$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: q3axWPMszCQ0PN5DV7Qq9/5Elr2RnlordQ+6sYPFDl4= Subject key identifier: 2C:BD:BE:50:1F:CD:E9:2C:8A:67:65:09:D1:35:BE:DB:23:87:04:E4 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0AF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0AE9 Signing time: Fri 08 Aug 2025 19:42:36 +0000 Manifest this update: Fri 08 Aug 2025 19:42:35 +0000 Manifest next update: Fri 15 Aug 2025 19:42:35 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: aVwl9J43BAadBK6BPbhw6/phj+klEM0FyrgOwbWW+R4=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2807 (0xaf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Aug 8 19:42:35 2025 GMT Not After : Aug 15 19:42:35 2025 GMT Subject: CN=6896532c-9400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:66:82:f4:28:d6:c3:8a:50:59:55:c4:75:35: 65:38:d6:96:38:48:bb:57:ad:78:40:a9:6c:54:c5: 9b:4c:e5:6b:db:96:0b:07:86:e7:e5:3d:00:49:e7: 9f:3a:0d:cf:05:f2:f5:86:46:7c:97:bc:eb:1f:ab: ac:9d:f7:ec:97:cb:54:fd:af:7a:ec:7a:2f:21:5d: e2:72:30:70:11:52:90:a1:0d:42:cb:e9:d5:5c:35: d2:2d:f7:95:15:3d:b6:f7:ff:aa:2f:07:50:98:01: 42:21:48:12:66:41:32:52:f0:ea:a4:61:15:3c:c4: be:f2:95:50:31:fa:03:84:11:c2:ad:36:52:70:34: 97:9f:6c:8e:06:c9:20:f8:c2:53:8c:fe:e0:d6:f9: 96:75:d0:aa:bc:64:7d:4b:01:d9:fc:ce:82:18:2a: 9d:c0:bf:ef:f4:f5:0e:62:0c:da:94:b0:fa:04:1c: a0:f6:94:51:c5:37:23:84:57:5e:ad:8c:f5:7d:b2: 48:c9:fc:ac:59:cf:cf:a1:5c:72:9c:c1:e8:25:25: 21:8c:a1:5b:4a:78:c9:25:6c:cf:6c:9b:47:0b:e2: 92:3b:be:58:4c:c1:56:07:d4:df:4e:80:5c:e3:33: 75:ab:4b:3f:58:9c:43:5c:c6:be:0d:37:8a:d8:1d: 8a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BD:BE:50:1F:CD:E9:2C:8A:67:65:09:D1:35:BE:DB:23:87:04:E4 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:8d:16:37:57:fd:cc:07:1f:04:4d:88:d2:a8:89:8f:6e:c3: fa:79:b6:b4:80:79:44:2a:2c:db:4b:85:2d:a7:c4:1f:11:14: b7:00:bb:a4:fa:5b:1f:a2:3c:bb:9c:52:e4:65:a4:84:4f:2b: 77:a1:5e:ec:28:b9:ba:fe:2c:be:7e:ae:49:d5:08:ae:7c:25: 72:16:1e:bd:85:3b:98:f1:84:73:74:87:e9:05:72:0a:bd:f9: 09:12:3d:dc:ce:db:e6:1f:d3:d3:2d:d1:57:ee:82:6c:00:96: e4:6c:fb:d8:37:3d:f4:2e:02:8c:8b:0a:21:21:4c:62:d9:90: 74:51:6d:36:14:38:cb:ca:be:0f:19:3b:9c:17:14:ee:5a:7e: 96:4c:8d:80:69:26:31:73:16:cf:17:e9:44:9f:00:6a:dd:26: fc:27:b7:9d:7f:5d:4b:e7:81:36:04:c6:15:a8:3e:23:7a:29: e5:fd:d8:99:63:a9:98:fd:5a:2e:43:14:6b:0d:2d:66:e3:ed: 37:1b:b8:bb:1e:e3:fe:8e:a7:a1:3a:bc:31:62:e4:f0:6c:20: 6f:ac:09:97:4e:b3:24:8c:ae:8d:ba:f2:d6:7d:42:c9:83:f2: a5:e6:9f:94:55:c4:a6:ce:92:c7:fc:8e:ac:ec:68:b1:3b:7a: e7:6f:e8:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUwODA4MTk0MjM1WhcNMjUwODE1MTk0MjM1WjAYMRYwFAYD VQQDEw02ODk2NTMyYy05NDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmaC9CjWw4pQWVXEdTVlONaWOEi7V614QKlsVMWbTOVr25YLB4bn5T0ASeef Og3PBfL1hkZ8l7zrH6usnffsl8tU/a967HovIV3icjBwEVKQoQ1Cy+nVXDXSLfeV FT229/+qLwdQmAFCIUgSZkEyUvDqpGEVPMS+8pVQMfoDhBHCrTZScDSXn2yOBskg +MJTjP7g1vmWddCqvGR9SwHZ/M6CGCqdwL/v9PUOYgzalLD6BByg9pRRxTcjhFde rYz1fbJIyfysWc/PoVxynMHoJSUhjKFbSnjJJWzPbJtHC+KSO75YTMFWB9TfToBc 4zN1q0s/WJxDXMa+DTeK2B2K5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy9vlAf zeksimdlCdE1vtsjhwTkMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqjRY3V/3MBx8ETYjSqImPbsP6eba0gHlEKizbS4Utp8QfERS3ALuk +lsfojy7nFLkZaSETyt3oV7sKLm6/iy+fq5J1QiufCVyFh69hTuY8YRzdIfpBXIK vfkJEj3cztvmH9PTLdFX7oJsAJbkbPvYNz30LgKMiwohIUxi2ZB0UW02FDjLyr4P GTucFxTuWn6WTI2AaSYxcxbPF+lEnwBq3Sb8J7edf11L54E2BMYVqD4jeinl/diZ Y6mY/VouQxRrDS1m4+03G7i7HuP+jqehOrwxYuTwbCBvrAmXTrMkjK6NuvLWfULJ g/Kl5p+UVcSmzpLH/I6s7GixO3rnb+i7 -----END CERTIFICATE-----Generated at Sun Aug 10 03:53:24 2025 by rpki-client