$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft File: Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft (raw, json) Hash identifier: rM3s4q+guMC7Fmj0c4y3FyAmi3yQiXDDp0Qjfj70LAI= Subject key identifier: 42:AB:5C:89:D5:E2:1C:97:71:CD:F9:DA:0E:46:77:0B:A0:4F:EA:85 Authority key identifier: 42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 Certificate issuer: /CN=A914EAE4/serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Certificate serial: 1B3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft Manifest number: 1B38 Signing time: Fri 22 Aug 2025 16:23:02 +0000 Manifest this update: Fri 22 Aug 2025 16:23:01 +0000 Manifest next update: Fri 29 Aug 2025 16:23:01 +0000 Files and hashes: 1: Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl (hash: 4AiHQc76RFbZ0MQJukG0mtMok/W4tAIYdPjq3CfGXJA=) 2: 7E1ADD74E00E11EDA7E1B640C4F9AE02.roa (hash: l8rbVcrxpBL4K1nr5JzCpQg12eUyxOnsIOK36gYUlKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6972 (0x1b3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Validity Not Before: Aug 22 16:23:01 2025 GMT Not After : Aug 29 16:23:01 2025 GMT Subject: CN=68a89966-328c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2a:95:5e:e5:d0:87:68:1d:da:73:85:b9:e0: a4:f9:34:68:9d:d2:42:b8:5d:e6:74:38:50:15:50: 5b:ba:14:d8:ba:ac:f1:4e:96:47:f1:b3:5e:fa:40: d7:49:ec:0c:18:3d:d6:64:14:1d:41:23:e4:4e:13: be:c7:03:8f:9e:a3:11:b1:6d:62:c4:36:d9:e6:69: e5:b1:a9:01:77:86:77:34:58:e5:66:53:d7:fe:37: b7:08:d2:28:8e:38:92:73:3d:e8:55:5f:b6:41:49: 90:70:e1:3b:bb:41:0f:c2:07:cc:4c:26:14:e4:52: 48:71:71:3c:46:3d:b6:98:60:3a:1c:50:be:25:48: 16:24:f9:95:96:e6:5b:8d:65:fa:d6:f2:23:38:45: 99:63:eb:05:8a:69:a8:59:de:63:79:0b:8d:c9:99: 20:b3:63:55:c1:07:b5:e5:7d:51:2f:00:4b:3b:d9: 8e:c1:09:c5:26:fa:e8:d6:7c:15:4e:a4:e0:28:ea: fc:ff:e2:8b:0a:a1:54:f0:87:73:db:82:16:9f:92: c1:cb:cb:cb:85:c1:9d:19:bc:8f:73:2e:1e:5c:5f: 95:09:81:55:2d:82:59:d9:26:ab:76:70:39:0a:da: 07:ba:fe:b1:01:63:71:01:b9:d2:43:a9:c9:fb:82: 98:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AB:5C:89:D5:E2:1C:97:71:CD:F9:DA:0E:46:77:0B:A0:4F:EA:85 X509v3 Authority Key Identifier: keyid:42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:73:e9:a7:f7:d2:32:56:79:f0:87:ce:a9:be:fd:41:d4:3c: fe:4f:5a:68:37:94:5b:76:41:7c:7c:98:56:7c:81:2e:81:35: f9:83:58:fb:fa:c8:e7:08:84:fa:86:dd:1b:80:0d:16:1b:10: a5:ed:5e:c1:57:87:b3:86:4d:70:02:7a:a1:6d:74:70:50:64: ca:35:cf:46:53:24:da:ec:3b:90:d3:e8:50:4c:61:cf:2a:f3: d1:bf:7a:99:62:b5:85:f5:bc:fe:f5:b0:b4:02:83:80:3c:5b: 31:6d:68:72:b4:7c:a3:2d:04:72:b4:27:9f:98:87:87:fb:5c: 61:64:8a:2d:3e:68:31:4d:8d:86:c5:92:9c:25:58:aa:1b:49: f9:89:0f:96:4b:4c:4c:d8:09:0b:a0:06:c8:12:06:88:4f:49: b2:dd:70:24:e5:da:72:9f:d6:6f:d9:a8:b8:01:53:14:12:7d: 38:94:57:60:04:91:b8:19:91:d7:c5:d9:f4:fe:d5:d7:fa:d0: ad:fa:81:bb:fe:ac:8c:1f:cc:83:7b:84:a0:0d:48:b3:14:b9: e4:53:2b:48:83:66:c5:b7:b3:95:94:8c:b4:91:37:af:d1:11: cc:95:fc:fe:3d:5c:ca:1f:07:5f:53:5e:bd:56:38:d8:4a:1c: 75:c9:74:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKDQyOUVDRTE5MzhDQzg5MjRCMTExMDk2NUM5Q0Y0Rjk2 NDg2MDIwMTgwHhcNMjUwODIyMTYyMzAxWhcNMjUwODI5MTYyMzAxWjAYMRYwFAYD VQQDEw02OGE4OTk2Ni0zMjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryqVXuXQh2gd2nOFueCk+TRondJCuF3mdDhQFVBbuhTYuqzxTpZH8bNe+kDX SewMGD3WZBQdQSPkThO+xwOPnqMRsW1ixDbZ5mnlsakBd4Z3NFjlZlPX/je3CNIo jjiScz3oVV+2QUmQcOE7u0EPwgfMTCYU5FJIcXE8Rj22mGA6HFC+JUgWJPmVluZb jWX61vIjOEWZY+sFimmoWd5jeQuNyZkgs2NVwQe15X1RLwBLO9mOwQnFJvro1nwV TqTgKOr8/+KLCqFU8Idz24IWn5LBy8vLhcGdGbyPcy4eXF+VCYFVLYJZ2SardnA5 CtoHuv6xAWNxAbnSQ6nJ+4KYiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKrXInV 4hyXcc352g5GdwugT+qFMB8GA1UdIwQYMBaAFEKezhk4zIkksREJZcnPT5ZIYCAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC81RUNDMTVBQTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlTU3hFUWxseWM5UGxraGdJ QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FwN09HVGpNaVNTeEVRbGx5YzlQbGtoZ0lCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUFFNC81RUNDMTVBQTI1NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlT U3hFUWxseWM5UGxraGdJQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0c+mn99IyVnnwh86pvv1B1Dz+T1poN5RbdkF8fJhWfIEugTX5g1j7 +sjnCIT6ht0bgA0WGxCl7V7BV4ezhk1wAnqhbXRwUGTKNc9GUyTa7DuQ0+hQTGHP KvPRv3qZYrWF9bz+9bC0AoOAPFsxbWhytHyjLQRytCefmIeH+1xhZIotPmgxTY2G xZKcJViqG0n5iQ+WS0xM2AkLoAbIEgaIT0my3XAk5dpyn9Zv2ai4AVMUEn04lFdg BJG4GZHXxdn0/tXX+tCt+oG7/qyMH8yDe4SgDUizFLnkUytIg2bFt7OVlIy0kTev 0RHMlfz+PVzKHwdfU169VjjYShx1yXRY -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:36 2025 by rpki-client