$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft File: _10TK8Zqqiu89lw-X-iaDDcdizo.mft (raw, json) Hash identifier: X2FwfKobJv+NWzS/QbOI6N6i7m9xJb1U3zoiHetoZiE= Subject key identifier: DD:A4:29:5B:DA:C0:42:62:4C:C2:88:7E:8C:4B:F8:83:5E:71:CA:02 Authority key identifier: FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A Certificate issuer: /CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft Manifest number: 020E Signing time: Sat 23 Aug 2025 02:18:42 +0000 Manifest this update: Sat 23 Aug 2025 02:18:42 +0000 Manifest next update: Sat 30 Aug 2025 02:18:42 +0000 Files and hashes: 1: _10TK8Zqqiu89lw-X-iaDDcdizo.crl (hash: 6N9mkCf2iGXWs6uiUFvhQze3C/iAPHfyL5GqaTtIfLA=) 2: 064042F259F511EDB22E3F2BC4F9AE02.roa (hash: JoMqVSrjZm4JfXMaz6xrPhG5LHTOXjmhXw4j9hZGE8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FA7, serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Validity Not Before: Aug 23 02:18:42 2025 GMT Not After : Aug 30 02:18:42 2025 GMT Subject: CN=68a92502-d0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a4:0d:dd:32:c4:13:15:b6:60:bc:22:2f:07: 32:fc:8c:c8:41:76:d2:e7:2d:52:56:c4:d1:01:5e: 20:0a:75:ae:89:52:24:ab:13:8b:da:3d:70:fb:81: c9:b4:62:54:f5:38:2f:97:b2:e2:5a:14:e1:2f:e7: 01:03:ce:de:b5:f0:1a:0c:fb:41:10:4c:ee:61:96: 97:c7:93:64:9d:63:d5:75:62:31:38:ab:f6:1b:29: ee:c1:cb:f1:a8:17:56:51:dd:1c:43:ef:12:2c:cd: 4f:86:3d:fd:57:f0:c3:7a:c8:06:ac:3b:a9:a0:3a: 43:fd:5b:5d:32:13:ea:d8:98:fa:e1:92:04:ca:0c: 6a:1c:3e:2b:69:51:53:45:66:c0:ec:15:55:87:9a: 10:56:fb:ed:5d:8d:d1:07:c3:7b:67:26:5b:9c:25: 96:80:9b:d9:48:07:b8:20:42:bc:53:15:05:9a:1a: d9:b5:b5:7b:69:de:d1:79:52:ac:cb:f8:cd:64:63: 67:fd:d8:90:83:fa:42:37:7d:f1:1d:af:ba:62:f0: 89:57:67:5e:4b:bd:bc:29:b5:cc:7d:b4:f9:b3:14: 7d:6f:1f:4e:7d:4b:84:92:ff:e8:3d:27:38:bc:48: 6f:6a:dd:fa:89:ff:90:9c:6a:3c:90:05:b1:13:c5: b9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A4:29:5B:DA:C0:42:62:4C:C2:88:7E:8C:4B:F8:83:5E:71:CA:02 X509v3 Authority Key Identifier: keyid:FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:78:da:39:d1:ef:12:db:9f:4b:a1:89:83:20:16:a6:93:ae: 55:31:f4:fa:6b:22:f7:08:b6:bd:66:05:16:69:cf:a7:11:21: 79:9d:c8:d1:dd:68:32:71:0c:38:53:a3:38:83:ef:30:43:ed: 1d:98:5e:c8:e7:19:c5:ac:93:b7:19:a8:8a:35:10:c4:56:e5: c0:3a:25:bc:04:9e:95:c7:7c:f5:67:2d:8d:68:b2:62:72:a8: c0:ac:f5:94:5d:b8:77:00:76:e8:04:c0:63:9c:19:87:30:1b: 46:c2:97:43:ea:ed:5a:e5:a1:b4:81:5d:57:c4:aa:ef:b8:47: 72:7d:47:70:66:f0:5a:cf:2b:8a:9d:03:fe:78:ac:9f:28:5e: 9c:4d:8e:fe:21:1d:c9:fa:9c:b6:3f:9b:55:14:52:9f:86:f1: 7c:98:5c:ac:e0:af:d0:64:05:93:3e:5a:ec:83:96:19:3b:0a: f9:c7:e9:6d:ff:16:7e:51:22:52:e9:1f:92:9f:3b:a7:78:8f: 04:09:bf:c4:c5:84:9a:fa:50:18:fc:38:b0:0b:0e:f1:cb:33: 80:94:7e:b8:a1:1a:26:69:cb:89:08:01:43:9a:e9:c6:1f:c5: 4e:21:85:29:67:e5:04:8c:2f:cb:1d:fa:c2:95:32:30:ae:06: 41:4b:04:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQTcxMTAvBgNVBAUTKEZGNUQxMzJCQzY2QUFBMkJCQ0Y2NUMzRTVGRTg5QTBD MzcxRDhCM0EwHhcNMjUwODIzMDIxODQyWhcNMjUwODMwMDIxODQyWjAYMRYwFAYD VQQDEw02OGE5MjUwMi1kMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6QN3TLEExW2YLwiLwcy/IzIQXbS5y1SVsTRAV4gCnWuiVIkqxOL2j1w+4HJ tGJU9Tgvl7LiWhThL+cBA87etfAaDPtBEEzuYZaXx5NknWPVdWIxOKv2Gynuwcvx qBdWUd0cQ+8SLM1Phj39V/DDesgGrDupoDpD/VtdMhPq2Jj64ZIEygxqHD4raVFT RWbA7BVVh5oQVvvtXY3RB8N7ZyZbnCWWgJvZSAe4IEK8UxUFmhrZtbV7ad7ReVKs y/jNZGNn/diQg/pCN33xHa+6YvCJV2deS728KbXMfbT5sxR9bx9OfUuEkv/oPSc4 vEhvat36if+QnGo8kAWxE8W5nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2kKVva wEJiTMKIfoxL+INeccoCMB8GA1UdIwQYMBaAFP9dEyvGaqorvPZcPl/omgw3HYs6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZBNy8yRDk5MUNEMDU5 OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFpdTg5bHctWC1pYUREY2Rp em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18xMFRLOFpxcWl1ODlsdy1YLWlhRERjZGl6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZBNy8yRDk5MUNEMDU5OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFp dTg5bHctWC1pYUREY2Rpem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjeNo50e8S259LoYmDIBamk65VMfT6ayL3CLa9ZgUWac+nESF5ncjR 3WgycQw4U6M4g+8wQ+0dmF7I5xnFrJO3GaiKNRDEVuXAOiW8BJ6Vx3z1Zy2NaLJi cqjArPWUXbh3AHboBMBjnBmHMBtGwpdD6u1a5aG0gV1XxKrvuEdyfUdwZvBazyuK nQP+eKyfKF6cTY7+IR3J+py2P5tVFFKfhvF8mFys4K/QZAWTPlrsg5YZOwr5x+lt /xZ+USJS6R+SnzuneI8ECb/ExYSa+lAY/DiwCw7xyzOAlH64oRomacuJCAFDmunG H8VOIYUpZ+UEjC/LHfrClTIwrgZBSwTr -----END CERTIFICATE-----Generated at Sat Aug 23 19:27:04 2025 by rpki-client