$ rpki-client -vvf rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft File: QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft (raw, json) Hash identifier: PjTPm0doHYSuzQSZMKrDLEVqSYt3hQnTaaVDXJikxWA= Subject key identifier: 93:E0:47:6E:39:81:E0:6E:90:B5:01:1B:AD:8B:8B:43:45:63:9C:14 Authority key identifier: 42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE Certificate issuer: /CN=A912087D/serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft Manifest number: 025B Signing time: Sat 23 Aug 2025 02:01:49 +0000 Manifest this update: Sat 23 Aug 2025 02:01:48 +0000 Manifest next update: Sat 30 Aug 2025 02:01:48 +0000 Files and hashes: 1: QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl (hash: CZ5pOWm073eDhr4czfZcWmrok9qaA7H3ZIVLmqAETng=) 2: 07E789A228F011ED94BE9345C4F9AE02.roa (hash: jWdCBukfmwdIx7AmCNNn8IWevCXBAGWSyySXEJZ9MpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912087D, serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Validity Not Before: Aug 23 02:01:48 2025 GMT Not After : Aug 30 02:01:48 2025 GMT Subject: CN=68a9210d-52b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c4:ac:6f:ca:1c:34:47:64:dd:86:04:83:94: ce:83:2a:94:9f:d3:19:b6:cf:0d:9d:50:5e:f2:de: 0c:e3:9b:03:c6:2c:ac:1a:98:be:7c:fa:6e:9c:e4: 07:ea:8d:ab:8d:95:8f:59:fb:2f:c6:3e:98:bc:f8: 5e:c9:e4:db:41:69:5b:06:ef:7d:8f:70:64:df:85: 98:c3:8c:4d:a9:ae:2a:55:fd:0b:22:cc:e0:2c:03: 0d:7a:c8:a7:3b:bd:35:1b:b5:93:46:2f:3a:31:56: 0c:5c:47:cf:6e:86:75:2d:1c:a4:9d:2c:30:92:51: 0b:c6:6f:5f:b9:f4:2f:e7:92:23:25:5e:f4:f1:d4: d9:0d:c8:ba:12:df:5d:a7:ea:62:03:7c:eb:5d:83: f2:b7:19:b9:20:d1:ff:29:a9:6f:c7:4b:91:a8:88: b7:0d:a2:c3:53:2a:0d:c1:00:eb:00:54:45:8b:a8: a5:7e:d1:b7:e3:07:89:3a:6e:03:61:c0:9b:30:7d: 3b:e7:bb:96:96:13:5a:d8:98:94:70:08:11:33:58: 70:f3:dd:8b:22:89:6f:bb:70:bb:b3:f8:48:4f:9b: 97:87:1f:e3:76:b3:81:62:24:f6:fa:e9:65:4b:d0: cc:b7:5c:80:e8:87:f3:8f:90:b0:6f:e5:43:8e:2a: 35:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E0:47:6E:39:81:E0:6E:90:B5:01:1B:AD:8B:8B:43:45:63:9C:14 X509v3 Authority Key Identifier: keyid:42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:f3:45:db:44:d4:c3:9b:8c:ca:83:26:c5:64:0b:ca:92:9b: 27:0b:f5:0b:81:b9:ff:3b:e6:37:ce:12:93:34:1b:4a:9d:9b: d9:45:d9:c7:2c:49:39:64:c4:25:43:72:78:36:c2:9a:3e:44: ab:1f:d9:e6:04:22:b4:4b:a6:82:98:4d:0c:3c:44:3a:5e:21: 15:f6:a8:1e:03:12:0c:08:73:73:56:b3:48:d3:ab:31:36:bf: ca:b1:be:4d:42:e9:87:c0:a9:71:03:cf:17:40:d2:c3:0c:aa: fe:f2:89:9b:15:df:fd:f3:9b:25:fc:11:a3:0e:70:15:ea:62: ae:04:5e:95:e2:29:7f:a0:5b:15:7b:aa:58:69:99:7d:99:d5: 67:96:31:f7:98:65:9a:79:80:be:a5:bb:fc:83:df:cb:4f:15: c1:4f:04:0d:d9:42:c3:e6:5c:69:b5:7a:87:f2:a6:94:ca:a0: 22:a1:77:7f:18:7e:7e:84:e1:4c:bb:aa:a7:e3:af:07:ae:88: 15:93:c2:1b:34:84:67:37:cc:a3:5a:30:c0:dc:b2:26:07:9b: af:41:fe:b7:fb:b4:25:de:b3:1d:38:5a:e8:ba:8a:c0:ae:80: ed:ad:f3:08:2e:7c:56:7e:84:38:7d:56:0b:41:d2:b8:4f:23: b1:df:49:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA4N0QxMTAvBgNVBAUTKDQyQTg0RDhDMDg4OUFEQzU1ODYwNjYzOTkzQkNDQTgz NjEyNzFCRkUwHhcNMjUwODIzMDIwMTQ4WhcNMjUwODMwMDIwMTQ4WjAYMRYwFAYD VQQDEw02OGE5MjEwZC01MmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcSsb8ocNEdk3YYEg5TOgyqUn9MZts8NnVBe8t4M45sDxiysGpi+fPpunOQH 6o2rjZWPWfsvxj6YvPheyeTbQWlbBu99j3Bk34WYw4xNqa4qVf0LIszgLAMNesin O701G7WTRi86MVYMXEfPboZ1LRyknSwwklELxm9fufQv55IjJV708dTZDci6Et9d p+piA3zrXYPytxm5INH/Kalvx0uRqIi3DaLDUyoNwQDrAFRFi6ilftG34weJOm4D YcCbMH0757uWlhNa2JiUcAgRM1hw892LIolvu3C7s/hIT5uXhx/jdrOBYiT2+ull S9DMt1yA6Ifzj5Cwb+VDjio1PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPgR245 geBukLUBG62Li0NFY5wUMB8GA1UdIwQYMBaAFEKoTYwIia3FWGBmOZO8yoNhJxv+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDg3RC80QzE1ODU4QzI4 RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJjVllZR1k1azd6S2cyRW5H XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxaE5qQWlKcmNWWVlHWTVrN3pLZzJFbkdfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDg3RC80QzE1ODU4QzI4RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJj VllZR1k1azd6S2cyRW5HXzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV80XbRNTDm4zKgybFZAvKkpsnC/ULgbn/O+Y3zhKTNBtKnZvZRdnH LEk5ZMQlQ3J4NsKaPkSrH9nmBCK0S6aCmE0MPEQ6XiEV9qgeAxIMCHNzVrNI06sx Nr/Ksb5NQumHwKlxA88XQNLDDKr+8ombFd/985sl/BGjDnAV6mKuBF6V4il/oFsV e6pYaZl9mdVnljH3mGWaeYC+pbv8g9/LTxXBTwQN2ULD5lxptXqH8qaUyqAioXd/ GH5+hOFMu6qn468HrogVk8IbNIRnN8yjWjDA3LImB5uvQf63+7Ql3rMdOFrouorA roDtrfMILnxWfoQ4fVYLQdK4TyOx30m6 -----END CERTIFICATE-----Generated at Sat Aug 23 19:36:19 2025 by rpki-client