$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft File: dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft (raw, json) Hash identifier: lFK0X7PMJ0mke/MS4th1hIGaGtstp32C/KC1BXg6oXY= Subject key identifier: 5E:3A:0C:59:3A:94:A6:4B:F7:D5:AC:24:95:19:28:F1:A0:C7:03:B7 Authority key identifier: 77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 Certificate issuer: /CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft Manifest number: 0C6F Signing time: Sun 10 Aug 2025 18:21:51 +0000 Manifest this update: Sun 10 Aug 2025 18:21:50 +0000 Manifest next update: Sun 17 Aug 2025 18:21:50 +0000 Files and hashes: 1: dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl (hash: 8MmhESpRNrWYFmZTXOzyiF4BihvkbgvsGG+uE5tlFZs=) 2: D68289BE984B11ECB04DAB38C4F9AE02.roa (hash: 2GXsJ3lmpDTCyJ0+6RHbUPHuhr06/ng834HAohqlZ5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Validity Not Before: Aug 10 18:21:50 2025 GMT Not After : Aug 17 18:21:50 2025 GMT Subject: CN=6898e33e-c25b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f6:0a:0d:46:7f:ec:f8:0b:7f:b1:71:74:b9: f4:2f:34:a8:e6:ae:94:02:e0:58:49:57:47:ae:29: 71:bc:c5:fd:a3:50:f7:a8:bb:ad:1a:1d:f9:eb:40: 3f:d4:59:02:bc:2c:c8:77:dd:26:72:a4:f5:d8:47: 38:98:67:59:36:fe:3a:8f:cb:aa:d9:62:ad:f6:2b: 7f:44:de:a6:2c:45:47:06:6f:e4:77:34:84:db:23: 13:c2:a2:54:34:10:54:89:3e:29:57:b7:96:fa:06: 61:ba:a0:7d:59:0f:8d:ea:02:cc:8f:c7:de:13:5d: c1:b1:1f:bb:e3:17:f6:be:70:f0:27:4d:2b:ce:ee: 4c:e7:d5:60:a5:0b:79:19:ff:5d:0e:bb:e7:22:9f: f0:51:e0:b8:bd:f5:2d:7f:81:3e:c0:a5:a1:f0:1b: 82:2c:bd:cd:25:27:44:3e:97:49:72:00:a3:99:11: 43:00:a2:dd:8c:14:43:b1:c8:11:c7:2a:d0:66:0e: 5c:4f:be:66:d6:89:47:d2:ea:18:f4:02:ec:48:5d: c4:73:f3:41:eb:c7:b6:85:22:3e:3a:90:fc:db:5e: e8:29:28:86:d4:30:dc:d5:6f:fc:a1:1a:36:8f:f1: 57:4d:72:51:d3:0b:65:09:1b:5d:db:35:69:25:98: 8e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3A:0C:59:3A:94:A6:4B:F7:D5:AC:24:95:19:28:F1:A0:C7:03:B7 X509v3 Authority Key Identifier: keyid:77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:9d:ee:ed:02:4b:c4:26:22:a9:b9:e8:05:3d:9f:13:d0:13: d9:c6:5d:be:39:56:33:80:5b:cd:8e:e2:9e:a6:9e:bb:6a:c8: 91:13:84:af:bf:31:cd:69:ee:00:5e:c7:4e:41:1a:31:62:a2: d0:0a:04:94:1c:b0:f4:32:a5:2d:36:c7:83:26:10:7e:bf:16: d8:59:e9:25:69:97:58:80:b1:43:38:3c:ea:c4:f2:c0:c8:2d: b6:4c:71:78:75:55:6a:74:94:6d:44:b2:59:dc:3d:d5:f7:dd: a9:ba:a5:26:79:74:a8:35:c6:6e:f9:3f:2f:b5:d1:a2:23:c2: 4f:bf:a8:12:99:17:33:01:84:4a:a0:fa:bb:88:d4:5e:e0:d1: f5:62:f0:be:48:c1:6b:68:7d:08:ba:ca:90:67:9b:f5:08:1a: 93:8f:e9:2b:fd:e0:11:c2:a6:29:e0:bb:59:f9:22:66:fe:70: 79:96:f6:ce:6d:b8:e4:09:7a:d7:d0:52:72:44:22:c6:fc:83: 6d:d4:a4:e2:1f:c7:ae:18:f1:55:0b:86:79:a5:96:ee:15:9a: 2c:fb:ca:c5:86:e6:43:2f:3f:3b:14:42:84:b4:89:66:3c:b3: 01:fc:f9:ee:32:5a:01:d4:40:46:5b:85:16:49:6a:95:8c:d0: 95:e5:e4:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKDc3MDZEMDg4RTkyMURFOEIwMUVCQkEwNjIwMUQwNDE1 MEU4NjREMDQwHhcNMjUwODEwMTgyMTUwWhcNMjUwODE3MTgyMTUwWjAYMRYwFAYD VQQDEw02ODk4ZTMzZS1jMjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvYKDUZ/7PgLf7FxdLn0LzSo5q6UAuBYSVdHrilxvMX9o1D3qLutGh3560A/ 1FkCvCzId90mcqT12Ec4mGdZNv46j8uq2WKt9it/RN6mLEVHBm/kdzSE2yMTwqJU NBBUiT4pV7eW+gZhuqB9WQ+N6gLMj8feE13BsR+74xf2vnDwJ00rzu5M59VgpQt5 Gf9dDrvnIp/wUeC4vfUtf4E+wKWh8BuCLL3NJSdEPpdJcgCjmRFDAKLdjBRDscgR xyrQZg5cT75m1olH0uoY9ALsSF3Ec/NB68e2hSI+OpD8217oKSiG1DDc1W/8oRo2 j/FXTXJR0wtlCRtd2zVpJZiOTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF46DFk6 lKZL99WsJJUZKPGgxwO3MB8GA1UdIwQYMBaAFHcG0IjpId6LAeu6BiAdBBUOhk0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82RTc0OTUxMDA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNvc0I2N29HSUIwRUZRNkdU UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3YlFpT2toM29zQjY3b0dJQjBFRlE2R1RRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82RTc0OTUxMDA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNv c0I2N29HSUIwRUZRNkdUUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOne7tAkvEJiKpuegFPZ8T0BPZxl2+OVYzgFvNjuKepp67asiRE4Sv vzHNae4AXsdOQRoxYqLQCgSUHLD0MqUtNseDJhB+vxbYWeklaZdYgLFDODzqxPLA yC22THF4dVVqdJRtRLJZ3D3V992puqUmeXSoNcZu+T8vtdGiI8JPv6gSmRczAYRK oPq7iNRe4NH1YvC+SMFraH0IusqQZ5v1CBqTj+kr/eARwqYp4LtZ+SJm/nB5lvbO bbjkCXrX0FJyRCLG/INt1KTiH8euGPFVC4Z5pZbuFZos+8rFhuZDLz87FEKEtIlm PLMB/PnuMloB1EBGW4UWSWqVjNCV5eRB -----END CERTIFICATE-----Generated at Sun Aug 10 21:18:26 2025 by rpki-client