$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: KC90Con7JF6YV4sUEri2oZ3CmWRqtP3BUnOcGp8bi5w= Subject key identifier: BC:7A:86:17:50:D1:28:ED:B0:EB:D7:E8:A1:53:74:9F:73:73:AA:49 Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 07A8 Signing time: Fri 22 Aug 2025 22:45:47 +0000 Manifest this update: Fri 22 Aug 2025 22:45:47 +0000 Manifest next update: Fri 29 Aug 2025 22:45:47 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: ikyXTVYr4Y+PXZocMzTVlQOz1i7qA51kbK+LR/VRho8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: Aug 22 22:45:47 2025 GMT Not After : Aug 29 22:45:47 2025 GMT Subject: CN=68a8f31b-d699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c5:00:a5:05:11:77:e4:e3:1a:5e:c6:03:32: 1c:bd:d1:4e:79:6f:1c:13:ce:7c:67:1a:5d:9a:a5: b5:b0:8f:9c:e4:d8:3e:ab:50:e9:ed:21:66:85:2b: 13:8e:21:7a:1a:7b:77:8c:9d:ed:c7:8b:a7:54:0b: 9f:c3:b6:ba:41:99:c7:7f:c3:f2:c4:00:84:ae:eb: a8:29:53:5f:0a:43:33:33:d2:5f:f4:79:f4:22:11: 53:e5:58:13:4a:c7:08:33:17:99:58:bd:ae:35:49: 9b:e3:39:b7:07:80:b7:90:d9:c1:bc:22:3a:7c:74: a4:b8:f8:dc:92:df:11:85:87:b3:e7:9e:37:91:f1: 18:54:d0:b2:61:19:64:a3:9e:c8:02:89:4b:c3:9e: 93:b0:63:7b:bc:00:88:40:04:c5:39:d2:90:39:ad: cf:e8:90:ff:0a:64:29:df:54:53:1f:a8:8f:0a:69: 65:e0:99:05:89:d0:f9:fe:ed:f3:33:f5:2b:c1:58: b4:bc:d5:ab:a6:4c:30:d1:a4:c2:b5:31:24:96:65: b0:25:d7:55:3a:94:1a:fa:5a:a8:80:d3:d5:3e:62: 22:86:40:b3:b2:2a:5e:1d:58:79:53:df:dc:f4:25: ee:66:85:25:b7:4c:a2:f3:1a:87:f1:33:85:89:28: 87:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7A:86:17:50:D1:28:ED:B0:EB:D7:E8:A1:53:74:9F:73:73:AA:49 X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:b5:7d:08:33:ce:7c:0b:bf:d0:66:a3:8d:dc:ae:27:12:5e: 61:97:4c:2a:3c:8a:71:a9:1e:3e:c8:f3:69:33:2c:2f:db:09: 10:b7:c1:85:4c:86:66:99:7d:ec:d0:6b:0e:ab:2e:7d:c4:06: 35:80:ba:34:5d:2b:06:df:f0:ac:a6:fa:0e:c8:0b:42:37:e5: 18:5d:db:54:3f:54:ae:fe:e1:4b:2c:9b:02:27:df:c1:65:3d: 38:b7:b6:cf:8b:48:f9:45:f5:b5:30:e9:83:c2:a2:69:63:38: 0a:ca:23:e4:d8:cf:7a:b4:6c:5f:db:4c:1e:df:19:21:44:5b: fc:d9:1b:c7:a3:18:47:c2:07:fe:83:59:b1:4d:2f:7f:38:60: 1b:2d:8c:08:ff:54:8b:60:db:8b:47:75:68:0f:6f:9a:f5:f1: 7f:a0:50:47:43:1b:c5:9a:f4:ac:53:49:d8:b6:4f:01:8c:4a: 87:02:4c:a1:d5:7a:56:84:bd:78:f5:52:47:51:a3:69:54:d2: ae:f2:df:1c:f3:c7:a7:bc:07:ff:c8:62:a3:6c:8c:cc:f8:15: e5:1f:4a:22:67:5c:68:97:42:d0:21:86:a8:89:80:85:d0:fa: 6b:94:74:58:27:26:b0:b4:5f:87:d3:85:ff:9d:f1:a6:cd:d5: 69:fd:05:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjUwODIyMjI0NTQ3WhcNMjUwODI5MjI0NTQ3WjAYMRYwFAYD VQQDEw02OGE4ZjMxYi1kNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscUApQURd+TjGl7GAzIcvdFOeW8cE858ZxpdmqW1sI+c5Ng+q1Dp7SFmhSsT jiF6Gnt3jJ3tx4unVAufw7a6QZnHf8PyxACEruuoKVNfCkMzM9Jf9Hn0IhFT5VgT SscIMxeZWL2uNUmb4zm3B4C3kNnBvCI6fHSkuPjckt8RhYez5543kfEYVNCyYRlk o57IAolLw56TsGN7vACIQATFOdKQOa3P6JD/CmQp31RTH6iPCmll4JkFidD5/u3z M/UrwVi0vNWrpkww0aTCtTEklmWwJddVOpQa+lqogNPVPmIihkCzsipeHVh5U9/c 9CXuZoUlt0yi8xqH8TOFiSiHUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx6hhdQ 0SjtsOvX6KFTdJ9zc6pJMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAptX0IM858C7/QZqON3K4nEl5hl0wqPIpxqR4+yPNpMywv2wkQt8GF TIZmmX3s0GsOqy59xAY1gLo0XSsG3/CspvoOyAtCN+UYXdtUP1Su/uFLLJsCJ9/B ZT04t7bPi0j5RfW1MOmDwqJpYzgKyiPk2M96tGxf20we3xkhRFv82RvHoxhHwgf+ g1mxTS9/OGAbLYwI/1SLYNuLR3VoD2+a9fF/oFBHQxvFmvSsU0nYtk8BjEqHAkyh 1XpWhL149VJHUaNpVNKu8t8c88envAf/yGKjbIzM+BXlH0oiZ1xol0LQIYaoiYCF 0PprlHRYJyawtF+H04X/nfGmzdVp/QX+ -----END CERTIFICATE-----Generated at Sun Aug 24 05:14:39 2025 by rpki-client