$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft File: QpCYAlfGdws2CulWLaWJPGDa2nc.mft (raw, json) Hash identifier: jv1EtmKOVNVREUQazaTeLj9lbHwChNgKoFTULdGCfnE= Subject key identifier: D5:FB:16:D7:9A:C7:09:26:BF:2A:02:A2:D6:D9:90:8A:90:11:5B:61 Authority key identifier: 42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 Certificate issuer: /CN=A91C3B89/serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Certificate serial: 08F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft Manifest number: 08F1 Signing time: Fri 08 Aug 2025 20:42:19 +0000 Manifest this update: Fri 08 Aug 2025 20:42:18 +0000 Manifest next update: Fri 15 Aug 2025 20:42:18 +0000 Files and hashes: 1: QpCYAlfGdws2CulWLaWJPGDa2nc.crl (hash: ynJKd/is1TEIKlYseBFVuxFfLOVj4RKhtUXYjMxP/XE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2289 (0x8f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B89, serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Validity Not Before: Aug 8 20:42:18 2025 GMT Not After : Aug 15 20:42:18 2025 GMT Subject: CN=6896612a-cc65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f1:03:09:e4:92:92:5d:16:fb:8f:ca:eb:4d: e7:80:42:1f:4c:e3:af:d0:81:17:db:5e:e9:5a:a9: f7:74:0c:85:56:7e:a5:64:e7:f3:c8:bb:ad:9c:6d: b0:02:09:5f:7f:ec:b5:39:36:4b:b4:45:2b:2f:a7: 88:9f:ae:44:e1:0a:c8:71:75:82:20:e3:42:c7:21: 32:ac:24:af:70:6e:c6:c7:38:73:d4:a8:ff:e8:08: 0a:46:cb:9d:c1:a5:75:25:62:43:71:99:c1:e9:3a: fc:8d:47:66:d1:b2:05:3a:c7:e5:d9:be:98:54:be: fe:40:38:58:2d:74:eb:6c:99:eb:6e:85:48:de:31: 5c:8a:5e:d6:a6:c5:2a:6f:1e:53:a7:15:5e:ae:52: 48:e9:fd:fd:1c:77:1f:05:1d:f5:df:9d:e5:68:6b: 16:84:02:0d:b7:8f:77:20:72:a4:44:67:13:2c:99: 14:36:c3:d3:d0:66:64:67:ae:c0:a7:1b:e9:a6:9d: da:d3:b0:68:94:f9:af:6a:1a:bd:c6:25:00:1b:df: 11:bc:33:7c:07:37:d0:b1:7a:f0:85:c8:4e:86:43: 1f:7f:1a:f4:4a:07:e2:0c:ea:ca:96:06:35:ae:d1: 1b:7f:66:8e:a3:d6:de:32:d1:36:f8:54:be:d6:a3: c3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:FB:16:D7:9A:C7:09:26:BF:2A:02:A2:D6:D9:90:8A:90:11:5B:61 X509v3 Authority Key Identifier: keyid:42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:30:ae:e3:0b:c0:2b:78:6b:9d:f3:48:0c:13:06:5b:5e:94: 9c:74:ef:bd:f8:b5:e5:0e:d2:79:45:8f:9a:d5:30:57:12:90: a0:a6:03:88:b1:b3:80:16:08:70:ea:8a:4e:22:4e:3b:89:be: 10:65:6a:8e:e5:3a:3a:95:90:fb:5b:32:7e:3a:81:9f:c4:dc: 81:22:bf:e5:f2:23:0d:f3:09:f0:ae:30:14:a7:6c:ca:c8:bf: 82:60:09:33:2a:90:af:a3:72:ae:47:c7:9c:04:de:ec:bc:13: ad:f6:4a:25:1e:01:c6:25:bc:b3:aa:dd:6f:20:b7:0d:11:e2: 04:75:43:3e:43:d6:4e:29:a7:01:35:0a:63:27:87:4a:52:25: 88:a2:e6:36:45:b7:c2:5b:2e:57:e8:3d:84:52:e9:63:99:19: 37:9a:77:5a:0b:97:aa:cf:53:22:49:da:91:26:dd:a8:e8:2d: 56:71:0d:b2:60:74:5f:61:3c:34:d1:6b:68:01:7b:25:2b:e8: ab:63:4c:65:88:15:20:f8:4b:24:8b:59:0c:cb:0c:20:89:8b: 0c:4a:1d:2d:60:bd:17:75:29:83:99:32:56:7b:29:bb:9d:41: f9:13:b5:bb:c1:27:86:df:44:93:ab:a2:2e:ac:2c:26:f3:ac: 5c:e5:ff:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCODkxMTAvBgNVBAUTKDQyOTA5ODAyNTdDNjc3MEIzNjBBRTk1NjJEQTU4OTND NjBEQURBNzcwHhcNMjUwODA4MjA0MjE4WhcNMjUwODE1MjA0MjE4WjAYMRYwFAYD VQQDEw02ODk2NjEyYS1jYzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvEDCeSSkl0W+4/K603ngEIfTOOv0IEX217pWqn3dAyFVn6lZOfzyLutnG2w Aglff+y1OTZLtEUrL6eIn65E4QrIcXWCIONCxyEyrCSvcG7Gxzhz1Kj/6AgKRsud waV1JWJDcZnB6Tr8jUdm0bIFOsfl2b6YVL7+QDhYLXTrbJnrboVI3jFcil7WpsUq bx5TpxVerlJI6f39HHcfBR31353laGsWhAINt493IHKkRGcTLJkUNsPT0GZkZ67A pxvppp3a07BolPmvahq9xiUAG98RvDN8BzfQsXrwhchOhkMffxr0SgfiDOrKlgY1 rtEbf2aOo9beMtE2+FS+1qPDNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNX7Ftea xwkmvyoCotbZkIqQEVthMB8GA1UdIwQYMBaAFEKQmAJXxncLNgrpVi2liTxg2tp3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4OS9EODM1NkJBQ0Iw NzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3czJDdWxXTGFXSlBHRGEy bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwQ1lBbGZHZHdzMkN1bFdMYVdKUEdEYTJuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0I4OS9EODM1NkJBQ0IwNzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3 czJDdWxXTGFXSlBHRGEybmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdMK7jC8AreGud80gMEwZbXpScdO+9+LXlDtJ5RY+a1TBXEpCgpgOI sbOAFghw6opOIk47ib4QZWqO5To6lZD7WzJ+OoGfxNyBIr/l8iMN8wnwrjAUp2zK yL+CYAkzKpCvo3KuR8ecBN7svBOt9kolHgHGJbyzqt1vILcNEeIEdUM+Q9ZOKacB NQpjJ4dKUiWIouY2RbfCWy5X6D2EUuljmRk3mndaC5eqz1MiSdqRJt2o6C1WcQ2y YHRfYTw00WtoAXslK+irY0xliBUg+Eski1kMywwgiYsMSh0tYL0XdSmDmTJWeym7 nUH5E7W7wSeG30STq6IurCwm86xc5f+n -----END CERTIFICATE-----Generated at Sun Aug 10 18:49:49 2025 by rpki-client