$ rpki-client -vvf rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft File: qSHPiNjIngus1O4YU4wzsnipWSw.mft (raw, json) Hash identifier: jfLy9k7kl97Kjv31+n1x+S1LB315X5YkyASdk9YG33A= Subject key identifier: 26:B9:88:67:94:50:D2:53:4D:DD:4D:3A:67:5C:29:14:68:F7:61:41 Authority key identifier: A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C Certificate issuer: /CN=A91127A2/serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Certificate serial: 0619 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft Manifest number: 0614 Signing time: Fri 22 Aug 2025 22:59:16 +0000 Manifest this update: Fri 22 Aug 2025 22:59:15 +0000 Manifest next update: Fri 29 Aug 2025 22:59:15 +0000 Files and hashes: 1: qSHPiNjIngus1O4YU4wzsnipWSw.crl (hash: BENkVJUcMkUL0xzOoMilv7SNY70mVxspmZ29ON1ijEY=) 2: 07332486B1D111EBA956F96AC4F9AE02.roa (hash: QK+G6fNVeQvRNDArbOTnNoOHNeXa2RP5xEy26aJHwS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127A2, serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Validity Not Before: Aug 22 22:59:15 2025 GMT Not After : Aug 29 22:59:15 2025 GMT Subject: CN=68a8f643-9d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:17:7e:63:8e:a6:4e:15:47:66:96:34:2e:a3: e9:7c:c9:19:8e:18:6b:dc:10:5d:7a:26:07:8e:8f: 7c:c0:b7:87:eb:3c:a3:d7:27:a9:60:5b:6a:e2:58: 56:34:23:32:8d:15:c0:77:1e:1d:05:67:62:08:88: 81:a4:48:ec:d6:87:58:16:cc:3d:24:6b:37:26:23: 29:fa:c9:32:d4:9f:20:7f:cc:df:f2:e9:d8:3b:45: b1:13:f9:b8:80:d1:98:92:82:72:e2:dd:8a:e6:23: c7:2f:e3:ec:64:75:ea:e5:d9:84:28:3b:70:6f:36: 57:8f:05:32:d4:80:1f:af:24:53:09:ed:a3:28:33: 81:a4:67:d3:6a:77:93:bb:7f:21:fc:44:21:43:6d: 05:90:e3:dd:3b:a2:5a:b8:95:a5:27:1c:61:ef:11: dd:a8:e4:ec:aa:a1:1d:b0:00:0b:ca:c4:26:81:53: 67:75:62:1b:1c:87:b8:1e:9a:4d:d7:23:05:53:30: 77:e0:b1:d0:62:22:9b:e6:ec:25:32:68:d4:1e:f9: af:19:ed:a3:10:42:af:62:2f:43:5b:5d:4d:3b:e9: 62:c9:ce:b7:89:9a:73:00:f3:fa:cc:d3:77:2c:b2: 88:cf:43:a7:69:74:8b:4f:bc:94:3b:b9:85:b6:9f: c9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B9:88:67:94:50:D2:53:4D:DD:4D:3A:67:5C:29:14:68:F7:61:41 X509v3 Authority Key Identifier: keyid:A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:69:32:f9:66:10:9b:a0:7c:89:a0:24:bc:44:b0:7e:08:b7: 55:6c:01:e3:97:9c:47:36:f5:70:0a:8e:a0:92:0b:e0:73:ea: 01:f2:99:bf:6c:b1:7b:37:62:be:8b:7c:ff:c1:69:ca:2c:06: 0d:74:2a:b2:12:f2:e2:25:de:b6:56:76:53:29:dc:0e:43:d0: a8:88:74:52:af:23:b8:b0:a2:e7:c0:0b:da:2d:0e:09:40:c6: 7b:cd:cf:83:40:95:61:f6:62:be:58:e9:1d:0e:9e:27:fa:a0: bf:08:5f:98:89:74:73:59:15:c4:da:98:d2:9f:f3:f9:e8:21: 29:5d:ea:1e:91:70:2e:1a:9a:ea:fc:dd:05:3f:1a:31:63:27: 90:73:51:76:2a:53:cc:a9:b5:26:c6:6f:a9:da:01:c3:ae:43: ba:ff:5c:47:a0:06:da:75:d3:ae:da:7b:83:26:87:7c:04:a1: 33:37:2f:b0:1d:32:10:4d:02:7b:51:72:80:20:73:b6:9d:60: 9b:d9:64:7b:2d:74:51:be:95:59:a8:36:9b:64:3e:a6:55:89: 30:ab:e5:d0:ec:a1:2f:3e:a0:3b:e8:80:79:92:33:20:38:08: a3:ef:9e:12:bc:f4:db:73:b6:3d:79:01:69:56:3e:d2:2f:8b: 1d:3c:8a:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QTIxMTAvBgNVBAUTKEE5MjFDRjg4RDhDODlFMEJBQ0Q0RUUxODUzOEMzM0Iy NzhBOTU5MkMwHhcNMjUwODIyMjI1OTE1WhcNMjUwODI5MjI1OTE1WjAYMRYwFAYD VQQDEw02OGE4ZjY0My05ZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhd+Y46mThVHZpY0LqPpfMkZjhhr3BBdeiYHjo98wLeH6zyj1yepYFtq4lhW NCMyjRXAdx4dBWdiCIiBpEjs1odYFsw9JGs3JiMp+sky1J8gf8zf8unYO0WxE/m4 gNGYkoJy4t2K5iPHL+PsZHXq5dmEKDtwbzZXjwUy1IAfryRTCe2jKDOBpGfTaneT u38h/EQhQ20FkOPdO6JauJWlJxxh7xHdqOTsqqEdsAALysQmgVNndWIbHIe4HppN 1yMFUzB34LHQYiKb5uwlMmjUHvmvGe2jEEKvYi9DW11NO+liyc63iZpzAPP6zNN3 LLKIz0OnaXSLT7yUO7mFtp/JnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCa5iGeU UNJTTd1NOmdcKRRo92FBMB8GA1UdIwQYMBaAFKkhz4jYyJ4LrNTuGFOMM7J4qVks MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdBMi9EMUNENTQ1OEIx Q0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5ndXMxTzRZVTR3enNuaXBX U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTSFBpTmpJbmd1czFPNFlVNHd6c25pcFdTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdBMi9EMUNENTQ1OEIxQ0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5n dXMxTzRZVTR3enNuaXBXU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWaTL5ZhCboHyJoCS8RLB+CLdVbAHjl5xHNvVwCo6gkgvgc+oB8pm/ bLF7N2K+i3z/wWnKLAYNdCqyEvLiJd62VnZTKdwOQ9CoiHRSryO4sKLnwAvaLQ4J QMZ7zc+DQJVh9mK+WOkdDp4n+qC/CF+YiXRzWRXE2pjSn/P56CEpXeoekXAuGprq /N0FPxoxYyeQc1F2KlPMqbUmxm+p2gHDrkO6/1xHoAbaddOu2nuDJod8BKEzNy+w HTIQTQJ7UXKAIHO2nWCb2WR7LXRRvpVZqDabZD6mVYkwq+XQ7KEvPqA76IB5kjMg OAij754SvPTbc7Y9eQFpVj7SL4sdPIpd -----END CERTIFICATE-----Generated at Sat Aug 23 19:44:33 2025 by rpki-client