$ rpki-client -vvf rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft File: 6qSDu71coOErPsD25wxbqq40VSs.mft (raw, json) Hash identifier: nJ8PRhula3miZeoM2AZ/8Ad/oUi3O3DuzwlrqzkfFp4= Subject key identifier: F8:86:E0:FB:28:F2:E6:A8:38:43:27:35:69:C0:C4:DC:26:D4:78:9E Authority key identifier: EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B Certificate issuer: /CN=A914BAA2/serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft Manifest number: 63 Signing time: Sat 23 Aug 2025 07:28:29 +0000 Manifest this update: Sat 23 Aug 2025 07:28:29 +0000 Manifest next update: Sat 30 Aug 2025 07:28:29 +0000 Files and hashes: 1: 6qSDu71coOErPsD25wxbqq40VSs.crl (hash: 6AvapjiE0HnNHwQGrqOOHMXDIsAAgcsHVmF4tEQRIS4=) 2: 535D1F52069511F090414823C4F9AE02.roa (hash: Z1otMQWN0CbTaPhw5EvbwRe+YB3GZZkedSXo8XkS78Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BAA2, serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Validity Not Before: Aug 23 07:28:29 2025 GMT Not After : Aug 30 07:28:29 2025 GMT Subject: CN=68a96d9d-f4c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fb:67:fc:3c:c8:c0:1d:29:08:fa:c6:15:6e: 37:77:25:dc:3c:53:4d:55:ed:c8:ab:cd:40:c8:06: 98:41:26:91:51:ac:63:2f:da:dd:1e:c7:95:b6:71: fc:64:b2:80:1e:3c:3c:2a:2f:77:db:3d:03:41:36: d3:bf:90:ef:b4:e8:6b:f9:3d:89:a1:ad:6e:15:5c: 61:ff:d0:2c:4f:8a:a8:c2:1e:da:d9:d7:9d:0e:a2: ea:06:c8:70:29:91:8d:17:00:ea:aa:1f:e2:02:a2: d4:6d:1c:7d:f4:04:1e:7c:c8:82:a1:31:e8:77:54: 5f:56:f7:5e:55:65:c6:8b:b9:7f:5d:e9:2e:a5:67: ed:b1:c2:0b:2d:0f:25:f5:a0:c2:95:2b:3e:03:03: 65:70:c6:81:5c:2e:f4:f6:40:4a:86:88:c5:92:35: 63:a8:cd:9f:e7:6f:df:6b:54:ce:82:c5:30:3e:f6: 98:a3:87:60:52:21:78:28:68:f4:45:63:fa:eb:a0: d5:95:8c:c9:87:5d:0a:63:eb:5a:0f:6d:e6:d5:3d: 54:43:f5:80:36:ad:2c:de:5c:cd:47:8f:a9:c3:46: e3:fe:3f:8b:37:bc:68:91:ba:c2:c9:52:88:ae:5f: 8b:e8:d8:c0:88:ce:ff:d1:9d:c7:e5:1a:a4:6a:66: 23:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:86:E0:FB:28:F2:E6:A8:38:43:27:35:69:C0:C4:DC:26:D4:78:9E X509v3 Authority Key Identifier: keyid:EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:c1:32:9f:55:0c:56:61:3a:61:32:fc:fa:03:41:90:b7:d6: a6:04:38:75:91:ed:e8:90:0d:c3:f8:02:1c:27:d1:23:44:ec: 5a:3b:26:51:d7:4a:64:0c:49:55:6c:66:5f:4f:33:b1:7f:b3: b0:6f:17:6e:27:55:a1:75:05:ca:39:88:a9:5c:4d:ce:52:0f: ac:3d:dc:e9:00:44:af:ec:d0:b9:2e:2d:3f:d0:0b:39:26:e0: 87:e7:45:c0:5e:48:a8:3e:8c:f4:b1:0a:4d:e0:d7:dc:d6:3d: b6:c5:39:5d:6d:da:f0:01:50:f5:1e:be:e2:11:41:ec:d6:18: 5c:0b:ad:f6:9d:24:0b:27:c3:15:9c:52:59:d7:09:5b:c2:c3: 48:69:26:d7:e8:be:47:c2:75:67:8a:74:ce:7b:71:95:fa:ab: 2b:01:53:fb:9a:49:80:d8:c5:3b:18:e9:0a:26:dc:da:67:5c: 66:30:33:57:58:b7:81:e1:e3:aa:08:c1:87:df:bd:81:29:9c: ca:cc:46:55:32:12:b0:8b:19:f3:8e:c6:ac:56:31:aa:0f:6b: aa:e8:49:43:87:de:54:09:4d:57:24:b8:49:86:0f:d5:b4:f1: d7:6b:05:cc:9c:12:ec:df:24:ce:0b:47:56:73:fd:a2:1d:bb: f5:21:0a:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QkFBMjExMC8GA1UEBRMoRUFBNDgzQkJCRDVDQTBFMTJCM0VDMEY2RTcwQzVCQUFB RTM0NTUyQjAeFw0yNTA4MjMwNzI4MjlaFw0yNTA4MzAwNzI4MjlaMBgxFjAUBgNV BAMTDTY4YTk2ZDlkLWY0YzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU+2f8PMjAHSkI+sYVbjd3Jdw8U01V7cirzUDIBphBJpFRrGMv2t0ex5W2cfxk soAePDwqL3fbPQNBNtO/kO+06Gv5PYmhrW4VXGH/0CxPiqjCHtrZ150OouoGyHAp kY0XAOqqH+ICotRtHH30BB58yIKhMeh3VF9W915VZcaLuX9d6S6lZ+2xwgstDyX1 oMKVKz4DA2VwxoFcLvT2QEqGiMWSNWOozZ/nb99rVM6CxTA+9pijh2BSIXgoaPRF Y/rroNWVjMmHXQpj61oPbebVPVRD9YA2rSzeXM1Hj6nDRuP+P4s3vGiRusLJUoiu X4vo2MCIzv/RncflGqRqZiOfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+Ibg+yjy 5qg4Qyc1acDE3CbUeJ4wHwYDVR0jBBgwFoAU6qSDu71coOErPsD25wxbqq40VSsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCQUEyLzRERUNEMDgwRkU2 NjExRUY4OTJFNTIxNEM0RjlBRTAyLzZxU0R1NzFjb09FclBzRDI1d3hicXE0MFZT cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNnFTRHU3MWNvT0VyUHNEMjV3eGJxcTQwVlNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRC QUEyLzRERUNEMDgwRkU2NjExRUY4OTJFNTIxNEM0RjlBRTAyLzZxU0R1NzFjb09F clBzRDI1d3hicXE0MFZTcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEbBMp9VDFZhOmEy/PoDQZC31qYEOHWR7eiQDcP4Ahwn0SNE7Fo7JlHX SmQMSVVsZl9PM7F/s7BvF24nVaF1Bco5iKlcTc5SD6w93OkARK/s0LkuLT/QCzkm 4IfnRcBeSKg+jPSxCk3g19zWPbbFOV1t2vABUPUevuIRQezWGFwLrfadJAsnwxWc UlnXCVvCw0hpJtfovkfCdWeKdM57cZX6qysBU/uaSYDYxTsY6Qom3NpnXGYwM1dY t4Hh46oIwYffvYEpnMrMRlUyErCLGfOOxqxWMaoPa6roSUOH3lQJTVckuEmGD9W0 8ddrBcycEuzfJM4LR1Zz/aIdu/UhCjE= -----END CERTIFICATE-----Generated at Sat Aug 23 17:22:33 2025 by rpki-client