$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft File: QyiNyelBKGI4XB6D3TeGNYMyDRg.mft (raw, json) Hash identifier: 2c06aLrD97A4sB4Ry8iQQsSjD5WDTUyLpXDDNavzUcU= Subject key identifier: 8B:EB:03:02:55:5F:E4:A5:23:4A:3A:D4:5A:AB:22:63:C0:0C:99:71 Authority key identifier: 43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 Certificate issuer: /CN=A91D8A55/serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft Manifest number: 019C Signing time: Sat 23 Aug 2025 03:29:53 +0000 Manifest this update: Sat 23 Aug 2025 03:29:52 +0000 Manifest next update: Sat 30 Aug 2025 03:29:52 +0000 Files and hashes: 1: QyiNyelBKGI4XB6D3TeGNYMyDRg.crl (hash: aYdIBLtyXY6OTELocTzN6ki4SoENAlIsFTzUo9PPESg=) 2: D1596F0E0BCF11EE8FB8EE16C4F9AE02.roa (hash: JnZnYwDPY6T9KAqalaHmfpI6/yYUrsg6tF5XISERaGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8A55, serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Validity Not Before: Aug 23 03:29:52 2025 GMT Not After : Aug 30 03:29:52 2025 GMT Subject: CN=68a935b0-0bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:96:e3:23:4c:3a:f4:1a:9d:55:39:dc:60: 72:15:89:ba:63:05:3f:12:07:09:24:b3:40:f1:ad: ba:5c:f3:67:f9:71:48:8e:25:5a:d0:d5:2b:01:2b: 18:4d:51:6a:da:40:02:81:24:e9:57:46:8c:20:a9: d5:a6:1a:c1:60:ae:46:84:ad:02:72:e5:67:d9:79: e0:87:cb:3a:5b:a5:18:f7:54:e4:6b:ca:c5:23:a7: f6:eb:80:87:26:ed:b7:2d:1c:d9:9d:6f:fe:a5:d6: e7:45:02:5d:2a:7a:2b:e2:ed:d2:93:ab:5f:88:12: 26:ae:6c:40:f7:c2:d5:d9:27:3f:e1:8e:20:29:76: f3:63:c9:23:c1:15:0a:65:da:fe:b0:23:6f:70:04: 72:0f:b2:35:40:e0:a8:43:da:eb:60:41:a5:48:76: c3:b4:fc:10:0f:99:18:fe:fd:18:30:1e:f0:82:37: a5:df:2a:33:ac:fd:59:97:15:15:7a:a1:f1:b7:d4: b9:bc:1e:dc:3f:8e:ef:2f:38:c8:48:be:80:ad:fe: c2:01:80:29:01:a7:fd:86:1e:5d:1f:b4:4c:98:18: 2f:f0:76:9c:7d:be:a8:37:67:81:7f:83:c3:9a:ff: 1e:f5:3e:c5:b7:37:b4:ca:8a:00:65:63:36:34:9b: 88:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:EB:03:02:55:5F:E4:A5:23:4A:3A:D4:5A:AB:22:63:C0:0C:99:71 X509v3 Authority Key Identifier: keyid:43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:d0:68:c9:73:6e:1a:11:46:c5:3e:96:3e:6b:f8:71:72:8e: f6:63:74:aa:54:d1:1d:e9:cf:62:21:b2:b6:7f:07:8c:70:52: 43:80:11:99:53:79:e8:1b:88:13:d8:13:4f:e1:0f:e6:9f:6d: f5:a3:34:e3:f5:81:6b:f5:d2:37:10:80:88:fa:99:9b:ca:0c: 94:42:f8:ec:31:a7:e4:cd:87:80:6d:73:26:78:08:86:57:c6: c3:f7:6e:25:ab:13:eb:e1:d8:01:ab:3a:d3:cb:6d:8d:1b:c9: 90:6b:35:5e:dd:10:86:82:ee:55:f5:af:07:39:48:1b:6c:f0: 2d:c3:d9:46:70:d1:32:b5:39:c0:b7:23:bb:fd:69:1a:80:f6: 3f:4f:b6:76:e8:51:c0:97:f3:f3:e9:b8:33:59:88:7b:d2:56: b4:80:c6:51:e2:f3:d1:66:8d:ac:5a:6f:04:fb:1a:29:93:b4: 0a:74:32:d8:b8:33:20:e9:10:67:59:12:88:05:03:94:da:39: 27:7b:b3:38:81:cf:dd:3b:d2:e3:1d:64:c2:2d:62:68:0a:56: 6f:4e:6f:50:fd:5e:2e:9d:f3:ce:31:34:6b:cb:87:85:3e:6d: 6b:39:10:60:b8:88:a8:e8:3b:92:e3:00:92:62:b6:5c:3c:ae: d8:dc:1d:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhBNTUxMTAvBgNVBAUTKDQzMjg4REM5RTk0MTI4NjIzODVDMUU4M0REMzc4NjM1 ODMzMjBEMTgwHhcNMjUwODIzMDMyOTUyWhcNMjUwODMwMDMyOTUyWjAYMRYwFAYD VQQDEw02OGE5MzViMC0wYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3CW4yNMOvQanVU53GByFYm6YwU/EgcJJLNA8a26XPNn+XFIjiVa0NUrASsY TVFq2kACgSTpV0aMIKnVphrBYK5GhK0CcuVn2Xngh8s6W6UY91Tka8rFI6f264CH Ju23LRzZnW/+pdbnRQJdKnor4u3Sk6tfiBImrmxA98LV2Sc/4Y4gKXbzY8kjwRUK Zdr+sCNvcARyD7I1QOCoQ9rrYEGlSHbDtPwQD5kY/v0YMB7wgjel3yozrP1ZlxUV eqHxt9S5vB7cP47vLzjISL6Arf7CAYApAaf9hh5dH7RMmBgv8Hacfb6oN2eBf4PD mv8e9T7Ftze0yooAZWM2NJuIlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvrAwJV X+SlI0o61FqrImPADJlxMB8GA1UdIwQYMBaAFEMojcnpQShiOFweg903hjWDMg0Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEE1NS81RkM2NTgyNjBC QzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktHSTRYQjZEM1RlR05ZTXlE UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5aU55ZWxCS0dJNFhCNkQzVGVHTllNeURSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEE1NS81RkM2NTgyNjBCQzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktH STRYQjZEM1RlR05ZTXlEUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG0GjJc24aEUbFPpY+a/hxco72Y3SqVNEd6c9iIbK2fweMcFJDgBGZ U3noG4gT2BNP4Q/mn231ozTj9YFr9dI3EICI+pmbygyUQvjsMafkzYeAbXMmeAiG V8bD924lqxPr4dgBqzrTy22NG8mQazVe3RCGgu5V9a8HOUgbbPAtw9lGcNEytTnA tyO7/WkagPY/T7Z26FHAl/Pz6bgzWYh70la0gMZR4vPRZo2sWm8E+xopk7QKdDLY uDMg6RBnWRKIBQOU2jkne7M4gc/dO9LjHWTCLWJoClZvTm9Q/V4unfPOMTRry4eF Pm1rORBguIio6DuS4wCSYrZcPK7Y3B06 -----END CERTIFICATE-----Generated at Sun Aug 24 03:07:06 2025 by rpki-client