$ rpki-client -vvf rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft File: q47HWiojWU9vKtMnsOa7wLCrm-4.mft (raw, json) Hash identifier: PCHAONj9r55l+DvbOh/NEpeq4Y/Dk+vscx/ImWAtOlo= Subject key identifier: 60:31:FA:A7:9A:78:F1:86:52:3B:6B:2D:55:82:18:3A:DC:54:19:2C Authority key identifier: AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE Certificate issuer: /CN=A91F783D/serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Certificate serial: 0DFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft Manifest number: 0DF2 Signing time: Fri 22 Aug 2025 17:59:29 +0000 Manifest this update: Fri 22 Aug 2025 17:59:29 +0000 Manifest next update: Fri 29 Aug 2025 17:59:29 +0000 Files and hashes: 1: q47HWiojWU9vKtMnsOa7wLCrm-4.crl (hash: OFEVj0uiCejRwG1F9dQ0tG8r/bIQR/Aa3+BT7Ij5XD8=) 2: E3ACB710B9B211E9A9A37254C4F9AE02.roa (hash: Jg5gZD0YmKb91aw5MXsxMT3mckkXVt61eCbJBF82oak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3580 (0xdfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F783D, serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Validity Not Before: Aug 22 17:59:29 2025 GMT Not After : Aug 29 17:59:29 2025 GMT Subject: CN=68a8b001-3191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a7:fd:c0:a3:3f:12:7a:d6:62:4f:9b:a1:32: 90:9f:8a:a1:2b:0e:2b:e1:d0:a8:d5:73:a5:41:7d: 6a:a3:8b:35:23:8a:31:25:c2:5f:95:8a:99:65:57: da:ed:36:f2:1f:76:c5:8d:50:92:d6:2d:04:36:38: 04:2d:bf:03:1c:38:b6:87:da:b4:d9:2d:6b:99:55: fa:3a:03:b0:97:f0:9a:10:f9:04:08:b9:78:e2:28: 31:b2:0f:62:29:88:20:c6:a3:fa:4b:5f:6b:33:11: d5:d7:19:ba:2b:ef:a3:88:16:a8:f6:f5:93:0a:17: d1:4e:e4:06:86:e1:e5:01:f8:b0:ce:5d:28:79:8d: 54:8c:4d:d4:c4:43:73:5e:13:12:03:52:30:23:74: 20:1b:c2:16:2d:82:08:cf:5d:2f:ed:3d:d9:c2:33: ec:af:f0:39:de:c3:3d:ac:d0:ad:8f:51:1d:c4:ed: 90:a0:bd:4f:1b:a1:fb:c2:1e:24:38:6b:89:00:c1: de:6c:13:15:de:24:00:ca:53:4a:ce:33:20:9b:0e: b8:ab:08:e2:0a:c8:bf:f4:ae:88:ca:89:e7:45:eb: 61:24:e6:67:d5:64:3c:ce:75:fd:29:20:6a:2a:0e: ea:a1:ea:a1:f4:d4:de:11:68:4a:0b:44:f8:c9:98: 46:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:31:FA:A7:9A:78:F1:86:52:3B:6B:2D:55:82:18:3A:DC:54:19:2C X509v3 Authority Key Identifier: keyid:AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:d5:0f:70:7b:b4:cd:a5:86:59:39:97:d8:70:11:00:65:f6: b3:45:2e:c5:96:0b:58:53:59:04:bc:6c:38:55:ed:43:52:aa: 99:38:e0:65:c3:b6:56:a7:ab:4c:da:e1:af:4f:4e:52:59:c7: fd:2c:ee:f2:c6:17:6b:a0:dc:b7:45:e5:c8:8a:4d:1e:dd:11: 74:c8:d4:b8:f5:2f:6e:7f:f7:ba:b9:89:b2:82:9c:7f:c5:26: e6:6d:b4:d3:89:66:5d:da:2c:66:07:ef:ba:e7:c6:ef:d2:bf: b5:ff:1b:2c:62:16:ec:3c:e9:5f:6e:fd:e3:f9:8d:d3:49:8f: c2:39:42:08:48:ba:28:9c:29:8e:db:34:5f:6e:4a:a2:90:8a: d8:27:95:b8:e8:78:ec:d0:a5:43:ab:05:78:7a:1f:7d:15:0f: 7b:9e:be:ce:46:28:08:9b:6e:66:dc:34:32:2f:71:23:65:27: d4:a7:2b:42:cf:8d:89:48:b2:aa:f3:82:33:04:77:ab:bd:e2: 53:33:43:e8:27:26:4e:bf:3d:1e:0f:ba:00:22:ce:dc:d4:14: 02:b7:2e:09:cf:0e:70:44:6d:04:10:75:df:40:6b:0d:bf:cc: dd:0f:f5:ab:c1:5e:f0:42:2f:a3:f2:6f:c2:7a:4e:b1:51:96: 93:22:fa:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc4M0QxMTAvBgNVBAUTKEFCOEVDNzVBMkEyMzU5NEY2RjJBRDMyN0IwRTZCQkMw QjBBQjlCRUUwHhcNMjUwODIyMTc1OTI5WhcNMjUwODI5MTc1OTI5WjAYMRYwFAYD VQQDEw02OGE4YjAwMS0zMTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3af9wKM/EnrWYk+boTKQn4qhKw4r4dCo1XOlQX1qo4s1I4oxJcJflYqZZVfa 7TbyH3bFjVCS1i0ENjgELb8DHDi2h9q02S1rmVX6OgOwl/CaEPkECLl44igxsg9i KYggxqP6S19rMxHV1xm6K++jiBao9vWTChfRTuQGhuHlAfiwzl0oeY1UjE3UxENz XhMSA1IwI3QgG8IWLYIIz10v7T3ZwjPsr/A53sM9rNCtj1EdxO2QoL1PG6H7wh4k OGuJAMHebBMV3iQAylNKzjMgmw64qwjiCsi/9K6IyonnRethJOZn1WQ8znX9KSBq Kg7qoeqh9NTeEWhKC0T4yZhGfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAx+qea ePGGUjtrLVWCGDrcVBksMB8GA1UdIwQYMBaAFKuOx1oqI1lPbyrTJ7Dmu8Cwq5vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzgzRC8zMURGMURFRUI5 QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldVOXZLdE1uc09hN3dMQ3Jt LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E0N0hXaW9qV1U5dkt0TW5zT2E3d0xDcm0tNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzgzRC8zMURGMURFRUI5QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldV OXZLdE1uc09hN3dMQ3JtLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDH1Q9we7TNpYZZOZfYcBEAZfazRS7FlgtYU1kEvGw4Ve1DUqqZOOBl w7ZWp6tM2uGvT05SWcf9LO7yxhdroNy3ReXIik0e3RF0yNS49S9uf/e6uYmygpx/ xSbmbbTTiWZd2ixmB++658bv0r+1/xssYhbsPOlfbv3j+Y3TSY/COUIISLoonCmO 2zRfbkqikIrYJ5W46Hjs0KVDqwV4eh99FQ97nr7ORigIm25m3DQyL3EjZSfUpytC z42JSLKq84IzBHerveJTM0PoJyZOvz0eD7oAIs7c1BQCty4Jzw5wRG0EEHXfQGsN v8zdD/WrwV7wQi+j8m/Cek6xUZaTIvo5 -----END CERTIFICATE-----Generated at Sat Aug 23 14:30:37 2025 by rpki-client