$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: XDIoPTcTmq0kopSKCL8FNSCFHe6PS5GcHl0H7tNE76k= Subject key identifier: 76:E5:A2:1A:F8:40:4C:6F:ED:5F:DE:CB:21:4F:9D:0E:E3:E0:E1:A7 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 0648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 062F Signing time: Sun 10 Aug 2025 23:01:49 +0000 Manifest this update: Sun 10 Aug 2025 23:01:48 +0000 Manifest next update: Sun 17 Aug 2025 23:01:48 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: j6h7aWrOjZSYBD09y4szQy78rWvqoxrdHIyv6IdUgEY=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: hq9Cmc+FMjaTTTyQea1uvJO7rYKBgVJ1Xbylz3DiiHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Aug 10 23:01:48 2025 GMT Not After : Aug 17 23:01:48 2025 GMT Subject: CN=689924dd-674b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e1:88:c6:9d:53:06:27:dd:e1:4f:f0:1f:ff: f0:7c:c3:97:ee:af:2e:77:58:f2:91:a7:37:96:a5: 32:b8:5d:2a:c3:9b:3c:a9:34:3c:12:b4:2f:06:5f: 0d:ec:d6:8d:4a:8d:ac:27:51:23:4c:c1:15:10:f4: 4d:28:bf:b5:0d:bb:16:4e:b7:d0:f0:bf:9e:12:25: 42:fa:4c:c0:c3:09:02:b2:e7:3c:09:14:02:ae:d4: 39:41:46:35:4b:c4:cf:aa:1e:8c:91:42:f0:32:19: 70:92:2e:07:cd:de:4f:2a:59:27:e4:85:7e:73:03: e1:86:a1:0e:9f:75:2e:fb:99:4d:33:ab:8c:a8:c8: 04:d0:a2:50:a7:d6:88:1b:7c:5e:2e:61:3a:49:59: a5:5f:6e:0e:8b:d5:0f:27:83:a5:52:d9:c3:4f:0f: e8:7e:ba:25:e8:da:d5:af:12:46:6d:96:98:8e:e1: 5f:17:55:59:b9:d7:0d:a8:04:58:f8:5a:ac:e2:10: bf:41:64:6c:b3:3e:55:1f:a5:22:d5:ad:17:00:89: a7:48:99:05:29:4c:47:54:b3:f6:cf:cf:64:b7:69: 7d:90:ae:23:e4:f7:14:42:15:00:68:bd:8e:bb:22: 8f:62:bc:00:62:78:e8:19:da:ab:ac:b8:ba:1f:70: f7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E5:A2:1A:F8:40:4C:6F:ED:5F:DE:CB:21:4F:9D:0E:E3:E0:E1:A7 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:a3:41:08:6f:73:d5:dc:b5:8a:b0:ea:a0:f1:3f:16:8b:cf: 3c:d7:cd:05:a0:be:0e:37:41:fc:af:33:c7:ab:f1:63:fb:65: 18:4d:aa:bd:7a:7f:d7:e8:76:e5:24:fd:9d:ee:b8:e0:cd:21: d5:9d:b3:18:01:9b:a0:06:ff:1c:8b:38:20:2c:c2:b0:0b:00: f8:dd:fb:e8:26:fc:8d:71:7c:82:7e:7f:13:f5:87:79:d5:3f: 66:8b:f5:5f:23:21:71:81:86:b4:a1:08:54:76:b2:72:2d:42: d7:80:87:e1:3f:95:31:c8:1f:98:4e:40:91:34:99:a6:99:f3: a4:8b:7e:b6:e3:9d:a3:d1:bd:d4:43:38:64:b7:79:69:35:49: e4:5e:54:00:fc:ab:b3:6a:89:58:c9:28:27:f5:65:55:90:b5: ca:e8:b3:e5:a8:51:db:e7:d6:b3:48:11:6c:d7:08:15:b7:63: b5:8d:97:05:6f:bb:61:b4:4d:ec:1a:d6:75:23:77:b9:0b:01: 06:bf:45:d2:8f:03:e4:67:05:85:d1:f1:a5:6c:28:f1:ce:47: 59:f2:a8:48:78:ce:5d:dd:8b:c3:72:db:49:fd:39:bb:b3:b5: c5:0f:28:54:65:3d:49:bd:84:79:38:e3:69:00:e9:6e:58:a9: c7:b9:bb:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwODEwMjMwMTQ4WhcNMjUwODE3MjMwMTQ4WjAYMRYwFAYD VQQDEw02ODk5MjRkZC02NzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OGIxp1TBifd4U/wH//wfMOX7q8ud1jykac3lqUyuF0qw5s8qTQ8ErQvBl8N 7NaNSo2sJ1EjTMEVEPRNKL+1DbsWTrfQ8L+eEiVC+kzAwwkCsuc8CRQCrtQ5QUY1 S8TPqh6MkULwMhlwki4Hzd5PKlkn5IV+cwPhhqEOn3Uu+5lNM6uMqMgE0KJQp9aI G3xeLmE6SVmlX24Oi9UPJ4OlUtnDTw/ofrol6NrVrxJGbZaYjuFfF1VZudcNqARY +Fqs4hC/QWRssz5VH6Ui1a0XAImnSJkFKUxHVLP2z89kt2l9kK4j5PcUQhUAaL2O uyKPYrwAYnjoGdqrrLi6H3D3/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHblohr4 QExv7V/eyyFPnQ7j4OGnMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBo0EIb3PV3LWKsOqg8T8Wi888180FoL4ON0H8rzPHq/Fj+2UYTaq9 en/X6HblJP2d7rjgzSHVnbMYAZugBv8cizggLMKwCwD43fvoJvyNcXyCfn8T9Yd5 1T9mi/VfIyFxgYa0oQhUdrJyLULXgIfhP5UxyB+YTkCRNJmmmfOki362452j0b3U Qzhkt3lpNUnkXlQA/KuzaolYySgn9WVVkLXK6LPlqFHb59azSBFs1wgVt2O1jZcF b7thtE3sGtZ1I3e5CwEGv0XSjwPkZwWF0fGlbCjxzkdZ8qhIeM5d3YvDcttJ/Tm7 s7XFDyhUZT1JvYR5OONpAOluWKnHubvH -----END CERTIFICATE-----Generated at Mon Aug 11 09:02:50 2025 by rpki-client