$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft File: qJaxcL8NiHI_NsesIIeFSqKEvXE.mft (raw, json) Hash identifier: hVjaDUrwn9Q4k8jFwmEq8w977h2DxbIa9Qxihp9t2fM= Subject key identifier: 98:91:5B:91:45:B5:57:71:E7:53:24:88:0E:EF:CB:BC:FF:38:1C:F5 Authority key identifier: A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 Certificate issuer: /CN=A913DF3B/serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft Manifest number: 0573 Signing time: Fri 22 Aug 2025 23:28:51 +0000 Manifest this update: Fri 22 Aug 2025 23:28:51 +0000 Manifest next update: Fri 29 Aug 2025 23:28:51 +0000 Files and hashes: 1: qJaxcL8NiHI_NsesIIeFSqKEvXE.crl (hash: 3yKd9Fwv4vLr5qec9F6oOVH98lc4Yzui7JzZg4zqnIc=) 2: 8D7E9B7EF03D11EB804DF61FC4F9AE02.roa (hash: 0C374rc1/yzntVHlBO2RHsCgAiQUBU23dQBcBVfekCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF3B, serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Validity Not Before: Aug 22 23:28:51 2025 GMT Not After : Aug 29 23:28:51 2025 GMT Subject: CN=68a8fd33-44e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ea:8c:2c:e4:0b:48:60:54:72:b0:ce:99:c0: 88:74:15:6c:90:9a:8d:e2:5f:ea:cd:06:bd:55:5a: 92:f3:bb:81:b9:73:21:ee:0c:30:30:b2:8a:77:60: ce:9f:36:dd:30:a8:56:6b:1c:0a:f5:1f:f8:d6:98: 70:9f:ef:ef:2a:af:db:6b:04:b9:cb:b6:5a:53:79: 4f:2a:52:07:b4:6f:22:08:45:ee:a8:10:fc:c8:1e: e2:9b:88:f1:c0:f8:19:29:d5:52:31:88:1d:c6:3c: 50:01:3f:64:02:66:eb:e3:00:16:1f:34:dd:e0:c4: 5a:b9:15:5a:9a:12:f5:06:57:dc:9b:fa:7d:9a:40: 6e:dd:98:38:b6:2d:f4:a9:03:91:e4:a7:85:40:c0: 6b:96:88:7b:18:16:6f:6c:11:c3:4a:51:41:6a:f3: 2d:4b:7d:8e:5c:3d:7a:41:11:5e:5e:d1:81:a2:e8: dd:9e:14:57:ac:31:e3:f0:ff:9f:db:49:86:69:5f: d6:5e:01:7d:e1:a8:9f:ff:1a:bd:c1:24:ad:f2:1a: 7c:75:a1:61:55:91:ef:c8:ef:a8:ab:54:c2:66:0d: 2f:af:2d:3e:af:1c:1b:bc:99:3a:7e:25:63:07:61: f8:50:9b:ad:41:fc:25:14:b2:8d:6b:fc:16:01:cd: 91:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:91:5B:91:45:B5:57:71:E7:53:24:88:0E:EF:CB:BC:FF:38:1C:F5 X509v3 Authority Key Identifier: keyid:A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:e1:75:83:70:02:f8:7d:4c:43:55:d6:fd:10:b4:88:c7:a8: be:d7:68:f3:4a:f7:3f:fe:58:4c:99:0b:e8:bb:46:2a:0e:ef: b8:f3:9e:38:3c:4a:73:5c:fe:a0:13:41:63:a6:4b:e5:48:41: 94:1b:02:68:c2:fc:bc:47:73:f5:75:1a:0b:18:37:96:ea:75: eb:2c:62:9d:89:54:c2:6b:4e:a5:4b:b3:72:2d:38:28:0a:93: f3:10:c7:5a:4a:67:69:1b:c8:c8:38:75:fe:1c:19:23:66:12: ce:44:e3:33:3e:85:64:ef:ec:e0:c4:08:04:d3:69:9a:2e:5e: 4d:88:20:6e:a7:b9:03:a9:74:fd:b1:1b:34:7d:a9:cd:fd:0a: 79:b7:8a:79:d8:ab:2b:ba:86:d0:1d:6a:30:3c:90:93:e5:59: 32:85:f9:9a:81:f0:66:cd:b4:47:63:12:f6:f7:c3:a6:e5:6f: 0f:e3:a2:ef:ae:d3:66:8f:42:74:bc:2f:74:18:d3:e4:7b:f3: bd:ba:cc:36:cf:ea:2c:9d:d0:4b:23:ad:be:01:fd:db:d1:72: a7:ae:e0:31:c3:37:76:17:85:7c:31:90:0c:df:b6:0a:89:95: 63:58:88:36:0b:a4:af:14:10:57:df:fc:d8:a7:35:2d:e6:cb: c7:f7:54:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGM0IxMTAvBgNVBAUTKEE4OTZCMTcwQkYwRDg4NzIzRjM2QzdBQzIwODc4NTRB QTI4NEJENzEwHhcNMjUwODIyMjMyODUxWhcNMjUwODI5MjMyODUxWjAYMRYwFAYD VQQDEw02OGE4ZmQzMy00NGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeqMLOQLSGBUcrDOmcCIdBVskJqN4l/qzQa9VVqS87uBuXMh7gwwMLKKd2DO nzbdMKhWaxwK9R/41phwn+/vKq/bawS5y7ZaU3lPKlIHtG8iCEXuqBD8yB7im4jx wPgZKdVSMYgdxjxQAT9kAmbr4wAWHzTd4MRauRVamhL1Blfcm/p9mkBu3Zg4ti30 qQOR5KeFQMBrloh7GBZvbBHDSlFBavMtS32OXD16QRFeXtGBoujdnhRXrDHj8P+f 20mGaV/WXgF94aif/xq9wSSt8hp8daFhVZHvyO+oq1TCZg0vry0+rxwbvJk6fiVj B2H4UJutQfwlFLKNa/wWAc2RlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiRW5FF tVdx51MkiA7vy7z/OBz1MB8GA1UdIwQYMBaAFKiWsXC/DYhyPzbHrCCHhUqihL1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYzQi9DREJBODEyRUYw M0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlISV9Oc2VzSUllRlNxS0V2 WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKYXhjTDhOaUhJX05zZXNJSWVGU3FLRXZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REYzQi9DREJBODEyRUYwM0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlI SV9Oc2VzSUllRlNxS0V2WEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv4XWDcAL4fUxDVdb9ELSIx6i+12jzSvc//lhMmQvou0YqDu+48544 PEpzXP6gE0FjpkvlSEGUGwJowvy8R3P1dRoLGDeW6nXrLGKdiVTCa06lS7NyLTgo CpPzEMdaSmdpG8jIOHX+HBkjZhLOROMzPoVk7+zgxAgE02maLl5NiCBup7kDqXT9 sRs0fanN/Qp5t4p52KsruobQHWowPJCT5VkyhfmagfBmzbRHYxL298Om5W8P46Lv rtNmj0J0vC90GNPke/O9usw2z+osndBLI62+Af3b0XKnruAxwzd2F4V8MZAM37YK iZVjWIg2C6SvFBBX3/zYpzUt5svH91RQ -----END CERTIFICATE-----Generated at Sat Aug 23 23:41:37 2025 by rpki-client