$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: vLEVyBB02RwleRp6otghCv22bIlNEFsSPi3+JE8ul68= Subject key identifier: 08:9A:1F:07:7D:57:7B:29:79:07:D2:A0:FA:87:06:D1:1C:4F:0D:2C Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B3F Signing time: Fri 22 Aug 2025 19:19:56 +0000 Manifest this update: Fri 22 Aug 2025 19:19:56 +0000 Manifest next update: Fri 29 Aug 2025 19:19:56 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: n8ZoIm5dawk8y0ZNMJqLf7m2nJdGpvJyDxc7kWzPP4c=) 2: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: gD5Iq8akoAlTIS4ryMBL5JIYOH1ViK0S3xNtIRVVfYc=) 3: 74CA44AA049F11F087661234C4F9AE02.roa (hash: 2OIryrqTJwARaXm6rXTbRJKfK80d24FVCzeiupTYqAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Aug 22 19:19:56 2025 GMT Not After : Aug 29 19:19:56 2025 GMT Subject: CN=68a8c2dc-4a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:69:71:90:9d:11:69:1e:59:c1:ab:b9:8d:cf: 0a:fb:49:d5:77:90:82:a6:8f:f4:ee:7a:ea:b5:53: 87:3e:55:96:8a:79:a7:a3:4b:a1:6c:dc:ab:f3:67: c3:2b:28:bd:f5:ad:d0:30:ed:ac:49:12:64:27:de: 75:15:01:11:24:e7:aa:04:3f:c7:fe:6b:34:ce:46: 46:18:b1:61:68:b5:36:f6:97:a5:aa:9b:fd:2f:4f: 1e:ad:53:6b:08:a4:37:e1:f5:b8:fd:19:45:5c:40: 7a:f5:4b:72:db:b0:b7:c9:2f:c7:3b:b9:f0:82:9e: 1e:c5:82:ca:ed:ba:21:db:17:a3:c1:2d:2d:b9:8e: c9:0b:51:bb:ea:62:b7:9f:b8:0f:ff:14:6e:a0:51: 41:ad:46:d3:4a:35:da:01:48:32:97:bb:b9:f4:25: e9:a8:bc:fe:13:25:80:a7:81:df:55:89:77:20:db: 61:b2:59:c1:e1:f4:a1:5c:58:d3:1d:8c:fe:dc:e6: f5:6f:2b:ea:7c:50:a9:a9:f3:77:39:74:2c:e3:78: 7c:b8:45:6e:48:96:6a:b3:58:28:90:65:b0:f8:53: 07:7f:92:e6:a0:d6:6c:e3:e5:1b:28:68:28:1f:b9: 13:b7:d0:b1:6d:64:95:5a:45:2c:29:e1:f9:24:e6: 69:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:9A:1F:07:7D:57:7B:29:79:07:D2:A0:FA:87:06:D1:1C:4F:0D:2C X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:2f:bf:7d:bc:66:da:17:d6:fd:c3:b2:bb:f4:6e:16:de:ae: df:4c:e5:e8:1a:5a:c1:1d:9a:40:70:c8:56:72:04:99:e5:d0: 72:3c:07:d2:33:d8:7b:73:31:6e:f5:78:b5:34:68:85:bf:da: 2b:df:c4:66:dc:69:38:ba:e6:0e:a8:d7:b6:c7:4b:56:3e:94: 5f:3a:18:38:25:36:02:2b:9c:3d:2c:cf:23:58:04:7b:49:a8: ea:f6:ce:8b:01:24:0c:f2:88:e7:eb:73:5f:56:a6:8a:9d:b9: f7:d2:8b:b1:49:1f:44:27:70:1d:54:10:14:54:c3:fe:ac:d5: cc:e4:40:a3:3f:7a:74:b2:1e:26:91:9c:71:e6:c5:f8:a1:3c: 34:41:0b:cf:c4:38:3a:f0:7a:47:ff:8d:1c:3d:31:19:c7:94: 89:d2:e9:3c:ba:6e:60:f2:90:7d:43:a4:56:22:cf:13:ac:89: e7:07:c5:a2:17:04:32:0a:57:17:ef:bf:15:db:60:5c:40:0e: eb:f3:5d:81:14:3d:c5:67:77:66:59:c9:f1:b4:00:c5:02:d4: 81:65:a3:1f:29:ee:e5:54:25:20:fa:7e:24:55:13:99:f4:ff: 73:c3:e7:d9:35:4f:f7:7f:73:f9:f3:0e:4d:f8:c2:24:a5:56: 72:38:7c:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUwODIyMTkxOTU2WhcNMjUwODI5MTkxOTU2WjAYMRYwFAYD VQQDEw02OGE4YzJkYy00YTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2lxkJ0RaR5Zwau5jc8K+0nVd5CCpo/07nrqtVOHPlWWinmno0uhbNyr82fD Kyi99a3QMO2sSRJkJ951FQERJOeqBD/H/ms0zkZGGLFhaLU29pelqpv9L08erVNr CKQ34fW4/RlFXEB69Uty27C3yS/HO7nwgp4exYLK7boh2xejwS0tuY7JC1G76mK3 n7gP/xRuoFFBrUbTSjXaAUgyl7u59CXpqLz+EyWAp4HfVYl3INthslnB4fShXFjT HYz+3Ob1byvqfFCpqfN3OXQs43h8uEVuSJZqs1gokGWw+FMHf5LmoNZs4+UbKGgo H7kTt9CxbWSVWkUsKeH5JOZp/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiaHwd9 V3speQfSoPqHBtEcTw0sMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKL799vGbaF9b9w7K79G4W3q7fTOXoGlrBHZpAcMhWcgSZ5dByPAfS M9h7czFu9Xi1NGiFv9or38Rm3Gk4uuYOqNe2x0tWPpRfOhg4JTYCK5w9LM8jWAR7 Sajq9s6LASQM8ojn63NfVqaKnbn30ouxSR9EJ3AdVBAUVMP+rNXM5ECjP3p0sh4m kZxx5sX4oTw0QQvPxDg68HpH/40cPTEZx5SJ0uk8um5g8pB9Q6RWIs8TrInnB8Wi FwQyClcX778V22BcQA7r812BFD3FZ3dmWcnxtADFAtSBZaMfKe7lVCUg+n4kVROZ 9P9zw+fZNU/3f3P58w5N+MIkpVZyOHwg -----END CERTIFICATE-----Generated at Sat Aug 23 16:25:28 2025 by rpki-client