$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft File: qSFNuZGEmynE8EXDNkcOnYLEjOI.mft (raw, json) Hash identifier: D8nlKZiwceYLWj5pDQXTgsF7pMM6mDBe/sN9Me0g4Ts= Subject key identifier: 42:DC:B9:C6:36:DB:37:16:34:E8:2A:28:4D:EB:FB:FD:F7:09:9B:84 Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft Manifest number: 0119 Signing time: Sat 23 Aug 2025 05:01:22 +0000 Manifest this update: Sat 23 Aug 2025 05:01:22 +0000 Manifest next update: Sat 30 Aug 2025 05:01:22 +0000 Files and hashes: 1: qSFNuZGEmynE8EXDNkcOnYLEjOI.crl (hash: znzQPo6LIS5z/5Kd6sqs9/0XcbNYT8c9jj1Nj2bPDTg=) 2: 70C04006D5EF11EE8279357EC4F9AE02.roa (hash: Jluh9mrxLx3CmJG4INslPH8RKZMT0C9KwG0Dzzekk1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929, serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: Aug 23 05:01:22 2025 GMT Not After : Aug 30 05:01:22 2025 GMT Subject: CN=68a94b22-1fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:0b:74:07:18:55:4e:67:bf:d1:f5:d4:64: d5:fc:70:03:e5:cb:26:a2:61:21:ae:5f:9f:da:11: 0a:87:da:78:ab:5c:89:a1:b5:06:79:64:15:90:2f: bd:da:da:40:54:a8:37:43:c6:72:ad:1c:f9:0d:a8: 26:f5:f8:7f:32:8a:10:24:93:ec:28:25:41:33:af: c8:9d:8c:44:2d:cc:37:cd:98:a0:a8:88:de:70:56: 5b:9e:35:c7:90:d0:ce:92:28:a2:78:2f:08:93:2f: d3:81:50:35:d0:e4:87:0f:6b:c5:ff:e6:a5:4b:0d: 86:55:6b:6b:5e:77:72:a5:31:12:7e:c9:cb:1a:55: 07:18:e3:e9:b0:9c:5b:18:91:98:14:0a:2f:7e:1b: 76:1a:5d:19:c9:43:a4:98:83:84:90:00:08:d3:67: db:50:37:8e:47:af:40:0e:a5:1b:ba:81:39:7c:2c: b8:a8:8a:5b:2f:0b:24:a7:b5:f1:83:61:ad:9e:9d: 2a:97:e7:cc:03:b9:6a:1f:1f:5e:e8:5b:54:7e:74: 2b:79:4d:f0:f1:7a:ba:13:95:70:e8:6b:7a:52:92: df:29:fc:69:e8:a7:52:25:8c:c9:08:e7:c0:cc:c1: 78:34:4f:b9:4d:0a:e5:06:05:11:a5:85:e3:64:dd: 19:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DC:B9:C6:36:DB:37:16:34:E8:2A:28:4D:EB:FB:FD:F7:09:9B:84 X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:9f:36:d1:55:a5:2b:f8:6f:84:05:48:3f:c2:c1:8e:3b:f3: e7:9e:5b:85:a6:11:84:28:6e:f7:f3:04:53:35:46:5e:25:96: 19:51:1b:10:69:88:ca:bc:e4:ee:4a:e3:40:0a:68:ec:c8:3e: 45:5f:27:5a:54:0f:51:82:cb:55:61:fc:79:54:5c:ab:38:39: 03:77:e7:d2:23:63:28:c9:65:83:84:87:68:52:35:ae:3c:49: 10:17:dc:9c:6a:cd:59:62:4b:87:8d:e1:e1:b0:28:b6:c5:3c: fb:09:96:58:68:bf:5b:b1:f7:f8:3c:e2:10:7b:f3:1b:bc:8e: 04:28:e9:be:18:92:56:d2:77:cc:4e:22:59:5e:5d:4a:61:f4: eb:be:7c:0d:5f:a5:40:9b:79:58:db:e4:e5:3a:20:97:1c:4d: e2:e2:71:81:18:0d:b9:e1:96:f6:8b:b0:aa:f9:3d:36:02:ac: ac:49:63:57:00:19:0a:05:40:b3:6b:9e:87:ce:51:09:7f:fe: 4b:a4:1b:fc:1f:5d:8a:ea:ab:db:93:49:09:b2:f4:e2:6c:58: 8a:0a:db:b9:f0:f4:fd:0b:2c:c2:b1:28:61:9b:68:8b:86:4a: ff:36:8e:5e:9a:29:98:2e:e3:5b:97:5f:15:80:d3:d2:79:15: dc:9c:b2:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5MjkxMTAvBgNVBAUTKEE5MjE0REI5OTE4NDlCMjlDNEYwNDVDMzM2NDcwRTlE ODJDNDhDRTIwHhcNMjUwODIzMDUwMTIyWhcNMjUwODMwMDUwMTIyWjAYMRYwFAYD VQQDEw02OGE5NGIyMi0xZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoK8LdAcYVU5nv9H11GTV/HAD5csmomEhrl+f2hEKh9p4q1yJobUGeWQVkC+9 2tpAVKg3Q8ZyrRz5Dagm9fh/MooQJJPsKCVBM6/InYxELcw3zZigqIjecFZbnjXH kNDOkiiieC8Iky/TgVA10OSHD2vF/+alSw2GVWtrXndypTESfsnLGlUHGOPpsJxb GJGYFAovfht2Gl0ZyUOkmIOEkAAI02fbUDeOR69ADqUbuoE5fCy4qIpbLwskp7Xx g2Gtnp0ql+fMA7lqHx9e6FtUfnQreU3w8Xq6E5Vw6Gt6UpLfKfxp6KdSJYzJCOfA zMF4NE+5TQrlBgURpYXjZN0ZHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELcucY2 2zcWNOgqKE3r+/33CZuEMB8GA1UdIwQYMBaAFKkhTbmRhJspxPBFwzZHDp2CxIzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjkyOS9CRUJERUE5OEQ1 RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15bkU4RVhETmtjT25ZTEVq T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjkyOS9CRUJERUE5OEQ1RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15 bkU4RVhETmtjT25ZTEVqT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHnzbRVaUr+G+EBUg/wsGOO/PnnluFphGEKG738wRTNUZeJZYZURsQ aYjKvOTuSuNACmjsyD5FXydaVA9RgstVYfx5VFyrODkDd+fSI2MoyWWDhIdoUjWu PEkQF9ycas1ZYkuHjeHhsCi2xTz7CZZYaL9bsff4POIQe/MbvI4EKOm+GJJW0nfM TiJZXl1KYfTrvnwNX6VAm3lY2+TlOiCXHE3i4nGBGA254Zb2i7Cq+T02AqysSWNX ABkKBUCza56HzlEJf/5LpBv8H12K6qvbk0kJsvTibFiKCtu58PT9CyzCsShhm2iL hkr/No5emimYLuNbl18VgNPSeRXcnLKP -----END CERTIFICATE-----Generated at Sat Aug 23 21:05:19 2025 by rpki-client