$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft File: qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json) Hash identifier: pyGrJTGLcDgHdhnP24aM2bEe4vUnzRV0B7cxt0jeHA0= Subject key identifier: 88:DB:20:07:2B:09:BE:81:30:99:41:92:03:C9:9E:4D:25:48:D9:A1 Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft Manifest number: 4D Signing time: Sat 23 Aug 2025 07:36:21 +0000 Manifest this update: Sat 23 Aug 2025 07:36:21 +0000 Manifest next update: Sat 30 Aug 2025 07:36:21 +0000 Files and hashes: 1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: aVaXwcQAYv542aCZaPeBDRZsB03P+8AXXuSAThrx5+0=) 2: A94836600F7111F08BC42022C4F9AE02.roa (hash: P0ugR8U/wyMnqraRD80X5tdZACXWqmlF+Xy2XfETkeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Aug 23 07:36:21 2025 GMT Not After : Aug 30 07:36:21 2025 GMT Subject: CN=68a96f75-5187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:90:3b:64:8a:56:60:50:d3:44:ab:15:27: 02:14:0e:a5:9f:8c:d2:98:3a:97:8c:8a:93:52:fc: 6c:e9:6e:2f:42:05:48:0e:a5:9c:68:a2:e0:21:9b: 39:bc:df:6a:f4:6c:ae:48:76:0f:1a:80:cb:95:bf: 0f:a0:95:a2:fb:cf:d0:f2:cf:fc:b5:0a:fc:2d:16: 22:22:80:30:26:a9:19:ac:cf:5f:20:bd:ea:ea:c0: 99:be:65:e1:43:4c:ad:97:f5:cc:45:93:98:f1:00: 2d:9d:0d:03:f8:48:da:e9:c7:99:39:25:9e:f7:e1: af:ec:e2:f0:97:66:fe:6b:1e:a6:62:a2:91:04:7e: ef:4f:b0:1e:cc:2d:dd:5d:b5:de:d3:14:d4:54:1c: 24:1e:19:41:73:65:67:e6:ba:dc:a8:5d:5a:d0:2a: ff:33:af:61:7c:da:a7:bc:02:9e:c8:5c:45:ec:eb: f5:06:71:fc:c3:c9:a5:c9:8f:77:27:fb:39:67:ec: 67:b2:62:47:b0:f2:5a:40:3b:22:49:7b:05:74:4a: c3:b0:6a:b7:4f:02:de:5f:08:09:51:2a:41:75:eb: 82:bd:ae:cd:1a:07:7b:f4:70:6e:43:34:2d:70:43: db:8b:62:db:4b:1d:17:a1:b5:6a:38:b7:38:7c:7a: 91:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:DB:20:07:2B:09:BE:81:30:99:41:92:03:C9:9E:4D:25:48:D9:A1 X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:f5:08:c7:20:79:1f:4a:fc:f4:0d:f3:b1:1b:be:b6:cd:5c: ea:d6:81:1c:33:25:88:46:2f:34:f6:b4:ce:20:06:e5:ce:5f: d5:9e:70:56:22:e3:06:e3:ac:52:c7:94:5c:51:8b:ca:31:9e: 40:d4:3d:41:bd:35:73:b2:a4:6d:5f:32:c2:26:9a:93:9b:8c: 1b:19:34:db:20:1a:87:0c:2d:b5:cc:1d:bb:96:14:30:6a:95: 7a:24:ea:7d:c7:44:68:b4:c0:bd:ec:38:90:67:50:f1:a7:21: 27:b5:35:94:a5:85:b2:b2:0d:9a:5a:f0:36:b9:d2:63:d4:14: 75:02:e4:92:ae:c2:3f:f5:c4:74:c6:09:5b:80:df:5d:39:d7: 7c:b5:e1:01:14:58:07:04:74:27:b2:7f:4f:b2:11:c5:c1:a7: 8d:5c:f9:33:e1:20:64:e6:e0:d3:16:71:ec:52:58:15:e9:fd: 11:89:7d:97:97:5e:6d:bc:88:81:c2:bd:9b:08:e2:18:fe:28: bd:1d:b9:5f:e2:9c:54:d8:67:9c:5f:e2:0f:50:e9:30:db:8c: 1c:16:0e:18:63:5f:8b:fc:9a:28:d4:e2:d1:81:e2:a1:21:3d: 89:49:f0:70:9c:04:d5:72:a8:99:83:4c:9f:c8:4e:b7:f8:ea: f5:6b:4f:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoQTg5RDBGRDRGNDhBQkY2OTRGRDlERjc3MDRFNTk2NDY0 REVEMjE3OTAeFw0yNTA4MjMwNzM2MjFaFw0yNTA4MzAwNzM2MjFaMBgxFjAUBgNV BAMTDTY4YTk2Zjc1LTUxODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPm5A7ZIpWYFDTRKsVJwIUDqWfjNKYOpeMipNS/Gzpbi9CBUgOpZxoouAhmzm8 32r0bK5Idg8agMuVvw+glaL7z9Dyz/y1CvwtFiIigDAmqRmsz18gverqwJm+ZeFD TK2X9cxFk5jxAC2dDQP4SNrpx5k5JZ734a/s4vCXZv5rHqZiopEEfu9PsB7MLd1d td7TFNRUHCQeGUFzZWfmutyoXVrQKv8zr2F82qe8Ap7IXEXs6/UGcfzDyaXJj3cn +zln7GeyYkew8lpAOyJJewV0SsOwardPAt5fCAlRKkF164K9rs0aB3v0cG5DNC1w Q9uLYttLHRehtWo4tzh8epG3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiNsgBysJ voEwmUGSA8meTSVI2aEwHwYDVR0jBBgwFoAUqJ0P1PSKv2lP2d93BOWWRk3tIXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzFBN0FERUNBMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUowUDFQU0t2MmxQMmQ5M0JPV1dSazN0SVhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzFBN0FERUNBMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJs UDJkOTNCT1dXUmszdElYay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABD1CMcgeR9K/PQN87EbvrbNXOrWgRwzJYhGLzT2tM4gBuXOX9WecFYi 4wbjrFLHlFxRi8oxnkDUPUG9NXOypG1fMsImmpObjBsZNNsgGocMLbXMHbuWFDBq lXok6n3HRGi0wL3sOJBnUPGnISe1NZSlhbKyDZpa8Da50mPUFHUC5JKuwj/1xHTG CVuA310513y14QEUWAcEdCeyf0+yEcXBp41c+TPhIGTm4NMWcexSWBXp/RGJfZeX Xm28iIHCvZsI4hj+KL0duV/inFTYZ5xf4g9Q6TDbjBwWDhhjX4v8mijU4tGB4qEh PYlJ8HCcBNVyqJmDTJ/ITrf46vVrT2E= -----END CERTIFICATE-----Generated at Sat Aug 23 12:23:11 2025 by rpki-client