$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: HxFUrM2E+5pqxv6EUi9TgpoecDe+x2qAb6+vZvISW8s= Subject key identifier: 0D:8A:0B:F2:CD:2D:36:72:AC:B5:11:A0:BC:D0:0D:CE:26:C9:41:80 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 75 Signing time: Sat 23 Aug 2025 07:03:25 +0000 Manifest this update: Sat 23 Aug 2025 07:03:25 +0000 Manifest next update: Sat 30 Aug 2025 07:03:25 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: 6LBFm7bTJGlc+nUr66dVbO4JTXStto0LMpdM6DtCD0Q=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Aug 23 07:03:25 2025 GMT Not After : Aug 30 07:03:25 2025 GMT Subject: CN=68a967bd-ee6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b0:b2:b5:7c:7a:1a:dd:bb:ca:14:0c:bc:ba: 0a:07:e6:56:7a:c2:51:d7:fd:06:0a:e6:7e:bb:29: ec:e3:15:46:1d:d8:c9:aa:eb:ef:98:fb:e3:1a:bc: 8c:5f:e2:1e:8d:4f:8c:94:18:63:81:40:4a:b7:0d: 02:96:29:14:a6:56:36:ab:9f:e1:0b:da:c4:59:ac: 02:e8:e4:b1:74:f0:50:5a:92:aa:61:b8:8f:dc:ef: b9:f5:61:43:69:04:36:4a:ac:4e:98:8c:be:c8:1b: c3:03:d2:e4:c2:fa:cd:bb:cb:4f:11:d0:93:5b:30: a4:db:bb:76:c8:62:75:a0:7c:16:c7:96:1c:83:fa: 6c:01:91:52:a6:f9:32:3a:e3:10:bb:69:d8:ae:0b: ca:d2:a3:b8:40:ec:1a:93:1a:5c:11:b1:35:55:8e: 00:c4:ee:87:a3:71:8b:97:ac:cf:58:2b:15:51:3d: 41:c6:72:b4:fe:db:0e:0f:04:ad:52:40:3a:82:b7: 78:f0:13:ec:20:f1:bf:e2:2d:f5:f3:ac:4d:6c:95: c3:b0:d8:e2:21:53:68:cc:76:06:12:ef:a0:48:a5: f4:1e:c4:fe:f2:79:c5:6f:2a:0b:da:0b:dc:39:64: a9:43:68:ab:bc:cc:58:e4:be:86:4b:59:4e:41:66: 02:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8A:0B:F2:CD:2D:36:72:AC:B5:11:A0:BC:D0:0D:CE:26:C9:41:80 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:65:d2:6f:21:e9:15:af:9b:95:06:5d:43:15:70:f5:6e:1e: 54:f3:42:ea:9b:af:b2:91:19:63:2c:0d:fe:db:90:d8:c9:a3: 19:f4:d8:e6:cb:5c:02:c6:47:f9:ff:99:0a:60:1d:3a:6c:02: 53:ca:63:56:86:73:0e:ac:be:7f:d7:91:76:c6:f3:a5:0c:61: 7a:5d:ad:a7:65:b1:96:a1:0c:64:07:f8:dc:9e:3c:8c:48:a0: 8e:ba:52:27:6c:d3:7a:88:05:98:9b:63:f7:2e:a8:28:01:c5: 25:03:e8:9d:28:31:5d:a6:7e:84:22:8d:07:c1:8e:ea:24:a4: 3e:a0:af:64:e5:f3:18:5b:86:0f:e5:8d:55:8f:c8:7b:12:18: 6a:42:a6:1c:53:9c:c3:db:27:73:46:85:6f:4a:02:9a:ce:91: 03:b3:19:1e:8b:bb:1c:b0:25:84:89:64:f7:ce:d7:55:1e:26: 5d:30:2b:4f:2f:88:da:51:5e:ef:ad:5e:5b:7e:9b:e8:d4:69: 53:0b:f0:a0:8e:13:d1:54:89:8c:4e:7b:1d:b7:61:ec:a3:04: f7:6f:40:45:bc:d5:dd:e1:17:12:27:f2:f4:15:6e:60:86:b8: ff:27:59:98:6b:db:85:74:ac:d1:61:e7:14:96:5b:6c:d0:aa: ec:8c:89:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTA4MjMwNzAzMjVaFw0yNTA4MzAwNzAzMjVaMBgxFjAUBgNV BAMTDTY4YTk2N2JkLWVlNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVsLK1fHoa3bvKFAy8ugoH5lZ6wlHX/QYK5n67KezjFUYd2Mmq6++Y++MavIxf 4h6NT4yUGGOBQEq3DQKWKRSmVjarn+EL2sRZrALo5LF08FBakqphuI/c77n1YUNp BDZKrE6YjL7IG8MD0uTC+s27y08R0JNbMKTbu3bIYnWgfBbHlhyD+mwBkVKm+TI6 4xC7adiuC8rSo7hA7BqTGlwRsTVVjgDE7oejcYuXrM9YKxVRPUHGcrT+2w4PBK1S QDqCt3jwE+wg8b/iLfXzrE1slcOw2OIhU2jMdgYS76BIpfQexP7yecVvKgvaC9w5 ZKlDaKu8zFjkvoZLWU5BZgILAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDYoL8s0t NnKstRGgvNANzibJQYAwHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKJl0m8h6RWvm5UGXUMVcPVuHlTzQuqbr7KRGWMsDf7bkNjJoxn02ObL XALGR/n/mQpgHTpsAlPKY1aGcw6svn/XkXbG86UMYXpdradlsZahDGQH+NyePIxI oI66Uids03qIBZibY/cuqCgBxSUD6J0oMV2mfoQijQfBjuokpD6gr2Tl8xhbhg/l jVWPyHsSGGpCphxTnMPbJ3NGhW9KAprOkQOzGR6LuxywJYSJZPfO11UeJl0wK08v iNpRXu+tXlt+m+jUaVML8KCOE9FUiYxOex23YeyjBPdvQEW81d3hFxIn8vQVbmCG uP8nWZhr24V0rNFh5xSWW2zQquyMiQ4= -----END CERTIFICATE-----Generated at Sat Aug 23 10:46:12 2025 by rpki-client