$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft File: QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json) Hash identifier: QA9Fq474aSGMmYUTqAZyT2qlZelP+Gadh5Kf7tk7Lng= Subject key identifier: 45:12:7E:34:70:F0:16:54:8C:DB:A2:DA:05:A4:CA:A3:5D:B4:52:0C Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft Manifest number: 89 Signing time: Tue 05 Aug 2025 07:11:33 +0000 Manifest this update: Tue 05 Aug 2025 07:11:32 +0000 Manifest next update: Tue 12 Aug 2025 07:11:32 +0000 Files and hashes: 1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: 3ZLwgm47EelIYh+uqGoC1z7u81SzKtGzyQc0aUVCRmY=) 2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: Aug 5 07:11:32 2025 GMT Not After : Aug 12 07:11:32 2025 GMT Subject: CN=6891aea4-7a10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:27:bd:41:3e:04:5d:af:a0:17:12:93:a8:7a: 03:00:f8:3b:06:bf:2c:ce:63:55:c9:0b:9f:c8:3c: a7:03:60:a4:41:8f:ff:81:40:47:cc:e5:14:68:61: 8e:22:21:df:d2:34:b2:f3:d2:f5:0d:79:e0:69:67: 26:8d:08:f5:ea:59:5c:be:aa:68:84:61:c9:3e:9b: 47:4d:f1:0a:78:a5:32:56:2a:5b:c1:02:b3:c9:a4: c6:b3:24:43:18:9b:98:a7:a7:af:72:f2:9a:d7:f9: 5e:57:42:d5:3d:84:50:74:ab:18:13:a2:eb:2c:01: fc:d8:54:ae:47:20:1f:11:f7:ed:e1:f6:5c:fd:2b: b7:c8:d7:02:75:b2:0c:15:ad:da:10:f2:1c:f6:d9: 10:85:06:3f:e8:d1:61:70:e7:ff:aa:fe:10:1d:b5: 6c:5b:51:d4:d4:b3:97:f6:9d:ee:d7:f6:e0:5b:f9: f6:6d:af:86:be:f5:52:c8:74:ba:bc:c1:a4:a2:be: 4d:b8:b6:ce:27:8c:61:fb:ca:96:c9:ce:1f:2c:82: 12:08:88:b0:09:76:c4:70:39:c2:20:e9:fa:54:e7: eb:48:21:b6:33:72:74:56:13:9d:58:73:24:7d:49: 8e:be:2f:ed:21:37:33:d4:9d:55:8e:8c:18:d0:99: ab:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:12:7E:34:70:F0:16:54:8C:DB:A2:DA:05:A4:CA:A3:5D:B4:52:0C X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:c8:c9:cc:f5:e4:40:28:3c:87:49:0c:34:92:76:ff:24:80: 8f:94:f1:81:23:6e:c8:4e:82:0d:2f:5e:9f:6f:c8:36:eb:de: 83:08:0e:21:b8:b4:f9:a2:55:a9:6c:8c:c4:e1:24:09:10:90: cd:8b:1e:91:b9:45:2b:65:74:2d:58:d5:c4:94:c2:18:3a:a6: 8d:10:40:ee:54:85:f0:b2:fe:bf:fd:71:99:13:08:6b:a0:31: fd:16:33:47:8e:ae:d3:8b:a5:34:c8:3a:14:4c:2e:36:86:ea: f1:fd:90:6c:58:d4:de:31:bb:93:87:e3:fd:b2:3b:79:b5:3b: 9f:31:5f:99:97:41:33:0d:a0:33:b7:24:65:2c:77:c1:15:3c: 87:ff:9f:ca:00:b3:ef:1c:67:a3:fd:0f:e3:2d:2e:7d:30:92: 66:5e:43:7f:a9:c8:db:87:d7:24:c2:f6:0f:b8:35:b7:35:24: 74:a7:b7:52:95:87:bc:f5:c3:e8:7b:c8:45:08:9d:32:8e:ec: ba:29:05:d5:94:a5:c9:90:6e:ea:fe:5b:e4:7e:3d:30:66:0c: 37:92:c7:4f:c5:ca:a2:e2:ce:6b:c3:62:33:07:f1:85:63:44: 6f:7c:b5:5c:1a:0b:5a:d1:40:20:03:f5:14:17:f4:07:a9:0a: 61:6f:83:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzMUMxMTAvBgNVBAUTKDQwRkFBNzBGOEEyM0EwM0QxNkExMTA4NkRCRTUwMkU4 NjIxNjQ5NjcwHhcNMjUwODA1MDcxMTMyWhcNMjUwODEyMDcxMTMyWjAYMRYwFAYD VQQDEw02ODkxYWVhNC03YTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSe9QT4EXa+gFxKTqHoDAPg7Br8szmNVyQufyDynA2CkQY//gUBHzOUUaGGO IiHf0jSy89L1DXngaWcmjQj16llcvqpohGHJPptHTfEKeKUyVipbwQKzyaTGsyRD GJuYp6evcvKa1/leV0LVPYRQdKsYE6LrLAH82FSuRyAfEfft4fZc/Su3yNcCdbIM Fa3aEPIc9tkQhQY/6NFhcOf/qv4QHbVsW1HU1LOX9p3u1/bgW/n2ba+GvvVSyHS6 vMGkor5NuLbOJ4xh+8qWyc4fLIISCIiwCXbEcDnCIOn6VOfrSCG2M3J0VhOdWHMk fUmOvi/tITcz1J1VjowY0JmrLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUSfjRw 8BZUjNui2gWkyqNdtFIMMB8GA1UdIwQYMBaAFED6pw+KI6A9FqEQhtvlAuhiFkln MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzMxQy9GMTA3REExMEE2 Q0YxMUVGQjJGQkI1N0RDNEY5QUUwMi9RUHFuRDRvam9EMFdvUkNHMi1VQzZHSVdT V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzMxQy9GMTA3REExMEE2Q0YxMUVGQjJGQkI1N0RDNEY5QUUwMi9RUHFuRDRvam9E MFdvUkNHMi1VQzZHSVdTV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmyMnM9eRAKDyHSQw0knb/JICPlPGBI27IToINL16fb8g2696DCA4h uLT5olWpbIzE4SQJEJDNix6RuUUrZXQtWNXElMIYOqaNEEDuVIXwsv6//XGZEwhr oDH9FjNHjq7Ti6U0yDoUTC42hurx/ZBsWNTeMbuTh+P9sjt5tTufMV+Zl0EzDaAz tyRlLHfBFTyH/5/KALPvHGej/Q/jLS59MJJmXkN/qcjbh9ckwvYPuDW3NSR0p7dS lYe89cPoe8hFCJ0yjuy6KQXVlKXJkG7q/lvkfj0wZgw3ksdPxcqi4s5rw2IzB/GF Y0RvfLVcGgta0UAgA/UUF/QHqQphb4Oa -----END CERTIFICATE-----Generated at Wed Aug 6 06:06:52 2025 by rpki-client