$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: Z+YgBPu7wKofI2q4+x+6+NFf7rr7PIfUqMXmfrsPsPA= Subject key identifier: B9:D9:7A:57:0F:10:0F:D6:99:D2:87:83:97:E0:28:A5:8D:90:53:33 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3414 Signing time: Fri 22 Aug 2025 15:22:18 +0000 Manifest this update: Fri 22 Aug 2025 15:22:18 +0000 Manifest next update: Fri 29 Aug 2025 15:22:18 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: jCSj07DC2HAY3yAOCc31i8gulqPc610zN4SrDfImuXk=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:22:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13361 (0x3431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Aug 22 15:22:18 2025 GMT Not After : Aug 29 15:22:18 2025 GMT Subject: CN=68a88b2a-5b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:71:26:30:4d:88:a9:24:60:12:79:0f:a6:14: 53:65:7e:d7:8a:f5:bc:13:44:e2:41:5b:13:bf:ab: 16:0f:e9:6e:45:c4:76:87:ef:2c:62:25:46:42:45: ef:af:33:26:39:a1:87:70:1b:7a:22:42:ed:0b:53: 6b:84:23:57:24:0e:d4:b7:db:77:14:c3:29:60:58: f2:a1:8d:3e:89:68:80:14:c2:12:45:ed:58:7a:be: 3e:3a:3d:0b:b0:99:05:26:96:93:88:ca:71:b4:7b: 12:8a:74:f5:1e:c0:2c:c5:86:2a:d0:b9:6b:45:b1: 76:25:ae:a2:60:62:2f:a1:0a:c8:12:99:19:fc:42: 15:fa:7c:2a:ec:25:98:c1:42:bb:f5:d9:18:eb:cc: 57:45:40:ae:9a:41:25:55:5f:94:e0:a9:2f:0d:fc: e9:a5:45:bb:9b:96:51:95:f1:13:38:8c:78:28:9d: 2d:ab:38:60:c0:44:39:12:4a:eb:3d:f2:88:88:eb: c8:38:91:98:53:3d:68:ee:87:03:c8:7b:41:29:56: d8:e1:d4:e0:a4:d2:1d:59:56:5c:af:61:58:cf:ce: 40:59:99:5e:54:c9:88:37:04:65:3d:aa:45:c5:d1: 7c:ef:d5:a7:70:dc:c2:d3:a0:8b:43:33:33:7e:bb: 8a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D9:7A:57:0F:10:0F:D6:99:D2:87:83:97:E0:28:A5:8D:90:53:33 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:d3:67:67:32:cd:92:56:05:d4:8b:43:c3:73:97:f2:fd:49: 99:de:c9:30:2d:de:cb:aa:bf:21:cc:b2:12:c4:f7:03:9c:af: ff:f9:39:55:e1:44:93:7a:70:7d:d4:88:60:f3:b8:eb:4c:5f: db:bb:91:3a:0e:9d:55:cb:50:65:fc:11:25:b6:80:d5:73:fc: 6e:1a:bb:4e:d7:07:ea:14:7e:73:f7:3b:1d:34:db:7b:d9:e0: 7f:4e:f5:28:1f:cb:ef:15:4d:97:9c:89:29:2a:e2:b4:f4:98: 4d:34:3b:49:c5:7f:56:0a:8b:44:5d:72:38:1a:75:b9:74:ef: 10:44:3b:af:79:d9:b3:3e:e7:bf:76:fb:16:87:52:b0:6e:66: 00:f8:32:ab:0b:a7:6f:ed:30:08:98:26:35:7f:83:26:bc:bb: 69:4a:03:f0:08:5c:57:3e:ec:91:aa:9b:a4:c2:7f:0a:c1:e0: d5:a2:c6:5c:bb:d5:8f:f9:c5:34:f4:08:cb:2c:e7:fe:12:b6: e5:17:85:cb:26:83:af:f4:0f:bd:5d:ac:86:04:80:ee:a8:1a: 0b:d3:69:12:e9:09:7f:10:cf:e2:49:40:1f:2c:c3:7e:b1:54: f7:0e:b8:4f:3c:4d:00:61:e0:e1:2f:7f:0f:27:96:12:1f:42: 9a:52:32:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwODIyMTUyMjE4WhcNMjUwODI5MTUyMjE4WjAYMRYwFAYD VQQDEw02OGE4OGIyYS01YjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XEmME2IqSRgEnkPphRTZX7XivW8E0TiQVsTv6sWD+luRcR2h+8sYiVGQkXv rzMmOaGHcBt6IkLtC1NrhCNXJA7Ut9t3FMMpYFjyoY0+iWiAFMISRe1Yer4+Oj0L sJkFJpaTiMpxtHsSinT1HsAsxYYq0LlrRbF2Ja6iYGIvoQrIEpkZ/EIV+nwq7CWY wUK79dkY68xXRUCumkElVV+U4KkvDfzppUW7m5ZRlfETOIx4KJ0tqzhgwEQ5Ekrr PfKIiOvIOJGYUz1o7ocDyHtBKVbY4dTgpNIdWVZcr2FYz85AWZleVMmINwRlPapF xdF879WncNzC06CLQzMzfruKgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnZelcP EA/WmdKHg5fgKKWNkFMzMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb02dnMs2SVgXUi0PDc5fy/UmZ3skwLd7Lqr8hzLISxPcDnK//+TlV 4USTenB91Ihg87jrTF/bu5E6Dp1Vy1Bl/BEltoDVc/xuGrtO1wfqFH5z9zsdNNt7 2eB/TvUoH8vvFU2XnIkpKuK09JhNNDtJxX9WCotEXXI4GnW5dO8QRDuvedmzPue/ dvsWh1KwbmYA+DKrC6dv7TAImCY1f4MmvLtpSgPwCFxXPuyRqpukwn8KweDVosZc u9WP+cU09AjLLOf+ErblF4XLJoOv9A+9XayGBIDuqBoL02kS6Ql/EM/iSUAfLMN+ sVT3DrhPPE0AYeDhL38PJ5YSH0KaUjJO -----END CERTIFICATE-----Generated at Sat Aug 23 13:51:38 2025 by rpki-client