$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: U1NOcCvy4+EzpUXFyaLqPTjlHlqr/E9GYYlZijeRct4= Subject key identifier: CA:B0:55:AF:00:9D:06:B6:98:CE:98:E8:23:9A:E2:86:05:37:DA:12 Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: B5 Signing time: Sat 23 Aug 2025 06:15:36 +0000 Manifest this update: Sat 23 Aug 2025 06:15:36 +0000 Manifest next update: Sat 30 Aug 2025 06:15:36 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: 0TvYFYUF4+JlRBlC8ZYF3PY1dt2JxsmazSXSIHJOg/M=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Aug 23 06:15:36 2025 GMT Not After : Aug 30 06:15:36 2025 GMT Subject: CN=68a95c88-a90d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:19:a1:6a:de:b2:7f:a3:df:84:0e:40:2f:a0: 4c:88:90:07:0d:51:4d:88:ea:85:17:74:31:e7:39: 0c:80:3e:33:ce:49:95:e4:46:c9:1f:7a:63:11:7e: 62:3f:ef:8b:14:c0:c5:87:01:80:56:14:23:c3:f3: d4:e6:4b:2b:13:81:ce:3a:4f:ab:d3:6b:94:ff:f6: b1:9b:44:f7:de:fa:86:a0:ef:33:3e:dc:bd:a6:94: a2:b9:b1:c4:7b:82:1c:a3:15:3f:30:02:31:21:88: d8:c0:46:8f:89:25:41:ac:1e:41:0f:21:ca:da:32: 05:e8:f1:68:33:f6:fb:d9:3a:a3:36:fb:f9:bc:bc: 83:d1:64:29:fc:e6:34:62:80:24:3f:cb:a2:c2:3c: 86:0e:0b:33:3f:50:5f:9e:0c:7e:bf:36:10:d6:ac: 8a:c2:81:81:bb:2a:f5:14:96:11:79:95:71:ad:70: 73:56:aa:34:b5:02:90:81:a4:7c:f8:e8:60:85:0a: 6f:74:51:f1:08:9e:de:4a:a4:1f:6a:db:ce:de:02: 06:69:f5:ff:45:75:c7:72:b2:23:c4:21:d7:8c:68: af:d9:11:b5:16:aa:54:68:d7:31:43:08:0a:63:97: 64:ce:00:20:73:b2:f4:1e:0d:16:5e:98:3d:04:ff: cb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B0:55:AF:00:9D:06:B6:98:CE:98:E8:23:9A:E2:86:05:37:DA:12 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:86:f1:07:f6:80:fe:3d:02:4b:c5:3e:66:ea:ae:da:67:6a: b0:1c:d2:89:70:5f:97:62:7e:49:a9:ec:99:1b:3e:ea:e6:d3: 4b:3b:19:7a:84:53:8b:cb:31:0e:9f:c1:b3:3f:b3:62:21:71: 9f:5f:f5:c4:bd:89:11:92:f7:9f:6d:14:8f:89:ec:19:30:67: 86:3c:b0:d5:59:63:be:98:df:8e:d6:32:04:e8:e5:90:bb:f8: 9b:77:e3:ca:d1:0b:65:89:ec:b2:94:e4:ea:ad:ca:8c:7f:4b: 23:7b:b7:3e:78:0a:ea:aa:b9:4f:51:38:7d:59:09:13:4f:c7: 23:dc:99:0e:a7:e5:8b:e2:98:a5:81:3b:55:76:7f:f3:bc:b4: c7:75:81:d8:33:91:20:cf:a4:04:ad:a0:d7:5e:03:e0:6d:f1: 63:5a:ad:b1:20:31:bc:58:71:e4:cb:92:79:fb:51:87:a3:4a: 3f:e7:1c:48:cb:f9:08:79:a9:fe:d6:1a:c2:29:7a:81:2a:5f: cf:b0:d4:a0:7c:f7:d0:86:95:90:fb:ab:ed:12:cf:4b:7e:0f: 88:5b:93:0e:0d:1b:12:3d:2c:a9:28:de:77:6e:bd:ca:4d:72: f6:40:cf:d9:07:f2:47:7e:e6:af:bd:2f:ed:cc:6c:2c:bc:52: 63:63:19:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjUwODIzMDYxNTM2WhcNMjUwODMwMDYxNTM2WjAYMRYwFAYD VQQDEw02OGE5NWM4OC1hOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxmhat6yf6PfhA5AL6BMiJAHDVFNiOqFF3Qx5zkMgD4zzkmV5EbJH3pjEX5i P++LFMDFhwGAVhQjw/PU5ksrE4HOOk+r02uU//axm0T33vqGoO8zPty9ppSiubHE e4IcoxU/MAIxIYjYwEaPiSVBrB5BDyHK2jIF6PFoM/b72TqjNvv5vLyD0WQp/OY0 YoAkP8uiwjyGDgszP1Bfngx+vzYQ1qyKwoGBuyr1FJYReZVxrXBzVqo0tQKQgaR8 +OhghQpvdFHxCJ7eSqQfatvO3gIGafX/RXXHcrIjxCHXjGiv2RG1FqpUaNcxQwgK Y5dkzgAgc7L0Hg0WXpg9BP/LlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqwVa8A nQa2mM6Y6COa4oYFN9oSMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEhvEH9oD+PQJLxT5m6q7aZ2qwHNKJcF+XYn5JqeyZGz7q5tNLOxl6 hFOLyzEOn8GzP7NiIXGfX/XEvYkRkvefbRSPiewZMGeGPLDVWWO+mN+O1jIE6OWQ u/ibd+PK0QtlieyylOTqrcqMf0sje7c+eArqqrlPUTh9WQkTT8cj3JkOp+WL4pil gTtVdn/zvLTHdYHYM5Egz6QEraDXXgPgbfFjWq2xIDG8WHHky5J5+1GHo0o/5xxI y/kIean+1hrCKXqBKl/PsNSgfPfQhpWQ+6vtEs9Lfg+IW5MODRsSPSypKN53br3K TXL2QM/ZB/JHfuavvS/tzGwsvFJjYxn6 -----END CERTIFICATE-----Generated at Sat Aug 23 21:22:27 2025 by rpki-client