$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: c7YP00fxiKQooyxa9kR+u6V8qLz19NIYNbw08ukMjcA= Subject key identifier: 66:A4:17:87:A3:63:F7:24:D8:43:EA:57:BE:3F:8C:F9:09:BC:4F:39 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 34C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 34B9 Signing time: Fri 22 Aug 2025 15:09:33 +0000 Manifest this update: Fri 22 Aug 2025 15:09:33 +0000 Manifest next update: Fri 29 Aug 2025 15:09:33 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: Jsvka8wxzfECrtGxqdTeiH37QKp1dj7OKnhn0bsB0pc=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13508 (0x34c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Aug 22 15:09:33 2025 GMT Not After : Aug 29 15:09:33 2025 GMT Subject: CN=68a8882d-7cc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8f:32:1d:10:73:75:82:a5:da:13:38:7d:11: ef:2c:83:ef:27:7b:53:57:70:41:20:fe:1d:5c:70: 12:24:d5:18:d7:a8:ee:8e:1a:e9:e7:c6:2c:f7:ae: a5:af:fb:33:fa:69:1b:66:f6:d5:92:7a:c8:7b:70: f3:81:83:5c:5f:97:5c:37:72:44:ce:d9:21:0f:bd: 5e:10:82:62:1f:d3:52:a5:a2:f7:a3:79:cd:be:ee: 4b:62:1d:e3:c5:f0:0f:52:78:fe:b0:08:e3:c9:8a: 95:2d:35:8d:15:7b:17:52:81:ac:96:2d:d6:59:8d: 39:60:c6:43:d9:31:db:f7:95:d9:22:f8:20:18:fc: 4f:43:9e:e8:3d:a8:0a:da:c0:b2:43:98:75:e3:b0: b6:18:5d:18:f2:8e:f3:a3:10:54:95:f8:3c:a3:ee: ce:a6:6d:3d:24:7b:ac:dc:cc:37:64:73:a5:d8:59: 3c:ae:d8:a3:cf:12:25:40:12:08:62:57:85:af:42: cf:4c:e3:df:43:9a:82:83:c0:9b:b4:f5:0d:0a:5e: fb:66:56:54:ed:9c:1d:3a:4d:b7:ef:3a:d3:1b:30: 12:14:2f:06:5c:ec:88:99:3c:c6:6c:82:4e:50:36: 3e:fd:d5:d4:90:de:5f:d3:32:dd:57:d7:50:16:d6: cf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A4:17:87:A3:63:F7:24:D8:43:EA:57:BE:3F:8C:F9:09:BC:4F:39 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:15:b7:d7:d7:e7:aa:5d:c9:36:6b:c0:1e:5b:0b:bc:ce:af: 60:32:68:97:11:f9:31:0e:4d:d9:67:58:ba:da:9f:96:fc:b8: 12:5e:e6:5c:fe:73:d2:09:fa:57:10:f0:7a:6b:46:a2:16:48: 22:ed:99:ba:d5:5d:e0:cd:4d:b8:65:3f:c3:e4:9c:61:f2:7b: a4:d7:1b:ee:cb:48:ea:ec:9b:0f:f2:e2:24:4c:6f:a6:aa:40: 2e:37:ec:8d:5d:36:71:42:9b:ba:fb:24:f6:49:ff:49:ca:83: a4:ee:09:91:5e:3e:ae:cf:c9:72:f1:3c:55:50:cf:6d:b5:9e: d4:ec:29:79:17:32:4d:c3:4f:68:83:71:cd:69:51:3a:40:d3: 79:09:9e:f6:ad:e7:46:27:d4:48:a2:0b:db:54:b6:97:78:db: d3:4b:2d:c3:dd:a0:4b:12:d6:fb:15:5a:ad:1e:b5:06:53:9c: de:b7:14:1f:db:35:f3:47:7e:42:84:16:70:35:8a:6d:c3:3d: 94:a6:f4:b8:5d:2f:6f:d4:19:a1:1f:cf:c9:ab:22:9c:60:28: 95:6d:40:e0:5d:2c:97:c9:00:a2:7a:3b:36:b7:e6:d6:53:b8: 9f:b8:1c:32:a7:f3:5f:e9:e8:c7:24:8f:7a:3b:d4:0d:83:e4: f0:db:a8:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUwODIyMTUwOTMzWhcNMjUwODI5MTUwOTMzWjAYMRYwFAYD VQQDEw02OGE4ODgyZC03Y2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtI8yHRBzdYKl2hM4fRHvLIPvJ3tTV3BBIP4dXHASJNUY16jujhrp58Ys966l r/sz+mkbZvbVknrIe3DzgYNcX5dcN3JEztkhD71eEIJiH9NSpaL3o3nNvu5LYh3j xfAPUnj+sAjjyYqVLTWNFXsXUoGsli3WWY05YMZD2THb95XZIvggGPxPQ57oPagK 2sCyQ5h147C2GF0Y8o7zoxBUlfg8o+7Opm09JHus3Mw3ZHOl2Fk8rtijzxIlQBII YleFr0LPTOPfQ5qCg8CbtPUNCl77ZlZU7ZwdOk237zrTGzASFC8GXOyImTzGbIJO UDY+/dXUkN5f0zLdV9dQFtbPdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGakF4ej Y/ck2EPqV74/jPkJvE85MB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFFbfX1+eqXck2a8AeWwu8zq9gMmiXEfkxDk3ZZ1i62p+W/LgSXuZc /nPSCfpXEPB6a0aiFkgi7Zm61V3gzU24ZT/D5Jxh8nuk1xvuy0jq7JsP8uIkTG+m qkAuN+yNXTZxQpu6+yT2Sf9JyoOk7gmRXj6uz8ly8TxVUM9ttZ7U7Cl5FzJNw09o g3HNaVE6QNN5CZ72redGJ9RIogvbVLaXeNvTSy3D3aBLEtb7FVqtHrUGU5zetxQf 2zXzR35ChBZwNYptwz2UpvS4XS9v1BmhH8/JqyKcYCiVbUDgXSyXyQCiejs2t+bW U7ifuBwyp/Nf6ejHJI96O9QNg+Tw26jh -----END CERTIFICATE-----Generated at Sat Aug 23 16:42:26 2025 by rpki-client