$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: A6BFbm1gQhlJvIFYcEDT6clEjjrQO4ZD2/rZanJbbxY= Subject key identifier: AB:07:38:5C:40:BA:31:51:8F:3E:67:79:46:80:77:66:B3:B0:B2:AD Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 34B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 34B4 Signing time: Fri 22 Aug 2025 14:38:15 +0000 Manifest this update: Fri 22 Aug 2025 14:38:15 +0000 Manifest next update: Fri 29 Aug 2025 14:38:15 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: 89QUm6YciEVtn4exti3eC+Us+ed9Fsi/i5nIwdYGtQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13492 (0x34b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Aug 22 14:38:15 2025 GMT Not After : Aug 29 14:38:15 2025 GMT Subject: CN=68a880d7-b209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d7:b2:4d:f1:7f:d7:94:03:23:dc:b0:f7:13: 99:be:a3:22:4f:fa:58:ca:bf:4c:5a:43:43:5d:18: 2c:88:2f:ef:8e:4e:68:32:54:75:f0:bd:3e:24:e2: 67:22:bc:5c:a8:40:70:2d:66:93:f9:d6:e5:e8:0f: db:48:08:61:c6:b6:81:48:50:4d:59:87:0e:cd:b2: 3d:dd:12:9b:c5:fc:93:a9:b4:97:ea:e6:76:01:5c: 64:46:37:66:29:7d:f6:ba:76:21:a4:7d:50:b0:53: 52:52:f4:d0:a1:0f:30:2a:cb:66:fb:45:f6:a8:d0: 18:26:ea:5f:92:d9:0e:3f:d0:33:f8:07:4d:39:91: c4:68:80:b2:a8:b0:55:15:a9:06:e6:d5:bc:12:1e: ef:fc:88:c6:af:97:3b:2d:54:84:09:d8:84:b8:94: 34:d6:5e:9a:a9:97:34:f2:ed:05:30:9a:65:61:75: 6f:d0:52:1b:bc:f8:b4:50:e6:3a:1b:94:8a:ca:1c: 06:5d:d3:3a:43:b5:81:8b:5c:22:4e:2d:8c:62:12: 4f:10:f4:d7:de:22:ef:c1:f3:66:88:79:3a:9a:98: 84:bd:ab:1d:8e:61:76:0c:e1:0c:ca:ae:35:02:d2: 86:b0:17:cc:62:8d:77:99:d1:33:38:89:9e:ea:b1: ec:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:07:38:5C:40:BA:31:51:8F:3E:67:79:46:80:77:66:B3:B0:B2:AD X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:7d:50:5d:35:20:97:a0:7e:6d:c4:ed:25:8e:c6:15:81:c2: 0f:6c:75:32:d4:7c:c4:42:de:68:a8:71:3f:66:da:31:95:1e: a8:e2:8f:4d:bd:a2:06:4d:a1:d6:ab:e8:7b:41:b5:05:05:2d: 63:50:94:d3:cc:d0:57:60:6e:1e:97:3c:60:9c:5f:4a:bc:23: d1:27:0f:4f:68:4d:92:d4:29:13:52:a6:0a:ab:42:ea:c2:a0: 8c:9c:9e:b3:ec:fa:21:43:10:c9:a7:f2:5c:e7:92:9e:e3:f5: a3:70:d8:1b:72:a9:c1:78:4f:a4:2f:05:7f:12:12:a3:b8:dc: 46:08:ae:9a:cd:fd:06:72:e3:91:e3:dd:16:1d:71:85:0b:a6: 5a:4e:65:d5:64:ba:f4:96:b4:a0:c5:3b:3c:b5:e3:1a:b4:49: f7:06:9b:0c:87:fa:b7:49:02:60:7b:8b:d8:f3:fb:ff:54:fe: 14:c3:30:29:74:60:80:d9:36:b1:8a:d6:93:b6:a8:74:fd:1a: 05:08:f8:b7:af:d4:f0:40:b6:21:87:36:b7:b5:3c:f3:4b:d5: b5:79:22:72:dc:ed:e9:f7:c4:66:94:eb:c6:c5:f1:f5:3e:f5: d0:af:cd:68:c1:d6:59:75:a2:ed:b2:6b:8e:c1:fa:90:92:cf: f1:cf:dc:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjUwODIyMTQzODE1WhcNMjUwODI5MTQzODE1WjAYMRYwFAYD VQQDEw02OGE4ODBkNy1iMjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69eyTfF/15QDI9yw9xOZvqMiT/pYyr9MWkNDXRgsiC/vjk5oMlR18L0+JOJn IrxcqEBwLWaT+dbl6A/bSAhhxraBSFBNWYcOzbI93RKbxfyTqbSX6uZ2AVxkRjdm KX32unYhpH1QsFNSUvTQoQ8wKstm+0X2qNAYJupfktkOP9Az+AdNOZHEaICyqLBV FakG5tW8Eh7v/IjGr5c7LVSECdiEuJQ01l6aqZc08u0FMJplYXVv0FIbvPi0UOY6 G5SKyhwGXdM6Q7WBi1wiTi2MYhJPEPTX3iLvwfNmiHk6mpiEvasdjmF2DOEMyq41 AtKGsBfMYo13mdEzOIme6rHsMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsHOFxA ujFRjz5neUaAd2azsLKtMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjfVBdNSCXoH5txO0ljsYVgcIPbHUy1HzEQt5oqHE/ZtoxlR6o4o9N vaIGTaHWq+h7QbUFBS1jUJTTzNBXYG4elzxgnF9KvCPRJw9PaE2S1CkTUqYKq0Lq wqCMnJ6z7PohQxDJp/Jc55Ke4/WjcNgbcqnBeE+kLwV/EhKjuNxGCK6azf0GcuOR 490WHXGFC6ZaTmXVZLr0lrSgxTs8teMatEn3BpsMh/q3SQJge4vY8/v/VP4UwzAp dGCA2TaxitaTtqh0/RoFCPi3r9TwQLYhhza3tTzzS9W1eSJy3O3p98RmlOvGxfH1 PvXQr81owdZZdaLtsmuOwfqQks/xz9x8 -----END CERTIFICATE-----Generated at Sat Aug 23 19:33:26 2025 by rpki-client