$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: 7EDfurraM+STf1AaeyvfS4j2SXIBl1SoquZD65TPXOM= Subject key identifier: BE:12:9C:A0:29:DD:AA:A2:86:B8:62:06:59:04:45:06:28:B3:41:BA Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 0559 Signing time: Sun 10 Aug 2025 23:29:52 +0000 Manifest this update: Sun 10 Aug 2025 23:29:51 +0000 Manifest next update: Sun 17 Aug 2025 23:29:51 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: 7spH6Ia9b6NcG4X63Pr+75d1z6KtMCiIjfgZpcUG0BM=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: /ckEG51NBhBYEZtZSbLBPmavN3UuTjHbEpYTSHsiIm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Aug 10 23:29:51 2025 GMT Not After : Aug 17 23:29:51 2025 GMT Subject: CN=68992b70-cf42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f4:68:03:6b:d8:d1:3a:45:62:09:4d:27:3d: 65:8f:91:3b:4e:4e:69:37:2b:11:82:d2:e2:d7:d6: e4:ec:ef:75:dc:6e:4c:b6:72:62:dc:3b:3f:bf:56: 99:02:ed:4b:09:2f:4c:de:d8:0a:55:7c:ae:73:aa: 56:93:dd:8b:ac:20:0d:fc:f8:7a:c3:9b:13:b3:ec: 13:d7:ac:03:0d:28:8a:59:af:1a:e8:8c:51:0c:f1: fb:39:4f:bb:1c:6b:f0:b7:85:f7:da:29:3d:94:71: 3a:ff:68:9d:a8:79:57:e2:07:7d:4f:b0:64:87:5f: 4b:1d:55:2b:28:3f:b4:41:df:d2:b5:26:fc:c6:53: 3a:97:c1:30:6f:39:47:82:78:3e:7c:c7:48:09:dd: 16:89:61:74:6b:84:5e:9e:85:22:2f:d5:fe:57:81: 00:60:27:63:da:5d:74:27:2c:a9:40:d1:60:3a:dc: 42:b3:cd:7c:3f:99:4e:de:23:e6:a8:0d:b6:1a:f6: 7f:4d:c6:17:10:a9:5e:fb:20:ad:c6:59:43:45:58: 29:c1:94:79:51:09:aa:19:cd:e3:36:57:5e:6e:f6: de:d3:cb:c4:f9:d2:af:ee:08:27:3d:94:26:f0:94: 55:5d:ea:c9:46:24:55:54:48:46:61:7f:2f:01:88: 79:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:12:9C:A0:29:DD:AA:A2:86:B8:62:06:59:04:45:06:28:B3:41:BA X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4f:80:18:5a:bb:e7:71:23:73:b7:4f:0b:60:1a:ce:13:1d: 0c:3d:99:2a:18:d3:31:26:2c:0b:39:72:53:44:bc:76:ee:6f: fa:5a:fe:ea:91:98:76:76:71:3a:b4:b4:02:57:2b:16:64:ee: 02:44:5d:5d:97:e0:f8:a1:e9:0c:af:fa:34:cc:56:42:86:b5: b8:27:73:c1:0a:f6:dd:12:5a:8d:79:1d:0f:c6:fa:92:89:ab: 95:19:1d:54:e4:39:89:7e:8c:6b:2b:d5:43:03:2b:fb:f5:81: d7:2f:7c:fc:df:56:06:c3:03:65:a5:9d:d7:4c:a0:44:e9:63: 60:3b:d5:5d:f1:80:03:4d:e5:30:51:8e:5c:cc:83:5b:48:e7: 12:f6:99:13:d2:e5:c5:0f:74:8d:f6:08:2a:69:30:41:b2:78: c0:4f:3d:89:93:70:9b:de:9e:d6:18:22:57:c2:10:c7:71:1d: 2d:e3:a6:eb:a1:86:80:5b:a6:3e:87:1a:5f:80:83:31:cd:1f: 45:7b:b4:f9:8d:14:3f:82:ab:7b:cf:31:01:b8:8f:b9:09:db: dd:67:94:53:a8:37:3f:3b:52:a7:dc:55:41:8d:3f:69:78:94: 83:f6:de:07:2a:03:44:0d:8c:d8:bc:c6:93:21:08:fa:9e:99: dd:92:c7:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUwODEwMjMyOTUxWhcNMjUwODE3MjMyOTUxWjAYMRYwFAYD VQQDEw02ODk5MmI3MC1jZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPRoA2vY0TpFYglNJz1lj5E7Tk5pNysRgtLi19bk7O913G5MtnJi3Ds/v1aZ Au1LCS9M3tgKVXyuc6pWk92LrCAN/Ph6w5sTs+wT16wDDSiKWa8a6IxRDPH7OU+7 HGvwt4X32ik9lHE6/2idqHlX4gd9T7Bkh19LHVUrKD+0Qd/StSb8xlM6l8EwbzlH gng+fMdICd0WiWF0a4RenoUiL9X+V4EAYCdj2l10JyypQNFgOtxCs818P5lO3iPm qA22GvZ/TcYXEKle+yCtxllDRVgpwZR5UQmqGc3jNldebvbe08vE+dKv7ggnPZQm 8JRVXerJRiRVVEhGYX8vAYh5LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4SnKAp 3aqihrhiBlkERQYos0G6MB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhT4AYWrvncSNzt08LYBrOEx0MPZkqGNMxJiwLOXJTRLx27m/6Wv7q kZh2dnE6tLQCVysWZO4CRF1dl+D4oekMr/o0zFZChrW4J3PBCvbdElqNeR0PxvqS iauVGR1U5DmJfoxrK9VDAyv79YHXL3z831YGwwNlpZ3XTKBE6WNgO9Vd8YADTeUw UY5czINbSOcS9pkT0uXFD3SN9ggqaTBBsnjATz2Jk3Cb3p7WGCJXwhDHcR0t46br oYaAW6Y+hxpfgIMxzR9Fe7T5jRQ/gqt7zzEBuI+5CdvdZ5RTqDc/O1Kn3FVBjT9p eJSD9t4HKgNEDYzYvMaTIQj6npndkseR -----END CERTIFICATE-----Generated at Mon Aug 11 04:17:25 2025 by rpki-client