$ rpki-client -vvf rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft File: qz22NdhTYB5LpVUAZxIB2Jb-za0.mft (raw, json) Hash identifier: /EKYbC2XYvxMuyniDIJVkaVClyfryucQONDkG03db98= Subject key identifier: 34:2A:8D:6E:CC:CD:16:65:62:C1:AA:69:85:74:78:92:ED:DC:98:47 Authority key identifier: AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD Certificate issuer: /CN=A917FDF3/serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Certificate serial: 08EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft Manifest number: 08E4 Signing time: Fri 22 Aug 2025 20:31:53 +0000 Manifest this update: Fri 22 Aug 2025 20:31:52 +0000 Manifest next update: Fri 29 Aug 2025 20:31:52 +0000 Files and hashes: 1: qz22NdhTYB5LpVUAZxIB2Jb-za0.crl (hash: mhT+DFi1gS+Cufo7u7Sn9duNzW8cue/CFgR3UphYC0o=) 2: 0FE0AF42B5DB11EA9DA12556C4F9AE02.roa (hash: Fs5lIXhoeLDLVgaGXIOh275fjXBBfxZsCamTtOxAxUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FDF3, serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Validity Not Before: Aug 22 20:31:52 2025 GMT Not After : Aug 29 20:31:52 2025 GMT Subject: CN=68a8d3b8-8406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4b:09:e8:27:8b:6c:bd:32:3e:fc:a6:65:63: b0:ac:0a:62:30:f6:c7:c7:c3:53:27:a9:87:26:42: b3:05:fc:a8:c5:bc:66:5e:0a:1d:e7:81:65:72:26: bb:42:ca:5e:30:06:3c:4a:66:29:54:c8:5a:12:3d: 07:3d:3e:ef:a6:5e:2b:df:ae:72:d2:b0:c2:21:89: a3:9a:c8:e6:cd:b6:f4:75:fe:82:ad:2f:68:6d:f0: a9:74:62:87:aa:33:a6:c5:cb:ff:5c:57:ae:18:9e: f5:8e:83:88:65:b3:4a:2e:4f:2e:d3:7d:de:2b:5e: 64:05:71:32:1d:de:b5:a1:06:ca:1c:dc:0c:9b:87: 75:28:95:68:f4:48:b9:3a:14:0d:b8:0a:31:90:bd: c7:d0:3e:42:f0:2d:3f:79:34:b5:94:95:a0:b5:41: 92:4a:31:07:08:ad:a6:25:17:da:3e:eb:30:a1:74: 2e:9c:cb:51:45:ff:62:c7:e4:6a:f1:ed:31:7a:69: bb:71:db:c3:73:a5:80:61:87:ac:6d:6b:55:bb:61: 2c:a3:4c:e7:81:f9:b4:dd:bf:c5:dd:63:2f:da:a0: 90:a0:3f:62:b4:30:48:bf:11:ac:ef:0e:f0:56:fd: d3:f3:82:2a:8d:48:ed:ca:f7:d2:28:a0:8d:4d:94: 6d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:2A:8D:6E:CC:CD:16:65:62:C1:AA:69:85:74:78:92:ED:DC:98:47 X509v3 Authority Key Identifier: keyid:AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:ac:fd:bc:1e:14:49:3c:d8:37:f2:3f:e1:d6:8d:5f:73:4d: 3c:42:b1:29:03:e5:06:c7:a9:0f:02:14:58:f7:17:19:0e:99: 98:73:d5:74:ff:c3:d5:71:f1:9e:e6:d4:9b:ac:aa:80:c6:be: 36:99:5f:76:f2:a6:29:f0:7c:8f:ef:3d:3d:50:c5:2d:13:e5: e4:dc:31:da:48:79:f6:81:1f:a1:a6:68:42:ce:b3:f4:b9:d9: d1:c9:a5:dc:3b:ce:f7:10:4b:dd:e8:92:82:74:29:4d:1c:ff: ce:1d:da:27:bc:08:bb:5f:e4:73:7d:b7:90:6c:cc:34:98:08: 47:06:bb:76:0d:c5:88:45:79:1f:e8:f6:e2:17:f8:07:e2:db: c0:54:27:cf:6d:90:4e:2e:d2:7a:f6:77:77:e2:bd:1d:de:02: 08:c0:09:b3:1d:47:c3:30:99:32:52:66:76:de:4e:92:46:c4: f6:6f:0f:40:ea:39:2d:12:65:7f:51:da:b4:4d:84:d9:45:fe: d2:88:18:8c:ba:d6:0e:8d:ab:9b:61:3e:52:3b:91:9b:c1:0f: 09:76:3b:09:ac:ad:0d:ca:9f:01:dd:43:02:0c:2d:c2:34:9e: 22:a7:80:e8:b8:77:de:e3:2b:c0:9c:d4:6e:f8:d4:11:39:4f: 1b:1c:f4:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZERjMxMTAvBgNVBAUTKEFCM0RCNjM1RDg1MzYwMUU0QkE1NTUwMDY3MTIwMUQ4 OTZGRUNEQUQwHhcNMjUwODIyMjAzMTUyWhcNMjUwODI5MjAzMTUyWjAYMRYwFAYD VQQDEw02OGE4ZDNiOC04NDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUsJ6CeLbL0yPvymZWOwrApiMPbHx8NTJ6mHJkKzBfyoxbxmXgod54Flcia7 QspeMAY8SmYpVMhaEj0HPT7vpl4r365y0rDCIYmjmsjmzbb0df6CrS9obfCpdGKH qjOmxcv/XFeuGJ71joOIZbNKLk8u033eK15kBXEyHd61oQbKHNwMm4d1KJVo9Ei5 OhQNuAoxkL3H0D5C8C0/eTS1lJWgtUGSSjEHCK2mJRfaPuswoXQunMtRRf9ix+Rq 8e0xemm7cdvDc6WAYYesbWtVu2Eso0zngfm03b/F3WMv2qCQoD9itDBIvxGs7w7w Vv3T84IqjUjtyvfSKKCNTZRtHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQqjW7M zRZlYsGqaYV0eJLt3JhHMB8GA1UdIwQYMBaAFKs9tjXYU2AeS6VVAGcSAdiW/s2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkRGMy9CM0E4NTJCMkI1 RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlCNUxwVlVBWnhJQjJKYi16 YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F6MjJOZGhUWUI1THBWVUFaeElCMkpiLXphMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkRGMy9CM0E4NTJCMkI1RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlC NUxwVlVBWnhJQjJKYi16YTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+rP28HhRJPNg38j/h1o1fc008QrEpA+UGx6kPAhRY9xcZDpmYc9V0 /8PVcfGe5tSbrKqAxr42mV928qYp8HyP7z09UMUtE+Xk3DHaSHn2gR+hpmhCzrP0 udnRyaXcO873EEvd6JKCdClNHP/OHdonvAi7X+RzfbeQbMw0mAhHBrt2DcWIRXkf 6PbiF/gH4tvAVCfPbZBOLtJ69nd34r0d3gIIwAmzHUfDMJkyUmZ23k6SRsT2bw9A 6jktEmV/Udq0TYTZRf7SiBiMutYOjaubYT5SO5GbwQ8JdjsJrK0Nyp8B3UMCDC3C NJ4ip4DouHfe4yvAnNRu+NQROU8bHPTw -----END CERTIFICATE-----Generated at Sat Aug 23 15:48:32 2025 by rpki-client