$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: 4vherXCdufS3iyh70op/PxchLo3cLQyVZdXOmHM0nXA= Subject key identifier: 76:AA:BD:15:B9:A4:A0:6C:8C:30:2C:57:7E:F2:9D:70:05:27:BC:CB Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 0217 Signing time: Sat 23 Aug 2025 02:12:12 +0000 Manifest this update: Sat 23 Aug 2025 02:12:12 +0000 Manifest next update: Sat 30 Aug 2025 02:12:12 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: 673LekajKU84tb8iB11RPHApfBziYlRRCusb6O1wUQQ=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:12:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Aug 23 02:12:12 2025 GMT Not After : Aug 30 02:12:12 2025 GMT Subject: CN=68a9237c-050c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:01:8c:8f:58:d9:fd:70:53:f8:23:cd:8b:71: 31:06:75:24:3e:ea:14:c6:86:1f:09:f9:85:12:ff: a4:00:92:7b:1d:ec:a7:cb:e8:ee:29:c2:00:28:37: 73:82:fa:3c:3f:e1:11:8d:cd:af:cb:c8:a5:b4:4c: 76:a0:06:de:9e:ba:7a:e7:78:8d:3a:60:83:ad:f8: 67:97:25:dc:47:a1:16:c9:37:51:bd:12:d9:3c:43: b4:d5:76:1e:d5:87:ed:b4:7d:11:69:f2:c8:ae:45: 8c:e4:aa:b1:0d:a8:bf:9c:69:fd:bf:31:1d:18:80: bd:88:de:6b:9f:8a:e1:5b:75:08:cc:e2:ba:22:44: 2d:78:c7:6d:3d:52:a7:59:fe:3b:8c:ca:62:06:bf: f7:4a:27:9c:ea:ad:a0:53:ed:79:2f:64:72:df:46: 7a:ba:51:96:d9:f1:8c:10:66:7f:d5:a1:a4:88:10: f0:1a:c1:f7:0c:d9:be:bc:d9:72:cd:ea:23:68:8a: 8f:9d:27:b1:dc:58:53:9b:27:3b:19:4c:47:5f:67: c0:e0:08:70:0c:b0:2d:62:4b:24:06:6b:30:e3:4d: bf:8f:09:75:a7:bb:52:57:09:0d:6f:d0:59:94:c3: fc:18:00:ad:1b:22:14:76:e3:f8:7b:8d:cc:09:ce: 82:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:AA:BD:15:B9:A4:A0:6C:8C:30:2C:57:7E:F2:9D:70:05:27:BC:CB X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:dd:6d:7e:13:e9:18:26:95:9a:d0:86:63:07:7f:02:8f:b6: d1:17:9d:1d:ba:9e:f6:fa:1b:1b:a5:de:e5:80:11:6a:ca:d9: c6:f9:96:c4:24:9e:dc:80:08:f7:e7:9a:88:2f:e2:d8:90:fa: 7a:b4:8c:61:b4:59:29:fa:36:04:da:87:a3:4f:be:dc:3c:ed: 82:c2:46:22:dd:44:3c:3f:d2:3c:46:f4:01:60:d9:de:74:df: 4b:88:cb:ed:b9:5a:69:c8:b5:8e:de:78:8f:e9:3e:6a:6e:5a: ca:4c:78:54:1c:d0:b6:30:50:50:5e:e6:ca:31:f8:fd:7b:0d: 5a:48:b3:e3:65:e3:e7:55:8d:36:17:fb:87:b9:bd:32:a5:ce: c8:1e:70:14:30:c3:d6:f7:39:e0:d3:aa:b2:f6:0f:34:a9:a0: 90:ed:b3:8d:c1:4a:94:bc:23:e3:59:c8:03:2c:b3:84:00:b2: 16:83:28:68:bb:5c:60:19:cd:ac:fe:7a:d0:3a:d5:01:2b:cf: ea:ee:12:c1:02:da:b8:9c:15:58:bb:68:e6:27:76:84:ed:d2: 41:2c:74:d7:5b:1c:58:aa:0d:06:76:47:7c:8c:27:ba:89:3e: e2:0e:a0:b1:4d:a4:0f:c6:7a:eb:fc:4f:22:66:0f:39:3f:d4: 0a:c7:c7:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUwODIzMDIxMjEyWhcNMjUwODMwMDIxMjEyWjAYMRYwFAYD VQQDEw02OGE5MjM3Yy0wNTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwGMj1jZ/XBT+CPNi3ExBnUkPuoUxoYfCfmFEv+kAJJ7Heyny+juKcIAKDdz gvo8P+ERjc2vy8iltEx2oAbenrp653iNOmCDrfhnlyXcR6EWyTdRvRLZPEO01XYe 1YfttH0RafLIrkWM5KqxDai/nGn9vzEdGIC9iN5rn4rhW3UIzOK6IkQteMdtPVKn Wf47jMpiBr/3Siec6q2gU+15L2Ry30Z6ulGW2fGMEGZ/1aGkiBDwGsH3DNm+vNly zeojaIqPnSex3FhTmyc7GUxHX2fA4AhwDLAtYkskBmsw402/jwl1p7tSVwkNb9BZ lMP8GACtGyIUduP4e43MCc6CBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaqvRW5 pKBsjDAsV37ynXAFJ7zLMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi3W1+E+kYJpWa0IZjB38Cj7bRF50dup72+hsbpd7lgBFqytnG+ZbE JJ7cgAj355qIL+LYkPp6tIxhtFkp+jYE2oejT77cPO2CwkYi3UQ8P9I8RvQBYNne dN9LiMvtuVppyLWO3niP6T5qblrKTHhUHNC2MFBQXubKMfj9ew1aSLPjZePnVY02 F/uHub0ypc7IHnAUMMPW9zng06qy9g80qaCQ7bONwUqUvCPjWcgDLLOEALIWgyho u1xgGc2s/nrQOtUBK8/q7hLBAtq4nBVYu2jmJ3aE7dJBLHTXWxxYqg0Gdkd8jCe6 iT7iDqCxTaQPxnrr/E8iZg85P9QKx8cV -----END CERTIFICATE-----Generated at Sun Aug 24 08:24:41 2025 by rpki-client