$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: +TjBN0rulMSzVanuumHdxtCXXUW6g13aJTGflwrug6s= Subject key identifier: 15:4C:24:66:A4:AF:6D:CC:DD:AD:86:2B:F7:27:5A:C0:07:51:C7:99 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: DF Signing time: Sat 23 Aug 2025 05:37:32 +0000 Manifest this update: Sat 23 Aug 2025 05:37:31 +0000 Manifest next update: Sat 30 Aug 2025 05:37:31 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: IuJb8UULfdlrr1NMXkzeHlmJESFxXKCFCBAwNoxBAEM=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Aug 23 05:37:31 2025 GMT Not After : Aug 30 05:37:31 2025 GMT Subject: CN=68a9539b-7e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:54:d2:e4:eb:90:c3:0e:a0:36:f1:f3:db:b5: 4b:55:4b:d2:a7:d7:80:c0:ac:19:1d:92:a7:6b:0a: 23:0e:fa:03:9a:8f:91:12:3d:99:06:95:b8:45:91: e1:4b:64:6a:c8:01:da:8f:c7:05:cd:ea:71:26:cd: ae:72:b5:7a:6d:88:56:db:68:07:2e:88:4d:d3:ed: 8e:9c:a9:fc:7b:7e:20:0c:1d:97:e5:63:66:8c:2d: 49:04:34:54:dc:13:24:71:8f:42:c9:96:6e:f7:35: 90:da:f3:80:d1:7e:91:20:30:0c:5d:11:8e:72:84: 34:8f:93:2e:1e:d5:4f:cb:63:14:7c:18:26:81:04: 8a:78:fc:cb:0a:6f:96:f2:30:73:3d:18:4a:b0:73: bd:88:a0:a4:7b:26:00:98:4d:d9:2a:4a:24:43:7f: 7c:bc:80:65:46:55:dc:7a:f0:37:ad:f4:89:fa:d8: f6:43:bb:83:5d:02:6d:7e:aa:46:61:50:64:ff:6f: 85:31:94:d6:3e:47:8c:25:06:f3:06:5c:38:c2:88: ee:6b:ff:0a:06:5b:82:41:e0:2d:12:1b:3d:94:cb: 2c:8c:7f:da:99:61:93:45:18:62:df:e2:49:09:a0: d1:ed:b8:65:d6:7b:83:bd:4a:35:21:b2:6d:85:27: b0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4C:24:66:A4:AF:6D:CC:DD:AD:86:2B:F7:27:5A:C0:07:51:C7:99 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:4d:53:0d:f4:41:8a:db:02:39:12:c0:a2:34:35:ff:28:a2: 78:82:b6:76:62:e7:8b:41:68:00:8e:63:05:71:ca:e1:75:1c: 13:17:55:c9:ef:4e:22:9d:c6:4a:b5:0b:aa:d3:7c:50:9f:05: 45:76:ba:4b:d3:22:21:50:63:cc:05:c7:a6:27:6a:f4:c7:80: 8c:51:42:8e:e2:cd:ad:e4:bb:7d:2f:b4:93:5d:66:98:6d:cf: 97:b3:72:b5:68:27:36:ee:e0:d4:e2:ea:cf:3e:4a:f9:b0:3c: cb:30:55:f2:c9:66:ec:53:c9:5b:f2:ce:a8:46:87:b9:98:66: e5:bd:16:da:c9:7f:8f:a2:d2:2e:ea:05:94:9d:e0:82:a4:5b: 80:ed:eb:b1:ed:ff:91:4f:d1:bc:19:25:e5:30:81:c0:f3:fe: 00:ba:b1:9c:1e:7b:22:4b:e2:7f:81:fa:c5:c9:57:db:aa:1e: 1a:54:19:77:38:05:ca:c7:86:b7:fd:74:fe:1b:08:0a:5a:da: 34:ee:7e:7b:35:1e:61:9a:ce:14:02:e1:01:ac:69:7a:8e:e4: 37:d7:67:67:fe:90:3c:0f:36:0d:35:5c:83:26:f9:0e:c5:20: 74:5b:b4:94:9d:77:62:8d:86:c0:ec:e5:19:b5:96:d3:d9:d4: 5f:67:92:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwODIzMDUzNzMxWhcNMjUwODMwMDUzNzMxWjAYMRYwFAYD VQQDEw02OGE5NTM5Yi03ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVTS5OuQww6gNvHz27VLVUvSp9eAwKwZHZKnawojDvoDmo+REj2ZBpW4RZHh S2RqyAHaj8cFzepxJs2ucrV6bYhW22gHLohN0+2OnKn8e34gDB2X5WNmjC1JBDRU 3BMkcY9CyZZu9zWQ2vOA0X6RIDAMXRGOcoQ0j5MuHtVPy2MUfBgmgQSKePzLCm+W 8jBzPRhKsHO9iKCkeyYAmE3ZKkokQ398vIBlRlXcevA3rfSJ+tj2Q7uDXQJtfqpG YVBk/2+FMZTWPkeMJQbzBlw4wojua/8KBluCQeAtEhs9lMssjH/amWGTRRhi3+JJ CaDR7bhl1nuDvUo1IbJthSewOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVMJGak r23M3a2GK/cnWsAHUceZMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDTVMN9EGK2wI5EsCiNDX/KKJ4grZ2YueLQWgAjmMFccrhdRwTF1XJ 704incZKtQuq03xQnwVFdrpL0yIhUGPMBcemJ2r0x4CMUUKO4s2t5Lt9L7STXWaY bc+Xs3K1aCc27uDU4urPPkr5sDzLMFXyyWbsU8lb8s6oRoe5mGblvRbayX+PotIu 6gWUneCCpFuA7eux7f+RT9G8GSXlMIHA8/4AurGcHnsiS+J/gfrFyVfbqh4aVBl3 OAXKx4a3/XT+GwgKWto07n57NR5hms4UAuEBrGl6juQ312dn/pA8DzYNNVyDJvkO xSB0W7SUnXdijYbA7OUZtZbT2dRfZ5KT -----END CERTIFICATE-----Generated at Sat Aug 23 17:13:40 2025 by rpki-client