$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft File: 5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft (raw, json) Hash identifier: onhnWCnadHc4xUblgkYvEJdOmKE1GI4WlxchWyoxjSQ= Subject key identifier: 20:32:E3:C7:14:B7:6B:E4:F6:50:30:6E:D0:BD:5F:50:DB:E8:B3:9B Authority key identifier: E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F Certificate issuer: /CN=A91BBA4F/serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft Manifest number: 14 Signing time: Thu 03 Jul 2025 08:16:53 +0000 Manifest this update: Thu 03 Jul 2025 08:16:52 +0000 Manifest next update: Thu 10 Jul 2025 08:16:52 +0000 Files and hashes: 1: 5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl (hash: YFGTBqLIc/04ZxExRwkplfEWg9oLVzPp0MDz0y0g6/c=) 2: 584BBFB03B7811F099AF3F55C4F9AE02.roa (hash: jPnHx/VwrEHzMcIk6hG/2vteGtB6XZZVA832ptEHOy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Validity Not Before: Jul 3 08:16:52 2025 GMT Not After : Jul 10 08:16:52 2025 GMT Subject: CN=68663c75-ac7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:69:b3:a9:3e:c8:c1:32:bb:f0:d8:4c:8a:f9: ac:77:6a:c6:77:af:4e:95:e4:8c:e8:74:94:b8:a5: d8:48:6c:c9:9a:68:a1:4d:c6:d7:a7:d3:38:35:52: c7:98:e6:68:82:ca:71:e3:38:42:6c:ec:b3:6e:31: 9d:2f:a2:ec:aa:2d:f5:ab:6c:5c:b7:1a:d5:ec:5d: d4:61:19:2d:b8:69:c3:11:7c:49:66:ce:c9:94:e3: db:13:b4:15:0c:33:2d:ed:b4:64:c7:ea:21:3c:27: 3c:25:c2:c5:c9:a7:08:5a:00:72:00:a8:e5:33:a2: d6:39:13:83:49:0d:70:36:90:ea:36:44:8f:59:fc: 2e:21:27:36:cf:24:84:a5:21:fc:70:4c:94:ce:6b: dd:ef:ba:af:1b:7a:11:75:1c:ac:13:da:54:fd:63: fa:c0:1d:93:e8:db:c5:98:fa:47:a3:1e:8d:41:e1: 58:5b:78:3c:38:4f:5b:91:0b:f7:d5:a1:54:b3:a8: db:f3:90:9b:8a:27:c9:98:a6:0a:5d:73:ae:65:e1: 91:7e:c9:cd:89:40:12:be:7a:dc:18:b0:93:df:95: df:de:c7:26:ec:09:45:a5:23:ed:9a:a1:5c:c5:ec: f5:93:cc:a9:05:fc:91:03:ce:e5:be:d4:b0:32:86: ff:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:32:E3:C7:14:B7:6B:E4:F6:50:30:6E:D0:BD:5F:50:DB:E8:B3:9B X509v3 Authority Key Identifier: keyid:E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:03:b0:85:40:13:d4:38:79:31:ae:9f:77:b1:9b:0e:f1:72: dd:ac:e6:87:bb:37:46:d7:ce:ba:16:4a:43:bd:ac:3a:4c:d6: 1f:6e:63:9a:64:22:d7:da:59:aa:e8:a8:af:2b:42:78:86:d0: fa:36:66:97:50:5a:96:5f:59:6e:61:23:91:b7:93:7e:80:03: d7:0b:05:54:0c:bc:d5:5c:a5:91:2f:21:34:03:f7:f6:fa:2f: 75:c2:15:d6:6a:1f:dc:4e:e5:c9:29:16:e2:ec:2f:c6:01:e8: d6:3d:ca:ea:f4:34:d2:9c:21:ca:c4:0e:41:b3:8f:11:f4:c6: 46:cf:85:57:b4:3e:16:67:ed:ba:5a:7d:80:ac:80:f6:f3:56: 11:33:c8:f8:8e:a8:20:ca:2e:d3:e6:10:e1:70:a5:35:53:24: 22:37:e3:b2:b8:60:3c:a4:67:f3:48:c2:e8:04:2c:26:34:45: fd:35:d6:9e:64:5c:bf:d5:cf:c0:23:35:6d:28:b8:cb:fa:bc: 93:6c:e2:d9:9e:cb:b1:d3:db:65:6f:71:76:75:8f:d3:28:de: be:9a:e8:4c:ae:b8:18:10:a3:88:36:d3:03:4d:13:ef:52:00: 91:d1:bd:5d:a4:3b:9e:f7:9a:21:1a:2d:bf:a0:d6:88:e8:a3: e4:e5:05:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTdGNDE5MjUxQTc5NjFERjI3NEQzOUI1MzRBMjJGM0VD REIzMTAyRjAeFw0yNTA3MDMwODE2NTJaFw0yNTA3MTAwODE2NTJaMBgxFjAUBgNV BAMTDTY4NjYzYzc1LWFjN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8abOpPsjBMrvw2EyK+ax3asZ3r06V5IzodJS4pdhIbMmaaKFNxten0zg1UseY 5miCynHjOEJs7LNuMZ0vouyqLfWrbFy3GtXsXdRhGS24acMRfElmzsmU49sTtBUM My3ttGTH6iE8JzwlwsXJpwhaAHIAqOUzotY5E4NJDXA2kOo2RI9Z/C4hJzbPJISl IfxwTJTOa93vuq8behF1HKwT2lT9Y/rAHZPo28WY+kejHo1B4VhbeDw4T1uRC/fV oVSzqNvzkJuKJ8mYpgpdc65l4ZF+yc2JQBK+etwYsJPfld/exybsCUWlI+2aoVzF 7PWTzKkF/JEDzuW+1LAyhv9rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIDLjxxS3 a+T2UDBu0L1fUNvos5swHwYDVR0jBBgwFoAU5/QZJRp5Yd8nTTm1NKIvPs2zEC8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzRGNDBCRTZDM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzVfUVpKUnA1WWQ4blRUbTFOS0l2UHMyekVD OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNV9RWkpScDVZZDhuVFRtMU5LSXZQczJ6RUM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC QTRGLzRGNDBCRTZDM0I3NzExRjA5N0E4QkIyNEM0RjlBRTAyLzVfUVpKUnA1WWQ4 blRUbTFOS0l2UHMyekVDOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMcDsIVAE9Q4eTGun3exmw7xct2s5oe7N0bXzroWSkO9rDpM1h9uY5pk ItfaWaroqK8rQniG0Po2ZpdQWpZfWW5hI5G3k36AA9cLBVQMvNVcpZEvITQD9/b6 L3XCFdZqH9xO5ckpFuLsL8YB6NY9yur0NNKcIcrEDkGzjxH0xkbPhVe0PhZn7bpa fYCsgPbzVhEzyPiOqCDKLtPmEOFwpTVTJCI347K4YDykZ/NIwugELCY0Rf011p5k XL/Vz8AjNW0ouMv6vJNs4tmey7HT22VvcXZ1j9Mo3r6a6EyuuBgQo4g20wNNE+9S AJHRvV2kO573miEaLb+g1ojoo+TlBfE= -----END CERTIFICATE-----Generated at Thu Jul 3 20:03:58 2025 by rpki-client