$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: eR5aNBeF6uWTWnBX85AfYjJrAW48K817wZ4nhMu3ev0= Subject key identifier: C1:54:96:B8:F8:0E:A2:BF:18:7E:05:BB:81:A9:A0:4C:EC:3B:50:87 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0172 Signing time: Sat 23 Aug 2025 03:54:43 +0000 Manifest this update: Sat 23 Aug 2025 03:54:43 +0000 Manifest next update: Sat 30 Aug 2025 03:54:43 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: FTIW54UFBb4EYEMm28ZPBN3rXNSmd5alfQhnjWOcOxA=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Aug 23 03:54:43 2025 GMT Not After : Aug 30 03:54:43 2025 GMT Subject: CN=68a93b83-7ddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0b:ff:02:79:46:fd:ac:f9:b5:f2:75:ed:0b: cb:2f:ce:a3:91:8f:72:d8:23:ad:3f:ac:df:57:79: e3:42:2a:6b:89:8c:5c:36:0e:ca:8f:35:85:f0:78: 0b:5d:56:4d:b8:c0:19:e1:9e:dd:7b:48:fa:34:13: 14:e8:e9:29:b9:dd:44:dd:47:0b:6a:7d:20:5c:14: cf:0d:4e:f1:c5:34:d6:52:59:76:f1:74:c2:5a:80: 6d:7b:97:00:ec:ad:3b:25:e2:d0:da:7e:db:d8:d6: 76:27:fe:7c:0a:6d:6f:88:d5:63:eb:02:19:64:d5: db:e5:d0:e2:be:92:71:f7:a3:78:ab:86:96:f7:f6: 1b:36:86:ce:19:c4:1d:0c:21:31:14:d1:81:aa:36: f2:3f:79:f7:6a:22:00:d3:d8:4c:a4:90:38:99:4d: c4:0c:4f:93:c8:2d:35:29:c3:92:a5:a1:70:61:42: 15:fc:d1:c3:4d:7a:f8:ce:a8:7c:e1:81:4f:f6:ad: 8d:1a:f8:90:ca:99:32:89:65:9d:c5:ab:ab:0a:56: cf:d8:c5:51:2e:dc:9a:ae:23:da:4f:e0:34:3c:eb: 20:9f:62:43:fa:34:d7:67:49:c1:f7:83:5a:39:51: 5e:12:9c:d9:28:09:18:ed:f7:25:fb:0f:6a:36:4b: d9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:54:96:B8:F8:0E:A2:BF:18:7E:05:BB:81:A9:A0:4C:EC:3B:50:87 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:20:0d:1b:78:2d:bc:c6:50:fa:dc:cf:a1:de:9f:63:12:7b: a1:02:e9:ca:81:a6:41:be:d1:eb:76:fd:07:b0:1e:bf:40:f0: 99:98:64:21:db:45:1b:e0:e8:67:ea:36:84:60:59:ba:69:d7: cc:f8:4b:a7:f6:4f:74:4a:c6:9d:bd:36:15:b6:01:cb:95:ad: 1f:e8:d5:b0:f7:30:f1:f9:1f:69:42:84:d4:d8:bf:b8:ec:dd: 24:d8:88:61:cc:3f:56:16:48:f7:70:0a:44:60:39:93:e0:d2: f6:aa:1b:35:d2:d1:83:f8:f0:f4:08:03:f6:21:78:77:d6:10: 79:8d:6d:e6:b0:84:a4:77:19:20:f9:20:24:83:95:71:bf:30: f2:e1:7a:8d:b6:4b:5a:06:54:65:0a:95:91:8f:61:9c:26:35: f4:5a:80:e0:57:51:05:15:f6:5d:d1:68:da:24:51:2c:ef:05: b7:ea:70:ad:b1:60:f9:13:db:e1:e4:57:98:b1:51:fa:8a:ed: ae:15:c6:f1:fb:af:b5:36:8d:85:8b:05:20:b7:ec:e0:df:0d: 5a:5a:24:7d:b2:76:24:05:42:4b:8d:43:8c:85:68:1a:af:a8: 02:d2:ee:8f:66:a2:5a:5a:e5:04:ce:c8:4d:68:04:7a:01:9e: 09:18:97:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwODIzMDM1NDQzWhcNMjUwODMwMDM1NDQzWjAYMRYwFAYD VQQDEw02OGE5M2I4My03ZGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwv/AnlG/az5tfJ17QvLL86jkY9y2COtP6zfV3njQipriYxcNg7KjzWF8HgL XVZNuMAZ4Z7de0j6NBMU6Okpud1E3UcLan0gXBTPDU7xxTTWUll28XTCWoBte5cA 7K07JeLQ2n7b2NZ2J/58Cm1viNVj6wIZZNXb5dDivpJx96N4q4aW9/YbNobOGcQd DCExFNGBqjbyP3n3aiIA09hMpJA4mU3EDE+TyC01KcOSpaFwYUIV/NHDTXr4zqh8 4YFP9q2NGviQypkyiWWdxaurClbP2MVRLtyariPaT+A0POsgn2JD+jTXZ0nB94Na OVFeEpzZKAkY7fcl+w9qNkvZPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFUlrj4 DqK/GH4Fu4GpoEzsO1CHMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOIA0beC28xlD63M+h3p9jEnuhAunKgaZBvtHrdv0HsB6/QPCZmGQh 20Ub4Ohn6jaEYFm6adfM+Eun9k90SsadvTYVtgHLla0f6NWw9zDx+R9pQoTU2L+4 7N0k2IhhzD9WFkj3cApEYDmT4NL2qhs10tGD+PD0CAP2IXh31hB5jW3msISkdxkg +SAkg5VxvzDy4XqNtktaBlRlCpWRj2GcJjX0WoDgV1EFFfZd0WjaJFEs7wW36nCt sWD5E9vh5FeYsVH6iu2uFcbx+6+1No2FiwUgt+zg3w1aWiR9snYkBUJLjUOMhWga r6gC0u6PZqJaWuUEzshNaAR6AZ4JGJf7 -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:58 2025 by rpki-client