$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: lP1nrUcJB0UjEO+ZrGmP7IkJDLkyau9dyNlCvVSg4w4= Subject key identifier: 81:63:72:07:BD:84:5C:95:94:44:A8:70:6A:0C:89:66:60:A4:76:A7 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1BF0 Signing time: Fri 22 Aug 2025 16:19:53 +0000 Manifest this update: Fri 22 Aug 2025 16:19:53 +0000 Manifest next update: Fri 29 Aug 2025 16:19:53 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: qDDVYweA24xvYtS7AbBqTL1OKYhyJsmf6hXvsOu+/Go=) 2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: DzfAqd947/aw0GqhghbdVi3PbAms0DDMSaZSwYpp3rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7202 (0x1c22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: Aug 22 16:19:53 2025 GMT Not After : Aug 29 16:19:53 2025 GMT Subject: CN=68a898a9-e72f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ff:cb:c5:ee:47:b1:67:1b:84:d9:05:f5:8f: c0:a9:1b:dc:80:6d:25:24:91:4f:14:5d:7b:9d:cb: ac:59:f1:bd:ae:e2:ec:ee:43:2f:83:72:f5:c8:3b: f4:49:ad:d6:ba:e7:81:56:d4:f0:c1:0c:d6:3c:a9: 83:c6:6f:20:9f:4f:1a:c7:a7:db:cc:a2:36:fb:cb: 28:4c:4d:ac:b9:27:47:92:82:59:2c:02:0d:14:f9: fe:b4:cc:46:7d:0c:10:8e:5e:7a:26:a0:16:f5:c5: 2e:db:7c:2a:ab:6c:bd:92:84:50:fb:a7:ad:06:dd: 05:88:46:8b:d8:d6:64:9f:b1:b3:18:bb:4e:4e:b3: 54:99:35:c7:2f:3b:c9:5b:35:7f:d7:4c:89:be:a4: b6:8a:42:72:eb:f6:f9:3f:cd:e9:1a:9a:aa:f4:6b: 05:f3:66:24:a6:38:cf:c3:cd:3c:8c:35:fe:51:04: a1:6d:62:04:1d:f3:dd:92:b6:47:d9:f7:18:90:82: a1:f5:68:82:93:c6:ce:b2:4a:1f:fb:dd:1d:3c:9c: 32:8d:84:08:bc:1b:fe:9c:92:69:e4:da:1b:5d:ee: 54:7e:31:ec:59:62:28:3e:55:c0:44:8a:66:fe:fc: 63:ee:17:f4:fc:b1:f0:29:e6:f8:9c:58:c4:31:8a: e5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:63:72:07:BD:84:5C:95:94:44:A8:70:6A:0C:89:66:60:A4:76:A7 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:86:b6:01:7e:48:c8:06:0a:d6:bb:93:25:2e:df:4e:33:08: 85:78:8c:73:5a:5a:12:3b:c2:84:75:f4:e9:70:b4:5e:21:60: 5b:8f:b4:23:f8:77:76:b9:9e:77:fb:59:20:78:32:77:f7:49: 47:94:1d:4b:9b:26:64:f1:0c:32:0a:9e:6c:31:ba:0f:21:77: 70:4d:76:d5:b7:e5:af:60:5e:97:f3:7c:f4:02:cf:d8:8c:90: 93:39:22:27:33:f7:ac:2d:43:70:94:ee:03:2c:a7:ef:f4:c6: ed:84:10:13:eb:2a:47:db:54:1e:da:42:e8:bf:5d:92:58:37: fc:57:1c:58:a9:a3:e1:70:54:dc:71:65:6c:be:63:cb:cd:03: c7:32:31:b3:b0:c0:d4:50:b3:bf:e8:21:78:81:7c:c3:ff:66: 89:0c:6d:35:fc:e0:ba:63:7e:d2:9d:01:bb:3d:12:88:df:97: 5a:5e:40:dd:ea:84:a0:de:74:70:e8:e2:de:11:b6:f7:17:78: 83:4e:ea:d0:b3:98:2a:51:fe:dc:0c:e9:16:0f:f4:6b:35:e2: 72:68:2e:79:b2:e6:d0:04:ca:0c:7b:28:23:c5:ad:66:11:9b: 02:a3:e5:62:da:33:f8:df:8c:32:0d:ac:c3:33:c2:99:62:d3: ff:db:f2:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUwODIyMTYxOTUzWhcNMjUwODI5MTYxOTUzWjAYMRYwFAYD VQQDEw02OGE4OThhOS1lNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApv/Lxe5HsWcbhNkF9Y/AqRvcgG0lJJFPFF17ncusWfG9ruLs7kMvg3L1yDv0 Sa3WuueBVtTwwQzWPKmDxm8gn08ax6fbzKI2+8soTE2suSdHkoJZLAINFPn+tMxG fQwQjl56JqAW9cUu23wqq2y9koRQ+6etBt0FiEaL2NZkn7GzGLtOTrNUmTXHLzvJ WzV/10yJvqS2ikJy6/b5P83pGpqq9GsF82YkpjjPw808jDX+UQShbWIEHfPdkrZH 2fcYkIKh9WiCk8bOskof+90dPJwyjYQIvBv+nJJp5NobXe5UfjHsWWIoPlXARIpm /vxj7hf0/LHwKeb4nFjEMYrlRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFjcge9 hFyVlESocGoMiWZgpHanMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClhrYBfkjIBgrWu5MlLt9OMwiFeIxzWloSO8KEdfTpcLReIWBbj7Qj +Hd2uZ53+1kgeDJ390lHlB1LmyZk8QwyCp5sMboPIXdwTXbVt+WvYF6X83z0As/Y jJCTOSInM/esLUNwlO4DLKfv9MbthBAT6ypH21Qe2kLov12SWDf8VxxYqaPhcFTc cWVsvmPLzQPHMjGzsMDUULO/6CF4gXzD/2aJDG01/OC6Y37SnQG7PRKI35daXkDd 6oSg3nRw6OLeEbb3F3iDTurQs5gqUf7cDOkWD/RrNeJyaC55subQBMoMeygjxa1m EZsCo+Vi2jP434wyDazDM8KZYtP/2/JF -----END CERTIFICATE-----Generated at Sat Aug 23 16:32:29 2025 by rpki-client