$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: DSDW30p2WUzJnV39SdAmiGGdJZbx3y18uiDt/7Hg11c= Subject key identifier: 8D:38:23:50:FA:D0:CA:2F:20:8B:31:06:ED:36:A2:DC:3C:B3:D6:CF Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0B3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0B37 Signing time: Fri 22 Aug 2025 19:20:17 +0000 Manifest this update: Fri 22 Aug 2025 19:20:16 +0000 Manifest next update: Fri 29 Aug 2025 19:20:16 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: o8Xlw+opjLeF4OEidKY1lJT/C7BXLRK62DsjvvcXK3E=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: PulA86jFfi+mSmGrurNlPPzi/J9i4GAt5gWrp9tpCBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2878 (0xb3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Aug 22 19:20:16 2025 GMT Not After : Aug 29 19:20:16 2025 GMT Subject: CN=68a8c2f1-e127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5e:e3:f5:fd:33:59:fc:b5:48:1c:68:64:13: 98:35:44:c2:0b:fa:b5:9c:f6:5c:2e:31:18:01:32: e5:f2:28:8b:3f:db:eb:cf:33:3c:5d:94:e9:86:2f: 75:a6:96:25:34:a6:cf:6f:08:36:a1:ed:61:23:e8: 40:05:82:01:b1:53:de:ea:39:b3:d2:12:73:b0:f6: 2e:2b:60:c3:e1:93:29:10:b9:25:fa:8e:09:71:56: 8e:f6:bc:c9:0f:18:81:d5:07:bc:89:f1:22:6d:ee: 19:68:0f:10:c6:0d:d8:69:fe:46:69:52:1b:88:22: 0c:69:5d:d7:46:e0:d5:40:17:2f:2f:d4:0e:8d:34: fa:98:d5:26:85:76:c1:cc:b6:c3:1f:96:1a:11:a8: 32:57:8d:ca:ec:80:18:39:34:3b:18:c6:9e:96:c0: 4f:db:a3:1e:e9:b2:e1:e2:14:05:21:12:d1:7a:56: 73:29:33:17:dc:4e:5f:08:4c:89:64:3e:12:45:b2: bd:c3:43:f4:be:49:b6:a1:73:c2:e1:09:44:51:88: cf:23:c3:14:27:24:68:a0:3b:62:5e:2a:bf:d5:b3: f0:f8:4b:c9:4f:21:07:a2:75:f6:91:65:5b:18:11: cf:50:db:3f:47:43:8f:21:99:e6:b5:0e:d4:83:0f: eb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:38:23:50:FA:D0:CA:2F:20:8B:31:06:ED:36:A2:DC:3C:B3:D6:CF X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b1:90:82:65:a7:12:7f:e5:1b:19:b7:d5:3b:7a:4f:82:3d: f8:39:de:cc:fa:71:3a:d3:76:ce:8c:1f:b2:8f:fb:6b:9c:6a: 45:a1:62:c4:a6:3c:0a:65:9a:a1:28:4f:88:39:b1:57:98:63: d9:71:2f:df:04:ee:d0:64:5e:ab:95:6d:e9:8d:4a:10:96:f6: 13:be:06:d4:7d:18:0a:72:9e:a7:0f:d7:e9:1a:55:1c:bd:52: 8a:c0:85:af:35:59:46:b1:7a:f2:5e:af:8d:04:5b:3b:ee:98: 87:e7:b3:28:e2:66:f9:70:64:70:41:e2:f2:7c:9c:9b:70:e5: 14:9c:ac:a2:2b:ae:4f:e6:0f:7a:ad:d7:c8:29:81:71:7f:76: d6:39:67:8f:8b:74:fb:86:05:60:a9:85:7e:00:9f:ea:e2:81: a1:5f:d6:5e:25:f9:4d:26:e6:9f:f9:e3:f6:4e:20:4a:bc:8f: ea:3b:73:e0:9b:49:ba:16:6b:4c:bb:fd:97:10:e5:a7:f4:60: 1c:9a:d8:ce:66:b6:92:07:64:b2:b7:92:64:0a:a5:b6:7a:ac: c6:e8:fe:08:2a:82:d6:d7:07:83:9f:dd:62:dd:ce:69:16:ef: 71:2d:34:8f:0b:19:dd:ce:31:5a:11:3f:ed:28:af:b6:2f:3a: c9:4a:a1:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjUwODIyMTkyMDE2WhcNMjUwODI5MTkyMDE2WjAYMRYwFAYD VQQDEw02OGE4YzJmMS1lMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA117j9f0zWfy1SBxoZBOYNUTCC/q1nPZcLjEYATLl8iiLP9vrzzM8XZTphi91 ppYlNKbPbwg2oe1hI+hABYIBsVPe6jmz0hJzsPYuK2DD4ZMpELkl+o4JcVaO9rzJ DxiB1Qe8ifEibe4ZaA8Qxg3Yaf5GaVIbiCIMaV3XRuDVQBcvL9QOjTT6mNUmhXbB zLbDH5YaEagyV43K7IAYOTQ7GMaelsBP26Me6bLh4hQFIRLRelZzKTMX3E5fCEyJ ZD4SRbK9w0P0vkm2oXPC4QlEUYjPI8MUJyRooDtiXiq/1bPw+EvJTyEHonX2kWVb GBHPUNs/R0OPIZnmtQ7Ugw/rowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI04I1D6 0MovIIsxBu02otw8s9bPMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKsZCCZacSf+UbGbfVO3pPgj34Od7M+nE603bOjB+yj/trnGpFoWLE pjwKZZqhKE+IObFXmGPZcS/fBO7QZF6rlW3pjUoQlvYTvgbUfRgKcp6nD9fpGlUc vVKKwIWvNVlGsXryXq+NBFs77piH57Mo4mb5cGRwQeLyfJybcOUUnKyiK65P5g96 rdfIKYFxf3bWOWePi3T7hgVgqYV+AJ/q4oGhX9ZeJflNJuaf+eP2TiBKvI/qO3Pg m0m6FmtMu/2XEOWn9GAcmtjOZraSB2Syt5JkCqW2eqzG6P4IKoLW1weDn91i3c5p Fu9xLTSPCxndzjFaET/tKK+2LzrJSqF6 -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:13 2025 by rpki-client