$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: Xp0mnWJd512gGZihmOv8dSyPD2u+Ld6+PPySsVsJ4ok= Subject key identifier: 9D:80:42:D8:33:7E:8A:6D:9E:D5:04:2E:D4:85:9C:2A:69:67:32:32 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 014B Signing time: Sat 23 Aug 2025 04:20:56 +0000 Manifest this update: Sat 23 Aug 2025 04:20:56 +0000 Manifest next update: Sat 30 Aug 2025 04:20:56 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: s1DeBvFgZerOySAEHs1UXLtsawhX0Os+LHuQPgbpak0=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:20:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Aug 23 04:20:56 2025 GMT Not After : Aug 30 04:20:56 2025 GMT Subject: CN=68a941a8-293a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:47:7f:71:db:1f:5a:08:2e:a8:04:67:86:1f: 91:1b:fd:1d:15:b6:f3:82:07:2f:bd:df:9b:8a:7f: bf:18:74:4b:8f:e6:36:57:1d:23:9e:6d:16:5a:29: 57:9c:ad:fb:83:d8:09:cc:52:65:82:61:9a:ea:76: 31:ac:d4:a7:dc:f7:11:a4:71:67:1b:7b:76:d9:ab: 0e:07:08:bf:8f:d4:c2:9f:99:dd:ce:80:86:8b:3b: c1:4e:31:96:f6:9c:a8:93:4a:52:3e:91:86:85:7b: dd:5e:da:48:63:19:0f:ea:03:a2:22:ae:ba:0b:6a: 08:dd:5e:26:3e:44:c1:62:ac:9a:f3:2d:94:34:9b: 1c:36:e7:09:cd:9b:53:77:b8:90:e1:8b:03:db:06: d6:ef:fe:9a:63:35:2f:cb:81:44:3f:a6:e2:66:e0: 81:5c:4c:23:bb:d9:d4:1f:3c:b0:e4:0d:e5:1d:f7: 95:5b:b7:94:a4:c4:6b:be:89:70:ad:1f:98:72:b1: 23:97:3e:5c:6b:78:f4:8c:75:01:33:98:0b:8f:fa: 4f:f0:cb:c9:cf:2f:f3:25:73:1b:94:99:18:d7:67: 10:b0:af:6c:c1:65:ae:53:d4:5e:a8:ec:7e:de:45: e7:1f:d9:60:43:e8:5a:62:a2:98:4c:0a:98:ce:c0: b0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:80:42:D8:33:7E:8A:6D:9E:D5:04:2E:D4:85:9C:2A:69:67:32:32 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:fa:22:e3:5e:8a:9f:6b:de:52:0f:89:39:e4:e4:40:b6:8c: 91:9a:cf:fe:da:b5:02:1e:d6:05:e3:26:7f:f3:d1:3c:9e:b5: 64:0e:a3:fa:d6:ea:d3:35:50:f0:75:9b:18:6d:8b:a4:c0:bf: 3a:ff:96:a2:08:44:5b:16:ec:91:a9:c6:b6:f0:d6:6e:21:93: 82:75:d4:ec:6e:fc:00:5e:97:29:fd:b3:62:55:6c:bf:28:b4: 9d:19:f1:bc:aa:5a:d1:64:26:a1:d2:82:6a:d1:fd:d7:64:a7: da:65:1c:8b:51:a3:53:94:cd:31:b6:7f:c5:44:bc:52:44:68: c6:34:e9:87:df:d9:de:fa:32:1c:24:a3:31:15:91:29:40:02: a4:35:a8:58:19:52:39:92:af:c2:c9:a8:49:14:9c:49:d5:a0: f9:23:5f:a2:4a:88:36:5a:54:8d:4c:71:0b:b3:5b:06:e1:6e: 4d:d8:a9:9a:ea:bc:75:49:0c:85:bf:cc:77:83:57:eb:55:d2: 2c:75:98:53:68:d9:99:cb:fb:06:5c:12:43:8b:e4:44:ba:ab: 96:3d:2e:43:cb:5b:66:31:6f:ef:b7:70:2e:70:84:35:77:e8: 54:69:03:94:26:73:c5:8b:75:d5:3f:fe:43:ea:26:21:93:c6: 33:a2:b1:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUwODIzMDQyMDU2WhcNMjUwODMwMDQyMDU2WjAYMRYwFAYD VQQDEw02OGE5NDFhOC0yOTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0d/cdsfWgguqARnhh+RG/0dFbbzggcvvd+bin+/GHRLj+Y2Vx0jnm0WWilX nK37g9gJzFJlgmGa6nYxrNSn3PcRpHFnG3t22asOBwi/j9TCn5ndzoCGizvBTjGW 9pyok0pSPpGGhXvdXtpIYxkP6gOiIq66C2oI3V4mPkTBYqya8y2UNJscNucJzZtT d7iQ4YsD2wbW7/6aYzUvy4FEP6biZuCBXEwju9nUHzyw5A3lHfeVW7eUpMRrvolw rR+YcrEjlz5ca3j0jHUBM5gLj/pP8MvJzy/zJXMblJkY12cQsK9swWWuU9ReqOx+ 3kXnH9lgQ+haYqKYTAqYzsCwxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2AQtgz foptntUELtSFnCppZzIyMB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV+iLjXoqfa95SD4k55ORAtoyRms/+2rUCHtYF4yZ/89E8nrVkDqP6 1urTNVDwdZsYbYukwL86/5aiCERbFuyRqca28NZuIZOCddTsbvwAXpcp/bNiVWy/ KLSdGfG8qlrRZCah0oJq0f3XZKfaZRyLUaNTlM0xtn/FRLxSRGjGNOmH39ne+jIc JKMxFZEpQAKkNahYGVI5kq/CyahJFJxJ1aD5I1+iSog2WlSNTHELs1sG4W5N2Kma 6rx1SQyFv8x3g1frVdIsdZhTaNmZy/sGXBJDi+REuquWPS5Dy1tmMW/vt3AucIQ1 d+hUaQOUJnPFi3XVP/5D6iYhk8YzorET -----END CERTIFICATE-----Generated at Sat Aug 23 20:37:25 2025 by rpki-client