$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: Afil4rm1Y1GO0KL0y5EBlC1RQVUgF9koPOfEEB2wOnc= Subject key identifier: 40:DF:19:DC:76:1D:2A:22:55:66:FB:56:22:BB:17:1D:F1:5E:2E:D6 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 07DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 07DD Signing time: Wed 02 Jul 2025 21:17:44 +0000 Manifest this update: Wed 02 Jul 2025 21:17:44 +0000 Manifest next update: Wed 09 Jul 2025 21:17:44 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: Wk39ec0a6XCGMlZCnX6VK4Jd9qHlBSha9ukvD1Txu0E=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: Xm1qupXC//oXbz29OwYv/8QXpHuz3gLyZUWmRlVaUYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Jul 2 21:17:44 2025 GMT Not After : Jul 9 21:17:44 2025 GMT Subject: CN=6865a1f8-bb34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a3:7f:52:34:4a:f8:41:b8:6a:25:4b:42:88: c2:29:55:85:ef:dd:22:2d:71:e8:56:bc:67:e4:73: 69:f6:2d:a0:67:61:65:1d:9c:14:fa:1c:f6:5a:ef: 6b:c9:8b:e1:62:f7:24:17:bc:83:db:aa:f6:7c:ae: 2b:d7:3a:6f:b2:8a:92:68:78:08:39:43:e4:31:72: b8:3d:4e:9b:9a:a1:3e:d7:d4:cf:89:b9:5f:25:55: 4a:be:6d:bd:49:7a:21:29:7f:cc:fb:6b:c5:e0:27: e5:d6:29:b7:c6:83:9d:fd:6d:0a:8d:ba:c0:6f:fd: c3:58:cf:7e:cc:71:a4:d7:46:74:c6:54:af:5c:55: 6a:b4:4e:ed:c6:fd:1c:65:0e:64:21:db:fa:01:96: 1a:5a:22:55:8f:a3:58:61:8d:75:08:69:ce:90:02: 07:36:22:dd:b2:e4:dd:5a:98:e8:e6:cd:61:ec:8f: c1:94:b7:ea:bc:4c:40:2f:04:14:1a:10:c5:b6:cc: d4:0a:14:e0:39:8e:1c:cf:b6:ed:43:ba:83:84:13: 14:70:a9:3d:b1:1d:b9:56:48:74:18:14:74:27:44: ef:bb:12:6a:f6:ca:8d:f3:f4:96:cf:ca:91:6c:22: e9:9c:66:5d:47:92:21:32:20:8d:17:5b:37:68:c1: fe:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DF:19:DC:76:1D:2A:22:55:66:FB:56:22:BB:17:1D:F1:5E:2E:D6 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:fe:34:7e:f7:f2:4b:b7:4f:a8:d3:fb:95:e0:61:21:59:d8: 47:c0:55:23:94:bb:9e:f7:03:e6:3d:bb:02:50:6a:99:c7:a8: 8f:4e:2f:0e:c7:93:0e:0a:69:02:89:55:67:c1:f3:6b:8c:d0: 9c:e6:d3:66:82:37:24:42:6e:29:03:91:50:0f:9a:95:b3:c8: f7:3e:66:a7:bb:8e:4d:2d:b2:2f:d7:42:94:24:0d:08:85:9f: 3f:02:2e:63:d9:d0:4d:9e:94:b7:9a:0a:e5:84:da:d2:88:45: 04:d7:f0:4e:e5:cd:02:0d:31:c2:3d:fc:8c:bf:0d:ea:73:77: 63:cc:78:85:ee:a9:88:45:00:d9:e3:60:45:a6:42:e2:9e:38: 42:cf:d9:64:1b:5d:13:f2:38:be:b5:40:ac:0f:12:fd:90:59: f0:c4:ba:02:55:7f:e3:65:f7:8c:4b:48:c4:f2:61:a1:8a:30: de:62:53:de:8b:4e:a0:63:12:1f:08:4e:64:19:cd:c7:5c:9d: fd:d3:73:98:ae:1b:d9:fd:66:9d:bf:75:8d:c0:39:92:39:20: ba:c3:7b:81:da:26:c5:ef:fc:03:ec:29:ea:95:91:54:4a:e9: 95:aa:43:03:e4:83:49:09:09:7c:9e:9f:29:1d:d5:c0:9d:a7: 2d:ae:f3:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjUwNzAyMjExNzQ0WhcNMjUwNzA5MjExNzQ0WjAYMRYwFAYD VQQDEw02ODY1YTFmOC1iYjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA86N/UjRK+EG4aiVLQojCKVWF790iLXHoVrxn5HNp9i2gZ2FlHZwU+hz2Wu9r yYvhYvckF7yD26r2fK4r1zpvsoqSaHgIOUPkMXK4PU6bmqE+19TPiblfJVVKvm29 SXohKX/M+2vF4Cfl1im3xoOd/W0KjbrAb/3DWM9+zHGk10Z0xlSvXFVqtE7txv0c ZQ5kIdv6AZYaWiJVj6NYYY11CGnOkAIHNiLdsuTdWpjo5s1h7I/BlLfqvExALwQU GhDFtszUChTgOY4cz7btQ7qDhBMUcKk9sR25Vkh0GBR0J0TvuxJq9sqN8/SWz8qR bCLpnGZdR5IhMiCNF1s3aMH+LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDfGdx2 HSoiVWb7ViK7Fx3xXi7WMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh/jR+9/JLt0+o0/uV4GEhWdhHwFUjlLue9wPmPbsCUGqZx6iPTi8O x5MOCmkCiVVnwfNrjNCc5tNmgjckQm4pA5FQD5qVs8j3Pmanu45NLbIv10KUJA0I hZ8/Ai5j2dBNnpS3mgrlhNrSiEUE1/BO5c0CDTHCPfyMvw3qc3djzHiF7qmIRQDZ 42BFpkLinjhCz9lkG10T8ji+tUCsDxL9kFnwxLoCVX/jZfeMS0jE8mGhijDeYlPe i06gYxIfCE5kGc3HXJ3903OYrhvZ/Wadv3WNwDmSOSC6w3uB2ibF7/wD7CnqlZFU SumVqkMD5INJCQl8np8pHdXAnactrvPk -----END CERTIFICATE-----Generated at Thu Jul 3 14:56:48 2025 by rpki-client