$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: AqPINVhowzl9wl5xxGB2wPZbW+cIqpKPHs6u+rBHOlk= Subject key identifier: 70:87:75:6F:86:43:D6:A3:6C:AB:35:48:58:B4:A9:C5:3C:C6:CC:B1 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 0181 Signing time: Sat 23 Aug 2025 03:45:36 +0000 Manifest this update: Sat 23 Aug 2025 03:45:35 +0000 Manifest next update: Sat 30 Aug 2025 03:45:35 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: VRILvZ34SSEYN1H1OyfGaRGi6/wXbkwjbf2+xjmnChA=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: e+rpsrJfE3yU94kVnBShl6jDwyCOKp3rugpFTdwj4Dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Aug 23 03:45:35 2025 GMT Not After : Aug 30 03:45:35 2025 GMT Subject: CN=68a93960-135a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d5:98:f7:b1:4f:fd:aa:79:e1:c0:84:fe:97: 12:2c:97:c3:69:ef:66:6b:68:3b:59:34:09:bd:56: a9:c4:26:07:83:ed:81:37:9a:9a:ae:1c:41:cb:e1: 81:66:82:02:58:d2:26:b4:1b:20:f0:13:5d:8c:e7: 5c:66:b7:5a:ae:30:4b:40:84:cf:b9:9b:65:9c:53: 4f:ec:a8:d1:ea:ee:47:83:c6:58:41:63:a2:38:e3: b3:38:23:9f:ae:20:42:c9:d9:bc:8f:28:ab:a2:7f: 47:86:78:64:df:64:4f:f2:ec:11:77:1a:25:83:a9: 97:e2:95:8b:c5:7d:fd:15:7a:93:3f:19:5b:22:8c: 32:e3:e8:e0:7f:fa:47:29:53:d8:59:02:05:33:2a: 05:a8:62:88:32:88:50:8c:aa:64:76:0a:db:7b:69: b0:27:61:47:0b:8d:71:13:37:28:73:2d:a9:97:54: cc:fc:bd:f6:43:3b:59:41:8e:3f:2f:c0:98:35:76: ca:3e:fb:c6:97:df:e7:bf:30:ec:e3:db:d2:a8:d1: 99:1b:9f:e8:59:5b:3e:79:cc:72:0d:8f:89:93:86: 99:21:d8:e7:a9:71:4a:5c:82:c0:88:ad:fb:e4:a9: d1:f3:a5:f1:19:dd:40:53:9c:84:82:2d:3e:b5:70: f4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:87:75:6F:86:43:D6:A3:6C:AB:35:48:58:B4:A9:C5:3C:C6:CC:B1 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:69:ed:36:58:3c:95:fb:51:07:02:c0:37:3f:45:22:4b:fd: a1:ee:54:31:42:ba:eb:3e:b5:f9:f8:45:fc:32:b4:49:51:21: 98:98:bf:15:a5:da:08:32:6b:8f:3f:c5:c5:f1:a2:8f:0c:c3: f6:b8:be:84:3f:da:38:53:ef:34:3a:6b:a9:3e:b8:14:b9:b9: d0:9a:8d:c7:c3:75:64:8b:bf:c7:98:df:ae:65:cc:55:cc:2c: e9:84:4d:95:be:db:ef:f6:11:e9:b5:9f:da:61:96:de:6d:b5: fa:79:6e:8b:af:32:41:a0:32:40:20:99:d1:75:c1:58:2e:21: a3:0c:f2:12:86:3c:df:ce:cf:8d:ab:57:f6:fd:e9:8d:04:71: 8e:05:7a:5e:0d:18:c0:8b:14:46:39:79:33:a3:29:03:6a:b0: be:52:ed:e5:ca:f5:9c:c7:d9:41:34:2f:c2:08:20:11:3e:81: 31:5d:4e:ba:9d:5c:e5:78:b5:4a:b6:b9:8d:72:c9:e2:48:20: 48:26:91:95:e3:d1:c3:2c:ef:4b:99:1f:ae:2a:c0:56:14:49: 37:1e:c9:ba:c0:1a:84:fa:54:3d:47:18:58:74:7b:50:57:d4: 2b:2b:3d:d5:a9:dc:7f:bc:6f:ed:c9:a6:61:f8:7f:b9:e5:11: 37:66:6f:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjUwODIzMDM0NTM1WhcNMjUwODMwMDM0NTM1WjAYMRYwFAYD VQQDEw02OGE5Mzk2MC0xMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNWY97FP/ap54cCE/pcSLJfDae9ma2g7WTQJvVapxCYHg+2BN5qarhxBy+GB ZoICWNImtBsg8BNdjOdcZrdarjBLQITPuZtlnFNP7KjR6u5Hg8ZYQWOiOOOzOCOf riBCydm8jyiron9Hhnhk32RP8uwRdxolg6mX4pWLxX39FXqTPxlbIowy4+jgf/pH KVPYWQIFMyoFqGKIMohQjKpkdgrbe2mwJ2FHC41xEzcocy2pl1TM/L32QztZQY4/ L8CYNXbKPvvGl9/nvzDs49vSqNGZG5/oWVs+ecxyDY+Jk4aZIdjnqXFKXILAiK37 5KnR86XxGd1AU5yEgi0+tXD00wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCHdW+G Q9ajbKs1SFi0qcU8xsyxMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsae02WDyV+1EHAsA3P0UiS/2h7lQxQrrrPrX5+EX8MrRJUSGYmL8V pdoIMmuPP8XF8aKPDMP2uL6EP9o4U+80OmupPrgUubnQmo3Hw3Vki7/HmN+uZcxV zCzphE2Vvtvv9hHptZ/aYZbebbX6eW6LrzJBoDJAIJnRdcFYLiGjDPIShjzfzs+N q1f2/emNBHGOBXpeDRjAixRGOXkzoykDarC+Uu3lyvWcx9lBNC/CCCARPoExXU66 nVzleLVKtrmNcsniSCBIJpGV49HDLO9LmR+uKsBWFEk3Hsm6wBqE+lQ9RxhYdHtQ V9QrKz3Vqdx/vG/tyaZh+H+55RE3Zm8T -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:54 2025 by rpki-client