$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: Ep8QpQYRIVEhAY1LmEoM+RHlrrq21nVvfcCKeE7u1wU= Subject key identifier: 53:FF:C9:50:75:E3:F1:8C:63:FC:02:69:04:9E:63:8C:54:00:20:0D Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 47 Signing time: Sat 09 Aug 2025 07:54:42 +0000 Manifest this update: Sat 09 Aug 2025 07:54:42 +0000 Manifest next update: Sat 16 Aug 2025 07:54:41 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: UNMBvu6xogbkcJd9+iDQ8GUR7EWu2Gmelgw10phE2aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Aug 9 07:54:42 2025 GMT Not After : Aug 16 07:54:41 2025 GMT Subject: CN=6896fec2-98bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:48:03:60:1e:50:d1:fb:09:75:8f:8c:3c:a8: 07:10:39:01:da:8f:c4:4f:f1:1f:2f:59:14:ff:d6: 85:57:09:d1:89:6d:34:ea:91:e7:e8:0d:1d:cc:f3: ed:39:aa:1d:54:35:61:c3:ce:54:86:9a:20:2f:d2: 6a:1c:56:8a:11:8c:27:a2:66:4c:69:2b:dd:14:19: 16:3a:f6:5a:51:91:b8:bf:77:58:9d:51:ee:95:77: 86:45:cf:87:8e:4e:2c:69:b8:f4:40:ef:70:01:d4: fb:be:98:5d:1e:15:ac:23:b5:a7:d5:da:ff:cb:5c: eb:72:1a:4b:69:a3:93:75:e8:fe:4b:6b:7c:ba:2c: 10:98:0c:c3:aa:a7:7a:0a:28:06:58:97:da:a1:9f: 61:c6:ac:e1:13:58:e5:9b:30:16:a3:97:5d:a8:63: e8:fe:97:e1:7d:10:00:b4:74:9d:3f:7a:c3:61:54: 59:95:d2:b9:ff:38:f7:27:99:3a:e5:0a:9d:79:6b: b5:f5:03:24:00:5b:2c:76:7a:4d:1a:34:d1:63:6b: 91:44:d4:7d:46:0d:93:ec:90:6a:f6:2b:5a:39:20: 19:1f:9d:58:96:ad:18:2d:87:72:44:93:21:0e:3e: 80:3b:51:e4:7d:b2:95:94:b3:f4:1e:62:27:1d:ae: 19:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:FF:C9:50:75:E3:F1:8C:63:FC:02:69:04:9E:63:8C:54:00:20:0D X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:2a:41:5b:35:f4:4a:18:88:d1:8d:8b:73:3c:54:d0:07:ba: 48:85:c2:e1:a8:00:64:1e:ff:cc:6e:b5:91:38:13:25:c7:ac: 9e:c0:b4:b9:89:96:8c:97:39:ec:24:d3:43:fd:e8:56:11:2a: c7:1f:73:c9:d5:e4:43:85:8c:74:bf:e9:8f:06:3f:bc:7e:92: a1:6c:da:24:22:c6:92:d4:3c:c0:06:67:e5:96:b2:5a:1d:bf: be:3f:bc:c4:28:d7:77:5a:a1:42:aa:f6:eb:5e:a4:30:6e:0b: b2:7c:be:81:46:2c:b9:34:72:ec:30:b3:75:c9:98:7c:3b:9c: a4:43:6b:c9:57:4d:99:2c:a9:d1:63:a3:da:00:0d:57:f1:2b: 18:bb:0e:b1:07:e3:76:47:f7:9e:52:69:d5:ee:07:1b:cc:96: 79:75:1c:de:b8:0e:d0:bc:6c:62:0b:60:5b:15:ba:92:8c:5d: 38:ba:d4:ad:d8:8b:b3:f6:8a:1d:fc:4d:b7:12:ef:a7:54:30: 9a:73:1b:29:02:86:02:51:d6:9d:dc:ae:91:e0:92:42:11:4d: 9a:b4:ff:e5:5f:34:61:23:08:c7:06:7e:ce:90:4b:c2:b3:23: 67:f5:69:f9:f3:33:64:9a:da:90:ef:a8:69:28:66:00:e0:74: 76:39:3b:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjQ5MjExMC8GA1UEBRMoNDBFNEJEMzZBRTE1MDc3RkU1OTk4NUQxMzcwRDVENjQ2 NzBBODhEOTAeFw0yNTA4MDkwNzU0NDJaFw0yNTA4MTYwNzU0NDFaMBgxFjAUBgNV BAMTDTY4OTZmZWMyLTk4YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDESANgHlDR+wl1j4w8qAcQOQHaj8RP8R8vWRT/1oVXCdGJbTTqkefoDR3M8+05 qh1UNWHDzlSGmiAv0mocVooRjCeiZkxpK90UGRY69lpRkbi/d1idUe6Vd4ZFz4eO TixpuPRA73AB1Pu+mF0eFawjtafV2v/LXOtyGktpo5N16P5La3y6LBCYDMOqp3oK KAZYl9qhn2HGrOETWOWbMBajl12oY+j+l+F9EAC0dJ0/esNhVFmV0rn/OPcnmTrl Cp15a7X1AyQAWyx2ek0aNNFja5FE1H1GDZPskGr2K1o5IBkfnViWrRgth3JEkyEO PoA7UeR9spWUs/QeYicdrhkZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU//JUHXj 8Yxj/AJpBJ5jjFQAIA0wHwYDVR0jBBgwFoAUQOS9Nq4VB3/lmYXRNw1dZGcKiNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNDkyLzJDMEIzMkQ4MDkz NjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUU9TOU5xNFZCM19sbVlYUk53MWRaR2NLaU5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NDkyLzJDMEIzMkQ4MDkzNjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNf bG1ZWFJOdzFkWkdjS2lOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEEqQVs19EoYiNGNi3M8VNAHukiFwuGoAGQe/8xutZE4EyXHrJ7AtLmJ loyXOewk00P96FYRKscfc8nV5EOFjHS/6Y8GP7x+kqFs2iQixpLUPMAGZ+WWslod v74/vMQo13daoUKq9utepDBuC7J8voFGLLk0cuwws3XJmHw7nKRDa8lXTZksqdFj o9oADVfxKxi7DrEH43ZH955SadXuBxvMlnl1HN64DtC8bGILYFsVupKMXTi61K3Y i7P2ih38TbcS76dUMJpzGykChgJR1p3crpHgkkIRTZq0/+VfNGEjCMcGfs6QS8Kz I2f1afnzM2Sa2pDvqGkoZgDgdHY5Oyg= -----END CERTIFICATE-----Generated at Sat Aug 9 22:46:15 2025 by rpki-client