$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: fv1le538qFXwjCInQpaB4ah5etxqmirkSL32unpo9uM= Subject key identifier: 02:9D:E2:5F:27:F0:85:9A:B9:35:2A:02:F1:13:AB:07:36:90:A0:48 Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 184F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 1844 Signing time: Wed 02 Jul 2025 16:38:22 +0000 Manifest this update: Wed 02 Jul 2025 16:38:21 +0000 Manifest next update: Wed 09 Jul 2025 16:38:21 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: BkZx/1qgWLGzGJRSKB7aW2yXKMDrVUdhpIP7TIR4ejE=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: WFmZvmOIKNk0az+zKPBYrOXakumFbE34A1nRoyLlGgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6223 (0x184f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58, serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Jul 2 16:38:21 2025 GMT Not After : Jul 9 16:38:21 2025 GMT Subject: CN=6865607e-9062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b6:9b:9b:3e:6d:0b:98:e7:c0:95:9e:18:c1: 3b:fd:36:05:78:c1:9b:bd:25:c3:0b:cb:9e:24:a5: d1:5a:f2:2e:5e:4a:3e:25:9f:c7:73:7a:3c:bc:8a: 96:75:18:41:a5:9d:d8:ad:4a:8d:d8:fb:63:79:c4: 9c:75:cc:7a:29:e0:78:35:fc:7d:7f:e7:72:b2:52: a9:63:fe:8f:41:04:37:ee:ef:d0:ad:06:15:bf:9a: 25:01:d4:8b:f9:78:c6:85:71:56:0d:10:cc:f5:9e: ec:cf:90:46:2a:a7:30:13:a7:ce:15:b0:6d:8a:76: 99:81:85:e5:ec:af:d7:52:2f:da:ef:5b:a9:d0:15: bb:16:40:46:b6:1b:66:4d:44:f3:67:25:c5:7c:f4: a1:dc:f5:86:e0:68:a0:5f:ab:74:f9:e4:da:8f:d9: 69:74:d3:f2:a4:9a:29:08:90:c8:dc:79:ea:0c:ac: 9a:26:a6:c1:d5:89:97:c9:e5:f7:4d:33:c4:2f:f8: 66:8b:23:d0:c3:60:ce:eb:ff:0c:37:27:f6:da:31: 55:9e:40:42:3b:4b:e9:d5:38:e1:89:f1:66:6a:99: ef:16:d8:47:24:31:30:6f:0f:d1:51:e3:b7:3a:31: de:df:df:94:94:6a:75:d5:b5:44:40:0c:df:2e:92: a9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9D:E2:5F:27:F0:85:9A:B9:35:2A:02:F1:13:AB:07:36:90:A0:48 X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:75:22:c9:1b:00:33:61:b5:fe:a9:33:94:be:79:90:df:23: f1:2a:8e:b3:fc:4e:23:24:33:12:72:af:25:5d:33:66:e4:c7: e9:79:b6:80:d7:2c:73:ae:30:49:dc:c2:c4:45:0e:d9:63:5a: 61:0f:a2:d8:fc:bb:fd:3d:4b:a6:b9:d8:2b:0f:ae:63:2e:25: 64:b4:1a:c7:99:ee:5e:28:3c:a2:97:be:d6:37:a2:e8:88:46: 30:1b:c4:b9:b8:3b:65:a8:89:da:c5:ee:2b:95:a5:9c:84:cc: 64:dd:4a:28:0a:15:33:67:07:2b:f1:80:b9:9f:5d:9d:c6:89: da:18:39:45:8c:92:00:12:68:6e:19:b4:b1:69:cb:f2:ad:4d: 7d:ed:df:c4:a5:0f:d4:06:be:d4:14:ef:ee:8a:bc:f8:87:c4: 8a:95:3f:5a:2a:94:2f:24:ca:1f:4f:70:e9:d0:2a:c7:fd:1a: a6:50:38:0e:87:3f:03:d1:0d:ba:7e:64:a4:6d:bc:0b:a5:47: 89:b6:94:18:dc:95:2e:d2:d5:f5:b1:c8:a1:6f:8c:f0:7e:14: e0:cf:53:7b:b1:08:3d:f1:6e:50:0b:5d:e1:ff:16:02:e8:e5: 64:81:6a:b4:70:84:5e:49:b5:ba:da:95:1c:7f:99:0a:1c:f0: f5:64:b9:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjUwNzAyMTYzODIxWhcNMjUwNzA5MTYzODIxWjAYMRYwFAYD VQQDEw02ODY1NjA3ZS05MDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrabmz5tC5jnwJWeGME7/TYFeMGbvSXDC8ueJKXRWvIuXko+JZ/Hc3o8vIqW dRhBpZ3YrUqN2PtjecScdcx6KeB4Nfx9f+dyslKpY/6PQQQ37u/QrQYVv5olAdSL +XjGhXFWDRDM9Z7sz5BGKqcwE6fOFbBtinaZgYXl7K/XUi/a71up0BW7FkBGthtm TUTzZyXFfPSh3PWG4GigX6t0+eTaj9lpdNPypJopCJDI3HnqDKyaJqbB1YmXyeX3 TTPEL/hmiyPQw2DO6/8MNyf22jFVnkBCO0vp1TjhifFmapnvFthHJDEwbw/RUeO3 OjHe39+UlGp11bVEQAzfLpKpnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKd4l8n 8IWauTUqAvETqwc2kKBIMB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4dSLJGwAzYbX+qTOUvnmQ3yPxKo6z/E4jJDMScq8lXTNm5MfpebaA 1yxzrjBJ3MLERQ7ZY1phD6LY/Lv9PUumudgrD65jLiVktBrHme5eKDyil77WN6Lo iEYwG8S5uDtlqInaxe4rlaWchMxk3UooChUzZwcr8YC5n12dxonaGDlFjJIAEmhu GbSxacvyrU197d/EpQ/UBr7UFO/uirz4h8SKlT9aKpQvJMofT3Dp0CrH/RqmUDgO hz8D0Q26fmSkbbwLpUeJtpQY3JUu0tX1scihb4zwfhTgz1N7sQg98W5QC13h/xYC 6OVkgWq0cIReSbW62pUcf5kKHPD1ZLkv -----END CERTIFICATE-----Generated at Wed Jul 2 22:34:15 2025 by rpki-client