$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft File: QcdXFCmaV43RkP0fcwlVsf2awfQ.mft (raw, json) Hash identifier: dAlQy50zRqObTLrKy3kfb/kkhke9zXmSU9/I3D06wtk= Subject key identifier: 7C:6C:B2:0F:AB:76:D6:14:D6:6A:38:28:62:A1:45:72:26:E1:B8:C4 Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft Manifest number: 1E Signing time: Tue 05 Aug 2025 08:36:41 +0000 Manifest this update: Tue 05 Aug 2025 08:36:41 +0000 Manifest next update: Tue 12 Aug 2025 08:36:41 +0000 Files and hashes: 1: QcdXFCmaV43RkP0fcwlVsf2awfQ.crl (hash: ko5gAiLyW29gitTVzZ6oQ/wx3v/aFsevqkT/CC1TmKw=) 2: C425CEE64B8211F0A94CFD82C4F9AE02.roa (hash: fil/oQotRM+MIGw/cNqLrz8OgmoOYQq+ywbG5ZxtQK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Aug 5 08:36:41 2025 GMT Not After : Aug 12 08:36:41 2025 GMT Subject: CN=6891c299-0bdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b7:46:eb:36:1f:da:21:9d:af:08:dd:b2:3d: 29:f2:8b:73:eb:bc:95:45:4a:8e:f9:90:20:c2:d4: 43:a1:db:32:29:c8:a7:e1:41:3b:d7:42:d2:6e:49: 09:af:1a:ca:28:42:b0:f0:e0:44:41:30:40:d5:a7: df:9a:13:5a:81:68:a5:9b:81:13:87:d6:8b:4e:c6: 78:4f:d0:08:c0:b6:8e:be:08:b4:7a:48:4e:cb:47: dc:e8:47:b0:2c:24:3c:a9:80:b9:84:ed:fe:7a:27: d1:2c:a1:03:e4:0d:10:f8:9e:da:60:0d:83:0f:6b: 23:84:ec:89:bb:b8:32:6e:57:4c:b3:d7:b7:70:6f: d6:da:34:8a:db:e5:de:c5:88:23:ca:da:4d:b1:ec: 13:41:94:66:bc:6d:fd:0b:d3:59:31:23:48:9e:8a: 97:01:7f:a3:06:9b:82:ae:f5:37:05:aa:6b:52:a1: 2f:26:a6:d7:04:2a:46:b4:34:a0:ec:fa:64:5d:ea: af:3a:4e:fc:92:d1:e2:f9:15:75:99:31:2f:6e:f3: af:0b:13:c8:6f:6b:f5:ac:57:5a:57:38:ad:9c:7c: a2:bf:93:9e:bf:e3:93:c5:12:44:fd:40:56:b9:69: c4:2d:34:83:95:66:df:39:1c:a2:b1:e2:3f:ba:d9: fd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6C:B2:0F:AB:76:D6:14:D6:6A:38:28:62:A1:45:72:26:E1:B8:C4 X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:7a:9c:59:ba:5c:53:3a:b6:ee:7e:da:1c:dd:18:73:13:c8: ba:d9:57:96:41:b1:87:40:dc:91:7d:c9:0f:ab:c7:b5:07:a8: df:cf:29:f2:0c:3b:96:5a:6a:1c:a4:42:cb:bd:09:7a:f5:3a: 63:c1:d7:5f:e1:cd:ed:85:e7:35:3e:7f:29:a0:1a:0e:54:d3: db:90:51:7f:fb:14:5d:4e:14:8b:fd:c3:56:cb:cf:ad:a8:97: 0c:2a:4c:06:84:a5:18:6f:52:c5:37:ef:e7:68:ce:34:04:4c: 29:4c:87:ed:05:33:01:02:a8:dd:10:2e:1c:37:ce:e1:a1:c2: f1:d9:b4:80:06:25:c9:40:3d:b2:c9:98:20:a1:41:28:a4:0b: 6d:eb:db:c8:cb:16:58:77:9e:27:84:20:54:85:dd:98:bc:64: fe:f5:24:8a:cf:b0:fb:fe:2e:53:ca:fc:41:85:1b:bd:ac:23: 49:3c:62:87:47:83:ca:46:c1:0e:f0:e4:dc:eb:f9:3f:d0:38: c0:f3:84:fb:20:03:2a:dd:99:60:41:eb:9b:93:35:41:58:d6: dc:a4:47:4c:90:4d:52:2c:84:6d:2d:9d:54:1f:93:33:39:4c: 57:ea:9b:55:96:69:55:e1:26:22:e6:bf:6f:3c:f3:40:5f:b8: 65:06:4b:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUE4QjExMC8GA1UEBRMoNDFDNzU3MTQyOTlBNTc4REQxOTBGRDFGNzMwOTU1QjFG RDlBQzFGNDAeFw0yNTA4MDUwODM2NDFaFw0yNTA4MTIwODM2NDFaMBgxFjAUBgNV BAMTDTY4OTFjMjk5LTBiZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4t0brNh/aIZ2vCN2yPSnyi3PrvJVFSo75kCDC1EOh2zIpyKfhQTvXQtJuSQmv GsooQrDw4ERBMEDVp9+aE1qBaKWbgROH1otOxnhP0AjAto6+CLR6SE7LR9zoR7As JDypgLmE7f56J9EsoQPkDRD4ntpgDYMPayOE7Im7uDJuV0yz17dwb9baNIrb5d7F iCPK2k2x7BNBlGa8bf0L01kxI0ieipcBf6MGm4Ku9TcFqmtSoS8mptcEKka0NKDs +mRd6q86TvyS0eL5FXWZMS9u868LE8hva/WsV1pXOK2cfKK/k56/45PFEkT9QFa5 acQtNIOVZt85HKKx4j+62f1/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfGyyD6t2 1hTWajgoYqFFcibhuMQwHwYDVR0jBBgwFoAUQcdXFCmaV43RkP0fcwlVsf2awfQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQThCL0JBMDhBQTQyNEI4 MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdm US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWNkWEZDbWFWNDNSa1AwZmN3bFZzZjJhd2ZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QThCL0JBMDhBQTQyNEI4MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQz UmtQMGZjd2xWc2YyYXdmUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHJ6nFm6XFM6tu5+2hzdGHMTyLrZV5ZBsYdA3JF9yQ+rx7UHqN/PKfIM O5ZaahykQsu9CXr1OmPB11/hze2F5zU+fymgGg5U09uQUX/7FF1OFIv9w1bLz62o lwwqTAaEpRhvUsU37+dozjQETClMh+0FMwECqN0QLhw3zuGhwvHZtIAGJclAPbLJ mCChQSikC23r28jLFlh3nieEIFSF3Zi8ZP71JIrPsPv+LlPK/EGFG72sI0k8YodH g8pGwQ7w5Nzr+T/QOMDzhPsgAyrdmWBB65uTNUFY1tykR0yQTVIshG0tnVQfkzM5 TFfqm1WWaVXhJiLmv28880BfuGUGS2M= -----END CERTIFICATE-----Generated at Tue Aug 5 17:20:53 2025 by rpki-client