$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft File: QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft (raw, json) Hash identifier: xTY4UKoAloUkYW2wTgA2b9ZeK2B4+888d0wAADSdWpM= Subject key identifier: 27:8F:39:B6:D9:DA:38:FF:8C:FD:45:BE:E2:3D:19:5C:FD:5D:16:A0 Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft Manifest number: FD Signing time: Sat 23 Aug 2025 05:26:45 +0000 Manifest this update: Sat 23 Aug 2025 05:26:45 +0000 Manifest next update: Sat 30 Aug 2025 05:26:45 +0000 Files and hashes: 1: QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl (hash: xDi9MV3HHe0Uzns/FCIIy6Eb3SrZH8JlB1lmTIWbDz4=) 2: 95BB2A1C7E7511F0A9240744C4F9AE02.roa (hash: dA0qOwTL7oqMY9RQlsM/ppq6x3c8mo1aKzhNOakp4RA=) 3: 8B0E94087E7711F0825F7E6BC4F9AE02.roa (hash: VGNr+wy397+x+eo2u5nezP4JupOw3/BZyZCNhIT48y4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Aug 23 05:26:45 2025 GMT Not After : Aug 30 05:26:45 2025 GMT Subject: CN=68a95115-e2f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:16:db:d9:6b:77:65:35:92:d7:11:17:4d:83: 76:47:d4:5f:f0:2a:43:fc:49:b0:58:8f:2e:1e:d2: 78:d0:b3:05:21:78:18:46:69:db:39:ef:49:32:81: f1:97:36:c5:c2:82:d5:29:d6:06:28:16:10:2f:d6: 57:2a:9d:dd:9f:3b:f4:aa:4b:10:8a:b1:9c:38:c3: 9f:dd:cb:62:a5:95:72:e1:f0:cd:de:2f:17:76:ed: 7f:f9:b5:6c:64:1b:14:34:07:b0:7c:5f:59:3b:92: d3:fa:5e:99:5f:62:60:02:2b:27:d5:ee:2d:c1:80: c6:a6:d5:e5:fa:49:62:77:c3:62:f0:5c:9c:c7:ea: 74:95:51:5d:89:f2:c6:1d:6e:39:85:02:80:56:8b: 72:1c:c5:fb:ee:af:67:cd:13:f8:d2:be:d1:0b:f2: 2a:f7:3d:b4:52:0a:51:28:2f:8b:ea:11:57:b1:0f: 05:0c:d3:8d:5b:75:42:6d:0c:8e:4a:22:7b:a0:ac: ad:65:dc:10:ab:e1:21:03:1a:b2:e1:86:78:9c:1f: 84:44:52:f8:9a:1c:05:57:9c:93:ac:40:f5:d0:89: 7e:05:3f:6a:96:90:66:95:46:a3:20:3d:54:52:db: 6c:52:06:53:d9:1c:b9:0f:1c:ac:74:85:0c:76:00: 39:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8F:39:B6:D9:DA:38:FF:8C:FD:45:BE:E2:3D:19:5C:FD:5D:16:A0 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:5d:1c:e6:c3:f6:fa:b5:4c:2b:6c:e9:e8:55:8f:a0:20:8a: f7:77:79:22:27:b5:6e:c0:4e:77:17:2d:cf:16:f1:9f:f5:d8: 85:16:3e:7f:88:2e:24:cd:14:44:b0:4c:35:b9:a6:e9:99:c5: 6d:55:62:1f:ad:31:0a:d9:44:8e:75:0c:c0:38:5c:05:aa:4d: 3e:c9:7e:30:04:5a:31:30:49:aa:55:d6:e6:21:aa:99:ad:46: 86:d4:81:fd:b7:aa:75:92:12:b5:9f:5d:01:87:07:74:cd:4c: e9:e2:c2:ae:d3:73:5f:6a:e3:86:91:c7:d7:8f:86:96:c0:59: 0d:24:ba:95:ba:26:43:58:68:c5:30:2b:7f:04:26:90:a1:5a: f8:93:7b:c3:bd:5d:a9:3c:22:02:79:73:dc:f2:7f:f8:cc:52: 9e:23:ab:12:fb:03:65:61:df:e0:e1:b3:fe:c6:64:78:5a:15: e4:87:e6:0d:38:9d:39:ea:22:34:15:da:25:31:e5:51:fe:0e: e1:d8:06:c4:73:44:73:45:69:f4:02:92:bf:7a:ef:18:80:17: e1:ea:fe:3e:cc:e0:b8:7d:89:15:e6:d7:a6:d0:01:11:48:59: 7c:94:92:47:fa:41:d1:3b:6d:02:a7:69:c9:43:ff:e0:e7:e2: 1f:3f:8a:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUwODIzMDUyNjQ1WhcNMjUwODMwMDUyNjQ1WjAYMRYwFAYD VQQDEw02OGE5NTExNS1lMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRbb2Wt3ZTWS1xEXTYN2R9Rf8CpD/EmwWI8uHtJ40LMFIXgYRmnbOe9JMoHx lzbFwoLVKdYGKBYQL9ZXKp3dnzv0qksQirGcOMOf3ctipZVy4fDN3i8Xdu1/+bVs ZBsUNAewfF9ZO5LT+l6ZX2JgAisn1e4twYDGptXl+klid8Ni8Fycx+p0lVFdifLG HW45hQKAVotyHMX77q9nzRP40r7RC/Iq9z20UgpRKC+L6hFXsQ8FDNONW3VCbQyO SiJ7oKytZdwQq+EhAxqy4YZ4nB+ERFL4mhwFV5yTrED10Il+BT9qlpBmlUajID1U UttsUgZT2Ry5DxysdIUMdgA5NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCePObbZ 2jj/jP1FvuI9GVz9XRagMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC81ODQwQTA3QzEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRN QmZGM1k2bWJ1eU9KdlM2cjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3XRzmw/b6tUwrbOnoVY+gIIr3d3kiJ7VuwE53Fy3PFvGf9diFFj5/ iC4kzRREsEw1uabpmcVtVWIfrTEK2USOdQzAOFwFqk0+yX4wBFoxMEmqVdbmIaqZ rUaG1IH9t6p1khK1n10Bhwd0zUzp4sKu03NfauOGkcfXj4aWwFkNJLqVuiZDWGjF MCt/BCaQoVr4k3vDvV2pPCICeXPc8n/4zFKeI6sS+wNlYd/g4bP+xmR4WhXkh+YN OJ056iI0FdolMeVR/g7h2AbEc0RzRWn0ApK/eu8YgBfh6v4+zOC4fYkV5tem0AER SFl8lJJH+kHRO20Cp2nJQ//g5+IfP4ow -----END CERTIFICATE-----Generated at Sat Aug 23 17:13:47 2025 by rpki-client