$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft File: spEQIVRHIYPPUNKub6MOG940K_Q.mft (raw, json) Hash identifier: U4146fgnZUGh0ljRRkxFUuGECtuUIfhBdwDrISvKGec= Subject key identifier: D8:07:11:24:B0:0D:A1:B4:E6:6F:80:81:8D:4C:0E:F4:07:F3:5D:99 Authority key identifier: B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 Certificate issuer: /CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft Manifest number: 0199 Signing time: Sat 23 Aug 2025 03:34:00 +0000 Manifest this update: Sat 23 Aug 2025 03:33:59 +0000 Manifest next update: Sat 30 Aug 2025 03:33:59 +0000 Files and hashes: 1: spEQIVRHIYPPUNKub6MOG940K_Q.crl (hash: cuhZq86BbhwU+AKbq06YSiJjxHVSb1+eeNtzWfmgYDE=) 2: 35A46D4E1A5611EE93742844C4F9AE02.roa (hash: d+JJ+I8S/10V6aRjr1ig3NwOOf5vZtvPjsJauOreVMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB095, serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Validity Not Before: Aug 23 03:33:59 2025 GMT Not After : Aug 30 03:33:59 2025 GMT Subject: CN=68a936a7-9116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:18:bc:3c:68:ec:55:db:d1:54:38:ef:6a:8d: 7b:a3:c7:93:8a:04:bc:75:dc:66:0a:cc:75:29:74: c5:9e:48:9c:10:41:7b:5a:44:60:25:ff:b3:67:fa: ed:62:ec:95:d7:22:5e:b1:1f:4e:51:37:65:ec:89: 60:14:1f:00:42:c6:01:a0:b9:71:cf:d0:3b:68:67: 3c:4b:62:5f:4a:ac:f9:40:79:5e:ff:52:6e:ec:44: 27:1b:ed:3d:7e:4b:eb:d5:74:1d:52:1e:4f:7e:82: 0a:31:8d:59:41:00:42:3f:36:bd:6d:2e:8a:a2:1a: c4:ea:c5:85:d5:4a:6b:65:bf:25:ba:29:e7:33:56: 0f:47:fb:75:c4:f8:ac:2a:25:cf:49:d0:3f:b5:16: f9:ff:79:7e:1f:d5:39:7e:6b:58:18:93:23:45:e5: a6:d7:a9:61:bd:c9:72:bc:d1:d7:a6:bf:87:fa:1b: ba:15:04:74:26:92:e0:95:c2:21:08:f7:44:d8:e8: ad:a6:6b:7b:1b:86:82:ab:6e:41:5c:4d:f2:f6:10: 91:d6:20:ee:49:45:57:6d:f1:0c:6e:9d:54:1e:aa: 62:3a:71:ef:19:b5:c3:1b:cd:17:67:1b:bc:b3:9a: f9:92:9f:ae:23:e1:14:6c:05:5e:91:39:d5:1a:ba: e6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:07:11:24:B0:0D:A1:B4:E6:6F:80:81:8D:4C:0E:F4:07:F3:5D:99 X509v3 Authority Key Identifier: keyid:B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c5:87:93:ef:40:29:90:56:4a:fc:b5:cf:2c:f5:f7:8f:06: ee:47:56:b3:79:c2:89:cd:58:9b:a0:cb:b9:17:a8:f3:eb:05: 1f:e1:0d:62:5b:bb:09:14:37:50:46:9e:79:3c:95:60:cd:bc: 5c:68:89:e5:17:d4:f9:3e:f3:a1:2c:7e:6b:1c:74:d5:dd:3c: 39:cb:32:43:be:81:74:72:fc:e6:ce:54:70:da:70:81:2d:cb: 6b:12:44:7e:60:e5:40:f1:7b:83:81:8e:23:b3:0f:8b:a0:98: 4b:d1:a1:5c:21:b3:85:17:a1:5c:88:57:fb:6c:cd:a7:ae:d3: 59:3f:ae:52:0f:1a:79:93:9b:98:2b:46:c8:84:00:9e:a0:35: 02:53:5e:dc:83:88:d1:97:a6:8a:5a:41:be:04:00:e4:92:fd: c1:ee:b2:46:f6:97:fc:2c:79:3a:31:ee:bc:4d:49:73:b0:d1: 61:2d:2f:53:b7:d9:ba:fb:c8:df:a7:25:0c:71:af:50:16:4b: 5b:fe:d5:52:93:c8:57:5f:d3:39:22:e6:86:b3:45:f1:2b:ff: 30:11:30:9a:a4:73:65:ff:1c:d9:a7:77:28:fe:3c:cc:df:1e: 4b:ad:92:eb:14:6c:fd:e4:b0:7d:e3:47:d4:fc:4e:74:18:8c: f1:32:72:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwOTUxMTAvBgNVBAUTKEIyOTExMDIxNTQ0NzIxODNDRjUwRDJBRTZGQTMwRTFC REUzNDJCRjQwHhcNMjUwODIzMDMzMzU5WhcNMjUwODMwMDMzMzU5WjAYMRYwFAYD VQQDEw02OGE5MzZhNy05MTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBi8PGjsVdvRVDjvao17o8eTigS8ddxmCsx1KXTFnkicEEF7WkRgJf+zZ/rt YuyV1yJesR9OUTdl7IlgFB8AQsYBoLlxz9A7aGc8S2JfSqz5QHle/1Ju7EQnG+09 fkvr1XQdUh5PfoIKMY1ZQQBCPza9bS6KohrE6sWF1UprZb8luinnM1YPR/t1xPis KiXPSdA/tRb5/3l+H9U5fmtYGJMjReWm16lhvclyvNHXpr+H+hu6FQR0JpLglcIh CPdE2Oitpmt7G4aCq25BXE3y9hCR1iDuSUVXbfEMbp1UHqpiOnHvGbXDG80XZxu8 s5r5kp+uI+EUbAVekTnVGrrmowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgHESSw DaG05m+AgY1MDvQH812ZMB8GA1UdIwQYMBaAFLKRECFURyGDz1DSrm+jDhveNCv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjA5NS9BQUJFQjU2QTFB NTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZUFBVTkt1YjZNT0c5NDBL X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwRVFJVlJISVlQUFVOS3ViNk1PRzk0MEtfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjA5NS9BQUJFQjU2QTFBNTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZ UFBVTkt1YjZNT0c5NDBLX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaxYeT70ApkFZK/LXPLPX3jwbuR1azecKJzViboMu5F6jz6wUf4Q1i W7sJFDdQRp55PJVgzbxcaInlF9T5PvOhLH5rHHTV3Tw5yzJDvoF0cvzmzlRw2nCB LctrEkR+YOVA8XuDgY4jsw+LoJhL0aFcIbOFF6FciFf7bM2nrtNZP65SDxp5k5uY K0bIhACeoDUCU17cg4jRl6aKWkG+BADkkv3B7rJG9pf8LHk6Me68TUlzsNFhLS9T t9m6+8jfpyUMca9QFktb/tVSk8hXX9M5IuaGs0XxK/8wETCapHNl/xzZp3co/jzM 3x5LrZLrFGz95LB940fU/E50GIzxMnJx -----END CERTIFICATE-----Generated at Sat Aug 23 21:27:44 2025 by rpki-client