$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft File: DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft (raw, json) Hash identifier: TxvEG6UHjPx/wBoG5G2PYpqt1zr9aNAntqcLuvWiLUQ= Subject key identifier: 1A:50:B1:93:C2:8C:01:EB:A6:B0:81:93:4D:4C:15:C9:52:30:0B:91 Authority key identifier: 0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 Certificate issuer: /CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft Manifest number: BF Signing time: Sat 23 Aug 2025 06:13:01 +0000 Manifest this update: Sat 23 Aug 2025 06:13:00 +0000 Manifest next update: Sat 30 Aug 2025 06:13:00 +0000 Files and hashes: 1: DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl (hash: 8qEPOrYXshktRmVsACeXZB9OTOTtcfIjWLtxyeS1HuE=) 2: 6E7D3C16816811EF99DD7787C4F9AE02.roa (hash: GJjFHlhUrw3PK9n6h+pqP/cBSWFV8op0nahH1r+sT6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA96A, serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Validity Not Before: Aug 23 06:13:00 2025 GMT Not After : Aug 30 06:13:00 2025 GMT Subject: CN=68a95bec-7937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:01:32:fb:27:03:8c:e3:c9:09:60:8d:6d:d5: 7b:3f:78:40:db:ae:53:4b:a5:aa:3e:8a:2c:dd:1b: e0:43:40:bd:15:d1:ee:f0:7f:46:a4:38:ed:b6:89: 65:79:ac:bb:82:b7:65:5c:c2:55:02:94:5e:bf:b4: 44:9e:6d:97:08:69:cf:56:01:3d:15:61:06:54:09: 1a:2b:fc:2b:37:e5:50:a9:9d:25:eb:d3:98:43:83: 6c:a8:1e:01:36:cb:b4:e2:ab:b0:ac:b9:0b:92:a4: b7:eb:08:4a:18:c7:69:c5:54:3c:f6:dd:a6:1f:4a: 8a:37:fa:fc:3c:0a:dc:18:fe:2e:6e:09:67:b5:fe: 4f:05:d0:6b:de:5f:ff:bf:9b:aa:a8:5f:4d:05:5d: e5:33:a5:b2:ba:1b:e0:ad:db:4c:5d:77:ea:83:7d: f1:5c:03:88:a3:c8:9d:e3:2c:e0:51:9f:1a:74:99: 7b:98:05:09:86:24:2f:f1:81:aa:20:31:d9:7a:d9: 2a:7d:8d:2b:f6:0c:d9:6f:1c:95:4e:5e:d5:46:6d: 40:92:eb:57:65:3b:b5:40:d6:bb:f6:56:68:40:b7: 27:c5:1f:59:8c:8d:42:d0:77:64:1b:4f:ce:87:7f: 28:59:e9:df:47:eb:ff:0c:6a:c7:91:5a:55:9c:ec: 83:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:50:B1:93:C2:8C:01:EB:A6:B0:81:93:4D:4C:15:C9:52:30:0B:91 X509v3 Authority Key Identifier: keyid:0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:5e:c1:f6:00:ce:bd:17:27:f5:43:48:8b:39:ec:10:01:71: 03:d2:59:ef:70:f5:7a:73:3d:f0:d7:9e:5d:2d:86:d0:dc:c9: 1b:66:60:78:62:7a:84:44:00:25:2a:5f:ac:c2:86:b1:f0:3e: cb:cf:c0:8e:97:e4:d3:b9:7d:63:71:d7:cd:75:25:ca:70:77: ef:07:00:15:ea:69:64:1e:8a:87:73:3e:cc:fa:d5:a2:df:98: ac:d4:11:e7:3a:7e:33:11:ac:13:9d:6c:71:3b:33:26:cb:07: 56:c7:53:9e:07:e6:65:87:9f:bf:83:db:79:59:39:fa:69:cc: cb:15:3f:63:cf:de:a1:ac:6a:a4:76:65:fa:53:d5:d2:48:2e: 79:8b:f6:cb:6e:aa:fe:8e:d8:2c:e0:0d:b9:17:30:d6:6c:17: fe:1c:66:df:d2:93:08:0e:cc:c4:48:54:43:57:93:9b:39:b8: bc:4b:44:91:51:4b:b6:00:b7:d0:e1:f5:e3:8d:b9:de:dd:5a: 82:23:44:8a:f4:fa:92:b6:0f:62:02:a2:f0:a1:11:2e:8b:55: 75:67:1f:7d:0d:bb:d8:ec:64:8d:73:2c:51:1a:9b:42:df:4f: 3b:0f:3b:4d:ad:ad:46:e1:88:8c:06:a3:97:4f:8e:32:1a:5c: 78:60:f0:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE5NkExMTAvBgNVBAUTKDBDREQ1MDU4MzJFQThDOUE0RDIzQjEwNjM3MjAxRDc5 NDI5NTY0QzAwHhcNMjUwODIzMDYxMzAwWhcNMjUwODMwMDYxMzAwWjAYMRYwFAYD VQQDEw02OGE5NWJlYy03OTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQEy+ycDjOPJCWCNbdV7P3hA265TS6WqPoos3RvgQ0C9FdHu8H9GpDjttoll eay7grdlXMJVApRev7REnm2XCGnPVgE9FWEGVAkaK/wrN+VQqZ0l69OYQ4NsqB4B Nsu04quwrLkLkqS36whKGMdpxVQ89t2mH0qKN/r8PArcGP4ubglntf5PBdBr3l// v5uqqF9NBV3lM6WyuhvgrdtMXXfqg33xXAOIo8id4yzgUZ8adJl7mAUJhiQv8YGq IDHZetkqfY0r9gzZbxyVTl7VRm1AkutXZTu1QNa79lZoQLcnxR9ZjI1C0HdkG0/O h38oWenfR+v/DGrHkVpVnOyDWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpQsZPC jAHrprCBk01MFclSMAuRMB8GA1UdIwQYMBaAFAzdUFgy6oyaTSOxBjcgHXlClWTA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTk2QS9ENEMxNjg4MjZB NkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpKcE5JN0VHTnlBZGVVS1Za TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROMVFXRExxakpwTkk3RUdOeUFkZVVLVlpNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTk2QS9ENEMxNjg4MjZBNkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpK cE5JN0VHTnlBZGVVS1ZaTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGXsH2AM69Fyf1Q0iLOewQAXED0lnvcPV6cz3w155dLYbQ3MkbZmB4 YnqERAAlKl+swoax8D7Lz8COl+TTuX1jcdfNdSXKcHfvBwAV6mlkHoqHcz7M+tWi 35is1BHnOn4zEawTnWxxOzMmywdWx1OeB+Zlh5+/g9t5WTn6aczLFT9jz96hrGqk dmX6U9XSSC55i/bLbqr+jtgs4A25FzDWbBf+HGbf0pMIDszESFRDV5ObObi8S0SR UUu2ALfQ4fXjjbne3VqCI0SK9PqStg9iAqLwoREui1V1Zx99DbvY7GSNcyxRGptC 3087DztNra1G4YiMBqOXT44yGlx4YPCC -----END CERTIFICATE-----Generated at Sat Aug 23 15:17:09 2025 by rpki-client