$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: GwFMk8tXmucM9i1bu2qV6oCjEGihOtDC9e5E03N3xgc= Subject key identifier: 18:19:10:BE:94:C8:F5:EA:7D:BE:F4:73:2C:F9:49:FA:34:90:1D:78 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 054D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 0545 Signing time: Wed 02 Jul 2025 23:46:15 +0000 Manifest this update: Wed 02 Jul 2025 23:46:14 +0000 Manifest next update: Wed 09 Jul 2025 23:46:14 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: sjtbTLkz4f7fvwV1zJLDsaJRtXwZ51wFavqGs3wwziE=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: /ckEG51NBhBYEZtZSbLBPmavN3UuTjHbEpYTSHsiIm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1357 (0x54d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Jul 2 23:46:14 2025 GMT Not After : Jul 9 23:46:14 2025 GMT Subject: CN=6865c4c7-b7a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a2:53:aa:1a:18:57:ba:92:e7:26:cb:71:53: 19:f0:58:29:e7:3d:60:15:59:d6:36:55:1a:d6:e8: 51:55:d9:99:9b:48:b4:47:47:01:d1:b6:23:9c:74: f2:a3:11:27:d0:bc:38:2a:fb:d0:71:d2:63:8c:6b: 15:8a:61:ee:84:94:72:c9:62:59:99:e5:1d:71:d6: 8d:d3:37:45:3b:04:b5:fb:1b:bc:65:2e:1d:a2:16: 16:99:2e:07:b0:89:1b:af:e2:10:dd:15:ae:98:3e: 9d:f4:92:95:36:4b:e4:ab:e7:d1:6d:0c:f3:cf:03: 6f:7b:31:ec:d8:3b:9f:c4:69:e8:fe:76:70:cb:42: 31:26:ac:da:bf:62:f6:1e:5d:c3:8c:13:46:4e:a1: 36:cd:c6:af:6d:9d:5a:74:54:f4:32:45:cc:36:30: d4:67:9e:81:20:63:35:60:e5:2a:08:a8:08:c1:77: 77:6c:75:72:77:34:e6:41:44:3c:07:1f:2b:b6:86: dc:45:c8:46:68:61:bc:eb:b7:c0:45:c6:85:d4:fe: b2:f9:c0:76:ba:31:e4:9a:1a:14:b0:2b:a8:66:a5: cb:74:0a:17:a7:c2:b7:c9:57:db:9f:ab:4d:5e:0e: 0c:dd:4c:70:17:b2:2f:6b:de:20:6c:d0:50:4c:24: c9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:19:10:BE:94:C8:F5:EA:7D:BE:F4:73:2C:F9:49:FA:34:90:1D:78 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d4:ba:66:02:2d:fe:bf:66:a7:28:4f:7b:88:ac:2f:3a:55: 1b:87:49:fd:c5:86:fa:37:ab:3e:78:02:a9:bc:ad:32:61:34: 93:c6:0b:c5:d5:bc:0c:59:17:e2:67:23:fa:2b:0d:dc:1d:21: 67:af:ed:0a:45:95:1c:c6:66:8a:ca:6c:fb:03:f2:58:95:17: 4f:52:3f:b9:f5:35:e6:aa:45:9a:07:1a:ce:48:c1:d3:3f:27: a4:98:16:61:d0:dd:a6:1f:f0:fa:57:85:d1:0f:d2:40:83:c1: d8:39:cd:49:20:6e:a7:b6:16:c1:41:f6:21:68:54:37:88:83: 8c:c5:fe:e5:65:5f:d0:c9:47:29:69:0e:4f:a6:29:0e:c6:80: 24:8d:b7:fa:65:4f:87:d1:3d:0a:5b:1b:85:48:34:29:38:8b: f2:d0:89:07:ac:10:03:5f:a4:98:8e:fe:8a:bb:a6:f1:ad:81: 22:48:fe:df:28:e2:60:db:d8:2e:34:d1:9e:1d:18:12:7b:1f: 33:e5:41:f9:d9:74:72:8e:54:dc:c4:ce:2c:4b:83:c6:2d:37: 43:90:6f:e1:70:a9:8d:5e:00:e5:c7:ac:fd:2a:f4:21:bd:a0: 9b:98:71:f2:5a:04:f0:6e:db:ba:fd:81:0a:dc:aa:60:dd:23: 88:8f:43:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUwNzAyMjM0NjE0WhcNMjUwNzA5MjM0NjE0WjAYMRYwFAYD VQQDEw02ODY1YzRjNy1iN2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaJTqhoYV7qS5ybLcVMZ8Fgp5z1gFVnWNlUa1uhRVdmZm0i0R0cB0bYjnHTy oxEn0Lw4KvvQcdJjjGsVimHuhJRyyWJZmeUdcdaN0zdFOwS1+xu8ZS4dohYWmS4H sIkbr+IQ3RWumD6d9JKVNkvkq+fRbQzzzwNvezHs2DufxGno/nZwy0IxJqzav2L2 Hl3DjBNGTqE2zcavbZ1adFT0MkXMNjDUZ56BIGM1YOUqCKgIwXd3bHVydzTmQUQ8 Bx8rtobcRchGaGG867fARcaF1P6y+cB2ujHkmhoUsCuoZqXLdAoXp8K3yVfbn6tN Xg4M3UxwF7Iva94gbNBQTCTJnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgZEL6U yPXqfb70cyz5Sfo0kB14MB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw1LpmAi3+v2anKE97iKwvOlUbh0n9xYb6N6s+eAKpvK0yYTSTxgvF 1bwMWRfiZyP6Kw3cHSFnr+0KRZUcxmaKymz7A/JYlRdPUj+59TXmqkWaBxrOSMHT PyekmBZh0N2mH/D6V4XRD9JAg8HYOc1JIG6nthbBQfYhaFQ3iIOMxf7lZV/QyUcp aQ5PpikOxoAkjbf6ZU+H0T0KWxuFSDQpOIvy0IkHrBADX6SYjv6Ku6bxrYEiSP7f KOJg29guNNGeHRgSex8z5UH52XRyjlTcxM4sS4PGLTdDkG/hcKmNXgDlx6z9KvQh vaCbmHHyWgTwbtu6/YEK3Kpg3SOIj0PL -----END CERTIFICATE-----Generated at Fri Jul 4 14:54:35 2025 by rpki-client