$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json) Hash identifier: lQLu8jU0juQ8XppWGxVkrvTx+yxAgmVs0YyXRvJs60E= Subject key identifier: 48:87:DC:7B:B7:CC:3A:ED:4D:FE:2C:F6:14:C4:2F:D3:96:2E:1A:82 Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft Manifest number: 01D7 Signing time: Sat 23 Aug 2025 03:01:23 +0000 Manifest this update: Sat 23 Aug 2025 03:01:22 +0000 Manifest next update: Sat 30 Aug 2025 03:01:22 +0000 Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: 7JOD3FqI7jfo0fZ+x+oqesAYDgNo7Rx7tRhRnDMrwao=) 2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: yQWifcUacebm0QWmZ7UB602HfF6Yw1unRDBx3kif0PM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC, serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: Aug 23 03:01:22 2025 GMT Not After : Aug 30 03:01:22 2025 GMT Subject: CN=68a92f02-d346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0d:45:4a:eb:fb:a6:36:ed:45:14:7f:00:08: 2f:bf:9e:2f:24:fe:07:7f:94:cb:c5:ef:a3:30:ba: ed:08:63:80:1c:e2:a2:4b:85:78:40:47:5b:fe:4a: 76:30:d6:b7:ac:35:c0:eb:9f:88:2b:fd:54:b1:61: 9d:08:0b:54:b5:16:54:02:dd:32:f2:7f:20:73:ce: 0e:31:18:54:e6:e2:e5:20:8c:4b:33:fa:b1:e7:9b: 46:d5:c6:f3:03:9d:6d:ce:e6:98:4f:a6:c1:1c:c1: cc:9d:e6:e8:c9:28:93:97:30:23:05:1e:1c:98:aa: 30:42:10:57:ed:a4:68:72:03:de:fd:9d:f9:3e:0e: 16:fb:69:c8:ad:41:8f:7e:44:4b:02:28:4a:2a:60: 77:0e:5e:fd:e0:dc:88:ac:98:3a:43:9a:e9:ad:fd: c3:ff:82:24:6f:d7:d3:ca:59:c8:c0:d0:4c:24:ac: c5:3c:01:5c:26:64:f6:ea:eb:31:d5:0e:2d:e8:23: 5e:ad:31:21:d3:cf:a4:f8:79:fe:16:b7:bc:b4:4b: 5a:93:a3:a7:7e:8e:13:21:94:69:28:f0:fe:9a:f5: c1:ea:9d:9d:77:04:21:b6:dc:a4:a3:df:01:bf:26: 31:fe:a9:2d:cb:a8:49:42:a5:db:5b:97:b2:e5:fe: c4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:87:DC:7B:B7:CC:3A:ED:4D:FE:2C:F6:14:C4:2F:D3:96:2E:1A:82 X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ff:a0:29:0c:be:93:aa:8e:cd:50:13:fe:84:d8:76:02:aa: 35:7c:9d:43:5e:4e:28:e7:b5:c3:df:e9:f1:7f:ab:79:15:98: 1c:7e:ec:5e:e5:45:20:05:fe:61:e1:0d:d1:af:d6:ce:02:3c: 73:95:fa:5a:e0:8b:34:0c:e3:15:38:05:9f:0d:d9:fb:d5:11: 50:eb:7a:cc:67:42:99:47:28:39:26:0e:11:c4:62:1d:8e:97: cf:22:f2:0a:46:7f:b0:53:71:8c:c2:e7:3f:97:01:a8:3e:90: cc:ae:65:0b:c0:68:4e:0f:97:97:73:56:02:05:ab:18:85:d5: 23:37:c5:72:02:bc:0d:6c:c4:3e:41:c5:5a:63:6f:e4:55:e2: 3c:04:38:55:ff:e1:37:a4:76:70:61:2c:1c:34:49:f8:cf:e9: 6b:dc:3b:03:f3:2a:15:0b:f3:ba:76:dc:b7:01:96:cc:44:46: bd:da:99:13:60:46:c9:41:78:e6:1f:7b:5a:0e:8e:0b:fb:8b: 55:05:73:65:25:b6:4a:60:76:06:4f:32:33:ff:4a:ca:c4:20: 67:87:05:a6:6d:b7:31:c7:bf:ed:a7:d8:6c:e5:d3:c1:3a:6f: 94:67:ff:43:fd:0d:50:91:bd:7d:09:b2:4f:4e:73:05:96:e2: 68:7f:4f:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjUwODIzMDMwMTIyWhcNMjUwODMwMDMwMTIyWjAYMRYwFAYD VQQDEw02OGE5MmYwMi1kMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsg1FSuv7pjbtRRR/AAgvv54vJP4Hf5TLxe+jMLrtCGOAHOKiS4V4QEdb/kp2 MNa3rDXA65+IK/1UsWGdCAtUtRZUAt0y8n8gc84OMRhU5uLlIIxLM/qx55tG1cbz A51tzuaYT6bBHMHMneboySiTlzAjBR4cmKowQhBX7aRocgPe/Z35Pg4W+2nIrUGP fkRLAihKKmB3Dl794NyIrJg6Q5rprf3D/4Ikb9fTylnIwNBMJKzFPAFcJmT26usx 1Q4t6CNerTEh08+k+Hn+Fre8tEtak6Onfo4TIZRpKPD+mvXB6p2ddwQhttyko98B vyYx/qkty6hJQqXbW5ey5f7EPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiH3Hu3 zDrtTf4s9hTEL9OWLhqCMB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFCQy9EOTQyMDA3NkM0RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFD a2pTbDlVeFNPN1FldS1oNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ/6ApDL6Tqo7NUBP+hNh2Aqo1fJ1DXk4o57XD3+nxf6t5FZgcfuxe 5UUgBf5h4Q3Rr9bOAjxzlfpa4Is0DOMVOAWfDdn71RFQ63rMZ0KZRyg5Jg4RxGId jpfPIvIKRn+wU3GMwuc/lwGoPpDMrmULwGhOD5eXc1YCBasYhdUjN8VyArwNbMQ+ QcVaY2/kVeI8BDhV/+E3pHZwYSwcNEn4z+lr3DsD8yoVC/O6dty3AZbMREa92pkT YEbJQXjmH3taDo4L+4tVBXNlJbZKYHYGTzIz/0rKxCBnhwWmbbcxx7/tp9hs5dPB Om+UZ/9D/Q1Qkb19CbJPTnMFluJof0+0 -----END CERTIFICATE-----Generated at Sun Aug 24 03:15:15 2025 by rpki-client