$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: COoo+Yxbr1mi6gixh2HXkCfQfu7APrkjh5kalT9hUvI= Subject key identifier: 3C:D3:BF:F0:19:9B:CA:6B:C9:37:69:AC:59:4B:C3:CD:9C:4B:6A:6E Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: 88 Signing time: Tue 01 Jul 2025 07:15:21 +0000 Manifest this update: Tue 01 Jul 2025 07:15:21 +0000 Manifest next update: Tue 08 Jul 2025 07:15:21 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: M478yu57XxijQ67VjIVMghzCPmFuiNp8Mwy27fkYL3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Jul 1 07:15:21 2025 GMT Not After : Jul 8 07:15:21 2025 GMT Subject: CN=68638b09-d23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:48:a5:fa:88:a4:ba:d3:40:a7:a8:b2:45:9c: b6:d6:c0:27:28:4c:7e:62:7c:52:d6:0c:ad:77:1a: 58:70:b8:85:c1:c5:fa:0a:43:37:b5:55:38:82:b8: a5:e0:0b:63:6a:1b:62:79:c1:5d:16:fe:05:67:16: c5:43:95:63:50:30:4e:60:e5:de:32:1b:25:e1:de: 49:07:62:5c:e8:6e:fe:10:8e:69:15:c2:97:90:24: ce:51:15:d2:9b:aa:a5:f5:a3:51:e1:69:eb:e3:03: d4:48:63:96:36:e9:06:9a:fd:11:ea:62:7e:4b:11: 15:34:5b:f7:ce:60:f0:dd:22:9e:f6:7b:02:18:b6: 22:a8:5d:80:69:94:6f:c5:43:d5:ec:07:b5:30:f7: f5:69:a9:4a:ea:cd:b7:48:8b:e5:8e:8a:73:a0:b9: f8:13:71:f0:85:f9:53:45:19:1b:cf:5c:b1:da:e3: 78:0d:e7:2b:03:a6:ee:f3:e5:d2:b9:74:8e:7b:81: 56:1f:f5:82:e4:7e:2f:32:42:63:17:44:1d:8f:06: b8:89:39:5e:0d:34:30:73:97:c4:01:4c:9f:d8:95: 03:d1:57:fd:d7:4e:ba:98:3f:c7:da:16:c0:cf:59: f5:af:84:84:93:0d:e5:ca:56:cb:ba:52:44:4b:20: b7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D3:BF:F0:19:9B:CA:6B:C9:37:69:AC:59:4B:C3:CD:9C:4B:6A:6E X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:af:b8:6f:79:62:36:28:3d:f8:73:97:3b:a5:8f:9a:50:bc: fc:49:c9:78:0c:cb:fc:a7:c0:3f:c1:30:94:7d:c2:ae:29:49: c5:19:9b:ca:a3:73:74:04:7a:72:f9:f3:38:8f:e0:30:d3:3c: cd:b8:54:33:fe:ab:ea:8b:de:cb:09:e0:22:c6:b4:83:26:ed: 76:e7:ef:86:e5:08:45:a4:ea:31:85:92:4e:8e:02:38:69:da: 41:13:17:70:dc:d9:4b:6e:d5:f0:bc:f3:13:20:42:f2:c7:3e: d9:68:d0:5b:3b:4f:93:e4:e5:85:b4:f1:f3:85:c5:37:08:82: 56:eb:79:5d:6d:17:f5:5e:d1:2f:96:1e:92:e2:c1:29:d5:f5: c0:c8:03:d7:75:32:08:a3:ff:c8:7c:f8:fc:1b:a3:09:7d:5a: d1:90:7f:7c:7e:f1:25:2a:2e:aa:bb:4b:58:ae:08:aa:c5:af: 81:ac:c0:89:38:75:84:d5:37:cd:43:2b:47:5c:9f:01:68:9f: 3d:23:b7:b5:d9:53:14:d0:25:12:b2:ba:47:72:b9:1e:91:c3: 41:dd:08:5d:ec:e5:05:81:c8:0e:85:96:35:a7:75:55:29:74: 22:e8:4c:7d:7b:46:bc:62:f8:b4:37:67:c4:ce:71:c2:0f:89: a7:75:9a:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4QUQxMTAvBgNVBAUTKEQxMEMyMDk2RkI1REIzMDRBQkQyRjk5RjQ1QTI5NDg4 MjkyRDM3MjEwHhcNMjUwNzAxMDcxNTIxWhcNMjUwNzA4MDcxNTIxWjAYMRYwFAYD VQQDEw02ODYzOGIwOS1kMjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0il+oikutNAp6iyRZy21sAnKEx+YnxS1gytdxpYcLiFwcX6CkM3tVU4gril 4AtjahtiecFdFv4FZxbFQ5VjUDBOYOXeMhsl4d5JB2Jc6G7+EI5pFcKXkCTOURXS m6ql9aNR4Wnr4wPUSGOWNukGmv0R6mJ+SxEVNFv3zmDw3SKe9nsCGLYiqF2AaZRv xUPV7Ae1MPf1aalK6s23SIvljopzoLn4E3HwhflTRRkbz1yx2uN4DecrA6bu8+XS uXSOe4FWH/WC5H4vMkJjF0Qdjwa4iTleDTQwc5fEAUyf2JUD0Vf91066mD/H2hbA z1n1r4SEkw3lylbLulJESyC3/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzTv/AZ m8pryTdprFlLw82cS2puMB8GA1UdIwQYMBaAFNEMIJb7XbMEq9L5n0WilIgpLTch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjhBRC9ERUJBMjM4MDg2 QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3U3Iwdm1mUmFLVWlDa3RO eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjhBRC9ERUJBMjM4MDg2QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3 U3Iwdm1mUmFLVWlDa3ROeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfr7hveWI2KD34c5c7pY+aULz8Scl4DMv8p8A/wTCUfcKuKUnFGZvK o3N0BHpy+fM4j+Aw0zzNuFQz/qvqi97LCeAixrSDJu125++G5QhFpOoxhZJOjgI4 adpBExdw3NlLbtXwvPMTIELyxz7ZaNBbO0+T5OWFtPHzhcU3CIJW63ldbRf1XtEv lh6S4sEp1fXAyAPXdTIIo//IfPj8G6MJfVrRkH98fvElKi6qu0tYrgiqxa+BrMCJ OHWE1TfNQytHXJ8BaJ89I7e12VMU0CUSsrpHcrkekcNB3Qhd7OUFgcgOhZY1p3VV KXQi6Ex9e0a8Yvi0N2fEznHCD4mndZri -----END CERTIFICATE-----Generated at Thu Jul 3 06:12:51 2025 by rpki-client