$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: p9e+efdCzShh8OmonHpRdGD57fWhQAKjHsQILB4RsEE= Subject key identifier: F5:12:B9:12:CB:B6:D9:7C:B4:1E:24:6D:E0:59:0F:5F:C1:8D:D3:6B Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 12B2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 4777 Signing time: Sun 10 Aug 2025 14:21:01 +0000 Manifest this update: Sun 10 Aug 2025 14:21:01 +0000 Manifest next update: Sun 17 Aug 2025 14:21:01 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: Apud3nuOYyG8qNTcrBf8aL3sJemS9R9c+vz7Wk5GpCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4786 (0x12b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Aug 10 14:21:01 2025 GMT Not After : Aug 17 14:21:01 2025 GMT Subject: CN=6898aacd-0692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:73:a5:fd:ed:aa:ec:86:bb:3f:86:70:7e:7e: f6:29:bf:9a:b3:69:10:52:2c:2d:cf:9f:89:78:97: 67:e4:86:e3:b8:69:9c:54:0d:c7:37:27:82:06:3c: 37:20:37:18:f8:83:e6:57:05:8f:50:0e:e3:88:bb: 14:69:d2:f9:85:90:70:a6:6a:53:f7:90:2b:05:20: 88:5e:de:c5:b9:3d:f6:26:b8:7d:40:0e:86:b3:90: 81:4a:07:87:2c:86:23:26:64:1a:15:42:5e:37:8d: 00:6c:5c:49:5a:ff:c9:00:6f:18:e6:62:f5:00:1d: b2:fd:cc:4f:c1:5f:34:9d:c4:c0:d1:5b:cd:9a:bf: 3c:93:19:29:c1:b5:24:76:8a:ab:04:fa:3d:45:6c: 68:ee:97:7e:e8:c9:bd:ab:cd:3b:87:f5:b7:59:fa: dc:a0:a3:4c:94:df:ab:ec:0b:ec:4c:6b:a4:fb:d6: 69:92:ab:52:71:95:d3:77:5d:b6:26:14:47:7a:d9: ef:46:5a:6b:30:ef:dd:33:bd:ec:8d:0c:ee:6b:8d: 66:66:3c:84:17:ea:3c:fe:bd:5b:86:36:18:8c:10: 05:9f:e8:eb:eb:af:08:f8:a2:72:b8:f9:7c:0d:de: c8:37:6f:9c:f1:87:36:1a:ef:eb:f0:46:03:74:c9: 01:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:12:B9:12:CB:B6:D9:7C:B4:1E:24:6D:E0:59:0F:5F:C1:8D:D3:6B X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:f5:b1:44:de:c9:a0:d6:92:68:46:5b:2f:0d:ad:74:58:fa: 4f:62:1a:7c:03:7c:a4:65:58:24:7f:32:27:fa:c5:5e:74:9f: ea:2d:75:70:22:4f:c1:89:ca:7f:29:66:d6:c6:49:84:57:1e: ad:58:e9:41:8e:af:0c:6f:41:c1:b0:7d:ed:6c:10:43:9d:2c: 1d:ec:01:25:78:6b:b2:1b:b3:6e:7e:2e:4e:e1:b8:cc:aa:12: b0:9d:8a:d5:ed:5a:8f:7b:b4:61:2a:ce:b3:a0:9d:76:e4:d3: b4:64:22:90:ba:b3:4b:9e:cb:e9:80:ec:cd:91:ce:9a:f0:a7: 2c:d0:f4:9b:a8:ec:dc:50:7c:97:42:3a:b0:98:4b:5f:52:ac: 21:71:77:0a:de:10:bb:0f:ac:06:70:f0:6a:3d:7f:06:d2:41: 5c:d5:97:c2:f0:7b:d6:c3:27:ec:b8:0b:fb:ba:fe:6d:92:72: 05:ad:ec:0b:bd:c0:ca:72:62:a8:6c:26:60:20:86:86:2f:30: fd:62:b6:06:01:8f:68:11:7b:fc:d6:72:6d:63:ab:71:c4:42: d1:af:a6:e0:b2:ba:4e:a6:ef:0b:bc:86:f0:7e:7b:9e:e6:af: 0c:63:c8:18:e0:8a:75:d0:50:2b:fc:1d:72:2c:15:10:2c:f3: 10:91:65:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICErIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUwODEwMTQyMTAxWhcNMjUwODE3MTQyMTAxWjAYMRYwFAYD VQQDEw02ODk4YWFjZC0wNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73Ol/e2q7Ia7P4Zwfn72Kb+as2kQUiwtz5+JeJdn5IbjuGmcVA3HNyeCBjw3 IDcY+IPmVwWPUA7jiLsUadL5hZBwpmpT95ArBSCIXt7FuT32Jrh9QA6Gs5CBSgeH LIYjJmQaFUJeN40AbFxJWv/JAG8Y5mL1AB2y/cxPwV80ncTA0VvNmr88kxkpwbUk doqrBPo9RWxo7pd+6Mm9q807h/W3WfrcoKNMlN+r7AvsTGuk+9ZpkqtScZXTd122 JhRHetnvRlprMO/dM73sjQzua41mZjyEF+o8/r1bhjYYjBAFn+jr668I+KJyuPl8 Dd7IN2+c8Yc2Gu/r8EYDdMkBTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUSuRLL ttl8tB4kbeBZD1/BjdNrMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl9bFE3smg1pJoRlsvDa10WPpPYhp8A3ykZVgkfzIn+sVedJ/qLXVw Ik/Bicp/KWbWxkmEVx6tWOlBjq8Mb0HBsH3tbBBDnSwd7AEleGuyG7Nufi5O4bjM qhKwnYrV7VqPe7RhKs6zoJ125NO0ZCKQurNLnsvpgOzNkc6a8Kcs0PSbqOzcUHyX QjqwmEtfUqwhcXcK3hC7D6wGcPBqPX8G0kFc1ZfC8HvWwyfsuAv7uv5tknIFrewL vcDKcmKobCZgIIaGLzD9YrYGAY9oEXv81nJtY6txxELRr6bgsrpOpu8LvIbwfnue 5q8MY8gY4Ip10FAr/B1yLBUQLPMQkWUl -----END CERTIFICATE-----Generated at Mon Aug 11 14:46:59 2025 by rpki-client