f:ee:a7:41:d4:5d:83:ce:aa:a9: ee:ae:cc:f0:59:44:b0:3c:8e:3a:bc:df:eb:b3:ea: 31:ce:99:8b:90:e2:55:95:39:00:4b:0a:8d:01:67: e0:1c:ea:13:2c:75:c0:db:62:fb:9b:d8:39:31:bc: 84:e6:99:86:72:0f:dc:42:d9:5c:e7:b5:29:fe:88: 1e:9d:aa:70:e2:41:0b:62:d6:3f:f6:6d:92:bc:18: 39:89:35:11:50:2b:b5:ee:99:f6:a3:9e:c9:c5:df: 84:5a:a7:af:06:38:65:be:6a:41:9f:3c:37:ed:0d: ba:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FD:2E:1B:2A:4E:CF:75:A3:4D:00:40:32:08:EB:88:3A:56:BD:E0 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:dc:fb:0e:95:67:3d:19:3a:58:27:a0:15:ae:4f:87:00:8b: e2:6c:50:63:34:d1:5f:e3:99:97:25:cd:5f:ba:d0:90:55:fb: ec:7f:07:ab:b4:b9:27:28:94:91:03:19:fa:88:31:ba:c3:9e: ca:11:7f:16:71:f1:21:4f:6b:18:46:d2:9c:a2:51:8c:cc:e1: 52:31:48:de:5e:f4:3d:17:3a:0d:75:ed:19:3d:b6:08:19:f7: 16:7b:e4:cc:5a:61:b6:65:cc:4f:35:f7:25:1e:a5:67:49:6c: c1:19:86:e7:aa:99:a7:17:e8:76:15:82:8a:81:ab:22:45:25: d1:4e:df:67:78:21:37:90:e1:5a:1c:34:ea:d8:92:11:f6:26: 28:7a:31:f4:84:cf:ce:69:c5:19:38:3d:6f:bb:2e:47:a2:f1: 53:a4:64:a6:08:bb:95:dd:f1:bf:b2:91:61:ab:63:67:80:d2: 36:5c:77:e0:2c:91:7b:74:2d:ad:e5:71:a2:d8:80:cd:67:77: 09:16:a6:6d:e9:4f:b3:57:e0:db:a1:c2:60:28:5e:71:7f:d3: 14:b1:c8:29:35:f8:6e:2a:ab:2f:71:90:41:10:11:c2:29:d5: d3:7a:20:b4:bd:65:0a:10:a3:32:aa:95:48:53:2f:81:6f:ff: a9:71:ab:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUwODEzMDQ1MDA4WhcNMjUwODIwMDQ1MDA4WjAYMRYwFAYD VQQDEw02ODljMTk4MC02OGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7mBZRP4AEoIrq8UHjqMaWnJr0de9ApbO4GuB0lqGyHPGCBDmXFKOxBUW9rQx BJhLUSoUfBXEE8MmQI0RdUY1DuOAZ0uWHIjxs4kNhQ99Sh4juI13HwkPZOL6si7S UnmJstVlAlGcZjZvSZieoqwGoZtwvMkuucL/S02p2ZyZYxTUBzXIGnZ1PXK2nD/u p0HUXYPOqqnurszwWUSwPI46vN/rs+oxzpmLkOJVlTkASwqNAWfgHOoTLHXA22L7 m9g5MbyE5pmGcg/cQtlc57Up/ogenapw4kELYtY/9m2SvBg5iTURUCu17pn2o57J xd+EWqevBjhlvmpBnzw37Q26VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA79Lhsq Ts91o00AQDII64g6Vr3gMB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP3PsOlWc9GTpYJ6AVrk+HAIvibFBjNNFf45mXJc1futCQVfvsfwer tLknKJSRAxn6iDG6w57KEX8WcfEhT2sYRtKcolGMzOFSMUjeXvQ9FzoNde0ZPbYI GfcWe+TMWmG2ZcxPNfclHqVnSWzBGYbnqpmnF+h2FYKKgasiRSXRTt9neCE3kOFa HDTq2JIR9iYoejH0hM/OacUZOD1vuy5HovFTpGSmCLuV3fG/spFhq2NngNI2XHfg LJF7dC2t5XGi2IDNZ3cJFqZt6U+zV+DbocJgKF5xf9MUscgpNfhuKqsvcZBBEBHC KdXTeiC0vWUKEKMyqpVIUy+Bb/+pcasF -----END CERTIFICATE-----Generated at Wed Aug 13 05:56:45 2025 by rpki-client