$ rpki-client -vvf rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft File: QuOGLXRTXCypqrN6cZW1keruIeU.mft (raw, json) Hash identifier: LQgTK+iH/v69jawcGLKOe5F0vtgU95fokcWGryCsQ1k= Subject key identifier: 89:21:DF:5A:E6:61:5F:19:11:39:D5:4D:A7:5B:6F:2C:07:47:EB:C2 Authority key identifier: 42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 Certificate issuer: /CN=A91580E4/serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft Manifest number: 4E Signing time: Sat 23 Aug 2025 07:33:30 +0000 Manifest this update: Sat 23 Aug 2025 07:33:30 +0000 Manifest next update: Sat 30 Aug 2025 07:33:30 +0000 Files and hashes: 1: QuOGLXRTXCypqrN6cZW1keruIeU.crl (hash: 8a9dUASq/fyGSiU7VRx6/kZix2uCcqBVYfsmgq96NwY=) 2: E78F55A408BC11F09C4FB471C4F9AE02.roa (hash: voOUCH7zRGxksu2fNV8QOYiL4kmVMcLs8S+aobdc9H8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580E4, serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Validity Not Before: Aug 23 07:33:30 2025 GMT Not After : Aug 30 07:33:30 2025 GMT Subject: CN=68a96eca-acbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:72:31:43:e7:98:64:3c:03:40:e1:7a:d1:4e: 0b:ef:19:07:64:12:25:be:63:e2:5a:9c:64:37:cb: 61:ca:75:c0:23:8b:67:fe:ee:84:79:db:65:75:c6: 37:2f:5a:73:24:fa:90:d6:f3:e6:14:74:5e:15:38: 20:03:3f:b6:65:68:23:d3:5c:6e:32:e6:b3:83:81: be:24:35:be:93:34:b1:02:87:b7:5a:09:d4:a5:05: 98:a0:cd:ad:fb:ce:17:ab:b7:ab:7c:21:7c:10:8e: 43:db:3f:c3:41:13:39:11:c3:6d:3d:bf:ec:5a:92: 66:7e:e5:75:3b:9f:37:16:c1:5f:f5:76:a1:45:ef: 9e:b1:45:72:0c:4e:5a:69:f0:40:28:29:00:62:5f: f4:43:e5:02:c7:40:ed:9e:f5:1e:75:04:78:c2:20: 65:1d:6e:cb:54:b8:13:d7:63:0c:55:45:ac:7d:c0: 2e:63:08:fa:2f:b8:be:5b:39:c5:ba:bc:ac:ef:5b: c6:64:ec:2a:a4:e8:e6:70:5b:cf:a6:22:1b:ef:17: f3:2b:5a:6c:b0:6a:77:ac:bf:92:bd:6d:3a:63:fd: ee:cb:7c:12:ec:95:b6:bd:1b:3d:cf:cb:05:f1:91: 98:25:16:b4:57:d6:c0:04:cf:72:a1:80:a7:a8:cb: c7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:21:DF:5A:E6:61:5F:19:11:39:D5:4D:A7:5B:6F:2C:07:47:EB:C2 X509v3 Authority Key Identifier: keyid:42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f1:48:e0:73:3a:9c:88:ea:38:2c:ad:ce:51:cd:59:8d:d4: 76:43:73:59:ec:10:68:3e:59:b9:c3:0d:c3:f3:49:65:48:3a: f3:4e:8a:7f:6c:16:7e:45:06:ee:5c:8c:24:15:00:cc:12:e2: c5:8e:1d:bb:c3:8a:63:8e:35:74:95:2f:06:af:45:3f:f5:d2: 18:b9:94:90:9a:4c:3c:8a:da:c5:ff:8a:33:05:c7:1b:67:19: a7:3f:eb:73:ca:d5:30:c3:20:a3:af:b9:ef:ce:89:13:c5:34: 31:c9:e2:db:2d:c1:4c:c5:66:35:97:9d:2f:dc:41:be:98:53: b3:0f:79:47:ba:7c:0b:48:04:59:cf:df:50:85:92:c8:03:34: da:04:5c:4c:6b:44:73:72:0b:7a:f1:60:91:5a:b2:17:a5:f4: fe:d2:52:3c:e9:b8:74:ef:9e:12:68:64:16:d7:24:18:61:8c: 8a:ac:de:3f:ab:59:92:ec:79:68:d2:85:14:37:d3:bb:25:be: 5f:c4:57:cd:4d:6a:72:a7:33:c9:e5:1c:44:f8:0a:57:07:3f: 39:83:57:c5:15:51:5b:42:d3:ae:15:a4:db:71:9e:f1:8c:2c: c2:9a:70:f7:21:0c:bc:ba:29:c1:a2:00:8d:13:1e:23:65:64: f8:3e:30:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODBFNDExMC8GA1UEBRMoNDJFMzg2MkQ3NDUzNUMyQ0E5QUFCMzdBNzE5NUI1OTFF QUVFMjFFNTAeFw0yNTA4MjMwNzMzMzBaFw0yNTA4MzAwNzMzMzBaMBgxFjAUBgNV BAMTDTY4YTk2ZWNhLWFjYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHcjFD55hkPANA4XrRTgvvGQdkEiW+Y+JanGQ3y2HKdcAji2f+7oR522V1xjcv WnMk+pDW8+YUdF4VOCADP7ZlaCPTXG4y5rODgb4kNb6TNLECh7daCdSlBZigza37 zhert6t8IXwQjkPbP8NBEzkRw209v+xakmZ+5XU7nzcWwV/1dqFF756xRXIMTlpp 8EAoKQBiX/RD5QLHQO2e9R51BHjCIGUdbstUuBPXYwxVRax9wC5jCPovuL5bOcW6 vKzvW8Zk7Cqk6OZwW8+mIhvvF/MrWmywanesv5K9bTpj/e7LfBLslba9Gz3PywXx kZglFrRX1sAEz3KhgKeoy8e7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiSHfWuZh XxkROdVNp1tvLAdH68IwHwYDVR0jBBgwFoAUQuOGLXRTXCypqrN6cZW1keruIeUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MEU0LzVDMEM5NTUwMDhC QzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5cHFyTjZjWlcxa2VydUll VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXVPR0xYUlRYQ3lwcXJONmNaVzFrZXJ1SWVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MEU0LzVDMEM5NTUwMDhCQzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5 cHFyTjZjWlcxa2VydUllVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFfxSOBzOpyI6jgsrc5RzVmN1HZDc1nsEGg+WbnDDcPzSWVIOvNOin9s Fn5FBu5cjCQVAMwS4sWOHbvDimOONXSVLwavRT/10hi5lJCaTDyK2sX/ijMFxxtn Gac/63PK1TDDIKOvue/OiRPFNDHJ4tstwUzFZjWXnS/cQb6YU7MPeUe6fAtIBFnP 31CFksgDNNoEXExrRHNyC3rxYJFashel9P7SUjzpuHTvnhJoZBbXJBhhjIqs3j+r WZLseWjShRQ307slvl/EV81NanKnM8nlHET4ClcHPzmDV8UVUVtC064VpNtxnvGM LMKacPchDLy6KcGiAI0THiNlZPg+MP8= -----END CERTIFICATE-----Generated at Sat Aug 23 23:55:43 2025 by rpki-client