$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft File: qkHKgdI-9YhhkyqtErMWkNvPEAM.mft (raw, json) Hash identifier: K8hXEiSbfvUGsinJory+Yhjnu158ztDsTYYTbEZBSxo= Subject key identifier: 33:1C:09:24:4D:7C:57:41:7B:7F:C7:93:8D:D0:02:A2:E8:77:8A:C0 Authority key identifier: AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 Certificate issuer: /CN=A91A5744/serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Certificate serial: 0C6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft Manifest number: 0C69 Signing time: Fri 22 Aug 2025 18:30:09 +0000 Manifest this update: Fri 22 Aug 2025 18:30:09 +0000 Manifest next update: Fri 29 Aug 2025 18:30:09 +0000 Files and hashes: 1: qkHKgdI-9YhhkyqtErMWkNvPEAM.crl (hash: 3uBoPPDGEcmnTUCjkeqohyOk/OxNLeX+Hfkh9W/beBE=) 2: 220DBB66054011EA90A20C7EC4F9AE02.roa (hash: l5CGLlauMb+Ni/lNc+v9jsE4+D1HZp9e9rAFpWt3fHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3182 (0xc6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5744, serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Validity Not Before: Aug 22 18:30:09 2025 GMT Not After : Aug 29 18:30:09 2025 GMT Subject: CN=68a8b731-fa10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:91:10:83:9e:58:c4:0e:31:44:ba:0e:cb:95: 2d:d1:b9:d4:a5:e7:d0:fe:d9:bc:20:22:8d:97:c4: 68:c8:1e:d4:ca:19:f6:72:91:18:55:46:67:0e:98: f8:44:89:58:82:84:31:ef:fe:13:c1:5f:24:c2:fa: 4d:38:db:b8:63:7c:4f:71:31:9b:3e:1a:7f:be:de: 88:da:43:5e:09:de:8d:f0:6d:f8:3f:91:ed:52:62: 17:98:a2:93:e3:bf:30:de:b2:11:33:34:fb:67:23: bf:6a:e0:00:8d:17:92:f7:05:db:54:a7:e9:e4:32: 6f:4e:b2:79:d9:59:75:ae:8c:61:ea:b4:76:ae:1c: 46:99:03:ee:cd:e8:de:77:7e:5c:ea:40:d1:89:4f: 3a:d9:08:ea:c8:8c:2c:c8:9f:3d:55:52:2d:8f:78: 2c:7b:80:0f:28:fb:8b:37:42:ee:60:61:f9:cc:23: 7e:0b:dc:94:b4:46:28:eb:23:43:1e:ef:89:3f:a9: 92:8d:30:d9:3b:20:f9:57:f1:fa:b5:ab:36:03:b4: 9c:a2:ec:fa:c0:8f:85:57:bb:47:90:4b:65:10:68: 69:9d:be:9c:cd:c8:1d:74:53:05:f0:b0:52:dc:df: 42:22:32:b0:d1:3d:03:d8:d4:53:3b:87:dc:51:c1: 32:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:1C:09:24:4D:7C:57:41:7B:7F:C7:93:8D:D0:02:A2:E8:77:8A:C0 X509v3 Authority Key Identifier: keyid:AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:b0:f4:30:34:5f:86:a5:4e:b9:aa:97:79:11:aa:c2:bc:68: cb:20:8f:df:03:ae:c5:23:2c:54:fa:ad:65:12:e8:c8:82:ba: a9:7b:3b:75:5b:3c:b0:3e:8b:7e:93:72:03:1c:24:e0:57:70: cc:57:32:86:40:4b:93:21:50:cc:ee:03:b0:5e:78:09:6e:fb: e6:d3:9b:05:76:6e:92:7a:3d:6b:20:9a:17:ec:50:e7:a6:f2: b8:d3:8e:71:42:19:e5:ad:12:a5:48:88:eb:7d:c5:fa:4d:a9: 7d:61:32:fd:3e:5f:08:48:4f:9d:ef:5c:49:f3:f0:ba:10:2e: 32:e2:7c:7b:26:25:bc:51:59:f4:a0:52:61:8f:43:44:09:c3: e7:ee:05:68:ab:ea:6b:a8:0d:5e:18:99:9d:40:50:75:04:e5: aa:f2:13:4a:65:73:44:ff:0c:2d:03:ce:3a:fb:ba:c1:3b:9b: ed:66:25:70:51:7a:ed:7f:8b:df:7d:e4:b4:d3:9f:59:3d:85: 97:5e:c6:73:28:80:0f:d4:dc:bc:fa:9f:61:f3:4d:e3:35:2c: 63:82:5f:75:c8:48:eb:49:42:c6:c5:fe:4d:9a:d7:c4:98:7a: 79:bd:2b:13:c7:c1:f7:85:c0:30:81:18:9c:73:9c:c6:ba:84: 22:0d:c6:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3NDQxMTAvBgNVBAUTKEFBNDFDQTgxRDIzRUY1ODg2MTkzMkFBRDEyQjMxNjkw REJDRjEwMDMwHhcNMjUwODIyMTgzMDA5WhcNMjUwODI5MTgzMDA5WjAYMRYwFAYD VQQDEw02OGE4YjczMS1mYTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZEQg55YxA4xRLoOy5Ut0bnUpefQ/tm8ICKNl8RoyB7Uyhn2cpEYVUZnDpj4 RIlYgoQx7/4TwV8kwvpNONu4Y3xPcTGbPhp/vt6I2kNeCd6N8G34P5HtUmIXmKKT 478w3rIRMzT7ZyO/auAAjReS9wXbVKfp5DJvTrJ52Vl1roxh6rR2rhxGmQPuzeje d35c6kDRiU862QjqyIwsyJ89VVItj3gse4APKPuLN0LuYGH5zCN+C9yUtEYo6yND Hu+JP6mSjTDZOyD5V/H6tas2A7Scouz6wI+FV7tHkEtlEGhpnb6czcgddFMF8LBS 3N9CIjKw0T0D2NRTO4fcUcEy5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMcCSRN fFdBe3/Hk43QAqLod4rAMB8GA1UdIwQYMBaAFKpByoHSPvWIYZMqrRKzFpDbzxAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTc0NC8zOTdGNkNENDA1 MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZaGhreXF0RXJNV2tOdlBF QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrSEtnZEktOVloaGt5cXRFck1Xa052UEVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTc0NC8zOTdGNkNENDA1MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZ aGhreXF0RXJNV2tOdlBFQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKsPQwNF+GpU65qpd5EarCvGjLII/fA67FIyxU+q1lEujIgrqpezt1 WzywPot+k3IDHCTgV3DMVzKGQEuTIVDM7gOwXngJbvvm05sFdm6Sej1rIJoX7FDn pvK4045xQhnlrRKlSIjrfcX6Tal9YTL9Pl8ISE+d71xJ8/C6EC4y4nx7JiW8UVn0 oFJhj0NECcPn7gVoq+prqA1eGJmdQFB1BOWq8hNKZXNE/wwtA846+7rBO5vtZiVw UXrtf4vffeS0059ZPYWXXsZzKIAP1Ny8+p9h803jNSxjgl91yEjrSULGxf5NmtfE mHp5vSsTx8H3hcAwgRicc5zGuoQiDcZP -----END CERTIFICATE-----Generated at Sat Aug 23 20:34:29 2025 by rpki-client