$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: G/87KmDhAKhAZZMUyIGEp410tZABVFtstW2C6wZuIUM= Subject key identifier: 6A:D5:9A:C5:52:FB:69:DC:2C:3A:5D:E9:CD:C9:C4:15:80:6C:6F:AF Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 025F Signing time: Sat 23 Aug 2025 02:01:35 +0000 Manifest this update: Sat 23 Aug 2025 02:01:34 +0000 Manifest next update: Sat 30 Aug 2025 02:01:34 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: tg+xv8/hoq+ezT+kSHcRYYFB5HiXFJyK/MXd+E2IYpE=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Aug 23 02:01:34 2025 GMT Not After : Aug 30 02:01:34 2025 GMT Subject: CN=68a920fe-2d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:61:01:c5:c4:1d:01:eb:cf:ac:b2:b4:6a:55: 25:84:ef:24:73:b4:7a:d9:6d:2f:32:8e:a2:f1:d8: 10:62:d6:01:cf:45:95:81:e1:ca:a4:6d:a4:2c:d7: 3c:2f:e9:f7:a1:35:dc:65:44:33:17:8d:80:01:f9: fa:cc:b9:5c:8c:31:c2:c1:1b:2e:af:36:01:07:96: bd:9d:cd:cd:ba:cc:5e:e0:a2:a6:8f:16:e6:9b:05: 87:ad:56:3d:ff:c8:2e:e8:0a:77:1b:8e:cc:b3:b9: 8a:3c:fa:51:4a:f2:13:38:e2:45:f6:ef:12:5d:eb: c0:05:a2:e1:21:5c:c1:c1:c6:05:5a:b2:e1:67:cc: b3:09:7e:79:3d:8f:d3:58:8d:45:88:7d:fd:db:77: 2d:7c:8c:0e:fe:8c:d1:91:5f:61:20:75:87:23:e2: 2c:0d:48:0d:e2:8b:89:61:b1:ec:68:7d:b6:07:15: 63:29:5f:28:15:e1:f2:e4:da:64:33:41:e3:e2:09: 2b:78:57:dc:cb:b7:2c:5f:d6:ee:53:24:34:9d:77: c8:e1:07:07:cc:39:af:79:9a:c3:2f:7d:f4:3b:5b: d4:1d:c3:b0:09:05:3e:a6:48:77:55:28:a6:8e:69: 0f:23:2d:92:d2:93:37:4d:17:d0:2a:0d:12:1a:f6: 11:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D5:9A:C5:52:FB:69:DC:2C:3A:5D:E9:CD:C9:C4:15:80:6C:6F:AF X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e5:00:6f:61:e3:41:26:c4:ee:50:19:3d:9e:0e:b5:c1:6b: 87:d5:14:79:d7:1d:df:94:c3:d6:39:7b:b5:17:7b:24:b7:69: 0f:f5:16:e0:f9:d7:6e:0d:36:a2:4e:8a:67:a9:36:35:75:ca: d5:da:98:37:23:23:d0:1f:c9:c2:42:0d:e3:5f:cd:fc:2d:a3: e0:f8:19:c7:c1:67:47:d6:6d:f0:a3:d4:9e:da:01:dd:15:46: d0:91:74:8f:ff:a7:38:e6:ce:0b:d1:64:b5:18:91:8e:15:63: ce:09:35:4b:77:6a:56:4d:28:bc:1b:59:9d:7a:6f:5c:c0:cf: 4f:9e:8f:76:ed:78:7e:b7:e5:d0:7d:9d:e7:ab:b4:8a:9b:8d: f7:c2:59:e0:12:5e:c3:46:05:0d:5a:06:a3:24:a7:1c:ed:65: 41:b8:2c:9c:82:ff:62:86:cd:44:4f:46:45:28:80:35:30:5e: cb:6f:37:91:56:c5:41:24:51:23:3a:2d:1b:df:60:f2:d1:7c: 29:62:91:38:26:7f:30:23:ec:da:3f:be:da:5c:d0:5d:cd:ef: 53:72:69:df:25:27:4e:41:a8:62:b5:58:f2:ad:bf:06:be:91: 1b:5d:30:b0:3c:b8:c6:4f:5d:cc:f6:df:08:2a:df:1d:7f:6a: cc:24:00:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUwODIzMDIwMTM0WhcNMjUwODMwMDIwMTM0WjAYMRYwFAYD VQQDEw02OGE5MjBmZS0yZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2EBxcQdAevPrLK0alUlhO8kc7R62W0vMo6i8dgQYtYBz0WVgeHKpG2kLNc8 L+n3oTXcZUQzF42AAfn6zLlcjDHCwRsurzYBB5a9nc3Nusxe4KKmjxbmmwWHrVY9 /8gu6Ap3G47Ms7mKPPpRSvITOOJF9u8SXevABaLhIVzBwcYFWrLhZ8yzCX55PY/T WI1FiH3923ctfIwO/ozRkV9hIHWHI+IsDUgN4ouJYbHsaH22BxVjKV8oFeHy5Npk M0Hj4gkreFfcy7csX9buUyQ0nXfI4QcHzDmveZrDL330O1vUHcOwCQU+pkh3VSim jmkPIy2S0pM3TRfQKg0SGvYRdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrVmsVS +2ncLDpd6c3JxBWAbG+vMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB45QBvYeNBJsTuUBk9ng61wWuH1RR51x3flMPWOXu1F3skt2kP9Rbg +dduDTaiTopnqTY1dcrV2pg3IyPQH8nCQg3jX838LaPg+BnHwWdH1m3wo9Se2gHd FUbQkXSP/6c45s4L0WS1GJGOFWPOCTVLd2pWTSi8G1mdem9cwM9Pno927Xh+t+XQ fZ3nq7SKm433wlngEl7DRgUNWgajJKcc7WVBuCycgv9ihs1ET0ZFKIA1MF7LbzeR VsVBJFEjOi0b32Dy0XwpYpE4Jn8wI+zaP77aXNBdze9TcmnfJSdOQahitVjyrb8G vpEbXTCwPLjGT13M9t8IKt8df2rMJAAN -----END CERTIFICATE-----Generated at Sat Aug 23 20:22:34 2025 by rpki-client