$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: ySCQZMucp5LTl7y1wJxbpVEU6stl/Wu4JnCSgKz/nyc= Subject key identifier: 2E:38:B3:50:99:98:E9:66:E0:A5:A1:EA:93:C0:29:97:68:4C:AD:ED Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: D1 Signing time: Sat 05 Jul 2025 05:57:23 +0000 Manifest this update: Sat 05 Jul 2025 05:57:23 +0000 Manifest next update: Sat 12 Jul 2025 05:57:22 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: L1O+PX7Hh/gL8/GzmquKt0CvUBDkY3Rhv0gMEJGL83w=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Jul 5 05:57:23 2025 GMT Not After : Jul 12 05:57:22 2025 GMT Subject: CN=6868bec3-4b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:d2:92:f0:b9:46:a4:b8:fd:9c:87:bb:a8: 06:d1:ad:cf:e9:6c:4f:f5:cb:5e:84:47:8f:f5:e9: d9:88:03:9a:f0:18:f8:15:2c:2f:b5:bc:9a:ed:99: 4c:9b:30:f4:f9:ba:04:81:bc:2d:0f:80:ab:ef:3c: af:ad:d9:db:cc:61:53:78:6f:8f:5d:09:73:ff:93: 5b:5c:6a:62:e5:fb:13:0e:57:f9:01:dc:39:c4:fd: 18:68:51:02:72:b8:e1:87:cd:f4:ca:12:43:4c:e4: 7c:b3:47:f5:98:3b:2c:ec:69:b0:2b:e6:ca:9d:87: 91:fe:9c:a6:1d:92:92:70:93:36:01:35:e6:40:19: 3c:e8:40:ab:d3:01:3c:65:96:58:94:28:61:b5:b6: b5:62:31:29:df:18:cd:fe:63:1a:ff:9a:5c:3b:af: cd:f3:34:7d:e9:24:93:f7:3e:34:d9:61:06:94:cc: 81:8d:23:09:89:fc:fe:f6:04:62:ea:a7:51:b0:c4: 40:6c:b3:da:26:b7:07:5b:49:4e:5a:b7:6d:ab:c3: 7b:40:19:17:55:0e:55:44:77:2e:2c:94:9e:60:ae: 31:f6:8f:55:c0:74:47:4d:0e:b4:5b:41:cb:f2:20: 44:82:9f:df:d0:44:bc:2e:4d:20:0e:89:9e:36:1a: 79:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:38:B3:50:99:98:E9:66:E0:A5:A1:EA:93:C0:29:97:68:4C:AD:ED X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ed:14:1f:11:41:98:6a:40:f7:bf:e0:e9:8a:6b:af:d2:80: c5:53:26:44:33:e9:b2:a8:86:94:7f:42:12:20:07:fa:1e:1e: fb:f3:82:84:bf:f2:02:e8:6e:e5:13:b1:a8:3f:f7:fa:39:bc: d5:69:8e:01:1f:0b:02:d3:30:ba:ae:41:95:c2:2b:ce:e9:0c: aa:52:4f:b3:e2:36:35:e1:1d:9f:8f:37:8d:08:f4:9a:2b:56: 7b:7b:68:ab:9a:83:81:69:d0:4e:8b:ad:4e:49:64:9a:b8:07: fc:35:e5:a0:99:1f:2d:c2:6d:4e:76:47:28:b5:4a:cf:44:7b: 06:58:3e:82:73:0a:6b:87:d3:1c:2c:18:48:ea:f5:7f:5e:88: 41:0a:0f:22:c8:34:8b:0c:2b:b4:70:35:3d:03:d7:8c:f3:0f: 20:d2:6e:4c:b3:29:c7:5a:6a:a3:34:f0:a5:03:9b:7c:8c:6a: ec:48:26:66:47:39:5d:ca:0a:3f:f2:d1:9b:c2:e2:92:df:79: 2c:94:d7:0b:45:e3:51:01:cb:b3:7c:52:08:f9:04:81:71:18: 7c:90:ce:be:dc:48:2d:2c:16:5d:e8:c1:5c:07:b6:60:3f:43: b3:ff:74:60:0d:2b:3c:a1:30:ab:f7:a6:13:82:c8:c1:5f:b9: a5:fa:58:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwNzA1MDU1NzIzWhcNMjUwNzEyMDU1NzIyWjAYMRYwFAYD VQQDEw02ODY4YmVjMy00YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqvSkvC5RqS4/ZyHu6gG0a3P6WxP9ctehEeP9enZiAOa8Bj4FSwvtbya7ZlM mzD0+boEgbwtD4Cr7zyvrdnbzGFTeG+PXQlz/5NbXGpi5fsTDlf5Adw5xP0YaFEC crjhh830yhJDTOR8s0f1mDss7GmwK+bKnYeR/pymHZKScJM2ATXmQBk86ECr0wE8 ZZZYlChhtba1YjEp3xjN/mMa/5pcO6/N8zR96SST9z402WEGlMyBjSMJifz+9gRi 6qdRsMRAbLPaJrcHW0lOWrdtq8N7QBkXVQ5VRHcuLJSeYK4x9o9VwHRHTQ60W0HL 8iBEgp/f0ES8Lk0gDomeNhp5mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC44s1CZ mOlm4KWh6pPAKZdoTK3tMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv7RQfEUGYakD3v+Dpimuv0oDFUyZEM+myqIaUf0ISIAf6Hh7784KE v/IC6G7lE7GoP/f6ObzVaY4BHwsC0zC6rkGVwivO6QyqUk+z4jY14R2fjzeNCPSa K1Z7e2irmoOBadBOi61OSWSauAf8NeWgmR8twm1OdkcotUrPRHsGWD6Ccwprh9Mc LBhI6vV/XohBCg8iyDSLDCu0cDU9A9eM8w8g0m5MsynHWmqjNPClA5t8jGrsSCZm Rzldygo/8tGbwuKS33kslNcLReNRAcuzfFII+QSBcRh8kM6+3EgtLBZd6MFcB7Zg P0Oz/3RgDSs8oTCr96YTgsjBX7ml+liV -----END CERTIFICATE-----Generated at Sat Jul 5 23:11:54 2025 by rpki-client