$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft File: QRzJhRGOMuB6FVTV6boLTNKKSu8.mft (raw, json) Hash identifier: gK5CUjs17uw/0zmfDxC3zxp9Aqc14o2oubjz7yW13Xk= Subject key identifier: C3:7C:E6:3E:A9:56:D8:29:28:84:7C:D3:03:73:04:80:55:6C:F6:92 Authority key identifier: 41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF Certificate issuer: /CN=A91BEE0F/serialNumber=411CC985118E32E07A1554D5E9BA0B4CD28A4AEF Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft Manifest number: 01D8 Signing time: Sat 09 Aug 2025 03:05:31 +0000 Manifest this update: Sat 09 Aug 2025 03:05:31 +0000 Manifest next update: Sat 16 Aug 2025 03:05:31 +0000 Files and hashes: 1: QRzJhRGOMuB6FVTV6boLTNKKSu8.crl (hash: 8hOXAEEJsUiR4zoHH8x7V/elWyhZw2WBw4qwmGbO+gE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.crl rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE0F, serialNumber=411CC985118E32E07A1554D5E9BA0B4CD28A4AEF Validity Not Before: Aug 9 03:05:31 2025 GMT Not After : Aug 16 03:05:31 2025 GMT Subject: CN=6896bafb-ca69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ac:c7:2d:04:d6:d2:88:a5:1b:74:e9:45:ad: b7:0b:62:cb:04:40:1b:e6:14:6b:d2:5f:9d:ba:61: 32:7c:9e:5c:40:34:4f:77:15:c7:6e:ca:a0:31:12: 55:30:c0:b1:0f:f0:f5:fc:e7:01:40:d5:7f:29:1d: 77:18:5e:7a:84:3b:a8:5d:81:01:8a:63:e9:70:68: d5:9a:25:c1:40:31:93:2d:80:f3:7d:6a:1f:34:df: 3b:a3:1a:68:62:23:10:03:11:8b:67:d9:ec:59:b0: 4c:1a:51:27:f9:d2:7b:bf:c4:ae:11:7a:94:ac:bb: cd:a5:14:e8:3f:58:af:2b:0a:2a:33:a4:be:53:d6: d0:e8:a1:b3:f7:b1:82:51:a6:15:80:71:2f:0b:9b: b3:76:c5:98:08:1a:03:cc:32:4b:42:33:1c:09:88: 00:3b:23:c1:4b:cc:84:13:ed:5e:9a:4e:d4:be:ec: b9:65:a5:c1:05:f6:ca:23:8b:95:2e:28:e5:93:00: 16:26:bc:dc:06:a4:fc:59:ab:18:4a:13:7f:ee:bd: cb:de:26:a0:7f:90:cd:45:73:15:70:9f:b4:e3:60: 73:33:9c:7a:3b:3a:aa:fa:a4:e5:89:a5:b8:af:f9: 9f:dc:88:2c:50:9d:bc:fa:83:1b:e3:48:79:ba:c0: b1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:7C:E6:3E:A9:56:D8:29:28:84:7C:D3:03:73:04:80:55:6C:F6:92 X509v3 Authority Key Identifier: keyid:41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:7e:2c:47:94:da:86:d8:d4:81:98:99:b4:22:c7:e9:ba:e9: 8d:f2:94:be:a0:95:a2:0d:57:64:d2:91:6b:63:ad:cb:22:d8: 6c:71:5b:c1:47:a9:f8:aa:58:8f:af:2f:80:82:ff:08:94:81: 42:b8:64:34:69:a8:8e:2a:2b:09:01:58:33:fd:93:8c:de:a7: 70:06:d1:7e:e2:74:49:8d:ae:46:e4:ad:d2:8d:13:78:c1:02: 7b:71:f2:ca:dd:69:e4:eb:2d:42:84:b3:fc:b6:6b:c2:98:9d: cb:f1:9d:b2:bd:2a:98:d6:ec:1c:1c:fb:ac:28:6e:d7:7b:34: 26:0a:a3:46:af:64:63:b5:60:46:51:79:c2:38:5d:d5:2b:5e: 1b:6d:4a:0a:f8:e3:bf:54:0e:b0:4d:66:84:8f:54:33:b6:6c: 9a:a0:4e:d6:06:6b:6d:16:3e:ed:8e:e9:c2:36:5e:36:2b:27: bb:46:ee:aa:cc:7b:b3:5e:1e:ee:61:cc:5e:f8:68:4f:16:a2: fb:08:c0:74:65:32:8b:14:cc:f7:1b:6a:17:7c:31:71:ed:20: bf:bc:ef:8b:69:c0:8a:64:46:ec:b8:10:7c:34:64:e6:d4:28: 1a:fb:3c:79:4b:f8:a4:86:9a:af:ca:92:b7:a8:c1:00:2f:fb: 26:91:0d:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMEYxMTAvBgNVBAUTKDQxMUNDOTg1MTE4RTMyRTA3QTE1NTRENUU5QkEwQjRD RDI4QTRBRUYwHhcNMjUwODA5MDMwNTMxWhcNMjUwODE2MDMwNTMxWjAYMRYwFAYD VQQDEw02ODk2YmFmYi1jYTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqzHLQTW0oilG3TpRa23C2LLBEAb5hRr0l+dumEyfJ5cQDRPdxXHbsqgMRJV MMCxD/D1/OcBQNV/KR13GF56hDuoXYEBimPpcGjVmiXBQDGTLYDzfWofNN87oxpo YiMQAxGLZ9nsWbBMGlEn+dJ7v8SuEXqUrLvNpRToP1ivKwoqM6S+U9bQ6KGz97GC UaYVgHEvC5uzdsWYCBoDzDJLQjMcCYgAOyPBS8yEE+1emk7Uvuy5ZaXBBfbKI4uV LijlkwAWJrzcBqT8WasYShN/7r3L3iagf5DNRXMVcJ+042BzM5x6Ozqq+qTliaW4 r/mf3IgsUJ28+oMb40h5usCxkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMN85j6p VtgpKIR80wNzBIBVbPaSMB8GA1UdIwQYMBaAFEEcyYURjjLgehVU1em6C0zSikrv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUwRi81RTExMTQ4RTlC QTkxMUVEQTMzRUVDNkJDNEY5QUUwMi9RUnpKaFJHT011QjZGVlRWNmJvTFROS0tT dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSekpoUkdPTXVCNkZWVFY2Ym9MVE5LS1N1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUwRi81RTExMTQ4RTlCQTkxMUVEQTMzRUVDNkJDNEY5QUUwMi9RUnpKaFJHT011 QjZGVlRWNmJvTFROS0tTdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXfixHlNqG2NSBmJm0IsfpuumN8pS+oJWiDVdk0pFrY63LIthscVvB R6n4qliPry+Agv8IlIFCuGQ0aaiOKisJAVgz/ZOM3qdwBtF+4nRJja5G5K3SjRN4 wQJ7cfLK3Wnk6y1ChLP8tmvCmJ3L8Z2yvSqY1uwcHPusKG7XezQmCqNGr2RjtWBG UXnCOF3VK14bbUoK+OO/VA6wTWaEj1QztmyaoE7WBmttFj7tjunCNl42Kye7Ru6q zHuzXh7uYcxe+GhPFqL7CMB0ZTKLFMz3G2oXfDFx7SC/vO+LacCKZEbsuBB8NGTm 1Cga+zx5S/ikhpqvypK3qMEAL/smkQ1F -----END CERTIFICATE-----Generated at Sun Aug 10 18:13:35 2025 by rpki-client