$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft File: QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json) Hash identifier: aXTlPsGy37opOln5oDJw4EMXzUK8INK0CsLR8BhIzM4= Subject key identifier: AD:FC:AD:36:8A:93:21:1D:24:7B:9D:A9:EC:3D:C4:E9:71:BB:F2:53 Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft Manifest number: 92 Signing time: Sat 23 Aug 2025 06:44:12 +0000 Manifest this update: Sat 23 Aug 2025 06:44:12 +0000 Manifest next update: Sat 30 Aug 2025 06:44:12 +0000 Files and hashes: 1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: CsEMVhvn5FC2Ppci7gvg+Xxiqkq/jqSOmJWAD5g6JjI=) 2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: Aug 23 06:44:12 2025 GMT Not After : Aug 30 06:44:12 2025 GMT Subject: CN=68a9633c-23f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:fc:09:b8:34:64:01:c1:ff:74:18:84:49: 77:32:82:f5:5e:f8:9d:f2:80:b1:00:dc:7b:15:89: 2c:aa:89:45:3a:d3:4e:96:a7:2c:19:d9:c0:2d:d1: e7:a1:04:10:57:53:76:24:95:c5:b3:63:d1:3a:51: ba:2d:1a:0a:ba:b8:9a:dc:30:b7:dd:55:11:a6:8b: 24:29:c2:b8:75:ec:8d:c3:5b:29:3e:06:e6:d9:9b: 0e:47:6e:2e:6e:83:47:14:92:df:98:97:e1:5c:25: 79:68:17:f5:25:73:0a:e6:65:e7:47:da:16:45:1f: 1a:ea:c0:19:ec:68:85:49:ce:8c:8d:46:6a:e6:a2: 17:4e:51:19:28:f5:ff:29:13:d3:74:7c:3e:21:99: 8d:3d:e1:01:a7:9e:85:c7:c2:3b:40:bb:f2:49:40: 3b:27:b5:6c:6d:07:4c:a5:43:7e:74:4a:35:96:2e: a8:09:d5:0c:0c:c2:c7:d0:59:c5:c7:25:e3:cc:93: 0b:bc:b8:29:ef:9d:92:a3:44:60:82:9e:e1:9d:84: f8:9d:8b:c5:59:b5:29:54:d5:4e:2f:dd:c3:30:7d: 7c:34:5f:e1:31:1b:65:8c:a7:d1:65:eb:2c:b7:a0: e4:9b:7d:25:d7:25:49:ec:f9:ba:97:a2:7c:53:9f: 0a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FC:AD:36:8A:93:21:1D:24:7B:9D:A9:EC:3D:C4:E9:71:BB:F2:53 X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9a:e6:5f:98:34:3d:2c:af:15:b6:04:e9:e4:6b:3d:b6:a6: a7:7e:10:91:fe:a8:95:b0:b4:31:1c:08:4f:e1:3d:4e:f6:69: 41:80:e0:a6:90:c8:20:2c:34:81:71:85:05:c4:0a:7f:3a:fc: df:99:ff:0b:2b:e6:04:95:31:12:3f:cb:74:53:72:8e:87:e2: 54:7e:0e:19:ca:82:3a:2a:cf:17:79:8e:ed:0c:a5:4c:76:b2: e8:73:ef:c4:49:03:c6:d2:9b:26:dd:e1:8f:d3:04:2c:c6:f3: 94:fc:e7:b8:d9:64:f3:9c:c0:87:5b:1e:60:5d:9f:10:e5:68: b3:09:94:d0:3b:dd:26:df:25:ec:2a:e3:2a:2f:91:8e:20:d3: fd:ea:3a:0f:00:84:5d:86:8b:f6:22:6b:26:f1:5d:18:eb:14: 36:de:07:0c:94:ef:90:02:17:73:b5:49:00:64:95:4c:6f:1a: a1:3b:5f:2c:5b:69:1c:60:eb:14:73:ec:a3:27:28:72:be:ea: 41:56:10:70:c8:53:91:1b:d4:15:18:a2:f2:2d:a1:a0:8d:61: 9d:76:4d:f4:f3:cf:b1:80:b2:98:1a:f0:82:bb:cc:d0:9b:c2: 09:0d:c3:33:bd:c8:d9:de:f1:be:7f:dc:31:89:c7:5a:3c:18: 8a:72:4b:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzMUMxMTAvBgNVBAUTKDQwRkFBNzBGOEEyM0EwM0QxNkExMTA4NkRCRTUwMkU4 NjIxNjQ5NjcwHhcNMjUwODIzMDY0NDEyWhcNMjUwODMwMDY0NDEyWjAYMRYwFAYD VQQDEw02OGE5NjMzYy0yM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxH8Cbg0ZAHB/3QYhEl3MoL1Xvid8oCxANx7FYksqolFOtNOlqcsGdnALdHn oQQQV1N2JJXFs2PROlG6LRoKuria3DC33VURposkKcK4deyNw1spPgbm2ZsOR24u boNHFJLfmJfhXCV5aBf1JXMK5mXnR9oWRR8a6sAZ7GiFSc6MjUZq5qIXTlEZKPX/ KRPTdHw+IZmNPeEBp56Fx8I7QLvySUA7J7VsbQdMpUN+dEo1li6oCdUMDMLH0FnF xyXjzJMLvLgp752So0Rggp7hnYT4nYvFWbUpVNVOL93DMH18NF/hMRtljKfRZess t6Dkm30l1yVJ7Pm6l6J8U58KFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK38rTaK kyEdJHudqew9xOlxu/JTMB8GA1UdIwQYMBaAFED6pw+KI6A9FqEQhtvlAuhiFkln MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzMxQy9GMTA3REExMEE2 Q0YxMUVGQjJGQkI1N0RDNEY5QUUwMi9RUHFuRDRvam9EMFdvUkNHMi1VQzZHSVdT V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzMxQy9GMTA3REExMEE2Q0YxMUVGQjJGQkI1N0RDNEY5QUUwMi9RUHFuRDRvam9E MFdvUkNHMi1VQzZHSVdTV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrmuZfmDQ9LK8VtgTp5Gs9tqanfhCR/qiVsLQxHAhP4T1O9mlBgOCm kMggLDSBcYUFxAp/Ovzfmf8LK+YElTESP8t0U3KOh+JUfg4ZyoI6Ks8XeY7tDKVM drLoc+/ESQPG0psm3eGP0wQsxvOU/Oe42WTznMCHWx5gXZ8Q5WizCZTQO90m3yXs KuMqL5GOINP96joPAIRdhov2Imsm8V0Y6xQ23gcMlO+QAhdztUkAZJVMbxqhO18s W2kcYOsUc+yjJyhyvupBVhBwyFORG9QVGKLyLaGgjWGddk3088+xgLKYGvCCu8zQ m8IJDcMzvcjZ3vG+f9wxicdaPBiKcktH -----END CERTIFICATE-----Generated at Sat Aug 23 13:43:45 2025 by rpki-client