$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft File: QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft (raw, json) Hash identifier: S+7TtOmlpRQpocBYndu2qUml6Y0eVe1PRJU0H+g9xeg= Subject key identifier: BA:8B:7B:D2:05:95:47:FF:EA:23:3F:8A:C3:63:AE:13:34:9D:E0:5E Authority key identifier: 40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 Certificate issuer: /CN=A91F5756/serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft Manifest number: 16 Signing time: Sat 23 Aug 2025 08:14:33 +0000 Manifest this update: Sat 23 Aug 2025 08:14:32 +0000 Manifest next update: Sat 30 Aug 2025 08:14:32 +0000 Files and hashes: 1: QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl (hash: VVsOVmlWqjsrbvyitAeILuKEeor5hDNQURm9+CJo3GY=) 2: 2FD77F7E621511F09070587CC4F9AE02.roa (hash: 3+o7qebkkN1OKvUkerL7wnawvdJf5yEWl5f4sMyfaMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5756, serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Validity Not Before: Aug 23 08:14:32 2025 GMT Not After : Aug 30 08:14:32 2025 GMT Subject: CN=68a97869-b329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dd:c0:cc:3d:47:88:53:2c:55:95:6d:e1:50: f8:4e:a9:2a:31:23:02:cf:60:9b:c7:62:53:d3:b1: d3:85:9a:ea:f5:ca:2c:91:cb:1c:32:36:f4:b6:be: 7a:de:4e:28:98:1d:e4:3e:27:cd:48:81:43:b7:45: 9e:13:2f:db:f6:0e:90:88:7f:09:bd:5f:13:a5:a8: 8e:87:f0:cf:00:58:2b:00:a1:30:68:da:a3:75:bc: 6e:13:92:52:f0:e9:38:ab:fc:40:aa:5c:5f:ee:63: a6:3e:82:38:9b:89:f7:2c:6b:75:38:1b:3d:b6:45: ea:86:ae:98:91:5c:0d:fd:2d:e9:68:0a:fe:0f:92: b6:9c:9a:67:41:79:93:78:a4:e0:d0:cb:e7:96:8d: c0:dd:11:f3:8e:ce:7e:da:93:de:c8:72:96:9f:02: 67:f1:15:56:25:56:95:a2:a1:de:2b:80:88:9c:32: 02:6c:72:37:ba:5a:0a:3d:b5:0a:e9:b8:80:b7:c7: 4f:8a:f5:ee:71:2d:2f:45:c5:08:e4:c0:79:b4:75: 7a:64:bc:4e:a5:96:6b:9c:cf:a4:08:cb:91:47:00: 41:5b:1c:94:65:5a:75:e1:7a:1f:9a:e3:19:c1:56: bd:31:0f:23:b7:43:9a:a9:57:19:f8:bc:30:07:8f: 2a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:8B:7B:D2:05:95:47:FF:EA:23:3F:8A:C3:63:AE:13:34:9D:E0:5E X509v3 Authority Key Identifier: keyid:40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:8d:36:82:00:d4:b0:66:ce:39:6c:07:27:c1:93:ea:31:fb: c1:11:de:95:c8:a3:be:8c:7a:ad:69:b7:5a:f6:f3:2a:bf:ab: 33:a0:cd:60:8c:d4:67:ca:e7:31:3c:0c:a3:53:0e:1b:14:19: 72:4a:be:3d:f1:b4:fa:68:b5:b8:f7:77:87:56:ad:50:38:c0: 61:11:57:59:e2:fb:9a:af:3a:1b:e4:6b:02:35:90:87:c9:f0: f2:c9:8b:96:fb:d3:02:ca:34:11:92:98:a4:30:e0:1f:b0:ea: fd:0b:d7:a7:4e:fe:9a:7a:fb:18:0f:80:25:05:36:d5:21:42: 4e:ec:52:84:09:59:7a:6e:f4:9a:07:31:d0:95:d6:c1:67:0d: 53:84:c7:9c:8b:8b:23:d1:e5:ec:f9:1a:b8:da:47:f2:03:09: f1:49:68:be:ef:6f:2f:58:96:1c:06:2e:63:cf:8f:f2:9f:aa: d3:5e:5f:47:64:c5:de:b5:23:fc:99:1f:db:8b:4b:af:72:8a: 7e:4f:e9:4e:61:bd:00:18:48:a5:76:0b:93:d9:b5:ff:d2:71: 45:62:18:af:dd:cd:f6:3a:64:3a:b0:68:cf:2a:f6:de:1d:f9: 35:68:a4:0e:fc:10:58:47:e3:a2:0e:3a:4f:a3:87:8f:ae:0f: 54:5c:7f:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTc1NjExMC8GA1UEBRMoNDAxRDhCREM4MkEzMjQ0OEM5M0JBM0EwRkU5M0FGMTA2 NDIzNjJBMjAeFw0yNTA4MjMwODE0MzJaFw0yNTA4MzAwODE0MzJaMBgxFjAUBgNV BAMTDTY4YTk3ODY5LWIzMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb3cDMPUeIUyxVlW3hUPhOqSoxIwLPYJvHYlPTsdOFmur1yiyRyxwyNvS2vnre TiiYHeQ+J81IgUO3RZ4TL9v2DpCIfwm9XxOlqI6H8M8AWCsAoTBo2qN1vG4TklLw 6Tir/ECqXF/uY6Y+gjibifcsa3U4Gz22ReqGrpiRXA39LeloCv4PkracmmdBeZN4 pODQy+eWjcDdEfOOzn7ak97IcpafAmfxFVYlVpWiod4rgIicMgJscje6Wgo9tQrp uIC3x0+K9e5xLS9FxQjkwHm0dXpkvE6llmucz6QIy5FHAEFbHJRlWnXheh+a4xnB Vr0xDyO3Q5qpVxn4vDAHjypJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuot70gWV R//qIz+Kw2OuEzSd4F4wHwYDVR0jBBgwFoAUQB2L3IKjJEjJO6Og/pOvEGQjYqIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1NzU2LzZCNzI3RjMyNjIx MjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVqSk82T2dfcE92RUdRallx SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUIyTDNJS2pKRWpKTzZPZ19wT3ZFR1FqWXFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 NzU2LzZCNzI3RjMyNjIxMjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVq Sk82T2dfcE92RUdRallxSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFONNoIA1LBmzjlsByfBk+ox+8ER3pXIo76Meq1pt1r28yq/qzOgzWCM 1GfK5zE8DKNTDhsUGXJKvj3xtPpotbj3d4dWrVA4wGERV1ni+5qvOhvkawI1kIfJ 8PLJi5b70wLKNBGSmKQw4B+w6v0L16dO/pp6+xgPgCUFNtUhQk7sUoQJWXpu9JoH MdCV1sFnDVOEx5yLiyPR5ez5GrjaR/IDCfFJaL7vby9YlhwGLmPPj/KfqtNeX0dk xd61I/yZH9uLS69yin5P6U5hvQAYSKV2C5PZtf/ScUViGK/dzfY6ZDqwaM8q9t4d +TVopA78EFhH46IOOk+jh4+uD1Rcf3Q= -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:21 2025 by rpki-client