$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: oxuNgahKZqqawNrf876ZeUdRvyZhS+4fEqqDIw1Y82c= Subject key identifier: 49:D4:4A:07:A0:1D:CF:57:41:CD:C2:6B:C3:1F:9F:24:E3:18:01:2D Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 0567 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 055F Signing time: Fri 22 Aug 2025 23:33:32 +0000 Manifest this update: Fri 22 Aug 2025 23:33:31 +0000 Manifest next update: Fri 29 Aug 2025 23:33:31 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: Oqhie6lC4xLSXE910Cy7LdGs77X6f9k4PoVx6ZDBLlA=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: /ckEG51NBhBYEZtZSbLBPmavN3UuTjHbEpYTSHsiIm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Aug 22 23:33:31 2025 GMT Not After : Aug 29 23:33:31 2025 GMT Subject: CN=68a8fe4c-e0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5c:8b:d5:10:85:6d:c8:f7:d7:d2:ac:b9:24: 42:76:f6:85:8b:c3:08:44:a9:95:b8:47:1e:b9:db: 54:e0:ea:84:1f:ef:16:3a:64:a5:ea:3f:64:2d:74: b5:37:26:00:37:5d:e8:41:bf:41:d3:84:25:3c:c8: 63:f7:99:18:01:d8:75:ed:0f:4a:47:ab:01:e8:51: 13:aa:0e:c1:91:b8:d8:52:c5:e3:b4:61:89:2b:25: 3e:02:f2:c4:59:91:75:3e:66:a2:78:82:b0:4b:c2: 19:80:38:ed:63:34:7d:77:c6:a7:8d:b1:19:98:c7: 50:5e:b5:94:6c:98:6b:fa:25:17:a4:3e:7d:77:24: a8:1f:af:ca:c1:b0:33:e4:a8:49:cb:26:b9:52:00: da:86:9e:2d:89:2e:42:e9:7a:85:3b:75:a2:5d:cd: 0c:26:2e:82:32:4a:bd:64:ea:3a:98:2b:81:9b:7a: 71:43:32:f1:8f:3f:0f:88:bf:34:ff:6b:59:86:c2: f7:e9:7c:da:94:f4:22:05:dd:e9:a7:5e:44:2b:26: cd:85:e1:3c:23:0d:bc:0f:4f:a2:b9:98:5f:af:1b: e3:6c:69:29:bd:d8:ec:ff:4b:c1:b8:cd:d5:b9:a4: 11:a2:4d:13:69:6b:e1:31:a6:9f:de:b2:ec:78:ef: b4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D4:4A:07:A0:1D:CF:57:41:CD:C2:6B:C3:1F:9F:24:E3:18:01:2D X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:24:e1:88:d1:a4:9d:9f:08:62:dd:69:f1:bf:ab:2c:31:6e: 4b:44:83:dd:87:f4:c5:2d:1a:6d:f3:24:34:14:46:0d:e7:0a: b1:2d:e0:e8:d8:82:ca:b5:c7:e8:c6:a6:47:2f:87:d2:53:28: 19:39:80:88:0a:2d:7e:5e:ce:a1:36:10:89:a1:93:a6:9e:cd: 34:62:30:f1:6a:06:f0:38:f5:b7:52:7e:38:46:3c:04:02:9f: 47:d9:a3:64:91:af:62:ee:d7:bc:7a:dd:7d:32:88:26:0b:dd: 60:af:7c:70:93:7f:64:2b:61:0e:5f:1a:bf:66:57:a7:e1:a8: d2:2e:ac:97:e8:58:6f:c8:32:88:e9:12:37:2b:b4:47:38:fc: 59:c1:76:5a:fd:7a:f6:9d:13:09:0b:e4:5e:e9:dd:ba:16:f5: de:91:81:53:22:f5:24:89:62:b0:15:64:8d:61:04:7d:36:82: e6:e5:7f:77:41:f6:4c:a0:0b:9a:bd:29:35:b2:f9:16:f0:3e: 94:4e:7b:5b:f5:b1:f5:67:f6:49:00:78:f9:e4:4e:d4:f9:9e: 18:c8:23:54:72:80:b9:8f:4c:6d:14:2c:dc:1e:3c:da:89:00: 32:04:3f:45:3e:51:12:d6:f0:73:99:b1:fa:bd:53:f5:31:5b: 0c:f3:45:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUwODIyMjMzMzMxWhcNMjUwODI5MjMzMzMxWjAYMRYwFAYD VQQDEw02OGE4ZmU0Yy1lMGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1yL1RCFbcj319KsuSRCdvaFi8MIRKmVuEceudtU4OqEH+8WOmSl6j9kLXS1 NyYAN13oQb9B04QlPMhj95kYAdh17Q9KR6sB6FETqg7BkbjYUsXjtGGJKyU+AvLE WZF1PmaieIKwS8IZgDjtYzR9d8anjbEZmMdQXrWUbJhr+iUXpD59dySoH6/KwbAz 5KhJyya5UgDahp4tiS5C6XqFO3WiXc0MJi6CMkq9ZOo6mCuBm3pxQzLxjz8PiL80 /2tZhsL36XzalPQiBd3pp15EKybNheE8Iw28D0+iuZhfrxvjbGkpvdjs/0vBuM3V uaQRok0TaWvhMaaf3rLseO+0TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnUSgeg Hc9XQc3Ca8MfnyTjGAEtMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsJOGI0aSdnwhi3Wnxv6ssMW5LRIPdh/TFLRpt8yQ0FEYN5wqxLeDo 2ILKtcfoxqZHL4fSUygZOYCICi1+Xs6hNhCJoZOmns00YjDxagbwOPW3Un44RjwE Ap9H2aNkka9i7te8et19MogmC91gr3xwk39kK2EOXxq/Zlen4ajSLqyX6FhvyDKI 6RI3K7RHOPxZwXZa/Xr2nRMJC+Re6d26FvXekYFTIvUkiWKwFWSNYQR9NoLm5X93 QfZMoAuavSk1svkW8D6UTntb9bH1Z/ZJAHj55E7U+Z4YyCNUcoC5j0xtFCzcHjza iQAyBD9FPlES1vBzmbH6vVP1MVsM80UP -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:44 2025 by rpki-client