$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: ZT4JNwiHcgCx1euVmRYn5qChqiMOWjoIXyjCZIk03v0= Subject key identifier: A2:57:28:DE:B7:D3:AF:AD:48:9D:03:83:28:98:08:51:A1:22:BA:EB Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BF5 Signing time: Fri 22 Aug 2025 18:55:15 +0000 Manifest this update: Fri 22 Aug 2025 18:55:15 +0000 Manifest next update: Fri 29 Aug 2025 18:55:15 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: Y7uSJoMJeA0qfMvXj59XQjJaeXLzgLgn5HoHhCyzjac=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: fjLr8uQxYz0b2IkiqsLdHlpaSbA1UhMnKJdo096hNVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3069 (0xbfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Aug 22 18:55:15 2025 GMT Not After : Aug 29 18:55:15 2025 GMT Subject: CN=68a8bd13-15b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cf:31:5a:13:92:73:4d:06:e1:6a:ef:c6:f8: 06:a1:6d:14:9f:e3:0e:94:d7:03:15:a7:e2:a1:85: c5:5d:5c:6f:0e:a3:93:f0:e4:cd:47:74:4c:b0:c2: f0:2f:5e:55:69:52:3f:41:22:68:db:b9:da:b5:ca: ef:3e:4e:04:13:0e:0c:eb:db:0d:24:1a:64:88:e1: 73:09:a0:fc:c7:ff:09:07:ee:dc:04:0d:92:43:13: 7a:f7:04:08:01:50:87:cb:83:1e:62:4a:fc:f8:d6: 64:0b:d2:0a:09:64:4d:1a:25:46:5e:56:c9:1e:18: 3a:73:cc:d0:bc:1a:04:80:a6:4d:7c:71:51:12:df: 92:55:32:06:7e:63:40:ed:19:ee:fb:51:8f:92:f0: a7:01:b2:ed:8f:55:68:11:35:4b:71:67:27:30:37: 6d:db:c5:ea:9d:66:84:8d:3e:d7:54:cf:cb:62:29: fa:c6:2a:ba:88:78:97:b1:a1:92:7a:4a:94:05:c3: 75:ea:ec:02:dd:a2:53:d8:61:c7:4c:f0:01:d4:6f: 16:f1:29:93:4c:f3:04:40:4d:01:48:7d:20:2a:90: 7a:53:fd:96:fc:f5:82:77:fa:52:15:68:4e:86:76: 42:2e:53:ff:2c:ba:08:e6:b5:dd:89:5b:e0:f4:61: 81:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:57:28:DE:B7:D3:AF:AD:48:9D:03:83:28:98:08:51:A1:22:BA:EB X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:80:2e:4f:ce:38:ce:19:7c:29:46:ae:c2:77:92:08:54:8a: 5e:47:6e:09:a6:e3:3d:3d:8f:80:03:ea:ce:76:63:16:91:3d: 73:04:c4:8f:74:38:c8:66:a4:82:db:53:47:fc:f2:1d:3a:8d: cb:0f:52:41:ae:d6:ba:73:25:d3:7a:4a:ea:3a:df:fb:a9:46: af:8c:93:2a:bf:19:f3:c6:20:c3:64:9e:46:9f:93:7a:16:76: 70:4d:17:05:67:b7:ba:bf:6f:bd:97:d4:1e:c5:e8:fa:cf:b9: 6c:24:62:d6:a8:a4:94:fc:4e:e2:e2:a6:ed:b2:a8:81:3c:6c: d8:ef:28:5c:28:8e:49:b4:90:e2:55:24:40:b4:08:1f:5b:17: 20:ab:4e:28:c8:d6:b8:8b:3b:0d:bb:e8:d1:b1:ca:f3:10:3a: 35:d7:a5:74:b8:33:35:2f:c9:22:e0:d6:8b:dc:b9:86:37:88: d3:b1:27:fa:d3:1d:b1:9d:49:c1:08:e3:a5:c0:15:e8:30:d9: d6:ea:cb:64:75:d5:5a:31:ce:ce:bc:d9:52:a2:24:04:17:0d: ec:cc:37:61:8e:d9:4c:7e:c9:8b:a7:67:ca:a4:b2:32:15:43: b0:cc:fc:61:34:6d:25:1f:fc:1a:d6:9a:cb:1e:53:15:5d:8c: 44:6f:15:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwODIyMTg1NTE1WhcNMjUwODI5MTg1NTE1WjAYMRYwFAYD VQQDEw02OGE4YmQxMy0xNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3s8xWhOSc00G4WrvxvgGoW0Un+MOlNcDFafioYXFXVxvDqOT8OTNR3RMsMLw L15VaVI/QSJo27natcrvPk4EEw4M69sNJBpkiOFzCaD8x/8JB+7cBA2SQxN69wQI AVCHy4MeYkr8+NZkC9IKCWRNGiVGXlbJHhg6c8zQvBoEgKZNfHFREt+SVTIGfmNA 7Rnu+1GPkvCnAbLtj1VoETVLcWcnMDdt28XqnWaEjT7XVM/LYin6xiq6iHiXsaGS ekqUBcN16uwC3aJT2GHHTPAB1G8W8SmTTPMEQE0BSH0gKpB6U/2W/PWCd/pSFWhO hnZCLlP/LLoI5rXdiVvg9GGBuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJXKN63 06+tSJ0DgyiYCFGhIrrrMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEgC5PzjjOGXwpRq7Cd5IIVIpeR24JpuM9PY+AA+rOdmMWkT1zBMSP dDjIZqSC21NH/PIdOo3LD1JBrta6cyXTekrqOt/7qUavjJMqvxnzxiDDZJ5Gn5N6 FnZwTRcFZ7e6v2+9l9Qexej6z7lsJGLWqKSU/E7i4qbtsqiBPGzY7yhcKI5JtJDi VSRAtAgfWxcgq04oyNa4izsNu+jRscrzEDo116V0uDM1L8ki4NaL3LmGN4jTsSf6 0x2xnUnBCOOlwBXoMNnW6stkddVaMc7OvNlSoiQEFw3szDdhjtlMfsmLp2fKpLIy FUOwzPxhNG0lH/wa1prLHlMVXYxEbxXw -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:30 2025 by rpki-client