$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: 9m/1z5AtxjKjb90z5FUqbMCAL7kRgu2Cl8dTPANsBKA= Subject key identifier: 13:D8:3C:6D:76:03:9C:3A:4F:F5:CF:D1:5B:B4:FF:C3:D2:57:1A:0D Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 0258 Signing time: Thu 07 Aug 2025 02:24:43 +0000 Manifest this update: Thu 07 Aug 2025 02:24:43 +0000 Manifest next update: Thu 14 Aug 2025 02:24:43 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: z0lkoh1XFwpQ3rlNPWboKOHsqXn8+2b3aDDQ3bUeGSc=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9, serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Aug 7 02:24:43 2025 GMT Not After : Aug 14 02:24:43 2025 GMT Subject: CN=68940e6b-b4a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:84:8b:f2:14:4b:31:5d:7d:1c:76:44:51:49: 37:b4:b7:f8:8e:02:5e:20:74:34:cb:21:cd:7e:d4: e6:f7:3d:86:cc:63:5d:41:79:21:52:f3:bf:b6:ed: f2:f8:6b:16:2f:18:cb:89:82:8f:a0:70:b5:83:fd: 2d:3e:c4:73:60:2d:fa:2e:a8:fe:75:b1:26:5a:f7: aa:97:b4:8e:c4:a6:14:55:59:9d:5a:b3:4f:1b:96: af:1a:d6:d4:74:06:97:df:ed:be:be:38:2d:51:5b: 6a:4c:ea:e2:92:f2:59:12:6e:c9:42:47:a1:f7:60: 50:86:81:8f:49:e2:1f:12:3a:e0:11:e1:48:92:06: 2f:af:8d:6d:a5:50:e7:9c:b7:26:58:2f:9e:34:2e: 4d:4f:fb:7c:be:5c:5f:b3:6f:1d:b3:2b:5c:fa:5a: 73:91:47:06:af:b0:4b:2f:4b:64:d6:4e:5d:3b:a1: f6:26:26:2f:ca:c6:d6:e7:73:a7:6c:32:fe:e4:f5: fc:dc:61:bb:06:b9:1a:0d:f2:e3:7e:7b:7d:a9:28: 33:9e:20:e2:e2:f3:bc:3b:c3:27:52:0f:82:05:8a: cb:91:e8:da:7d:f2:77:ba:45:f4:19:13:92:2d:1c: 33:40:4a:00:96:30:26:17:9f:3f:51:10:21:5f:a4: f4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D8:3C:6D:76:03:9C:3A:4F:F5:CF:D1:5B:B4:FF:C3:D2:57:1A:0D X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c7:18:b4:6e:63:1f:b0:08:df:82:06:fd:c1:18:48:36:a8: 3d:c5:1f:4c:d7:ae:ef:45:47:78:d3:44:54:78:4e:2c:de:d3: 89:d9:32:ff:00:e3:a6:30:73:d4:3b:18:43:a6:ca:9d:8f:fa: 30:7b:fa:7f:a7:b4:60:ef:2b:ae:9e:23:66:15:76:0f:85:34: cf:33:cd:97:4c:d3:14:3d:8a:b4:71:7e:92:00:71:48:a1:1b: e2:2c:a9:69:46:6f:fe:38:b9:85:c6:a1:f5:a2:32:bb:cf:53: 1a:5d:8b:83:c6:cf:58:9c:3e:b0:98:84:54:8d:1d:77:69:ac: 77:a9:b7:ff:a9:28:96:42:a2:8b:cc:59:e9:dc:e5:3f:96:be: be:4a:f3:67:0d:3a:73:fc:e8:da:c7:da:3e:c8:86:8a:75:cb: c2:62:b3:c7:a4:e4:ff:5a:9a:86:5e:3e:5f:03:d0:7d:45:1b: 81:bb:67:fd:d0:1b:2b:f9:96:26:5b:1a:fa:c1:3f:1a:e7:14: 30:21:a8:9b:21:64:ca:48:b4:f3:75:fd:d8:4c:e8:83:e7:59: 95:7d:9e:c2:c8:08:3e:7f:32:0d:6f:e6:f5:20:f3:db:d6:ce: b3:44:eb:6c:25:81:8c:91:14:87:98:72:39:77:33:40:40:dd: 49:6b:71:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjUwODA3MDIyNDQzWhcNMjUwODE0MDIyNDQzWjAYMRYwFAYD VQQDEw02ODk0MGU2Yi1iNGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYSL8hRLMV19HHZEUUk3tLf4jgJeIHQ0yyHNftTm9z2GzGNdQXkhUvO/tu3y +GsWLxjLiYKPoHC1g/0tPsRzYC36Lqj+dbEmWveql7SOxKYUVVmdWrNPG5avGtbU dAaX3+2+vjgtUVtqTOrikvJZEm7JQkeh92BQhoGPSeIfEjrgEeFIkgYvr41tpVDn nLcmWC+eNC5NT/t8vlxfs28dsytc+lpzkUcGr7BLL0tk1k5dO6H2JiYvysbW53On bDL+5PX83GG7BrkaDfLjfnt9qSgzniDi4vO8O8MnUg+CBYrLkejaffJ3ukX0GROS LRwzQEoAljAmF58/URAhX6T0nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPYPG12 A5w6T/XP0Vu0/8PSVxoNMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQxxi0bmMfsAjfggb9wRhINqg9xR9M167vRUd400RUeE4s3tOJ2TL/ AOOmMHPUOxhDpsqdj/owe/p/p7Rg7yuuniNmFXYPhTTPM82XTNMUPYq0cX6SAHFI oRviLKlpRm/+OLmFxqH1ojK7z1MaXYuDxs9YnD6wmIRUjR13aax3qbf/qSiWQqKL zFnp3OU/lr6+SvNnDTpz/Ojax9o+yIaKdcvCYrPHpOT/WpqGXj5fA9B9RRuBu2f9 0Bsr+ZYmWxr6wT8a5xQwIaibIWTKSLTzdf3YTOiD51mVfZ7CyAg+fzINb+b1IPPb 1s6zROtsJYGMkRSHmHI5dzNAQN1Ja3Ht -----END CERTIFICATE-----Generated at Thu Aug 7 05:08:50 2025 by rpki-client