$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: TF8ewY9lo1LzmgEP5k1KArOk//rQ8tebMMwXiD5Qu4w= Subject key identifier: 5C:11:70:6F:58:F6:E1:4D:8E:D6:64:0E:7D:F8:F2:97:C5:42:BA:17 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 0FEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 262F Signing time: Fri 08 Aug 2025 16:52:28 +0000 Manifest this update: Fri 08 Aug 2025 16:52:28 +0000 Manifest next update: Fri 15 Aug 2025 16:52:28 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: S1QdrTdG72Tga6eYmyLoIvsNZ19wIliPgDEq9Re9wLo=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: gR4VIke3wzcLlwcHX1MfRQDB5DCCZYAeVJopuxrfT0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4079 (0xfef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Aug 8 16:52:28 2025 GMT Not After : Aug 15 16:52:28 2025 GMT Subject: CN=68962b4c-7c50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5c:f5:d7:89:5e:20:43:75:c3:c3:7a:85:0e: f5:74:4e:fd:47:78:41:90:35:fc:db:f2:9b:f2:81: fc:a4:89:67:fd:b9:c3:61:97:53:98:70:e0:5b:89: bd:a9:75:f4:c5:c3:d6:9c:d1:2a:e0:5b:1b:50:0c: d7:84:0e:a1:63:03:72:e6:9f:da:6b:1f:2b:f3:0e: 74:b3:28:1f:48:9f:4b:90:ea:d6:36:8c:5e:32:af: 31:36:b5:4d:b4:64:50:99:51:a1:07:9a:89:3e:eb: bb:9f:2e:ce:e8:19:8a:59:0e:98:58:74:73:9f:be: a3:de:d0:4a:89:20:8c:82:92:88:33:21:90:cc:c5: ad:84:55:18:30:5a:97:fb:56:06:4a:8c:98:9b:57: f3:61:8e:bb:94:34:f7:ad:fb:73:ed:83:94:21:d7: d2:d6:58:d1:c3:5d:46:39:5b:a7:66:b8:78:d9:a6: 90:15:a3:a5:d2:79:9d:a2:7d:01:51:4e:3b:da:f1: 1e:d1:3a:5c:a8:a8:5b:31:13:66:15:82:c7:f6:cf: 4f:5a:da:cd:cb:f0:09:9d:69:e0:cd:29:7c:4e:0d: 0c:3e:96:9b:8c:4a:67:9e:1e:5c:76:4b:eb:fc:9e: d0:e9:bd:ab:9c:a5:70:8d:71:c3:f4:c5:59:e2:64: 5a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:11:70:6F:58:F6:E1:4D:8E:D6:64:0E:7D:F8:F2:97:C5:42:BA:17 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:c4:10:d7:10:1b:42:3e:f3:ef:45:bd:da:41:09:b2:7d:21: d6:86:b8:cc:05:eb:1c:27:70:59:76:2d:0d:1c:73:ab:6d:35: 58:d0:76:0b:98:2b:0d:30:e6:15:fe:27:0e:30:0e:d3:7a:07: 2d:b1:48:2a:4f:07:14:0b:5b:81:e1:4a:a4:45:85:92:3b:e0: 6b:ad:ea:79:ae:78:42:ee:0f:71:64:4f:f8:ec:73:f7:3d:c9: 0b:58:13:a3:13:da:b2:ab:f3:8d:6b:3b:cf:a6:7b:99:ca:09: ec:7a:fa:49:a0:1f:cf:7a:15:e6:6b:a8:80:5b:dc:59:11:d7: 17:01:32:36:6c:25:eb:7b:70:95:aa:1a:ff:cb:52:ea:a8:b9: a0:79:17:a0:25:68:6a:ac:14:5d:9f:e0:36:e0:eb:50:47:57: f6:e5:1b:95:c2:36:67:91:20:16:0b:2c:a5:e1:18:13:ec:8a: 60:28:fb:c5:d9:ea:08:ed:49:a6:fe:ec:7f:28:fd:ba:65:b2: a6:23:61:e9:f9:4e:8d:df:af:71:b8:f0:6e:ee:a2:a9:a4:1b: e6:18:38:de:1d:b7:af:f9:5a:b5:22:fa:57:63:d8:8d:d3:31: 20:99:0d:c4:64:da:70:72:12:0b:26:0d:32:ae:28:4a:9c:68: 37:34:33:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUwODA4MTY1MjI4WhcNMjUwODE1MTY1MjI4WjAYMRYwFAYD VQQDEw02ODk2MmI0Yy03YzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlz114leIEN1w8N6hQ71dE79R3hBkDX82/Kb8oH8pIln/bnDYZdTmHDgW4m9 qXX0xcPWnNEq4FsbUAzXhA6hYwNy5p/aax8r8w50sygfSJ9LkOrWNoxeMq8xNrVN tGRQmVGhB5qJPuu7ny7O6BmKWQ6YWHRzn76j3tBKiSCMgpKIMyGQzMWthFUYMFqX +1YGSoyYm1fzYY67lDT3rftz7YOUIdfS1ljRw11GOVunZrh42aaQFaOl0nmdon0B UU472vEe0TpcqKhbMRNmFYLH9s9PWtrNy/AJnWngzSl8Tg0MPpabjEpnnh5cdkvr /J7Q6b2rnKVwjXHD9MVZ4mRaAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwRcG9Y 9uFNjtZkDn348pfFQroXMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBxBDXEBtCPvPvRb3aQQmyfSHWhrjMBescJ3BZdi0NHHOrbTVY0HYL mCsNMOYV/icOMA7TegctsUgqTwcUC1uB4UqkRYWSO+Brrep5rnhC7g9xZE/47HP3 PckLWBOjE9qyq/ONazvPpnuZygnsevpJoB/PehXma6iAW9xZEdcXATI2bCXre3CV qhr/y1LqqLmgeRegJWhqrBRdn+A24OtQR1f25RuVwjZnkSAWCyyl4RgT7IpgKPvF 2eoI7Umm/ux/KP26ZbKmI2Hp+U6N369xuPBu7qKppBvmGDjeHbev+Vq1IvpXY9iN 0zEgmQ3EZNpwchILJg0yrihKnGg3NDN+ -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:24 2025 by rpki-client