$ rpki-client -vvf rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft File: qWaisn_hSTe-NtJ9tfTXaICEfdc.mft (raw, json) Hash identifier: 5BRbmrP+quyqwEcG91VKwlkzPHlZbk39ZK0RHdE1428= Subject key identifier: 81:CF:29:76:3F:90:23:D4:57:61:F9:B1:97:5E:BB:49:31:F0:C4:3F Authority key identifier: A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 Certificate issuer: /CN=A91536E1/serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Certificate serial: 07B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft Manifest number: 07AA Signing time: Fri 08 Aug 2025 21:40:58 +0000 Manifest this update: Fri 08 Aug 2025 21:40:58 +0000 Manifest next update: Fri 15 Aug 2025 21:40:57 +0000 Files and hashes: 1: qWaisn_hSTe-NtJ9tfTXaICEfdc.crl (hash: KvWsTwwH3NNSPCPTnI28/vWKDmcehCH6BBnSP78wM1M=) 2: 41C97D600EA811EB8E9A770CC4F9AE02.roa (hash: o8ES5sVXjZZWJ8HjjyGv8mKYMdzoHknglpOG5+B569s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1968 (0x7b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536E1, serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Validity Not Before: Aug 8 21:40:58 2025 GMT Not After : Aug 15 21:40:57 2025 GMT Subject: CN=68966eea-72b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:84:67:71:3c:06:33:d7:6f:83:fa:c8:cc:f1: a7:d0:dd:07:8a:c8:65:dd:8f:19:c2:d8:45:d3:ac: 89:f6:b7:e6:67:c8:40:1a:25:71:71:e8:e6:17:3b: 39:ed:14:59:bb:7e:ca:c3:9e:51:69:8f:03:52:49: be:1a:71:6c:66:df:47:95:5e:cd:f1:e4:ab:3d:8e: 06:89:da:05:20:f0:4a:e4:17:36:c2:e3:a6:97:df: bb:7b:00:b7:51:eb:d9:3f:9a:5e:f6:aa:fa:d6:14: 6c:63:b5:0b:8d:32:f1:d2:56:32:cf:34:3f:df:5e: ca:7c:fb:b7:e5:c8:c7:1d:e1:2c:97:5c:e2:cf:c7: 4a:96:cd:86:cb:ac:41:b5:cb:5a:db:68:68:28:3a: 8b:fe:94:7b:c1:7a:aa:e7:6b:12:0c:33:f1:f8:3d: 13:e2:15:5b:26:52:a5:e2:d0:75:4d:f7:d2:da:f6: 18:c3:d4:a7:8a:75:5c:04:d8:40:dd:93:cc:41:9b: d2:ca:db:aa:00:d6:14:1e:4c:ef:2c:d3:8b:eb:da: 49:50:88:1c:f4:55:d6:a7:35:16:f7:18:10:5f:d1: 03:de:1e:9f:9c:32:f2:7d:09:35:a8:3c:24:0d:f3: 84:f5:85:2c:f7:20:d6:1c:b0:dc:89:08:4a:59:bd: 37:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CF:29:76:3F:90:23:D4:57:61:F9:B1:97:5E:BB:49:31:F0:C4:3F X509v3 Authority Key Identifier: keyid:A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:d5:4c:3b:78:66:a2:a1:e1:dd:e4:d1:da:8e:f3:be:43:05: 4e:12:f8:f1:84:01:12:f6:56:21:05:c9:4c:b3:12:b8:61:04: 7a:12:a2:7e:3d:b1:78:73:72:c6:77:d5:e2:56:13:a7:e1:71: 9e:4e:c9:25:dd:c8:22:96:09:f1:0d:61:90:b2:06:d3:40:2f: 57:4c:10:3a:cc:8c:ec:6c:f8:0f:9c:46:ff:8b:2f:76:96:49: fa:60:83:84:00:68:43:74:76:d1:bf:89:d9:78:8a:35:65:e8: fc:cb:08:56:c9:6a:79:62:f5:29:bb:04:9c:df:24:7b:d6:d8: aa:b2:26:4e:6f:22:49:ee:73:25:83:70:02:f6:0d:c0:10:ba: 79:a6:1d:a7:48:73:f3:f7:90:e5:18:21:7c:07:ba:01:3d:a7: a6:a6:82:8a:0f:9d:66:59:82:a8:3c:fc:15:03:4e:79:1b:9e: 7c:df:fd:ab:e8:86:26:e3:ae:2a:bf:15:ff:2d:1e:8e:4f:93: 9f:c5:c7:5a:7d:49:4a:b6:51:c9:58:75:bb:74:9c:6d:14:8f: de:df:7c:40:8e:36:f0:62:c9:9c:91:22:91:1d:99:c4:f3:86: 44:1a:d9:46:1e:14:4f:90:10:77:b5:0e:b6:ca:4a:f4:f0:2b: 5d:89:df:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2RTExMTAvBgNVBAUTKEE5NjZBMkIyN0ZFMTQ5MzdCRTM2RDI3REI1RjRENzY4 ODA4NDdERDcwHhcNMjUwODA4MjE0MDU4WhcNMjUwODE1MjE0MDU3WjAYMRYwFAYD VQQDEw02ODk2NmVlYS03MmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4RncTwGM9dvg/rIzPGn0N0Hishl3Y8ZwthF06yJ9rfmZ8hAGiVxcejmFzs5 7RRZu37Kw55RaY8DUkm+GnFsZt9HlV7N8eSrPY4GidoFIPBK5Bc2wuOml9+7ewC3 UevZP5pe9qr61hRsY7ULjTLx0lYyzzQ/317KfPu35cjHHeEsl1ziz8dKls2Gy6xB tcta22hoKDqL/pR7wXqq52sSDDPx+D0T4hVbJlKl4tB1TffS2vYYw9SninVcBNhA 3ZPMQZvSytuqANYUHkzvLNOL69pJUIgc9FXWpzUW9xgQX9ED3h6fnDLyfQk1qDwk DfOE9YUs9yDWHLDciQhKWb03RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHPKXY/ kCPUV2H5sZdeu0kx8MQ/MB8GA1UdIwQYMBaAFKlmorJ/4Uk3vjbSfbX012iAhH3X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZFMS85ODlGM0EwQTBF QTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNUZS1OdEo5dGZUWGFJQ0Vm ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FXYWlzbl9oU1RlLU50Sjl0ZlRYYUlDRWZkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZFMS85ODlGM0EwQTBFQTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNU ZS1OdEo5dGZUWGFJQ0VmZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH1Uw7eGaioeHd5NHajvO+QwVOEvjxhAES9lYhBclMsxK4YQR6EqJ+ PbF4c3LGd9XiVhOn4XGeTskl3cgilgnxDWGQsgbTQC9XTBA6zIzsbPgPnEb/iy92 lkn6YIOEAGhDdHbRv4nZeIo1Zej8ywhWyWp5YvUpuwSc3yR71tiqsiZObyJJ7nMl g3AC9g3AELp5ph2nSHPz95DlGCF8B7oBPaempoKKD51mWYKoPPwVA055G5583/2r 6IYm464qvxX/LR6OT5OfxcdafUlKtlHJWHW7dJxtFI/e33xAjjbwYsmckSKRHZnE 84ZEGtlGHhRPkBB3tQ62ykr08Ctdid/f -----END CERTIFICATE-----Generated at Sun Aug 10 10:44:28 2025 by rpki-client