$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft File: QELCSQ19r-wzIDFu1ap04L7Kqak.mft (raw, json) Hash identifier: YlpA5MAzKWwSD4aNI/m9QQDXlTGTIpUL6o/ns5k1M+U= Subject key identifier: 64:7B:51:43:F1:E7:53:BD:75:E2:CE:80:62:A7:AC:DE:D6:0B:1D:A6 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft Manifest number: 0145 Signing time: Sat 23 Aug 2025 05:10:48 +0000 Manifest this update: Sat 23 Aug 2025 05:10:47 +0000 Manifest next update: Sat 30 Aug 2025 05:10:47 +0000 Files and hashes: 1: QELCSQ19r-wzIDFu1ap04L7Kqak.crl (hash: fnofJbQUFUKHSzMlHayOSbqxRccEn9ed++HQRA012Ds=) 2: FCF99042301011EFBC350682C4F9AE02.roa (hash: L2/9JjFiWgQt59AFuV+uoqbPdz+ScN9QlotCi7wxs3k=) 3: 3B8DEBA06FD511F0BF33C829C4F9AE02.roa (hash: TD3x6cqMZ5LdB5sZi2QZSzPZxBxaRneEmC2qFVxnzxU=) 4: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (hash: govSB7bwBcjLhKLkQmAfX8Kv8Fg3iLmAfWNtXCpGOvc=) 5: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (hash: dLZr6fxQD9+vNX/nMzjBW+2uiS4zZgIOchhbHeELI7w=) 6: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (hash: N/ID+SY0JAy45rWeP36Bw1B7q4m3VaCJNW1Sv52Yw6c=) 7: 3C0376CC6FD511F0BF33C829C4F9AE02.roa (hash: tcVwqZZLgzM/JYa8wH8nV+ejGoZFhH0k2MAzqkTeLmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Aug 23 05:10:47 2025 GMT Not After : Aug 30 05:10:47 2025 GMT Subject: CN=68a94d58-347e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ed:8f:b3:ed:0d:ea:e1:2b:db:41:b1:fd:87: ed:de:a1:88:2d:89:a0:d8:a2:15:47:a3:68:64:43: 2b:86:d2:b2:67:23:40:bf:e8:bf:ad:18:9c:d3:cf: f5:74:38:33:19:f5:a1:6e:21:85:77:cc:6a:da:a5: 83:1a:7d:ae:f1:1b:d4:df:01:3a:f6:ba:24:8f:1a: dc:74:c1:95:22:3c:73:9a:83:be:c7:fe:ac:1c:f6: 50:c4:9e:b7:32:bf:d2:dc:3c:90:73:de:66:f1:1b: 12:45:cd:20:6e:5b:5b:64:68:ee:4f:37:4c:4d:bb: f4:67:d5:65:52:b6:c8:e2:d6:99:f2:9f:87:80:0d: 32:0d:01:82:9e:3e:03:0b:4f:98:31:a5:05:f9:ed: fb:88:de:88:f6:2d:cf:5f:14:45:72:f2:d7:68:b7: 5e:f4:df:5d:dd:03:93:d1:6e:d2:34:70:27:6b:03: ac:eb:70:9b:ae:e7:71:6e:7a:ac:6e:8f:7b:c1:84: 8a:f7:3a:f9:3f:0f:e6:07:45:d4:94:a9:a4:24:0b: d8:28:ba:60:32:89:e6:a2:ec:56:40:e4:53:b1:f6: d9:d8:3c:e4:38:5f:7d:96:15:dc:df:19:99:b6:67: 48:a6:3d:2b:c4:27:74:8f:ec:4c:fc:1b:50:36:95: ec:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7B:51:43:F1:E7:53:BD:75:E2:CE:80:62:A7:AC:DE:D6:0B:1D:A6 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:85:b0:8f:b6:c1:7d:d2:1e:27:5c:f9:6c:20:7b:48:c7:69: c3:b7:10:be:ed:44:d9:42:c7:9a:27:ce:00:80:c3:65:32:7c: 9a:18:04:2e:c4:69:46:34:e5:f5:f2:3d:50:b0:95:55:8d:e5: 0a:d3:61:a2:24:80:1e:14:27:0d:f0:3e:98:82:d8:67:10:54: 29:12:d6:89:6c:a3:f9:18:7f:37:fc:f4:bb:ff:8f:d0:ae:1c: e5:45:14:70:b8:12:30:87:0b:96:21:e1:46:3a:57:81:02:07: 7b:69:87:5e:b0:3d:51:8f:32:44:43:6f:4b:0f:b9:45:23:c7: 3f:84:ec:d7:1e:40:90:46:36:ed:5f:e9:1c:bc:6c:56:6f:8a: 73:52:bb:84:f6:be:e2:8b:6a:47:78:16:aa:cc:6f:e4:07:fc: 62:66:f2:72:71:87:3d:20:b6:ba:a3:1e:42:82:96:e7:61:6a: e7:0a:74:36:5e:5b:43:9d:69:1f:af:bb:7a:da:ff:84:91:7b: 05:4e:a9:1f:e1:e0:5b:15:d0:54:26:53:5b:ed:1f:c9:38:8a: 0b:88:2b:bb:d5:46:37:5d:94:74:6e:98:ff:2f:74:b3:45:9a: e4:30:09:13:0e:9e:69:06:66:d6:20:db:3b:e1:4a:19:18:dd: 43:82:48:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwODIzMDUxMDQ3WhcNMjUwODMwMDUxMDQ3WjAYMRYwFAYD VQQDEw02OGE5NGQ1OC0zNDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0O2Ps+0N6uEr20Gx/Yft3qGILYmg2KIVR6NoZEMrhtKyZyNAv+i/rRic08/1 dDgzGfWhbiGFd8xq2qWDGn2u8RvU3wE69rokjxrcdMGVIjxzmoO+x/6sHPZQxJ63 Mr/S3DyQc95m8RsSRc0gbltbZGjuTzdMTbv0Z9VlUrbI4taZ8p+HgA0yDQGCnj4D C0+YMaUF+e37iN6I9i3PXxRFcvLXaLde9N9d3QOT0W7SNHAnawOs63Cbrudxbnqs bo97wYSK9zr5Pw/mB0XUlKmkJAvYKLpgMonmouxWQORTsfbZ2DzkOF99lhXc3xmZ tmdIpj0rxCd0j+xM/BtQNpXsoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGR7UUPx 51O9deLOgGKnrN7WCx2mMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE2OS82MjMzREQzRUVCQUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXIt d3pJREZ1MWFwMDRMN0txYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYhbCPtsF90h4nXPlsIHtIx2nDtxC+7UTZQseaJ84AgMNlMnyaGAQu xGlGNOX18j1QsJVVjeUK02GiJIAeFCcN8D6YgthnEFQpEtaJbKP5GH83/PS7/4/Q rhzlRRRwuBIwhwuWIeFGOleBAgd7aYdesD1RjzJEQ29LD7lFI8c/hOzXHkCQRjbt X+kcvGxWb4pzUruE9r7ii2pHeBaqzG/kB/xiZvJycYc9ILa6ox5CgpbnYWrnCnQ2 XltDnWkfr7t62v+EkXsFTqkf4eBbFdBUJlNb7R/JOIoLiCu71UY3XZR0bpj/L3Sz RZrkMAkTDp5pBmbWINs74UoZGN1DgkiE -----END CERTIFICATE-----Generated at Sat Aug 23 12:24:57 2025 by rpki-client