$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft File: QRfXbD7AS2IRM0hQpc1uowVTUFw.mft (raw, json) Hash identifier: dKw8/yj22U+IYaw1KA/L1DWFUauo7GVua2Wrl7qj9g4= Subject key identifier: 34:47:B8:8D:C5:3C:2D:2C:77:CD:E6:76:66:8B:6C:EF:E9:F1:C8:ED Authority key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C Certificate issuer: /CN=A91ED6B5/serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft Manifest number: 046D Signing time: Sat 23 Aug 2025 00:21:37 +0000 Manifest this update: Sat 23 Aug 2025 00:21:36 +0000 Manifest next update: Sat 30 Aug 2025 00:21:36 +0000 Files and hashes: 1: QRfXbD7AS2IRM0hQpc1uowVTUFw.crl (hash: PPV+pS5xJGHJS8p+SugI3N4YSYI7fc5irOAYnpp5Zdc=) 2: 06A899FECCF311EC86719729C4F9AE02.roa (hash: aXuFAPx3sTT3XGxZkToSNXJ/vwo2rNiJs7Ikunvy7v4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED6B5, serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Validity Not Before: Aug 23 00:21:36 2025 GMT Not After : Aug 30 00:21:36 2025 GMT Subject: CN=68a90991-cb8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d7:63:8e:c6:bb:42:3b:0a:9e:4e:b7:f6:41: 23:ef:5e:2a:36:32:01:e0:eb:5d:88:c4:36:96:69: 5a:92:54:a8:1d:f9:44:86:6b:0e:49:be:fd:ea:4a: e9:c3:25:71:27:10:b7:2c:14:0d:76:57:df:43:3d: 8f:87:cf:d6:65:73:8d:40:e8:62:d9:10:1d:0a:ad: 54:96:db:1d:04:d0:a6:f9:1f:86:9f:a5:76:f1:4b: d6:69:dc:7e:56:e2:1b:39:bc:2f:fd:d7:bd:4f:8a: bd:33:19:4c:78:88:e3:ad:74:49:d4:5b:e7:04:f5: 8f:f4:04:ca:7f:28:b1:bc:9c:7f:f1:38:84:d5:a1: 14:c7:71:7f:e1:2a:e0:5b:34:d1:a8:8b:9f:50:66: 9f:10:48:76:b7:87:6c:18:c7:c3:92:fa:bb:e4:69: da:85:06:bf:6c:09:cc:b5:be:2a:06:fb:aa:1d:c3: 6a:ec:2e:71:f4:71:cc:e1:d1:5d:77:a3:f7:e2:a9: c6:19:5d:6f:08:77:00:e4:8b:88:77:51:c3:3b:d5: b2:3b:57:46:4f:d7:70:fd:47:73:fd:a5:57:8d:31: 9e:14:84:9f:f3:b4:db:38:0c:fe:7e:a5:0e:23:ae: c0:ef:9f:56:53:3b:81:ac:49:7f:66:b8:fd:69:12: 3d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:47:B8:8D:C5:3C:2D:2C:77:CD:E6:76:66:8B:6C:EF:E9:F1:C8:ED X509v3 Authority Key Identifier: keyid:41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:00:ac:63:1d:49:7e:21:1a:b6:90:8c:32:76:c1:1d:81:ba: 78:b7:98:74:dd:d2:8f:d3:81:c1:40:be:bb:21:9e:ae:c2:aa: 82:95:ad:36:86:be:52:28:8d:2d:e1:d9:36:55:2c:c8:fe:a5: 39:5a:dd:ff:a4:2b:12:f3:10:b4:f3:7e:5d:b0:5e:d9:35:46: 2c:9b:f5:ce:39:89:00:8a:7d:eb:fb:55:4b:e6:65:11:e7:75: d2:f1:45:d2:ac:66:ae:a6:ec:19:15:9a:a4:cd:ab:59:f1:33: 22:bb:51:22:89:80:d3:2f:ed:fe:11:5e:a6:a2:06:89:fb:30: 09:3f:30:df:5e:ed:d6:c1:48:83:c2:df:72:05:26:0a:83:6f: 8d:1c:c0:74:72:c8:97:8e:3d:38:8c:8f:ea:d7:43:86:6c:43: 8c:ee:aa:54:43:85:7f:90:e1:c6:28:cd:41:d5:fe:6b:00:1b: af:db:e6:4e:b0:cf:81:f9:95:6d:8f:3f:8c:1f:85:b0:40:07: ea:c1:8e:c8:78:cf:94:31:68:40:5d:c4:6e:3b:18:2c:68:75: 45:67:51:4e:97:9b:97:f7:ad:59:91:da:f5:ce:ef:46:e2:34: ff:d2:12:f4:36:e1:0e:db:5c:50:d8:d5:42:8a:71:bf:53:ec: 2b:52:20:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ2QjUxMTAvBgNVBAUTKDQxMTdENzZDM0VDMDRCNjIxMTMzNDg1MEE1Q0Q2RUEz MDU1MzUwNUMwHhcNMjUwODIzMDAyMTM2WhcNMjUwODMwMDAyMTM2WjAYMRYwFAYD VQQDEw02OGE5MDk5MS1jYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9djjsa7QjsKnk639kEj714qNjIB4OtdiMQ2lmlaklSoHflEhmsOSb796krp wyVxJxC3LBQNdlffQz2Ph8/WZXONQOhi2RAdCq1UltsdBNCm+R+Gn6V28UvWadx+ VuIbObwv/de9T4q9MxlMeIjjrXRJ1FvnBPWP9ATKfyixvJx/8TiE1aEUx3F/4Srg WzTRqIufUGafEEh2t4dsGMfDkvq75GnahQa/bAnMtb4qBvuqHcNq7C5x9HHM4dFd d6P34qnGGV1vCHcA5IuId1HDO9WyO1dGT9dw/Udz/aVXjTGeFISf87TbOAz+fqUO I67A759WUzuBrEl/Zrj9aRI9PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRHuI3F PC0sd83mdmaLbO/p8cjtMB8GA1UdIwQYMBaAFEEX12w+wEtiETNIUKXNbqMFU1Bc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDZCNS9FRjQ2OUJGQzU5 NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMySVJNMGhRcGMxdW93VlRV RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSZlhiRDdBUzJJUk0waFFwYzF1b3dWVFVGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDZCNS9FRjQ2OUJGQzU5NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMy SVJNMGhRcGMxdW93VlRVRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkAKxjHUl+IRq2kIwydsEdgbp4t5h03dKP04HBQL67IZ6uwqqCla02 hr5SKI0t4dk2VSzI/qU5Wt3/pCsS8xC0835dsF7ZNUYsm/XOOYkAin3r+1VL5mUR 53XS8UXSrGaupuwZFZqkzatZ8TMiu1EiiYDTL+3+EV6mogaJ+zAJPzDfXu3WwUiD wt9yBSYKg2+NHMB0csiXjj04jI/q10OGbEOM7qpUQ4V/kOHGKM1B1f5rABuv2+ZO sM+B+ZVtjz+MH4WwQAfqwY7IeM+UMWhAXcRuOxgsaHVFZ1FOl5uX961Zkdr1zu9G 4jT/0hL0NuEO21xQ2NVCinG/U+wrUiCf -----END CERTIFICATE-----Generated at Sat Aug 23 22:34:05 2025 by rpki-client