$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: NUrgQOVfqsFCDEzf3tRQy5kqpgIdrGizxfijv3crsKM= Subject key identifier: 6E:54:FD:02:88:A9:EF:15:4F:E8:BE:F5:67:FD:D3:A9:03:36:20:07 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 061F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 061B Signing time: Fri 22 Aug 2025 22:58:13 +0000 Manifest this update: Fri 22 Aug 2025 22:58:13 +0000 Manifest next update: Fri 29 Aug 2025 22:58:13 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: 07MQROQR0PonB/XQuvDOqtSYQhILUE6xpYIeBlo/dAo=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: gGaPSZTXBZeyhBvTnRDrA4x3lhLiqzg2ne+ktqQeFQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Aug 22 22:58:13 2025 GMT Not After : Aug 29 22:58:13 2025 GMT Subject: CN=68a8f605-3f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:07:71:11:17:2e:55:a5:13:5e:db:74:ef:be: 9d:b1:1a:bf:d2:48:d9:71:62:51:2f:81:7b:85:d8: 04:c2:81:eb:ec:27:4a:0d:ef:a5:6c:26:c9:ec:53: 5d:76:09:28:23:19:6e:ad:2a:c4:42:c7:1f:62:ed: ef:4a:f8:60:cb:83:a6:22:84:f0:0d:8c:ce:d5:8e: 94:bd:b8:3c:f6:cf:b2:89:09:32:71:60:96:68:3e: 69:0f:1d:bc:26:75:1b:4d:e7:71:6f:94:4a:e7:33: eb:3a:f8:26:99:de:2c:9f:54:04:ec:fa:7d:25:79: ec:01:39:25:c8:eb:83:f9:37:b0:23:77:a4:03:63: e9:ee:06:b9:ca:44:ca:bb:7f:11:75:9e:ae:53:8a: b1:f9:24:96:95:64:7a:72:f4:ee:7e:17:33:cd:57: b8:a6:9d:60:5e:c5:85:06:7c:d9:e9:25:ec:e1:a6: ce:3c:a7:52:62:45:11:a0:1b:fd:d3:27:a3:5c:bf: 14:57:ca:df:79:a2:98:c0:3f:7f:21:4a:47:4c:73: b6:ff:29:d3:35:ce:79:04:94:d4:23:a0:bb:8c:bb: b8:9c:43:13:ad:7f:c6:49:8f:a2:cd:f8:cd:22:f8: c8:af:66:fc:a7:48:de:02:a1:2a:2a:90:a3:7b:c2: 2c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:54:FD:02:88:A9:EF:15:4F:E8:BE:F5:67:FD:D3:A9:03:36:20:07 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6b:f1:8e:4d:f8:7d:0e:a6:a4:01:4e:31:5d:6b:df:0b:36: 90:d4:be:6a:f1:ba:50:5d:f7:4a:35:29:70:28:f1:44:19:87: e5:b2:ed:c8:0d:b7:43:31:1d:35:02:b9:be:fc:77:29:dc:30: d0:80:3b:68:c4:a1:55:d1:64:b9:d5:9d:e2:11:0f:ff:56:4c: 9b:6c:e1:27:c9:60:d0:c2:2f:e4:66:09:5d:fa:dd:bd:8c:14: aa:ce:a6:b7:f5:1d:3b:50:95:fa:69:1b:59:03:bc:6c:f6:e5: 75:ed:c8:30:9c:85:16:2f:64:04:a5:31:0b:22:ad:c0:c7:83: 6a:02:48:9a:dd:8c:39:eb:3b:18:d4:8c:fd:38:e1:5e:b0:2f: ec:b7:35:c6:ff:5e:9d:20:54:22:d4:65:d6:ca:c4:91:e1:60: 81:b9:4a:56:54:cc:61:8d:8a:ab:d8:ee:5b:21:e4:14:c2:70: d8:6f:cc:d0:bd:bf:ab:cd:36:63:e3:c7:08:5a:7a:98:dc:ce: 6d:fa:6c:6c:ca:fd:4c:c7:bd:53:1d:e8:b0:7c:02:00:8f:96: 9c:81:1d:81:fb:31:01:6c:07:bc:bb:01:15:11:a4:02:28:51: 37:26:96:f6:8f:5d:29:77:54:e4:4b:fc:b9:df:64:49:9c:d4: d5:c2:b1:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUwODIyMjI1ODEzWhcNMjUwODI5MjI1ODEzWjAYMRYwFAYD VQQDEw02OGE4ZjYwNS0zZjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAdxERcuVaUTXtt0776dsRq/0kjZcWJRL4F7hdgEwoHr7CdKDe+lbCbJ7FNd dgkoIxlurSrEQscfYu3vSvhgy4OmIoTwDYzO1Y6Uvbg89s+yiQkycWCWaD5pDx28 JnUbTedxb5RK5zPrOvgmmd4sn1QE7Pp9JXnsATklyOuD+TewI3ekA2Pp7ga5ykTK u38RdZ6uU4qx+SSWlWR6cvTufhczzVe4pp1gXsWFBnzZ6SXs4abOPKdSYkURoBv9 0yejXL8UV8rfeaKYwD9/IUpHTHO2/ynTNc55BJTUI6C7jLu4nEMTrX/GSY+izfjN IvjIr2b8p0jeAqEqKpCje8IsawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5U/QKI qe8VT+i+9Wf906kDNiAHMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6a/GOTfh9DqakAU4xXWvfCzaQ1L5q8bpQXfdKNSlwKPFEGYflsu3I DbdDMR01Arm+/Hcp3DDQgDtoxKFV0WS51Z3iEQ//VkybbOEnyWDQwi/kZgld+t29 jBSqzqa39R07UJX6aRtZA7xs9uV17cgwnIUWL2QEpTELIq3Ax4NqAkia3Yw56zsY 1Iz9OOFesC/stzXG/16dIFQi1GXWysSR4WCBuUpWVMxhjYqr2O5bIeQUwnDYb8zQ vb+rzTZj48cIWnqY3M5t+mxsyv1Mx71THeiwfAIAj5acgR2B+zEBbAe8uwEVEaQC KFE3Jpb2j10pd1TkS/y532RJnNTVwrHs -----END CERTIFICATE-----Generated at Sat Aug 23 17:41:34 2025 by rpki-client