$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: 8GLrcLdMxWiHKP52AVmSG7p5U7Gx7Uj4UrefUL8SOgU= Subject key identifier: 0A:3D:AD:B8:CD:41:30:60:2D:D0:CE:C3:68:F8:2F:5F:20:4A:18:A7 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 041A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0414 Signing time: Sat 23 Aug 2025 00:37:15 +0000 Manifest this update: Sat 23 Aug 2025 00:37:14 +0000 Manifest next update: Sat 30 Aug 2025 00:37:14 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: AZXOmKfPRI6gLbPTOcBMYaX6yrJMF1QWok1lo8gDBho=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: vev8cF3wVonEj/spB6AbH6AE+o8N+kb1JbFrPlAS1N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1050 (0x41a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Aug 23 00:37:14 2025 GMT Not After : Aug 30 00:37:14 2025 GMT Subject: CN=68a90d3a-3df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:a2:90:4c:9e:77:84:19:33:3d:f0:3b:08: d0:37:49:ee:06:58:eb:fa:c9:e2:55:d7:fd:ea:51: 99:61:b8:6e:14:fc:55:52:4d:63:bf:62:81:fc:96: 77:af:57:ae:09:31:3c:50:4b:7b:2d:2b:ea:1b:8c: dc:be:fb:78:eb:10:22:a4:0a:7e:49:da:1d:93:3e: 24:20:b9:cb:31:c9:d3:e0:c1:20:a5:59:20:d0:73: 9a:4f:e9:b7:60:03:8c:13:f2:44:1c:bb:89:b6:6f: c7:75:5c:3c:b5:42:8c:1d:a9:24:13:22:ee:36:0f: 43:a4:59:2f:c1:9b:f4:a9:df:63:73:13:0e:d6:0d: a1:29:fd:9e:cb:2e:11:08:46:7c:99:4d:0b:16:99: d8:95:34:16:15:56:4a:6a:55:fa:10:a2:75:1d:80: 5c:5c:2a:51:ee:7c:5a:65:60:fb:31:bc:c6:84:53: 59:d3:7e:1e:f2:aa:8c:81:79:81:37:a7:eb:31:fa: aa:ab:e4:90:5b:8c:d5:21:a9:5c:c3:6b:55:34:0d: 2f:3a:c0:a6:7e:7a:cf:7a:71:81:18:66:fa:1a:75: 9a:f7:bb:17:f6:bc:75:09:9f:9c:34:51:3b:af:51: 29:7e:da:08:ec:61:4d:6c:02:62:06:34:39:ca:aa: 93:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3D:AD:B8:CD:41:30:60:2D:D0:CE:C3:68:F8:2F:5F:20:4A:18:A7 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:42:a9:a8:de:d9:df:c5:38:d6:a5:6c:14:07:66:bf:26:86: a3:0a:06:e0:97:2b:76:92:e8:e3:d9:93:17:d1:e6:fc:e0:70: 2e:5d:41:41:31:15:61:56:d9:f8:1d:d4:da:37:a2:11:33:05: c2:27:c5:dd:fd:e7:cc:fa:bc:74:56:e9:3c:bf:73:3b:48:85: 18:12:ba:2f:f4:fd:e9:bc:fb:3c:c6:b2:54:96:f5:a6:4b:6a: 8b:0a:54:6a:21:ee:49:75:68:ab:3c:7b:1a:84:94:2c:fb:d7: ad:dd:e6:f0:9c:38:6b:a3:9f:85:4d:b7:65:7d:9e:ff:53:78: 7e:45:26:24:a7:c4:08:b2:94:5e:75:6c:86:79:3b:89:2d:7c: 90:57:cf:86:41:cc:9c:09:4c:cc:86:bf:f5:d7:4b:84:53:5d: d4:7a:ad:2b:3f:de:af:f3:a7:43:eb:b0:d6:33:95:a3:0f:e1: a8:90:96:79:4d:7a:f4:5d:97:a1:7f:54:a9:c6:d3:6a:dd:c1: 3d:37:d6:42:e4:c2:06:e9:c2:34:eb:07:04:e0:97:02:0b:10: 88:cd:b9:0c:7a:3e:a1:59:9a:f4:b8:d1:4e:7f:71:1f:57:27: 0b:e7:11:2c:52:ab:b3:4e:f4:fa:f7:d1:eb:00:8a:3f:9e:c5: 34:3c:97:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUwODIzMDAzNzE0WhcNMjUwODMwMDAzNzE0WjAYMRYwFAYD VQQDEw02OGE5MGQzYS0zZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymWikEyed4QZMz3wOwjQN0nuBljr+sniVdf96lGZYbhuFPxVUk1jv2KB/JZ3 r1euCTE8UEt7LSvqG4zcvvt46xAipAp+Sdodkz4kILnLMcnT4MEgpVkg0HOaT+m3 YAOME/JEHLuJtm/HdVw8tUKMHakkEyLuNg9DpFkvwZv0qd9jcxMO1g2hKf2eyy4R CEZ8mU0LFpnYlTQWFVZKalX6EKJ1HYBcXCpR7nxaZWD7MbzGhFNZ034e8qqMgXmB N6frMfqqq+SQW4zVIalcw2tVNA0vOsCmfnrPenGBGGb6GnWa97sX9rx1CZ+cNFE7 r1EpftoI7GFNbAJiBjQ5yqqTmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo9rbjN QTBgLdDOw2j4L18gShinMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdQqmo3tnfxTjWpWwUB2a/JoajCgbglyt2kujj2ZMX0eb84HAuXUFB MRVhVtn4HdTaN6IRMwXCJ8Xd/efM+rx0Vuk8v3M7SIUYErov9P3pvPs8xrJUlvWm S2qLClRqIe5JdWirPHsahJQs+9et3ebwnDhro5+FTbdlfZ7/U3h+RSYkp8QIspRe dWyGeTuJLXyQV8+GQcycCUzMhr/110uEU13Ueq0rP96v86dD67DWM5WjD+GokJZ5 TXr0XZehf1SpxtNq3cE9N9ZC5MIG6cI06wcE4JcCCxCIzbkMej6hWZr0uNFOf3Ef VycL5xEsUquzTvT699HrAIo/nsU0PJcz -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:40 2025 by rpki-client