$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: q5ZFG1lKVJ2OSFsWAd94mwffg4W2EuTzcdRvIFWNAY8= Subject key identifier: D6:69:67:07:1D:15:37:C9:3E:9E:B1:F9:F2:31:0B:CB:C1:C3:99:E2 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 044A Signing time: Sat 23 Aug 2025 00:29:44 +0000 Manifest this update: Sat 23 Aug 2025 00:29:44 +0000 Manifest next update: Sat 30 Aug 2025 00:29:44 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: NSDuMGaVLkkZNp3fLnW2YSdcf0B9jf8GvA0wVNqKNyI=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Aug 23 00:29:44 2025 GMT Not After : Aug 30 00:29:44 2025 GMT Subject: CN=68a90b78-765c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:63:58:af:ec:80:a8:b6:15:6d:4e:65:97: 63:1f:7b:38:5c:9c:01:50:8c:3c:8d:18:9e:88:23: 3a:88:a9:c7:6a:c7:08:44:b0:b3:8f:3c:52:08:33: 86:d2:05:6e:28:c9:8e:96:df:96:ba:7e:e8:b7:6a: d2:69:44:7f:90:6e:29:14:c3:d6:81:06:b4:f7:fc: b4:2f:da:62:4e:fa:b4:0e:45:c5:34:8d:f9:09:9e: 57:88:de:5c:6b:e0:54:03:2c:ed:cf:58:5b:4a:7d: 7b:9f:b0:33:9c:ab:f9:1f:01:29:0f:59:66:f9:cd: e8:9a:f8:6e:e2:5d:b0:5e:a0:75:e1:24:a5:bf:34: 1e:5f:90:19:2d:40:46:f2:79:5a:c3:a1:5b:53:b6: 58:64:7e:b7:79:cd:f4:89:ce:e9:d8:dc:f2:6b:50: c2:42:6a:8e:ab:ae:77:b2:24:a6:c6:e2:21:fa:87: 8b:69:15:f2:03:3b:83:2b:97:bf:8b:40:70:bb:21: c2:0b:63:3e:be:55:96:c6:03:88:3e:9a:4b:9b:fe: 5a:79:4e:46:d7:7f:8c:9a:e5:90:4b:bf:5c:0b:73: d8:2a:e3:8d:f6:95:8e:b4:28:10:47:e4:38:0c:f9: 9a:c6:ab:b6:b1:ed:af:7f:75:50:39:77:c7:d6:28: 8b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:69:67:07:1D:15:37:C9:3E:9E:B1:F9:F2:31:0B:CB:C1:C3:99:E2 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e7:72:99:2a:1b:9a:23:f0:a9:86:4e:3b:77:45:d4:57:2b: b6:7c:29:81:4c:d8:35:fb:fa:15:06:ac:aa:99:c6:a6:3e:2e: c8:be:c6:35:78:c3:9d:6c:e9:c7:b2:31:ed:78:6d:8b:fb:c8: 0b:d8:ac:b3:74:4e:a5:04:ce:00:36:ca:04:42:1d:12:df:15: 45:96:4a:61:77:e8:51:03:1b:9a:98:a6:52:33:cd:93:0e:27: 12:ea:ad:fc:9f:60:60:58:1f:2c:d9:86:f5:e4:66:a0:84:f5: 8b:a7:72:a3:8b:09:43:de:94:6e:f5:2e:d4:f3:57:b7:57:de: 0b:53:0c:91:45:c6:e8:31:9f:e9:76:72:e6:2e:15:4d:21:e0: 4f:35:1b:3a:f4:36:d0:78:31:83:99:00:ce:ad:8c:e4:ab:6c: 57:f1:5d:b4:82:7b:1d:3e:8c:34:76:28:29:b2:7c:48:85:1b: ca:00:05:ee:1a:1f:9d:c8:56:46:29:00:37:43:37:2c:03:9e: 3a:93:b8:2d:b1:cb:16:72:a5:6f:b6:0e:4c:fa:b2:74:4c:ef: a3:2e:2a:e5:87:90:e2:a4:7e:57:cf:97:23:ed:e5:f6:dd:3c: 54:0d:38:df:c6:a2:e4:38:42:52:dd:85:00:28:db:1c:aa:42: e7:e7:45:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUwODIzMDAyOTQ0WhcNMjUwODMwMDAyOTQ0WjAYMRYwFAYD VQQDEw02OGE5MGI3OC03NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9xjWK/sgKi2FW1OZZdjH3s4XJwBUIw8jRieiCM6iKnHascIRLCzjzxSCDOG 0gVuKMmOlt+Wun7ot2rSaUR/kG4pFMPWgQa09/y0L9piTvq0DkXFNI35CZ5XiN5c a+BUAyztz1hbSn17n7AznKv5HwEpD1lm+c3omvhu4l2wXqB14SSlvzQeX5AZLUBG 8nlaw6FbU7ZYZH63ec30ic7p2Nzya1DCQmqOq653siSmxuIh+oeLaRXyAzuDK5e/ i0BwuyHCC2M+vlWWxgOIPppLm/5aeU5G13+MmuWQS79cC3PYKuON9pWOtCgQR+Q4 DPmaxqu2se2vf3VQOXfH1iiL7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZpZwcd FTfJPp6x+fIxC8vBw5niMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB353KZKhuaI/Cphk47d0XUVyu2fCmBTNg1+/oVBqyqmcamPi7IvsY1 eMOdbOnHsjHteG2L+8gL2KyzdE6lBM4ANsoEQh0S3xVFlkphd+hRAxuamKZSM82T DicS6q38n2BgWB8s2Yb15GaghPWLp3KjiwlD3pRu9S7U81e3V94LUwyRRcboMZ/p dnLmLhVNIeBPNRs69DbQeDGDmQDOrYzkq2xX8V20gnsdPow0digpsnxIhRvKAAXu Gh+dyFZGKQA3QzcsA546k7gtscsWcqVvtg5M+rJ0TO+jLirlh5DipH5Xz5cj7eX2 3TxUDTjfxqLkOEJS3YUAKNscqkLn50Wq -----END CERTIFICATE-----Generated at Sun Aug 24 00:06:26 2025 by rpki-client