$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft File: 024QQmH4GdaND3C7Ka3-jvRjsu0.mft (raw, json) Hash identifier: R5FuiT3HnOrcX+a63wK0QEoRzXiiplYPMf8SqyPXXgg= Subject key identifier: 0D:5D:BD:A1:58:40:18:70:BE:E0:73:74:D0:EB:E4:4F:84:DB:B6:6D Authority key identifier: D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED Certificate issuer: /CN=A91B15DC/serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft Manifest number: 74 Signing time: Sat 23 Aug 2025 07:03:14 +0000 Manifest this update: Sat 23 Aug 2025 07:03:14 +0000 Manifest next update: Sat 30 Aug 2025 07:03:14 +0000 Files and hashes: 1: 024QQmH4GdaND3C7Ka3-jvRjsu0.crl (hash: Ysd97UpMiu6bnp1GQ8MTP1oPkRrqWwAWDbYXJb89220=) 2: 0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa (hash: BnzgVRQY1lWGd2cFrP1xnxB6cOmKQA86fc66ckx28mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Validity Not Before: Aug 23 07:03:14 2025 GMT Not After : Aug 30 07:03:14 2025 GMT Subject: CN=68a967b2-9a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3b:3c:6d:f0:86:ed:f7:1f:0c:b0:94:43:cb: 7e:9c:87:b0:d5:0a:c0:9b:1a:f3:8c:81:9e:81:ad: e9:97:19:f5:55:b5:7b:01:2e:8e:1b:63:c7:4d:b3: db:96:98:f2:13:ca:81:05:d2:51:3b:f7:fe:e6:01: c2:8b:6e:dc:ec:a4:d8:a4:41:24:3c:f3:d6:f8:b9: 24:11:f5:75:b1:f5:e1:6c:07:29:6f:8c:9d:fe:e2: ac:93:47:29:70:bd:76:f8:ab:c9:8e:8b:21:b7:c7: 75:51:2e:e3:60:ca:4d:6c:a9:aa:32:17:ec:cd:ec: c2:a5:07:35:e4:c4:11:59:9d:a5:39:2d:e4:f8:70: 33:0f:0a:ee:4b:9a:07:71:f9:89:ca:c6:42:f5:76: 56:cf:4c:38:91:60:20:80:bf:f8:41:a1:2d:91:47: 93:ce:f0:ad:49:8a:39:7c:a5:f4:c2:a4:b2:58:52: 18:26:f5:4b:25:f6:f8:a5:44:8c:72:2b:77:0b:82: 20:0d:ac:57:23:c3:b7:79:79:0e:36:a4:81:6e:3c: 53:e2:40:f6:30:ed:ee:a8:69:71:88:d6:0f:cb:11: ba:de:5d:76:c5:69:15:b8:26:f2:9b:29:2c:0e:52: e2:64:db:8a:dc:e6:08:ad:1c:94:e5:8c:58:62:32: 6a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5D:BD:A1:58:40:18:70:BE:E0:73:74:D0:EB:E4:4F:84:DB:B6:6D X509v3 Authority Key Identifier: keyid:D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:03:78:c2:56:ff:ce:c9:04:04:ca:55:ad:14:b4:08:60:4c: 11:9b:ff:e8:27:e1:97:fb:d0:ad:10:1d:1c:c6:23:26:33:80: 98:fc:8f:54:c6:bb:a7:9d:f2:7b:71:35:02:6f:90:d6:65:4e: d8:91:2f:d5:80:ca:70:db:5b:7a:e4:14:6b:74:87:3c:4f:c1: 17:02:4f:a7:90:c9:cc:da:ec:78:76:fd:32:ba:c6:1a:88:17: 39:98:c7:b5:0d:98:63:69:27:95:5d:b4:bb:f7:b0:62:44:a6: 02:68:4d:e6:89:8c:b7:f3:17:8f:52:a5:7e:7d:48:ad:20:6a: 57:b9:94:4d:ba:32:bb:6b:50:89:f1:e2:55:7c:ed:e3:98:51: 20:af:d3:76:35:d8:a0:59:1e:d9:32:69:8b:e7:63:54:40:9a: ff:86:f8:99:4c:bc:0b:e3:5b:f5:1f:77:67:ff:dd:76:a4:27: 7d:5c:fe:a9:78:75:ef:b6:99:5d:d7:e3:23:38:7a:29:cb:b3: 7d:3f:1e:07:14:85:02:da:04:d0:fe:37:6e:a3:4e:46:6b:4c: e8:db:e3:30:5d:9b:8f:01:98:c1:9b:7b:1f:7c:c1:59:4b:b9: 57:f5:43:5b:5f:7c:23:62:1f:df:57:18:ac:f4:56:78:0e:cc: 4c:c8:1c:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoRDM2RTEwNDI2MUY4MTlENjhEMEY3MEJCMjlBREZFOEVG NDYzQjJFRDAeFw0yNTA4MjMwNzAzMTRaFw0yNTA4MzAwNzAzMTRaMBgxFjAUBgNV BAMTDTY4YTk2N2IyLTlhNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCOzxt8Ibt9x8MsJRDy36ch7DVCsCbGvOMgZ6BremXGfVVtXsBLo4bY8dNs9uW mPITyoEF0lE79/7mAcKLbtzspNikQSQ889b4uSQR9XWx9eFsBylvjJ3+4qyTRylw vXb4q8mOiyG3x3VRLuNgyk1sqaoyF+zN7MKlBzXkxBFZnaU5LeT4cDMPCu5Lmgdx +YnKxkL1dlbPTDiRYCCAv/hBoS2RR5PO8K1Jijl8pfTCpLJYUhgm9Usl9vilRIxy K3cLgiANrFcjw7d5eQ42pIFuPFPiQPYw7e6oaXGI1g/LEbreXXbFaRW4JvKbKSwO UuJk24rc5gitHJTljFhiMmqzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDV29oVhA GHC+4HN00OvkT4Tbtm0wHwYDVR0jBBgwFoAU024QQmH4GdaND3C7Ka3+jvRjsu0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzRGRUMxQzA0Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyLzAyNFFRbUg0R2RhTkQzQzdLYTMtanZSanN1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDI0UVFtSDRHZGFORDNDN0thMy1qdlJqc3UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzRGRUMxQzA0Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyLzAyNFFRbUg0R2Rh TkQzQzdLYTMtanZSanN1MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ8DeMJW/87JBATKVa0UtAhgTBGb/+gn4Zf70K0QHRzGIyYzgJj8j1TG u6ed8ntxNQJvkNZlTtiRL9WAynDbW3rkFGt0hzxPwRcCT6eQycza7Hh2/TK6xhqI FzmYx7UNmGNpJ5VdtLv3sGJEpgJoTeaJjLfzF49SpX59SK0gale5lE26MrtrUInx 4lV87eOYUSCv03Y12KBZHtkyaYvnY1RAmv+G+JlMvAvjW/Ufd2f/3XakJ31c/ql4 de+2mV3X4yM4einLs30/HgcUhQLaBND+N26jTkZrTOjb4zBdm48BmMGbex98wVlL uVf1Q1tffCNiH99XGKz0VngOzEzIHBU= -----END CERTIFICATE-----Generated at Sat Aug 23 13:52:42 2025 by rpki-client