$ rpki-client -vvf rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft File: qz22NdhTYB5LpVUAZxIB2Jb-za0.mft (raw, json) Hash identifier: 26RZiIyyDYa61x2wsTnJyNle7qH97PPwddEIXNdk7Ng= Subject key identifier: 56:41:1E:90:EA:4E:0B:32:9E:09:73:86:0D:84:D9:70:83:6F:A7:D7 Authority key identifier: AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD Certificate issuer: /CN=A917FDF3/serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Certificate serial: 08D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft Manifest number: 08CA Signing time: Wed 02 Jul 2025 20:43:00 +0000 Manifest this update: Wed 02 Jul 2025 20:43:00 +0000 Manifest next update: Wed 09 Jul 2025 20:43:00 +0000 Files and hashes: 1: qz22NdhTYB5LpVUAZxIB2Jb-za0.crl (hash: 97d0W2B9XqwixJLD0HV73VElOqkSND+3om8QOoD+IjI=) 2: 0FE0AF42B5DB11EA9DA12556C4F9AE02.roa (hash: Fs5lIXhoeLDLVgaGXIOh275fjXBBfxZsCamTtOxAxUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:42:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2258 (0x8d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FDF3, serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Validity Not Before: Jul 2 20:43:00 2025 GMT Not After : Jul 9 20:43:00 2025 GMT Subject: CN=686599d4-17d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:29:ed:d6:6a:b8:c1:b2:9d:ad:a0:7e:a6:94: 32:2a:6f:3b:a9:3e:b4:eb:7f:81:46:92:55:af:8d: 58:c5:49:4e:10:29:8c:93:7e:8f:ea:fc:3d:66:9b: a7:bd:cc:b0:ef:b4:c7:af:7e:35:43:7e:79:0f:1a: 90:eb:cf:59:76:b8:51:73:37:0d:7e:6b:2a:b2:e4: 0d:3d:0a:7e:39:d4:57:89:72:2a:6c:2d:eb:b7:60: 07:62:71:f7:7a:29:fc:cd:e1:80:d4:ac:d1:7f:97: 5c:81:f1:df:80:08:db:22:78:02:98:a8:3e:b3:80: 89:96:c4:34:d9:05:06:2d:6c:55:9b:ea:4e:83:d5: 6b:c5:5f:22:32:e6:e8:46:75:a4:d6:3e:3d:1c:a7: f0:dd:26:33:87:fc:75:3a:31:20:83:f7:82:23:8d: 82:1c:10:a9:e6:c8:03:cb:45:0f:17:a8:41:3b:98: b9:4d:9a:58:68:7b:24:7a:1f:7d:01:87:09:2f:09: 3b:19:9e:3c:44:5e:88:c7:8c:ba:5a:54:74:1f:83: 1c:e1:c2:1b:88:e3:21:9b:67:5f:1a:35:25:5b:de: 96:df:b5:e2:d1:a4:6c:f0:c5:33:13:d7:38:65:d6: fe:86:99:08:79:97:f6:97:f7:47:37:61:c0:57:e1: 64:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:41:1E:90:EA:4E:0B:32:9E:09:73:86:0D:84:D9:70:83:6F:A7:D7 X509v3 Authority Key Identifier: keyid:AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:35:bf:fe:8e:0f:b0:97:4b:9d:60:8d:ed:c6:39:ba:be:cc: c3:98:1d:cc:0d:8d:47:4c:35:33:39:c3:44:06:79:0f:97:4c: c1:b9:12:c1:3c:e6:3b:b2:94:13:0e:e1:ec:68:84:84:64:5c: a4:b6:40:f2:14:c5:36:e8:95:84:49:45:e3:4a:87:5f:d6:52: 71:10:b7:13:0b:18:d3:3e:c4:d4:a3:4e:47:88:37:87:ec:a3: d1:b7:b8:c1:79:4f:e3:98:cc:d5:81:73:0e:6c:f6:8f:7a:da: d2:22:1e:5b:7b:bb:59:ad:ac:5f:83:5a:0c:1c:fb:e6:a2:6b: 7e:3c:ea:52:5d:56:65:28:64:c3:2f:81:44:1c:3d:d5:a9:7b: 14:27:d2:22:12:da:02:31:ee:bf:e6:f8:67:2c:d2:07:99:f1: f0:e3:5b:37:6d:32:2d:12:0e:25:3a:84:06:56:ce:0d:0a:25: f6:ce:0f:ec:df:10:4a:16:5f:54:c6:82:49:ef:90:a6:94:e4: d8:51:5e:3d:46:d7:9f:e2:e5:76:c1:5d:72:0f:17:eb:eb:5c: a5:78:f8:92:74:a6:39:1e:8d:b2:24:d1:72:7c:96:7b:e5:39: d8:49:45:d7:36:af:5a:2a:ac:54:84:3c:51:82:d8:00:de:d1: a9:bf:70:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZERjMxMTAvBgNVBAUTKEFCM0RCNjM1RDg1MzYwMUU0QkE1NTUwMDY3MTIwMUQ4 OTZGRUNEQUQwHhcNMjUwNzAyMjA0MzAwWhcNMjUwNzA5MjA0MzAwWjAYMRYwFAYD VQQDEw02ODY1OTlkNC0xN2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSnt1mq4wbKdraB+ppQyKm87qT6063+BRpJVr41YxUlOECmMk36P6vw9Zpun vcyw77THr341Q355DxqQ689ZdrhRczcNfmsqsuQNPQp+OdRXiXIqbC3rt2AHYnH3 ein8zeGA1KzRf5dcgfHfgAjbIngCmKg+s4CJlsQ02QUGLWxVm+pOg9VrxV8iMubo RnWk1j49HKfw3SYzh/x1OjEgg/eCI42CHBCp5sgDy0UPF6hBO5i5TZpYaHskeh99 AYcJLwk7GZ48RF6Ix4y6WlR0H4Mc4cIbiOMhm2dfGjUlW96W37Xi0aRs8MUzE9c4 Zdb+hpkIeZf2l/dHN2HAV+FkuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZBHpDq Tgsynglzhg2E2XCDb6fXMB8GA1UdIwQYMBaAFKs9tjXYU2AeS6VVAGcSAdiW/s2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkRGMy9CM0E4NTJCMkI1 RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlCNUxwVlVBWnhJQjJKYi16 YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F6MjJOZGhUWUI1THBWVUFaeElCMkpiLXphMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkRGMy9CM0E4NTJCMkI1RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlC NUxwVlVBWnhJQjJKYi16YTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2Nb/+jg+wl0udYI3txjm6vszDmB3MDY1HTDUzOcNEBnkPl0zBuRLB POY7spQTDuHsaISEZFyktkDyFMU26JWESUXjSodf1lJxELcTCxjTPsTUo05HiDeH 7KPRt7jBeU/jmMzVgXMObPaPetrSIh5be7tZraxfg1oMHPvmomt+POpSXVZlKGTD L4FEHD3VqXsUJ9IiEtoCMe6/5vhnLNIHmfHw41s3bTItEg4lOoQGVs4NCiX2zg/s 3xBKFl9UxoJJ75CmlOTYUV49Rtef4uV2wV1yDxfr61ylePiSdKY5Ho2yJNFyfJZ7 5TnYSUXXNq9aKqxUhDxRgtgA3tGpv3Am -----END CERTIFICATE-----Generated at Thu Jul 3 00:42:34 2025 by rpki-client