$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: Rrf5XlvvbGVe+9Y1Qxu2XHbNCfHmtiAEGF9Uv0HPyPk= Subject key identifier: A3:44:5C:7C:E8:87:A4:A7:47:97:78:C8:98:95:B9:3B:5B:41:71:D2 Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 19 Signing time: Sat 23 Aug 2025 08:12:10 +0000 Manifest this update: Sat 23 Aug 2025 08:12:09 +0000 Manifest next update: Sat 30 Aug 2025 08:12:09 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: /uDfX1kRgMVC1QOVtr5knNxahWGRPgh99xKbQ7rCGpo=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: PqNnMtc0YzN3eHNjrg0ykkeSPjuNLhEa4HAV6yMUzA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Aug 23 08:12:09 2025 GMT Not After : Aug 30 08:12:09 2025 GMT Subject: CN=68a977d9-4876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:66:84:d5:38:47:e5:a5:01:69:9f:79:31: 9d:59:ac:c6:81:0c:fd:76:8f:0a:40:d0:ab:ac:71: 8b:63:58:8e:75:9d:02:cc:c6:dc:5a:2d:9b:4d:88: 05:1c:34:cd:52:91:35:d7:48:cd:4f:f7:2d:99:4c: 99:8d:4e:3e:ec:b7:35:48:36:02:cf:4c:7b:96:9f: 2b:3c:1b:0d:ef:b4:f8:0a:43:80:85:fa:dc:c4:71: 04:b6:f3:e3:57:e5:0d:f3:83:06:23:1c:68:ef:1a: 2d:92:75:60:e6:c5:dd:9d:9c:cc:69:e0:98:a1:c0: c7:f2:c4:c2:3e:cd:07:68:9a:43:b4:0d:ad:cf:2a: 5c:4e:9c:a5:b5:94:40:fe:f9:ff:39:ab:46:05:e2: 1f:31:16:98:26:e6:d3:63:df:4d:8e:3e:da:0d:c1: 75:9c:11:04:f9:c9:cf:e3:13:6d:4d:1e:db:b0:1c: 26:69:6c:1b:a2:8c:51:1e:b7:c5:25:d3:66:1e:3b: fa:0a:2f:04:29:cc:a6:f0:8a:1c:de:39:dd:a8:8f: 63:e2:e4:58:dc:b8:e1:cc:6b:58:5e:69:9b:5b:f0: 95:a0:40:a4:85:55:66:a4:db:5f:50:a3:43:90:ea: 42:3c:6f:80:6f:94:a1:15:3f:ed:3e:fa:0e:f9:0e: 63:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:44:5C:7C:E8:87:A4:A7:47:97:78:C8:98:95:B9:3B:5B:41:71:D2 X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:31:86:21:b6:3d:79:de:e4:fb:55:55:f0:ee:2f:b6:32:3d: 47:4d:34:2a:51:69:0a:cf:08:73:0c:19:88:4c:96:23:1c:36: aa:1a:a2:45:77:25:24:5d:12:14:21:45:dc:6b:3d:23:d7:f3: bc:4e:7d:f0:c9:f2:16:b7:8d:1b:5c:cd:04:23:cf:af:bd:a8: c2:c2:3e:5f:fd:81:b4:b4:4e:d9:3f:5a:54:77:bb:d5:af:14: a5:09:b0:87:3d:1f:6c:a2:f2:af:da:dd:f6:f0:ac:58:86:d0: dc:08:87:32:51:fa:05:39:51:ea:8b:12:0c:86:a5:85:27:7d: d1:eb:59:7f:fa:90:9a:98:71:18:be:22:bc:9a:84:44:18:e0: d9:7d:22:59:c4:6f:9c:c4:5e:dc:13:56:9c:af:ef:40:8f:67: ef:19:87:85:2a:55:7e:84:ea:fb:38:f0:55:3f:2b:b7:f3:c6: e2:6c:46:84:e0:92:ab:3f:17:ae:3b:5d:57:27:71:72:b0:17: 24:d4:42:88:a1:1e:51:25:0c:e2:67:e3:97:62:d4:07:b8:2f: 64:08:7a:7f:04:cc:fc:86:9a:3e:b6:00:47:0f:67:d6:c4:35: 26:22:04:df:c2:e7:28:e0:6d:00:a9:09:91:f9:dc:57:cf:1b: d4:c1:a0:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoNDFCNDM0OTE1QTQ5MTlEQ0VGNTdENjk3N0M0MDQ4MERG QzMxMTM0RDAeFw0yNTA4MjMwODEyMDlaFw0yNTA4MzAwODEyMDlaMBgxFjAUBgNV BAMTDTY4YTk3N2Q5LTQ4NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4n2aE1ThH5aUBaZ95MZ1ZrMaBDP12jwpA0KuscYtjWI51nQLMxtxaLZtNiAUc NM1SkTXXSM1P9y2ZTJmNTj7stzVINgLPTHuWnys8Gw3vtPgKQ4CF+tzEcQS28+NX 5Q3zgwYjHGjvGi2SdWDmxd2dnMxp4JihwMfyxMI+zQdomkO0Da3PKlxOnKW1lED+ +f85q0YF4h8xFpgm5tNj302OPtoNwXWcEQT5yc/jE21NHtuwHCZpbBuijFEet8Ul 02YeO/oKLwQpzKbwihzeOd2oj2Pi5FjcuOHMa1heaZtb8JWgQKSFVWak219Qo0OQ 6kI8b4BvlKEVP+0++g75DmMFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo0RcfOiH pKdHl3jImJW5O1tBcdIwHwYDVR0jBBgwFoAUQbQ0kVpJGdzvV9aXfEBIDfwxE00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0VGNEFENDUyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWJRMGtWcEpHZHp2VjlhWGZFQklEZnd4RTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0VGNEFENDUyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6 dlY5YVhmRUJJRGZ3eEUwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE8xhiG2PXne5PtVVfDuL7YyPUdNNCpRaQrPCHMMGYhMliMcNqoaokV3 JSRdEhQhRdxrPSPX87xOffDJ8ha3jRtczQQjz6+9qMLCPl/9gbS0Ttk/WlR3u9Wv FKUJsIc9H2yi8q/a3fbwrFiG0NwIhzJR+gU5UeqLEgyGpYUnfdHrWX/6kJqYcRi+ IryahEQY4Nl9IlnEb5zEXtwTVpyv70CPZ+8Zh4UqVX6E6vs48FU/K7fzxuJsRoTg kqs/F647XVcncXKwFyTUQoihHlElDOJn45di1Ae4L2QIen8EzPyGmj62AEcPZ9bE NSYiBN/C5yjgbQCpCZH53FfPG9TBoFI= -----END CERTIFICATE-----Generated at Sat Aug 23 21:27:32 2025 by rpki-client