$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json) Hash identifier: anxicSKrmUpFjPI5Jxk/ojq+K2BNxk3soPEt1uOAVac= Subject key identifier: 3C:D6:BF:7B:7A:AF:87:98:A0:7B:83:43:EB:50:0F:4E:B8:78:E6:D9 Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B Certificate issuer: /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Certificate serial: 07E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft Manifest number: 07E2 Signing time: Fri 08 Aug 2025 21:24:22 +0000 Manifest this update: Fri 08 Aug 2025 21:24:21 +0000 Manifest next update: Fri 15 Aug 2025 21:24:21 +0000 Files and hashes: 1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: Ea0HgySa6MUl1MhdVMz3NjkQB0GC5Lq6bKYjvGT7kvg=) 2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2025 (0x7e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Validity Not Before: Aug 8 21:24:21 2025 GMT Not After : Aug 15 21:24:21 2025 GMT Subject: CN=68966b05-9697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ca:50:aa:9c:78:1e:9a:a1:12:71:bf:a0:f9: a1:be:08:fc:43:13:82:34:6f:de:04:fd:c5:d7:e3: 66:eb:26:05:b0:c7:8b:9f:b2:02:82:92:3d:71:43: 1b:7c:f2:e0:1b:4d:17:cf:33:eb:5a:80:ee:b7:18: b7:3a:86:b2:97:0f:47:a7:74:60:65:aa:90:e9:46: 17:8e:7c:a8:c1:f0:40:36:e0:dd:37:0f:f9:b6:6f: c0:d8:95:83:db:f6:ba:3e:6a:5a:09:eb:15:dd:cd: 50:99:20:20:7b:78:3d:0b:b4:95:26:53:0a:6b:f5: 55:db:2e:b2:93:23:c4:a9:a4:9b:72:48:c4:65:23: cc:5a:f8:bb:60:1c:e4:3f:5d:ac:9e:09:dd:56:fd: a3:05:a7:7d:27:1a:b5:63:19:36:d3:b7:33:05:91: bd:51:62:db:c8:6a:11:5e:cc:87:97:1d:4a:8a:54: c9:ca:6d:47:06:7e:61:c9:84:ad:27:49:27:73:ab: d6:4c:8a:94:42:58:5a:15:35:10:1d:3c:ec:e5:9d: 0b:84:02:e5:24:5c:b0:91:00:8d:88:d0:86:5b:75: 98:66:7b:4c:2e:77:8f:e2:23:a0:07:1a:87:84:64: 64:62:3b:10:05:4a:00:dc:a1:b1:38:4a:65:0b:cc: 38:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D6:BF:7B:7A:AF:87:98:A0:7B:83:43:EB:50:0F:4E:B8:78:E6:D9 X509v3 Authority Key Identifier: keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:85:61:84:c8:09:62:7c:b6:02:2a:16:a4:b8:b4:0f:39:21: 5d:72:fa:94:86:7e:c9:e6:0a:20:dd:af:3b:70:63:4f:b0:5a: 48:21:ba:a3:46:18:b9:6d:2d:2c:46:5d:22:4b:13:d1:83:ec: d7:b4:42:56:48:99:8f:d1:b3:1c:b0:3b:b2:51:ca:19:7a:7d: 41:83:16:b0:f8:35:e2:31:13:e1:21:3f:61:88:0a:a0:49:5c: df:13:2c:41:55:60:0e:79:b1:be:73:91:46:d5:e8:e6:76:2f: 9e:d6:3a:15:d3:c5:65:99:0f:c8:10:52:f1:a7:b1:38:a8:a1: 6d:68:14:cc:5d:0c:e1:39:36:9e:a1:46:fb:8e:be:1f:13:c2: 86:8b:ec:09:21:6f:cb:ff:b9:9e:1f:15:0c:cf:97:fb:19:63: 1b:cb:16:00:00:69:76:fe:ee:ea:03:f3:cd:9d:b5:0e:f2:a4: ed:c4:af:5b:14:0c:fd:96:ff:c2:e0:a4:85:08:19:51:bb:09: 86:fd:3b:20:29:e4:b1:1d:24:7d:9a:cd:b6:36:da:c9:0b:1b: d7:32:32:c1:ea:1f:94:18:ea:f1:f4:93:94:84:aa:60:4d:af: 54:19:8d:70:db:c5:11:26:54:f5:12:24:0d:47:39:10:cb:ad: 08:20:a4:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGNEMxMTAvBgNVBAUTKDQxRTM4MEEwQzlGQUJDQzEwRjhFQTMyOTYzNTJFNkE3 ODc4RDM1M0IwHhcNMjUwODA4MjEyNDIxWhcNMjUwODE1MjEyNDIxWjAYMRYwFAYD VQQDEw02ODk2NmIwNS05Njk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMpQqpx4HpqhEnG/oPmhvgj8QxOCNG/eBP3F1+Nm6yYFsMeLn7ICgpI9cUMb fPLgG00XzzPrWoDutxi3Ooaylw9Hp3RgZaqQ6UYXjnyowfBANuDdNw/5tm/A2JWD 2/a6PmpaCesV3c1QmSAge3g9C7SVJlMKa/VV2y6ykyPEqaSbckjEZSPMWvi7YBzk P12sngndVv2jBad9Jxq1Yxk207czBZG9UWLbyGoRXsyHlx1KilTJym1HBn5hyYSt J0knc6vWTIqUQlhaFTUQHTzs5Z0LhALlJFywkQCNiNCGW3WYZntMLneP4iOgBxqH hGRkYjsQBUoA3KGxOEplC8w4kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzWv3t6 r4eYoHuDQ+tQD064eObZMB8GA1UdIwQYMBaAFEHjgKDJ+rzBD46jKWNS5qeHjTU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEY0Qy85NDA3NjVGQ0Y5 NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZNRVBqcU1wWTFMbXA0ZU5O VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlT0FvTW42dk1FUGpxTXBZMUxtcDRlTk5Ucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEY0Qy85NDA3NjVGQ0Y5NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZN RVBqcU1wWTFMbXA0ZU5OVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAihWGEyAlifLYCKhakuLQPOSFdcvqUhn7J5gog3a87cGNPsFpIIbqj Rhi5bS0sRl0iSxPRg+zXtEJWSJmP0bMcsDuyUcoZen1Bgxaw+DXiMRPhIT9hiAqg SVzfEyxBVWAOebG+c5FG1ejmdi+e1joV08VlmQ/IEFLxp7E4qKFtaBTMXQzhOTae oUb7jr4fE8KGi+wJIW/L/7meHxUMz5f7GWMbyxYAAGl2/u7qA/PNnbUO8qTtxK9b FAz9lv/C4KSFCBlRuwmG/TsgKeSxHSR9ms22NtrJCxvXMjLB6h+UGOrx9JOUhKpg Ta9UGY1w28URJlT1EiQNRzkQy60IIKSO -----END CERTIFICATE-----Generated at Sun Aug 10 18:56:26 2025 by rpki-client