$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: mbW8ADAgbVSoTFr4R0BWh4nQ/gvVOROVkTX0jGBKbzA= Subject key identifier: 00:35:3E:BB:56:E9:35:7E:8F:12:60:55:6D:7E:66:DD:B5:5D:17:51 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 01EF Signing time: Sat 23 Aug 2025 02:41:23 +0000 Manifest this update: Sat 23 Aug 2025 02:41:22 +0000 Manifest next update: Sat 30 Aug 2025 02:41:22 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: k06IqJZEXKJo8z5rrEGEJspUv4liPYZBYnjTuclxJGs=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: L+V30ULZZ1KBiifHC7zDGdNJ17lrpWMv8iHx76Nc92w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Aug 23 02:41:22 2025 GMT Not After : Aug 30 02:41:22 2025 GMT Subject: CN=68a92a53-cf0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bb:b5:bf:6b:f8:7d:57:26:be:f9:55:08:8a: af:12:ea:e9:84:92:be:65:c7:5e:98:f7:9b:d3:13: 86:fe:ee:f6:7b:cc:c1:6d:7f:d7:11:f2:f8:e7:80: 13:fe:98:b0:a0:a6:f9:b7:38:75:56:a5:2e:d2:c7: f5:86:69:c2:8a:d0:f4:68:7c:dd:8a:c9:1a:7b:9b: 5a:82:a6:a1:7f:f5:52:61:18:53:b7:12:e8:76:3e: ba:b0:50:3b:42:58:6c:c0:7a:44:9c:9f:1b:d7:5f: 2e:00:46:58:ee:97:a7:db:98:1c:ac:9d:cb:b9:c0: d1:54:4a:9d:d2:31:7c:d9:02:ea:39:a7:11:cb:fa: 1e:d8:0c:dd:34:0f:bb:e8:52:97:fd:60:04:b1:17: 65:66:a0:ae:5d:21:5d:b0:43:3b:e4:4a:c1:ff:85: 2f:12:3a:c2:fb:4e:f7:d4:76:8a:1b:c3:d2:72:55: 7f:ec:57:64:49:8e:d5:1a:f9:b6:c7:41:25:94:55: c9:b4:22:53:2b:f5:ba:c7:d5:2f:c4:76:5a:f4:d5: 7d:27:a3:4f:2b:24:77:54:9f:f8:ae:c8:99:5d:5d: ca:97:53:c7:91:3c:b2:b8:d3:b8:17:2c:ab:62:7e: cc:cf:68:58:f9:a7:19:7a:c7:20:a6:07:45:eb:b6: 7e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:35:3E:BB:56:E9:35:7E:8F:12:60:55:6D:7E:66:DD:B5:5D:17:51 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:7d:c7:be:e0:6c:f8:bc:70:9e:cd:ed:5f:2e:84:32:3e:46: 54:1a:66:5d:4e:d8:79:01:da:f5:b9:0a:c6:45:0b:3e:af:0b: 41:54:9a:fc:06:8c:30:17:4f:b1:6f:87:90:77:13:03:b6:53: 29:e2:5e:fd:f7:d3:20:26:00:aa:e5:0b:48:ee:22:33:de:25: ef:ea:1b:fe:34:89:fd:72:d9:1f:24:58:9a:92:cb:4a:da:65: 4b:83:e8:2b:c7:40:63:eb:a5:87:98:c9:23:82:2f:58:0a:90: d6:5e:76:94:55:30:2d:8e:69:ae:95:a2:27:46:6b:c0:35:7a: 46:32:5c:c0:fc:d4:33:4c:19:e1:2d:fd:69:41:ca:cc:4c:65: c0:87:1c:02:4f:86:6a:d0:b8:b6:13:0a:4e:fb:ff:27:d4:2c: 9a:af:3f:32:d3:2e:35:bb:ea:75:b6:77:22:05:ae:76:8f:ed: de:24:2e:db:74:dc:5d:dc:e0:a0:65:95:51:93:63:ee:16:06: a6:ec:4d:12:aa:cb:ae:9e:e7:42:18:3b:c7:62:1d:4a:9c:64: 8a:53:5b:5c:55:b6:49:02:36:5e:a3:09:4a:93:76:a4:3c:16: f9:b6:ad:17:c9:e8:d4:36:83:ef:81:12:21:62:a7:e3:2f:dc: 40:b2:52:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUwODIzMDI0MTIyWhcNMjUwODMwMDI0MTIyWjAYMRYwFAYD VQQDEw02OGE5MmE1My1jZjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Lu1v2v4fVcmvvlVCIqvEurphJK+ZcdemPeb0xOG/u72e8zBbX/XEfL454AT /piwoKb5tzh1VqUu0sf1hmnCitD0aHzdiskae5tagqahf/VSYRhTtxLodj66sFA7 QlhswHpEnJ8b118uAEZY7pen25gcrJ3LucDRVEqd0jF82QLqOacRy/oe2AzdNA+7 6FKX/WAEsRdlZqCuXSFdsEM75ErB/4UvEjrC+0731HaKG8PSclV/7FdkSY7VGvm2 x0EllFXJtCJTK/W6x9UvxHZa9NV9J6NPKyR3VJ/4rsiZXV3Kl1PHkTyyuNO4Fyyr Yn7Mz2hY+acZescgpgdF67Z+jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAA1PrtW 6TV+jxJgVW1+Zt21XRdRMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0fce+4Gz4vHCeze1fLoQyPkZUGmZdTth5Adr1uQrGRQs+rwtBVJr8 BowwF0+xb4eQdxMDtlMp4l7999MgJgCq5QtI7iIz3iXv6hv+NIn9ctkfJFiakstK 2mVLg+grx0Bj66WHmMkjgi9YCpDWXnaUVTAtjmmulaInRmvANXpGMlzA/NQzTBnh Lf1pQcrMTGXAhxwCT4Zq0Li2EwpO+/8n1Cyarz8y0y41u+p1tnciBa52j+3eJC7b dNxd3OCgZZVRk2PuFgam7E0SqsuunudCGDvHYh1KnGSKU1tcVbZJAjZeowlKk3ak PBb5tq0XyejUNoPvgRIhYqfjL9xAslKc -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:43 2025 by rpki-client