$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: ZXamHqf7EshiVwAbliUHAp+ew1H4xL3xLHmh5cRcBeA= Subject key identifier: EE:AC:82:44:0C:96:F1:EC:4E:40:10:69:FE:75:83:56:F3:29:92:1C Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 064E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 0635 Signing time: Fri 22 Aug 2025 23:06:36 +0000 Manifest this update: Fri 22 Aug 2025 23:06:36 +0000 Manifest next update: Fri 29 Aug 2025 23:06:35 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: 3YjrM9llmjK+mjP81pZcbkZlBBiFtyDCvba1togo4Nw=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: hq9Cmc+FMjaTTTyQea1uvJO7rYKBgVJ1Xbylz3DiiHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1614 (0x64e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Aug 22 23:06:36 2025 GMT Not After : Aug 29 23:06:35 2025 GMT Subject: CN=68a8f7fc-bc8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fb:b6:92:1c:67:0a:6c:0e:f2:86:6d:90:f8: a3:2c:ba:32:f9:42:06:f8:98:7f:16:ef:34:28:4e: 8c:1f:65:90:b0:2a:49:bb:e9:1a:69:ee:ff:71:13: 4f:28:a9:31:fa:de:9d:35:76:f9:8f:cb:ae:ef:84: 27:13:bb:08:2f:5a:99:d1:be:59:dc:e6:01:00:ea: 68:af:7d:9a:a6:8f:6d:bb:97:b6:b9:00:c6:fb:cf: 1e:c9:7f:cb:31:7a:da:26:e7:32:6a:2b:86:3b:e3: a2:be:b0:56:f7:eb:18:8a:85:5b:68:d6:ad:12:03: 00:69:b1:b5:3e:00:53:23:fd:f6:7b:ca:a3:e2:43: 1c:ff:4d:53:6d:54:d7:79:0b:ab:ec:45:90:10:6e: 70:6a:20:70:7e:bc:70:56:74:52:8a:7a:e1:1a:d8: b7:8b:e1:2a:51:21:0d:8b:a1:3b:fb:07:e1:fb:44: 7d:5f:d5:75:8e:07:a4:cb:20:e3:de:fe:d2:6c:e4: 80:46:cc:08:0a:3f:1d:25:5a:68:9c:fb:2f:28:8c: 81:5e:e0:cf:ef:9e:ee:99:3a:97:b3:3e:a6:de:5e: ac:51:12:e1:6b:22:59:01:f1:18:12:8d:32:da:50: 75:0d:fe:23:d4:d7:83:da:ad:ea:04:a2:1e:64:66: 62:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AC:82:44:0C:96:F1:EC:4E:40:10:69:FE:75:83:56:F3:29:92:1C X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:02:4a:74:21:ec:b4:4d:bb:99:96:a7:3c:45:9d:4d:39:0f: 11:a1:3c:f3:38:15:d7:c4:bc:75:31:53:b1:4d:3b:af:4d:27: 4f:2c:6c:9c:96:b7:7c:f2:8e:31:a3:3a:6f:28:cc:51:fb:3b: 9a:3f:46:a0:58:57:c2:3a:88:b9:8a:62:9a:ff:c6:bd:f5:3e: de:d3:ef:51:33:69:fd:a5:55:79:4b:f9:07:cb:2b:e0:2f:ad: 0b:6a:1a:d3:b4:13:8f:25:aa:d8:d0:99:fd:43:bb:6a:43:d8: f6:e5:79:fa:b3:58:63:88:21:72:84:4b:aa:8c:4f:b0:30:30: c2:f4:c1:1d:e7:1d:b9:d4:da:dc:d9:91:a0:7a:90:e2:25:e4: e3:90:db:bd:5d:01:61:f2:7e:24:05:da:d3:a2:79:5e:98:30: ff:3f:50:59:33:35:9e:04:bb:0f:6a:a3:f7:7e:7b:c0:44:bd: 4f:5e:d7:5d:94:0c:3b:6d:14:75:74:d5:c4:67:b1:e4:cb:73: 2d:1d:19:c1:a3:15:a1:97:f9:7d:93:57:bf:7e:1a:66:2d:cc: 96:ae:02:24:4b:67:1f:1b:50:7b:3c:80:d2:78:f8:78:b2:dd: af:f2:62:ee:0f:b6:5a:55:2f:49:1f:42:28:4c:3f:eb:8b:19: 1d:07:09:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwODIyMjMwNjM2WhcNMjUwODI5MjMwNjM1WjAYMRYwFAYD VQQDEw02OGE4ZjdmYy1iYzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fu2khxnCmwO8oZtkPijLLoy+UIG+Jh/Fu80KE6MH2WQsCpJu+kaae7/cRNP KKkx+t6dNXb5j8uu74QnE7sIL1qZ0b5Z3OYBAOpor32apo9tu5e2uQDG+88eyX/L MXraJucyaiuGO+OivrBW9+sYioVbaNatEgMAabG1PgBTI/32e8qj4kMc/01TbVTX eQur7EWQEG5waiBwfrxwVnRSinrhGti3i+EqUSENi6E7+wfh+0R9X9V1jgekyyDj 3v7SbOSARswICj8dJVponPsvKIyBXuDP757umTqXsz6m3l6sURLhayJZAfEYEo0y 2lB1Df4j1NeD2q3qBKIeZGZi/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6sgkQM lvHsTkAQaf51g1bzKZIcMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoAkp0Iey0TbuZlqc8RZ1NOQ8RoTzzOBXXxLx1MVOxTTuvTSdPLGyc lrd88o4xozpvKMxR+zuaP0agWFfCOoi5imKa/8a99T7e0+9RM2n9pVV5S/kHyyvg L60LahrTtBOPJarY0Jn9Q7tqQ9j25Xn6s1hjiCFyhEuqjE+wMDDC9MEd5x251Nrc 2ZGgepDiJeTjkNu9XQFh8n4kBdrTonlemDD/P1BZMzWeBLsPaqP3fnvARL1PXtdd lAw7bRR1dNXEZ7Hky3MtHRnBoxWhl/l9k1e/fhpmLcyWrgIkS2cfG1B7PIDSePh4 st2v8mLuD7ZaVS9JH0IoTD/rixkdBwkI -----END CERTIFICATE-----Generated at Sun Aug 24 01:03:23 2025 by rpki-client