$ rpki-client -vvf rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft File: QIWuE0tjOKEnZXKD67wWwS8guGI.mft (raw, json) Hash identifier: EQXBvMOMfJ99ZTtpdvrXyMDuGouVj01c7FXlvzd5pOg= Subject key identifier: FC:3B:6D:44:3C:55:C7:2F:9A:4B:F5:95:C5:19:F0:BB:7C:0F:95:F4 Authority key identifier: 40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 Certificate issuer: /CN=A91E80FB/serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft Manifest number: 03ED Signing time: Sat 23 Aug 2025 00:47:11 +0000 Manifest this update: Sat 23 Aug 2025 00:47:11 +0000 Manifest next update: Sat 30 Aug 2025 00:47:11 +0000 Files and hashes: 1: QIWuE0tjOKEnZXKD67wWwS8guGI.crl (hash: tXBM3MLiWC8M0o3OLtKP9Y8yaN+dgS6LbSZEUZpmvpk=) 2: 9FBFD358C0F911EFA63F3E64C4F9AE02.roa (hash: yc1nPimI0kUiUPjKIX7+rUbHKCs59csyBzZSSe87J8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E80FB, serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Validity Not Before: Aug 23 00:47:11 2025 GMT Not After : Aug 30 00:47:11 2025 GMT Subject: CN=68a90f8f-32a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c7:82:9b:eb:39:c4:90:2b:3a:09:40:31:cc: b4:05:16:6b:78:a1:75:fd:cf:3d:af:8e:3b:51:70: 57:19:2b:f1:17:c3:10:89:c6:6d:c5:2c:70:7d:4b: 42:d0:4c:65:11:2d:7f:b7:5f:de:1c:94:5d:64:26: ad:53:fc:da:8f:a4:a7:56:45:ba:98:fd:5c:bd:10: e0:7c:3e:30:c6:a7:dc:3d:b9:75:b6:9f:ea:6e:97: 4c:4c:a8:fc:74:d7:77:7b:54:34:d7:c9:52:ea:b3: 8b:12:64:92:71:51:40:a6:c6:ab:97:b4:d2:79:45: 0b:2b:cf:7c:cf:0e:00:d2:ec:57:5a:26:af:c9:e0: 1e:b5:a8:70:ef:d5:8a:30:da:74:59:be:40:a9:91: 29:66:30:1f:56:be:e4:c2:c0:a7:c4:2a:48:a4:01: dc:7d:56:47:69:b5:b6:cd:23:75:3b:c9:80:ce:99: 8a:c2:15:19:44:6d:b1:8f:33:92:26:52:fa:22:e4: dd:da:5d:a7:9d:97:90:cd:a4:3b:0d:1b:cc:e0:e1: 00:34:00:9b:22:c9:14:0f:75:f8:9b:71:ff:56:b9: f7:10:e1:6d:fb:72:b6:60:78:de:39:c8:70:25:fe: 36:3c:3a:36:b4:a8:4f:14:e4:6e:c9:8a:d7:74:25: 59:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3B:6D:44:3C:55:C7:2F:9A:4B:F5:95:C5:19:F0:BB:7C:0F:95:F4 X509v3 Authority Key Identifier: keyid:40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:a0:40:f9:dc:5a:8a:e1:89:2f:59:d7:94:c6:24:c4:b1:c2: d3:7e:6e:39:13:f8:a7:98:52:5e:36:e2:35:b9:07:a3:48:1e: 88:e0:2d:3b:a0:2c:48:b3:31:70:d3:42:48:6b:b8:43:1f:bc: 32:9f:57:57:d9:53:a6:d9:f4:3d:3e:be:39:26:78:a5:2b:22: 2a:99:e7:df:56:a1:17:aa:e8:f1:49:94:20:c1:d1:d9:1f:2b: 39:36:af:74:b5:f4:51:f5:fe:6b:c8:2b:ff:7f:97:b6:38:da: 15:6f:76:79:03:ea:ff:af:6a:c6:af:ba:db:3d:db:4b:14:e2: 76:19:ac:24:a3:25:04:60:b4:23:52:e7:12:85:15:bd:d4:f7: 83:f6:ee:b3:a3:26:79:42:3e:d4:99:30:a5:27:16:c0:34:23: 93:73:b2:b0:97:52:32:bc:12:95:86:2c:63:ff:67:4a:77:c7: 3f:99:bd:ef:95:a8:eb:c8:e5:78:d5:3e:29:9c:b3:55:e1:f5: f8:a0:6e:05:b4:3e:ec:7e:d7:64:5e:1a:83:b4:7d:f8:5b:ae: e5:81:9e:18:5e:58:7c:cb:36:03:be:b1:7b:66:ea:12:d8:75: bb:c7:b6:c9:d2:09:4f:aa:37:fe:e7:43:20:d5:69:b2:36:ab: 6d:2b:66:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgwRkIxMTAvBgNVBAUTKDQwODVBRTEzNEI2MzM4QTEyNzY1NzI4M0VCQkMxNkMx MkYyMEI4NjIwHhcNMjUwODIzMDA0NzExWhcNMjUwODMwMDA0NzExWjAYMRYwFAYD VQQDEw02OGE5MGY4Zi0zMmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyceCm+s5xJArOglAMcy0BRZreKF1/c89r447UXBXGSvxF8MQicZtxSxwfUtC 0ExlES1/t1/eHJRdZCatU/zaj6SnVkW6mP1cvRDgfD4wxqfcPbl1tp/qbpdMTKj8 dNd3e1Q018lS6rOLEmSScVFApsarl7TSeUULK898zw4A0uxXWiavyeAetahw79WK MNp0Wb5AqZEpZjAfVr7kwsCnxCpIpAHcfVZHabW2zSN1O8mAzpmKwhUZRG2xjzOS JlL6IuTd2l2nnZeQzaQ7DRvM4OEANACbIskUD3X4m3H/Vrn3EOFt+3K2YHjeOchw Jf42PDo2tKhPFORuyYrXdCVZJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw7bUQ8 Vccvmkv1lcUZ8Lt8D5X0MB8GA1UdIwQYMBaAFECFrhNLYzihJ2Vyg+u8FsEvILhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODBGQi82MjhENTIwQzhG QjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9LRW5aWEtENjd3V3dTOGd1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJV3VFMHRqT0tFblpYS0Q2N3dXd1M4Z3VHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODBGQi82MjhENTIwQzhGQjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9L RW5aWEtENjd3V3dTOGd1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1oED53FqK4YkvWdeUxiTEscLTfm45E/inmFJeNuI1uQejSB6I4C07 oCxIszFw00JIa7hDH7wyn1dX2VOm2fQ9Pr45JnilKyIqmeffVqEXqujxSZQgwdHZ Hys5Nq90tfRR9f5ryCv/f5e2ONoVb3Z5A+r/r2rGr7rbPdtLFOJ2GawkoyUEYLQj UucShRW91PeD9u6zoyZ5Qj7UmTClJxbANCOTc7Kwl1IyvBKVhixj/2dKd8c/mb3v lajryOV41T4pnLNV4fX4oG4FtD7sftdkXhqDtH34W67lgZ4YXlh8yzYDvrF7ZuoS 2HW7x7bJ0glPqjf+50Mg1WmyNqttK2bI -----END CERTIFICATE-----Generated at Sun Aug 24 07:15:00 2025 by rpki-client