$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: jLVNCzsQdkwvXSa8PQpMTA40bFK5kcVE8ViL32Yiffg= Subject key identifier: F9:7B:34:70:CE:7A:C7:EA:F3:0D:05:C8:50:8F:00:1D:66:04:75:C9 Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 1911 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 18E7 Signing time: Fri 22 Aug 2025 16:34:46 +0000 Manifest this update: Fri 22 Aug 2025 16:34:46 +0000 Manifest next update: Fri 29 Aug 2025 16:34:46 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: 87niyFxaRe9bpa0YCQIa6t/eqjTe4biwcrycbRPfk90=) 2: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=) 3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6417 (0x1911) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Aug 22 16:34:46 2025 GMT Not After : Aug 29 16:34:46 2025 GMT Subject: CN=68a89c26-0fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c1:7d:26:8c:00:a1:21:5c:64:43:d9:01:f8: 45:0e:36:ab:21:89:00:d8:b1:3d:ee:85:47:5a:2a: 78:85:d5:4e:1a:46:5d:ac:0a:93:86:a2:b7:2d:ca: f8:11:a2:7c:03:30:69:03:6f:f3:56:d8:12:d3:7a: b8:a2:3b:c8:f0:69:31:b8:ba:c0:69:ce:4e:13:b9: 40:0f:6d:7c:db:d6:c8:4c:e9:d4:03:76:0f:24:80: 7b:33:d6:c7:fb:a6:91:81:c6:18:a8:a3:b7:28:0b: c3:ad:d9:4a:59:37:b4:1d:58:38:74:34:12:09:7c: 45:a7:4d:a9:e6:fc:d2:c1:98:7f:8c:6d:a4:6f:93: c9:a6:b4:16:5f:92:80:5a:fa:b4:cf:e0:17:e3:ff: d2:ca:05:d5:0e:0d:12:02:e6:58:d1:a9:be:95:20: 6e:cf:73:a6:ea:76:44:02:23:2c:76:7d:71:ff:85: bd:79:cc:fc:13:50:62:21:35:c7:2c:d9:c2:27:49: 99:11:f1:52:f5:9a:e2:96:79:0c:0c:ab:96:5a:12: 50:21:87:d7:80:4c:4a:b7:30:fa:53:3a:77:a5:ed: 58:09:a6:27:28:f0:6f:d1:fe:c4:5b:4a:0f:88:80: bc:4f:eb:19:09:00:86:cf:10:d6:23:be:7a:0e:38: 8e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:7B:34:70:CE:7A:C7:EA:F3:0D:05:C8:50:8F:00:1D:66:04:75:C9 X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:15:97:79:d7:a4:9c:c3:22:8a:7e:ca:89:36:53:98:d0:14: 19:6e:f6:e1:5f:83:91:8c:a8:e6:e8:04:53:6d:15:ca:20:f2: 4f:ee:82:c4:c5:6d:74:88:d2:f0:20:83:9a:9c:f3:15:87:79: 01:c3:f6:ec:9d:44:00:f2:85:7d:ac:03:02:48:46:10:38:b8: e0:b0:8c:f7:5f:39:b7:c4:ad:41:b2:8b:1e:26:21:fb:f5:cc: 08:b9:42:ed:3c:eb:bf:d0:12:d7:37:26:32:86:97:5e:93:40: e8:d4:5b:e2:fe:9e:9d:aa:4d:79:d8:92:e8:86:aa:fd:29:61: 51:3d:59:1d:6b:ea:55:89:8a:11:33:82:ab:d9:2d:27:d1:8e: 30:3b:27:e9:01:a6:2a:13:04:4f:09:de:47:69:f2:8b:75:32: 7e:53:23:e0:a1:52:aa:b4:d7:ca:48:10:d8:a6:17:57:3e:3a: de:7f:17:31:fe:8c:8d:b5:c2:bc:0f:32:81:08:f7:e6:5e:37: bc:04:a8:17:be:a7:36:90:c9:b8:bd:66:53:eb:0c:40:ab:76: bd:6e:f9:ef:a0:d7:c4:96:7b:e3:8b:80:29:dd:e0:f9:92:af: 42:5e:a1:7f:ec:83:5d:9d:72:c5:c6:03:f1:0d:0a:ce:4a:8f: 9b:33:47:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUwODIyMTYzNDQ2WhcNMjUwODI5MTYzNDQ2WjAYMRYwFAYD VQQDEw02OGE4OWMyNi0wZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MF9JowAoSFcZEPZAfhFDjarIYkA2LE97oVHWip4hdVOGkZdrAqThqK3Lcr4 EaJ8AzBpA2/zVtgS03q4ojvI8GkxuLrAac5OE7lAD21829bITOnUA3YPJIB7M9bH +6aRgcYYqKO3KAvDrdlKWTe0HVg4dDQSCXxFp02p5vzSwZh/jG2kb5PJprQWX5KA Wvq0z+AX4//SygXVDg0SAuZY0am+lSBuz3Om6nZEAiMsdn1x/4W9ecz8E1BiITXH LNnCJ0mZEfFS9ZrilnkMDKuWWhJQIYfXgExKtzD6Uzp3pe1YCaYnKPBv0f7EW0oP iIC8T+sZCQCGzxDWI756DjiOmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPl7NHDO esfq8w0FyFCPAB1mBHXJMB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXFZd516ScwyKKfsqJNlOY0BQZbvbhX4ORjKjm6ARTbRXKIPJP7oLE xW10iNLwIIOanPMVh3kBw/bsnUQA8oV9rAMCSEYQOLjgsIz3Xzm3xK1BsoseJiH7 9cwIuULtPOu/0BLXNyYyhpdek0Do1Fvi/p6dqk152JLohqr9KWFRPVkda+pViYoR M4Kr2S0n0Y4wOyfpAaYqEwRPCd5HafKLdTJ+UyPgoVKqtNfKSBDYphdXPjrefxcx /oyNtcK8DzKBCPfmXje8BKgXvqc2kMm4vWZT6wxAq3a9bvnvoNfElnvji4Ap3eD5 kq9CXqF/7INdnXLFxgPxDQrOSo+bM0cJ -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:55 2025 by rpki-client