$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft File: 5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft (raw, json) Hash identifier: CCK6TmNJQ9V4CljfG2K2aSoPHml+RuaJIKJ7Ujh/aCg= Subject key identifier: 82:C2:6F:D3:0B:63:70:D9:AE:2A:46:EC:24:12:98:A8:A0:8B:9F:D0 Authority key identifier: E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F Certificate issuer: /CN=A91BBA4F/serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft Manifest number: 2E Signing time: Sat 23 Aug 2025 07:55:38 +0000 Manifest this update: Sat 23 Aug 2025 07:55:38 +0000 Manifest next update: Sat 30 Aug 2025 07:55:38 +0000 Files and hashes: 1: 5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl (hash: Gjcp4a2vWegBXdWf8I7smeKlknnHYNQAICuvpnwx0cE=) 2: 584BBFB03B7811F099AF3F55C4F9AE02.roa (hash: jPnHx/VwrEHzMcIk6hG/2vteGtB6XZZVA832ptEHOy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Validity Not Before: Aug 23 07:55:38 2025 GMT Not After : Aug 30 07:55:38 2025 GMT Subject: CN=68a973fa-dd7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:5e:2f:16:9f:b1:74:bc:b2:c9:b0:6c:1e: d8:54:dd:0d:9c:64:10:02:2d:d1:f9:bb:54:58:7b: 8a:d6:90:5e:53:a6:55:b6:81:a1:33:b1:08:ec:df: 1b:99:82:20:9f:c5:03:55:4d:93:c9:da:ff:ec:43: a8:b6:f3:51:6a:e3:2b:8e:5b:fd:5c:d8:9b:76:59: 28:54:6b:95:74:44:ce:bf:ce:bd:e4:53:6e:68:8e: 19:bd:eb:04:f9:c9:82:af:6d:8f:8f:3f:42:51:72: 14:ff:1b:c8:39:1d:0f:5c:a1:73:14:43:6b:f4:24: 01:03:71:42:96:d0:32:41:47:3f:a9:e4:41:39:3c: 7b:85:42:2e:20:f4:3b:8d:9d:00:20:e8:08:ce:9f: 62:7b:9d:e0:1b:76:1d:5a:4d:c8:44:3a:23:7d:ac: 69:68:15:7b:b9:62:4f:06:49:a7:96:47:02:44:2a: 08:ae:6a:2e:9a:7f:94:d6:1b:c3:65:73:7e:76:1c: 4d:f9:bd:61:3c:30:fe:de:d5:d6:2f:b1:47:f7:74: 27:14:0a:6b:54:0f:d2:cf:ef:48:a8:47:97:9d:1a: be:f0:f0:b0:be:7f:0f:5c:6e:dc:d9:ae:b7:c7:83: 83:37:83:5c:30:80:0a:30:ec:91:4e:86:6b:82:46: b4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C2:6F:D3:0B:63:70:D9:AE:2A:46:EC:24:12:98:A8:A0:8B:9F:D0 X509v3 Authority Key Identifier: keyid:E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:51:2d:ce:f3:41:67:af:1d:87:0f:2a:5a:88:76:8f:ec:ae: 5f:7c:54:51:06:f7:27:ef:fe:0d:83:30:29:4e:09:f4:d2:e7: 3e:0e:3c:31:7f:75:b7:85:12:c3:03:66:04:61:ef:6a:d6:1b: 0a:13:ee:c9:7f:f0:3b:16:2c:2d:9e:71:12:ab:4e:7e:36:7e: 32:91:c5:f8:ad:2a:46:36:55:c0:96:4c:d0:03:f5:15:2f:96: 55:40:75:94:81:e6:11:4e:c5:8c:6c:6a:4d:da:c0:12:42:64: fc:0b:52:19:cd:8f:d4:bb:72:2b:5f:4f:38:26:05:82:95:f8: 71:aa:0e:16:5f:7d:b8:7d:ce:aa:dc:49:e8:ff:9c:0d:93:92: 20:98:c8:f3:cb:a6:79:9c:1b:61:7c:40:f5:14:55:1a:2d:55: 41:c5:6f:e3:96:54:f9:7e:35:79:a9:5d:5a:66:ed:56:0d:5a: 43:ae:11:15:d6:be:08:11:47:c8:d1:bb:ca:9d:cb:84:8a:00: 59:8b:c1:a0:a1:04:5d:23:fa:e9:6c:74:d5:1f:40:92:53:be: fa:7a:e0:e7:60:2f:2e:40:97:49:85:bb:91:73:ce:ca:7d:5f: f8:36:a4:83:42:3c:2e:c9:ae:19:51:22:cb:c6:23:3e:53:56: b9:ee:1f:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTdGNDE5MjUxQTc5NjFERjI3NEQzOUI1MzRBMjJGM0VD REIzMTAyRjAeFw0yNTA4MjMwNzU1MzhaFw0yNTA4MzAwNzU1MzhaMBgxFjAUBgNV BAMTDTY4YTk3M2ZhLWRkN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6Nl4vFp+xdLyyybBsHthU3Q2cZBACLdH5u1RYe4rWkF5TplW2gaEzsQjs3xuZ giCfxQNVTZPJ2v/sQ6i281Fq4yuOW/1c2Jt2WShUa5V0RM6/zr3kU25ojhm96wT5 yYKvbY+PP0JRchT/G8g5HQ9coXMUQ2v0JAEDcUKW0DJBRz+p5EE5PHuFQi4g9DuN nQAg6AjOn2J7neAbdh1aTchEOiN9rGloFXu5Yk8GSaeWRwJEKgiuai6af5TWG8Nl c352HE35vWE8MP7e1dYvsUf3dCcUCmtUD9LP70ioR5edGr7w8LC+fw9cbtzZrrfH g4M3g1wwgAow7JFOhmuCRrSbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgsJv0wtj cNmuKkbsJBKYqKCLn9AwHwYDVR0jBBgwFoAU5/QZJRp5Yd8nTTm1NKIvPs2zEC8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzRGNDBCRTZDM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzVfUVpKUnA1WWQ4blRUbTFOS0l2UHMyekVD OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNV9RWkpScDVZZDhuVFRtMU5LSXZQczJ6RUM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC QTRGLzRGNDBCRTZDM0I3NzExRjA5N0E4QkIyNEM0RjlBRTAyLzVfUVpKUnA1WWQ4 blRUbTFOS0l2UHMyekVDOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJhRLc7zQWevHYcPKlqIdo/srl98VFEG9yfv/g2DMClOCfTS5z4OPDF/ dbeFEsMDZgRh72rWGwoT7sl/8DsWLC2ecRKrTn42fjKRxfitKkY2VcCWTNAD9RUv llVAdZSB5hFOxYxsak3awBJCZPwLUhnNj9S7citfTzgmBYKV+HGqDhZffbh9zqrc Sej/nA2TkiCYyPPLpnmcG2F8QPUUVRotVUHFb+OWVPl+NXmpXVpm7VYNWkOuERXW vggRR8jRu8qdy4SKAFmLwaChBF0j+ulsdNUfQJJTvvp64OdgLy5Al0mFu5Fzzsp9 X/g2pINCPC7JrhlRIsvGIz5TVrnuH+s= -----END CERTIFICATE-----Generated at Sun Aug 24 00:13:44 2025 by rpki-client