$ rpki-client -vvf rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft File: rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft (raw, json) Hash identifier: JxICD3j7AbnJrtfdKutxkk3dJIMlP3ftEFNzogm1AK4= Subject key identifier: 9D:F2:89:D4:6A:D6:5B:E9:F9:16:F8:73:3C:13:A9:1D:28:3D:69:E4 Authority key identifier: AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F Certificate issuer: /CN=A919F55C/serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Certificate serial: 04CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft Manifest number: 04C8 Signing time: Sat 23 Aug 2025 00:03:16 +0000 Manifest this update: Sat 23 Aug 2025 00:03:15 +0000 Manifest next update: Sat 30 Aug 2025 00:03:15 +0000 Files and hashes: 1: rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl (hash: i7Qb7VyGFZvpWFLtxGlHLAPrQrbtDeyBtJkmNfjtwng=) 2: 0EC6A7E0372D11ECA616091EC4F9AE02.roa (hash: xRvy8+EZ4EWMUGqE/C33LsDCdW9x6WHrip13g/dJz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1229 (0x4cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F55C, serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Validity Not Before: Aug 23 00:03:15 2025 GMT Not After : Aug 30 00:03:15 2025 GMT Subject: CN=68a90543-90d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4d:00:c5:51:3b:c6:93:a0:ba:4c:ef:64:b9: 69:81:b4:d0:07:b3:de:6c:1e:42:c8:d3:d8:93:f0: ca:02:4d:92:4a:51:ff:77:89:8e:8f:42:15:31:b4: 12:04:07:9d:66:d9:7c:5f:19:a3:16:b7:c7:0a:e8: 60:dd:4b:4b:35:02:3a:b8:ec:b1:1a:2d:97:95:92: 58:e7:04:3f:33:b9:e6:56:db:e6:97:b7:c5:82:de: d2:ea:05:1f:70:a2:e3:d6:53:09:3c:83:5c:f0:50: a7:fc:61:61:91:21:f1:b2:3a:8f:61:88:e9:8c:0e: 1c:e6:1b:7e:b4:06:9a:ac:e0:89:9d:56:d1:7e:39: 3f:64:a3:36:73:5f:e2:2c:5e:e4:33:3a:38:b5:0b: 8f:03:bc:c1:7f:69:ea:a3:72:76:55:60:a3:00:b6: 03:4d:e3:8b:0f:e2:b5:ee:e1:36:60:14:bf:9f:1a: c1:1f:ee:1f:b6:cb:eb:ca:d4:8a:d1:38:0b:7a:49: bf:58:77:67:dc:df:01:bf:d8:46:2b:72:0d:7f:39: ee:af:d3:26:81:56:73:4a:f2:e8:63:f7:da:24:6d: d4:65:40:da:e7:0b:2f:ea:de:9b:37:2f:3e:cb:12: db:b9:8d:9a:47:6e:53:69:e3:33:fd:c8:d4:7c:44: 0c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F2:89:D4:6A:D6:5B:E9:F9:16:F8:73:3C:13:A9:1D:28:3D:69:E4 X509v3 Authority Key Identifier: keyid:AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:7e:e6:0a:ff:dc:ba:50:50:a7:7d:4b:0c:c4:90:e8:83:d8: cb:f9:8d:29:56:35:26:aa:8f:4a:cc:f0:29:ae:02:03:36:7b: 27:da:34:d4:2d:f0:ef:4b:e5:35:2e:92:92:9d:2a:bf:ce:ea: 67:98:b2:0d:24:07:a3:21:db:7b:e9:ce:b5:8e:dc:46:c5:53: 71:a7:08:8b:e8:0d:de:4e:13:31:0c:6b:2a:4e:0b:23:e2:92: 09:2a:cf:ce:f8:b4:ad:45:54:26:bf:38:39:a3:1d:91:b9:3b: ce:80:6f:4c:bd:e4:89:a2:bc:74:42:29:65:f4:3d:ac:f2:da: 3c:ee:02:84:f6:8e:c6:98:be:c0:4a:7a:02:9e:85:cd:2e:3a: ee:a0:ea:84:e3:ee:c5:29:70:4e:d8:d1:05:49:7c:8c:4b:97: 08:97:a9:27:0e:ed:3b:7c:a0:2c:96:68:7f:e8:3f:5a:aa:2f: 94:65:60:eb:27:b7:33:02:6c:a0:76:96:d6:6a:92:e3:0f:4f: 02:5f:7f:cd:c4:c8:04:9e:f4:84:b7:95:9e:6b:bc:85:3e:db: c6:5b:e2:0f:87:31:18:1a:d2:c4:c8:73:27:6b:9a:9c:7f:3c: dd:4e:31:71:61:02:82:a2:20:1b:28:1a:8f:2f:4f:c5:67:8b: c0:e6:22:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1NUMxMTAvBgNVBAUTKEFEMDZEQkNDNTMzNEM2RDc1MTM3MkZCMTc5NTRGNEFB QUREQzlDM0YwHhcNMjUwODIzMDAwMzE1WhcNMjUwODMwMDAwMzE1WjAYMRYwFAYD VQQDEw02OGE5MDU0My05MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE0AxVE7xpOgukzvZLlpgbTQB7PebB5CyNPYk/DKAk2SSlH/d4mOj0IVMbQS BAedZtl8XxmjFrfHCuhg3UtLNQI6uOyxGi2XlZJY5wQ/M7nmVtvml7fFgt7S6gUf cKLj1lMJPINc8FCn/GFhkSHxsjqPYYjpjA4c5ht+tAaarOCJnVbRfjk/ZKM2c1/i LF7kMzo4tQuPA7zBf2nqo3J2VWCjALYDTeOLD+K17uE2YBS/nxrBH+4ftsvrytSK 0TgLekm/WHdn3N8Bv9hGK3INfznur9MmgVZzSvLoY/faJG3UZUDa5wsv6t6bNy8+ yxLbuY2aR25TaeMz/cjUfEQMXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3yidRq 1lvp+Rb4czwTqR0oPWnkMB8GA1UdIwQYMBaAFK0G28xTNMbXUTcvsXlU9Kqt3Jw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjU1Qy85RjE5Rjk2RTM3 MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0ZFJOeS14ZVZUMHFxM2Nu RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRYmJ6Rk0weHRkUk55LXhlVlQwcXEzY25EOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjU1Qy85RjE5Rjk2RTM3MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0 ZFJOeS14ZVZUMHFxM2NuRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsfuYK/9y6UFCnfUsMxJDog9jL+Y0pVjUmqo9KzPAprgIDNnsn2jTU LfDvS+U1LpKSnSq/zupnmLINJAejIdt76c61jtxGxVNxpwiL6A3eThMxDGsqTgsj 4pIJKs/O+LStRVQmvzg5ox2RuTvOgG9MveSJorx0Qill9D2s8to87gKE9o7GmL7A SnoCnoXNLjruoOqE4+7FKXBO2NEFSXyMS5cIl6knDu07fKAslmh/6D9aqi+UZWDr J7czAmygdpbWapLjD08CX3/NxMgEnvSEt5Wea7yFPtvGW+IPhzEYGtLEyHMna5qc fzzdTjFxYQKCoiAbKBqPL0/FZ4vA5iI+ -----END CERTIFICATE-----Generated at Sat Aug 23 13:53:33 2025 by rpki-client