$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: wvROySLjQuNabWuyFitbbaafmjgdVHXjEusPS0B2jMc= Subject key identifier: 8F:96:FD:FD:F9:0B:E6:53:D2:AD:88:A9:B0:3F:AA:C7:63:56:00:95 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 24D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24B1 Signing time: Fri 22 Aug 2025 15:49:36 +0000 Manifest this update: Fri 22 Aug 2025 15:49:36 +0000 Manifest next update: Fri 29 Aug 2025 15:49:36 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: MPE+Y8sBB77h6cRPrvIISTY5DDdujERWV+hi331IAWE=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mECvLTKiNtfSmorR6F/JjM52Np+0S4zr3je4uTIkUj8=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: dltD8ogNsgEp1LNwu/hSjpxIyXjpYdO8Yd4ZGWGZBuI=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: tv9RdWOPyxWE44FO50AuecGDdKWojTS5Z904qdTlAMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9425 (0x24d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Aug 22 15:49:36 2025 GMT Not After : Aug 29 15:49:36 2025 GMT Subject: CN=68a89190-e705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c1:e7:c7:0d:80:93:e5:be:f9:ab:35:b4:dc: e8:c3:09:26:46:c5:db:77:e9:e8:fd:50:9e:64:5f: 57:22:17:cc:2e:54:bf:59:c2:19:43:1c:d4:f1:21: ae:82:31:f6:de:23:db:57:cf:f3:5f:df:45:55:3c: 0c:2c:fd:dc:f4:28:74:73:15:a3:7d:ab:98:57:32: 4f:f0:b4:74:59:fd:f7:42:41:f5:4e:eb:87:ba:9d: 9b:68:a5:c4:f6:a7:06:78:82:e1:17:da:2a:f0:0f: ac:93:c6:dd:0e:5d:8d:89:54:c7:0e:74:9d:71:aa: 46:06:eb:a3:6d:bb:e0:8f:2a:42:93:45:8f:37:8c: ee:b4:d2:13:69:1b:86:9e:21:dd:08:ca:4b:45:8f: 17:28:91:05:7c:92:56:6f:f6:7d:b2:aa:74:dc:2d: a5:fa:4e:8d:94:31:69:02:11:75:aa:62:67:18:7e: bb:97:00:e4:1d:7d:dd:ef:7c:7c:20:44:ce:26:ab: a4:57:a7:72:4a:16:27:5c:88:30:4e:89:1b:65:0a: 26:ba:4d:64:93:88:2a:a0:1c:48:6b:a5:aa:a9:88: 6d:7c:f9:45:f0:b1:4a:89:76:4b:57:a7:5c:d1:9c: c0:ce:7e:69:18:20:71:50:c6:64:1e:83:cf:3b:04: 3f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:96:FD:FD:F9:0B:E6:53:D2:AD:88:A9:B0:3F:AA:C7:63:56:00:95 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:38:d0:8c:e0:f1:e4:92:74:d5:e6:14:e9:70:48:71:37:2e: f5:2b:4e:52:18:73:71:cf:89:03:d3:a4:9e:99:e5:2e:83:e3: 0b:65:fd:b5:d5:81:80:ac:e2:f7:2d:f6:58:ed:57:16:2b:28: 9e:fa:f3:26:b0:6c:bd:07:a8:84:27:0b:a8:ad:58:49:66:18: 59:61:de:b9:8e:51:1e:48:e9:36:d9:ac:e7:b7:e0:79:fe:54: 19:46:50:5d:6d:1e:6e:49:44:83:0a:23:5e:93:86:57:b8:05: 77:5b:20:ed:a0:43:ef:77:20:ff:60:6d:94:02:9b:83:71:01: fa:00:22:bb:b0:9d:a2:0b:0c:7c:e7:15:85:1d:19:37:ba:7f: 40:1f:f3:21:0b:89:c5:85:7c:c9:fe:56:ec:3e:f6:3e:35:41: 4a:c2:5e:b5:80:46:16:9b:6f:5f:c5:17:15:cf:75:df:a6:ab: 28:e3:70:e9:19:1a:17:86:a3:6f:2f:13:12:a7:8e:5b:10:fe: fc:b4:16:79:49:86:ae:a5:bf:0b:87:58:c8:85:3f:86:df:10: f0:4b:16:07:9c:99:d2:c7:8c:e0:2e:7a:00:b1:7a:ce:be:8b: df:38:cc:a4:6b:4a:7e:76:26:3b:06:52:fa:3c:4f:be:53:91: b6:fd:56:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUwODIyMTU0OTM2WhcNMjUwODI5MTU0OTM2WjAYMRYwFAYD VQQDEw02OGE4OTE5MC1lNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68Hnxw2Ak+W++as1tNzowwkmRsXbd+no/VCeZF9XIhfMLlS/WcIZQxzU8SGu gjH23iPbV8/zX99FVTwMLP3c9Ch0cxWjfauYVzJP8LR0Wf33QkH1TuuHup2baKXE 9qcGeILhF9oq8A+sk8bdDl2NiVTHDnSdcapGBuujbbvgjypCk0WPN4zutNITaRuG niHdCMpLRY8XKJEFfJJWb/Z9sqp03C2l+k6NlDFpAhF1qmJnGH67lwDkHX3d73x8 IETOJqukV6dyShYnXIgwTokbZQomuk1kk4gqoBxIa6WqqYhtfPlF8LFKiXZLV6dc 0ZzAzn5pGCBxUMZkHoPPOwQ/lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+W/f35 C+ZT0q2IqbA/qsdjVgCVMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmONCM4PHkknTV5hTpcEhxNy71K05SGHNxz4kD06SemeUug+MLZf21 1YGArOL3LfZY7VcWKyie+vMmsGy9B6iEJwuorVhJZhhZYd65jlEeSOk22aznt+B5 /lQZRlBdbR5uSUSDCiNek4ZXuAV3WyDtoEPvdyD/YG2UApuDcQH6ACK7sJ2iCwx8 5xWFHRk3un9AH/MhC4nFhXzJ/lbsPvY+NUFKwl61gEYWm29fxRcVz3Xfpqso43Dp GRoXhqNvLxMSp45bEP78tBZ5SYaupb8Lh1jIhT+G3xDwSxYHnJnSx4zgLnoAsXrO vovfOMyka0p+diY7BlL6PE++U5G2/VYZ -----END CERTIFICATE-----Generated at Sat Aug 23 19:33:31 2025 by rpki-client