$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft File: QcZcAPCmsH08D2sSkFZPv4OC2nM.mft (raw, json) Hash identifier: VnTG1LIpJCmxlcA7s/gyr3FjOeRmB61D+q4TBQ98phw= Subject key identifier: 47:05:50:6A:1C:28:88:14:4C:7F:81:9C:7D:FE:B9:70:55:38:AE:BC Authority key identifier: 41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 Certificate issuer: /CN=A91ECD98/serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Certificate serial: 0A7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft Manifest number: 0A72 Signing time: Mon 04 Aug 2025 19:52:37 +0000 Manifest this update: Mon 04 Aug 2025 19:52:36 +0000 Manifest next update: Mon 11 Aug 2025 19:52:36 +0000 Files and hashes: 1: QcZcAPCmsH08D2sSkFZPv4OC2nM.crl (hash: TZaQtmZJiMqRkINxSjUVNQ82jJZU9oc9LBzhLXOmS4U=) 2: F760C48ACE0111EB980FBD53C4F9AE02.roa (hash: lEjGikQ+ii4jtTGbAoJ/KSsQ3VS5/CajiRstqwCSiwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 19:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2682 (0xa7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECD98, serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Validity Not Before: Aug 4 19:52:36 2025 GMT Not After : Aug 11 19:52:36 2025 GMT Subject: CN=68910f84-6444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:95:cb:0d:12:b6:b1:50:24:cc:aa:a2:8c:b6: 5c:16:ef:26:54:ef:ab:1a:21:ad:6d:98:93:cd:00: 4f:59:25:81:24:45:11:c9:83:7a:de:3e:bb:67:21: 17:4b:fe:49:c5:77:d9:89:64:9c:a0:fc:48:68:56: 93:8c:c6:15:aa:e2:2f:f4:cd:ea:68:17:34:10:91: b4:b8:7c:50:cd:17:80:00:e4:eb:52:dc:24:25:a4: 55:cb:33:84:92:c3:9d:b0:80:49:83:eb:c3:12:4c: be:65:f2:34:12:67:b0:d1:90:c3:e6:b4:ea:3e:3d: 90:f5:d0:da:89:8a:ef:3c:a8:91:e6:74:cf:44:48: 0b:08:f7:71:8d:53:fa:68:ff:43:eb:c6:82:06:92: d2:cb:e9:a6:d2:e5:c9:64:73:75:18:9b:a5:20:40: 38:71:8d:dc:db:37:98:37:5e:73:46:36:dd:1f:fa: eb:60:49:df:ee:73:a7:2b:75:ed:40:07:16:6e:31: b8:f0:a8:86:08:cc:bf:2a:48:b6:14:2b:cd:a4:2b: c6:a8:a1:95:42:f5:a5:45:60:69:b1:f0:4c:77:39: 74:19:eb:b0:e1:28:5d:d6:4b:c9:93:b5:a3:e3:17: 61:b5:b7:c9:b4:be:9c:f6:21:23:78:6a:80:f3:e9: 36:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:05:50:6A:1C:28:88:14:4C:7F:81:9C:7D:FE:B9:70:55:38:AE:BC X509v3 Authority Key Identifier: keyid:41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:a3:34:6c:95:30:f8:e8:f4:04:dd:48:ff:53:78:94:de:8e: 27:5b:d1:1b:fb:f3:3c:57:b4:7b:cd:40:68:58:b4:c0:40:87: 95:8d:1d:a7:a7:6f:4d:8e:99:16:97:68:47:04:0e:cb:94:2b: fe:68:3d:41:df:3b:25:0c:60:71:72:01:61:d5:c9:8a:bd:a9: 10:8b:bf:ec:9e:f0:39:2d:c2:c7:e9:04:a5:d9:1a:67:f2:e3: 09:17:9d:05:c4:0c:e1:0c:cd:26:5b:36:37:a2:e8:80:90:d6: 58:b1:a0:19:b7:8e:81:91:24:75:6c:aa:76:6d:bf:33:ed:8e: ad:93:b2:c2:53:16:03:b6:e5:88:3a:d8:d9:53:c8:c6:7d:ed: f4:0b:0b:06:0d:fe:8f:e1:76:19:2d:50:5b:98:be:21:0d:30: 71:46:44:65:77:25:39:f6:61:75:eb:af:8c:a0:b9:c6:c8:e5: 44:65:d1:d7:c0:30:c3:5f:9e:63:42:bc:06:ba:9e:e5:3c:e3: b4:3f:32:d7:9d:a9:60:1e:d8:25:fa:04:79:01:ce:e1:57:c0: bb:f6:3d:00:7f:45:56:64:b3:5e:55:cf:29:4e:bd:ec:80:f7: fe:bc:7f:d1:08:2f:67:e7:5c:36:52:4d:0a:48:ca:f1:11:a6: 85:4c:03:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNEOTgxMTAvBgNVBAUTKDQxQzY1QzAwRjBBNkIwN0QzQzBGNkIxMjkwNTY0RkJG ODM4MkRBNzMwHhcNMjUwODA0MTk1MjM2WhcNMjUwODExMTk1MjM2WjAYMRYwFAYD VQQDEw02ODkxMGY4NC02NDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85XLDRK2sVAkzKqijLZcFu8mVO+rGiGtbZiTzQBPWSWBJEURyYN63j67ZyEX S/5JxXfZiWScoPxIaFaTjMYVquIv9M3qaBc0EJG0uHxQzReAAOTrUtwkJaRVyzOE ksOdsIBJg+vDEky+ZfI0Emew0ZDD5rTqPj2Q9dDaiYrvPKiR5nTPREgLCPdxjVP6 aP9D68aCBpLSy+mm0uXJZHN1GJulIEA4cY3c2zeYN15zRjbdH/rrYEnf7nOnK3Xt QAcWbjG48KiGCMy/Kki2FCvNpCvGqKGVQvWlRWBpsfBMdzl0Geuw4Shd1kvJk7Wj 4xdhtbfJtL6c9iEjeGqA8+k2awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcFUGoc KIgUTH+BnH3+uXBVOK68MB8GA1UdIwQYMBaAFEHGXADwprB9PA9rEpBWT7+Dgtpz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0Q5OC83ODAyMDQ4QTY2 QTQxMUVBOEZDQjJCNkZDNEY5QUUwMi9RY1pjQVBDbXNIMDhEMnNTa0ZaUHY0T0My bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FjWmNBUENtc0gwOEQyc1NrRlpQdjRPQzJuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0Q5OC83ODAyMDQ4QTY2QTQxMUVBOEZDQjJCNkZDNEY5QUUwMi9RY1pjQVBDbXNI MDhEMnNTa0ZaUHY0T0Mybk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQozRslTD46PQE3Uj/U3iU3o4nW9Eb+/M8V7R7zUBoWLTAQIeVjR2n p29NjpkWl2hHBA7LlCv+aD1B3zslDGBxcgFh1cmKvakQi7/snvA5LcLH6QSl2Rpn 8uMJF50FxAzhDM0mWzY3ouiAkNZYsaAZt46BkSR1bKp2bb8z7Y6tk7LCUxYDtuWI OtjZU8jGfe30CwsGDf6P4XYZLVBbmL4hDTBxRkRldyU59mF166+MoLnGyOVEZdHX wDDDX55jQrwGup7lPOO0PzLXnalgHtgl+gR5Ac7hV8C79j0Af0VWZLNeVc8pTr3s gPf+vH/RCC9n51w2Uk0KSMrxEaaFTAPe -----END CERTIFICATE-----Generated at Wed Aug 6 16:26:37 2025 by rpki-client