$ rpki-client -vvf rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft File: QLjSLvI7N7C55T88ThDWrj64qZ8.mft (raw, json) Hash identifier: A2Jc5lAu5bmw5dhJlYTJTocA6na7C5yKMaErii4vaAE= Subject key identifier: 0B:8D:FA:B3:D9:91:8D:BA:E2:AE:70:EA:5E:5C:EF:9D:5C:04:4B:01 Authority key identifier: 40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F Certificate issuer: /CN=A91E689D/serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Certificate serial: 34B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft Manifest number: 34AD Signing time: Fri 08 Aug 2025 15:04:34 +0000 Manifest this update: Fri 08 Aug 2025 15:04:33 +0000 Manifest next update: Fri 15 Aug 2025 15:04:33 +0000 Files and hashes: 1: QLjSLvI7N7C55T88ThDWrj64qZ8.crl (hash: qP59bb10/N2IwBlfh76NP4C3miDu31qgK+1bS1abSw8=) 2: 3773AC0C8B6111EFA3A49037C4F9AE02.roa (hash: Ijy1uWFshu2uXbMSDNdrdIor4pwld2OcIkcbdYGoQws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E689D, serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Validity Not Before: Aug 8 15:04:33 2025 GMT Not After : Aug 15 15:04:33 2025 GMT Subject: CN=68961202-b05e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b1:99:94:a4:cd:ba:be:80:4c:df:7a:bc:dd: 65:2f:83:cd:2e:bf:9c:b4:e1:e3:64:3f:24:f8:fc: 8e:ef:46:20:59:d8:9e:ef:a8:61:43:f6:56:b8:02: 4f:b2:23:c0:d7:da:43:e0:17:09:0f:4e:33:68:07: 2e:12:69:ff:3c:ce:78:4d:c0:b2:6c:36:17:44:c1: 23:d8:59:dd:8b:30:35:a4:e5:1b:93:c7:7f:ab:59: 85:c2:c6:1c:b4:9b:a8:31:f5:a4:b1:80:a2:f2:1e: df:8c:78:3e:cf:a7:26:60:2f:c9:e2:4a:ab:5a:2e: 8f:d8:a7:19:5a:88:58:44:8a:ac:de:a2:5f:00:89: 74:14:2b:24:90:83:20:45:5f:3a:64:ae:9b:19:10: 01:c7:0c:26:ef:10:ac:9d:04:5a:e0:85:b9:79:26: bd:98:ab:04:fe:e6:d8:9c:e6:79:92:ff:86:e8:31: ae:40:78:cb:63:30:80:aa:e6:15:06:31:ea:7c:3b: cd:10:6c:c8:cb:6f:ca:14:ff:ee:d0:6e:36:4e:a3: e3:b8:d8:15:d9:55:63:c3:fb:57:46:36:04:4c:ca: 8c:f5:99:8d:e8:57:76:68:59:8d:2d:47:58:25:5a: 73:78:fc:e8:f5:d8:ce:d0:da:31:d5:2a:45:c5:01: b3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:8D:FA:B3:D9:91:8D:BA:E2:AE:70:EA:5E:5C:EF:9D:5C:04:4B:01 X509v3 Authority Key Identifier: keyid:40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f0:18:5c:73:39:97:cb:06:fa:f5:7c:5c:99:bb:ae:92:81: c5:32:e1:5a:95:13:ee:47:56:ca:12:55:c7:31:a6:4b:29:57: ae:ee:77:61:f8:78:2d:e7:98:2e:0c:82:21:86:d7:58:ee:b3: 49:fc:63:41:5d:df:48:46:fe:5d:c0:49:72:5b:62:da:53:71: 5f:b1:02:c1:25:d6:15:11:de:89:b7:94:01:d1:f3:97:64:a0: 08:44:a8:b7:9c:35:9b:e1:a3:f9:dd:b9:6b:ae:59:96:1c:fd: ff:2b:4e:3a:45:74:5f:06:a3:23:ea:f8:c8:43:17:d9:6d:70: 31:05:dd:3c:49:a0:b2:dd:13:1b:c6:f4:ff:d2:b0:4d:eb:46: c1:c9:8e:f7:d2:90:7b:25:45:3a:f3:aa:a2:19:4f:6c:41:1d: 5f:dc:dc:f9:8e:c0:e9:61:d6:e9:be:cf:94:1e:a9:1a:00:f4: 6d:77:ac:5f:9e:7c:7f:19:3f:4d:d0:09:66:9d:be:80:8d:34: 96:91:13:b0:af:8b:86:62:6c:e7:73:f1:cb:f7:75:16:d6:30: d9:8a:39:50:7c:c7:11:cf:83:fa:0c:39:b7:80:e0:8e:9c:50: f8:15:ba:c9:02:2c:da:fd:cf:b5:30:e8:2c:89:19:4d:80:4c: 2e:6b:54:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4OUQxMTAvBgNVBAUTKDQwQjhEMjJFRjIzQjM3QjBCOUU1M0YzQzRFMTBENkFF M0VCOEE5OUYwHhcNMjUwODA4MTUwNDMzWhcNMjUwODE1MTUwNDMzWjAYMRYwFAYD VQQDEw02ODk2MTIwMi1iMDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rGZlKTNur6ATN96vN1lL4PNLr+ctOHjZD8k+PyO70YgWdie76hhQ/ZWuAJP siPA19pD4BcJD04zaAcuEmn/PM54TcCybDYXRMEj2FndizA1pOUbk8d/q1mFwsYc tJuoMfWksYCi8h7fjHg+z6cmYC/J4kqrWi6P2KcZWohYRIqs3qJfAIl0FCskkIMg RV86ZK6bGRABxwwm7xCsnQRa4IW5eSa9mKsE/ubYnOZ5kv+G6DGuQHjLYzCAquYV BjHqfDvNEGzIy2/KFP/u0G42TqPjuNgV2VVjw/tXRjYETMqM9ZmN6Fd2aFmNLUdY JVpzePzo9djO0Nox1SpFxQGzpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuN+rPZ kY264q5w6l5c751cBEsBMB8GA1UdIwQYMBaAFEC40i7yOzewueU/PE4Q1q4+uKmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg5RC9DN0M2M0RBODFE OUUxMUUyODNDRUZBOEUwOEIwMkNEMi9RTGpTTHZJN043QzU1VDg4VGhEV3JqNjRx WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMalNMdkk3TjdDNTVUODhUaERXcmo2NHFaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg5RC9DN0M2M0RBODFEOUUxMUUyODNDRUZBOEUwOEIwMkNEMi9RTGpTTHZJN043 QzU1VDg4VGhEV3JqNjRxWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo8BhcczmXywb69XxcmbuukoHFMuFalRPuR1bKElXHMaZLKVeu7ndh +Hgt55guDIIhhtdY7rNJ/GNBXd9IRv5dwElyW2LaU3FfsQLBJdYVEd6Jt5QB0fOX ZKAIRKi3nDWb4aP53blrrlmWHP3/K046RXRfBqMj6vjIQxfZbXAxBd08SaCy3RMb xvT/0rBN60bByY730pB7JUU686qiGU9sQR1f3Nz5jsDpYdbpvs+UHqkaAPRtd6xf nnx/GT9N0Almnb6AjTSWkROwr4uGYmznc/HL93UW1jDZijlQfMcRz4P6DDm3gOCO nFD4FbrJAiza/c+1MOgsiRlNgEwua1Qt -----END CERTIFICATE-----Generated at Sat Aug 9 10:45:13 2025 by rpki-client