$ rpki-client -vvf rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft File: qI7iP_jXCCjO28cB54yAdH_8Eco.mft (raw, json) Hash identifier: C1lXcKhsLv9L4nzqDvlZ4Dg26ggzrWw/AbU+aj3T6P8= Subject key identifier: 77:23:77:62:E7:84:FC:88:33:05:FF:A1:70:BA:E4:BF:8D:F2:36:36 Authority key identifier: A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA Certificate issuer: /CN=A9188A46/serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft Manifest number: 67 Signing time: Thu 07 Aug 2025 07:38:28 +0000 Manifest this update: Thu 07 Aug 2025 07:38:28 +0000 Manifest next update: Thu 14 Aug 2025 07:38:28 +0000 Files and hashes: 1: qI7iP_jXCCjO28cB54yAdH_8Eco.crl (hash: pCmxc0NSLSPcL43L7mmzkZxllwGUvcLkrqmMvfcTNlY=) 2: 31F9C990668B11F0B10A9677C4F9AE02.roa (hash: K71+YfyZb/sq1ejJDvO1hCnjvjzaiRU1ev/4lLqwtW0=) 3: 1BE631B0668C11F092BB0479C4F9AE02.roa (hash: 889zGZBsMfgV1bTIc5AsOgt3rk6bmVAUBCLPcamrp9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188A46, serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Validity Not Before: Aug 7 07:38:28 2025 GMT Not After : Aug 14 07:38:28 2025 GMT Subject: CN=689457f4-36ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:61:0c:3b:a4:60:cf:bb:59:93:af:2c:69:60: b1:60:90:a9:a4:88:ae:57:f1:e7:05:d8:76:7d:b5: b0:db:a5:5b:ca:9a:73:94:e9:65:26:62:20:2c:66: de:e8:02:ab:66:25:35:97:a5:95:52:9e:3d:ed:1b: ff:12:7e:40:2e:d3:08:b2:8c:2d:4f:5b:74:7b:69: 57:c2:08:3f:dd:55:e8:35:4d:75:9f:c6:ce:79:91: 2b:70:8f:f6:47:0f:3a:b2:0d:02:61:75:67:80:eb: f4:d7:3c:b8:51:42:d7:df:4c:bc:c9:b9:aa:f4:b9: 4d:f0:be:ac:90:d0:e8:a6:f9:a7:0f:54:14:2e:60: 7d:99:8a:43:10:eb:d8:de:50:f4:4e:9b:0a:8e:8c: 42:6b:b9:ac:6c:86:3a:01:a5:51:ed:fd:b4:d7:1c: d8:55:9c:e9:f2:a2:68:ae:07:2f:43:40:f8:ac:e8: a4:5c:57:44:66:b8:80:b6:b0:f8:1a:65:86:5a:58: 55:ad:83:c9:8e:c6:cb:59:44:87:2c:cc:3e:6f:be: c9:fb:57:4e:9a:08:fa:19:c3:ea:a8:43:8b:4b:58: 27:b9:5e:92:b1:1f:f5:5f:8a:ed:74:c9:36:93:a4: 30:1a:a2:e5:78:f1:f2:f3:94:d3:9c:42:1c:33:61: 95:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:23:77:62:E7:84:FC:88:33:05:FF:A1:70:BA:E4:BF:8D:F2:36:36 X509v3 Authority Key Identifier: keyid:A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ac:e5:f1:6e:da:87:78:67:70:eb:ff:7a:f0:a6:1e:45:70: 46:d5:b4:71:f0:e9:db:81:e1:ee:80:51:2b:ae:0a:b2:63:96: 26:3a:ee:38:15:a4:9f:b6:82:99:ed:a3:38:28:7b:4d:00:c9: d2:d8:a1:93:d8:ea:e7:aa:ef:d5:5a:38:99:a6:51:b5:d9:0c: 6b:58:86:92:ab:03:82:56:07:40:c3:95:b5:22:64:cf:cb:c3: c2:77:8f:cc:40:9d:8e:f5:b8:24:c7:cd:32:c2:a6:52:8c:b6: 78:28:9d:1d:99:88:0a:c8:64:34:1a:cd:18:01:07:0d:44:16: e1:aa:08:2e:26:86:8f:69:09:84:c0:2e:af:ed:08:bc:06:76: 22:4a:ed:93:19:c7:e0:a8:33:9c:97:5c:01:45:62:06:12:34: b5:8f:c2:3f:f9:59:47:f6:cc:bc:3d:d6:77:ff:64:af:31:24: 41:e7:f7:51:37:5e:ac:eb:16:18:e1:8a:1f:ba:8e:00:3e:fb: 32:6a:56:f5:e2:f8:61:41:ad:4f:52:5e:56:d5:ca:0a:99:b5: 68:2c:ca:75:f4:8b:6c:59:e7:1f:ba:2d:26:5b:55:ce:52:59: 46:39:64:ec:8e:10:b4:28:d4:98:b5:44:20:da:a0:66:5c:73: 85:36:f8:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OEE0NjExMC8GA1UEBRMoQTg4RUUyM0ZGOEQ3MDgyOENFREJDNzAxRTc4QzgwNzQ3 RkZDMTFDQTAeFw0yNTA4MDcwNzM4MjhaFw0yNTA4MTQwNzM4MjhaMBgxFjAUBgNV BAMTDTY4OTQ1N2Y0LTM2YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVYQw7pGDPu1mTryxpYLFgkKmkiK5X8ecF2HZ9tbDbpVvKmnOU6WUmYiAsZt7o AqtmJTWXpZVSnj3tG/8SfkAu0wiyjC1PW3R7aVfCCD/dVeg1TXWfxs55kStwj/ZH DzqyDQJhdWeA6/TXPLhRQtffTLzJuar0uU3wvqyQ0Oim+acPVBQuYH2ZikMQ69je UPROmwqOjEJruaxshjoBpVHt/bTXHNhVnOnyomiuBy9DQPis6KRcV0RmuIC2sPga ZYZaWFWtg8mOxstZRIcszD5vvsn7V06aCPoZw+qoQ4tLWCe5XpKxH/Vfiu10yTaT pDAaouV48fLzlNOcQhwzYZWzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdyN3YueE /IgzBf+hcLrkv43yNjYwHwYDVR0jBBgwFoAUqI7iP/jXCCjO28cB54yAdH/8Ecow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4QTQ2L0Q2NEU1QTdFREM4 NDExRUZCOTA4NTAzQkM0RjlBRTAyL3FJN2lQX2pYQ0NqTzI4Y0I1NHlBZEhfOEVj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUk3aVBfalhDQ2pPMjhjQjU0eUFkSF84RWNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4 QTQ2L0Q2NEU1QTdFREM4NDExRUZCOTA4NTAzQkM0RjlBRTAyL3FJN2lQX2pYQ0Nq TzI4Y0I1NHlBZEhfOEVjby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGas5fFu2od4Z3Dr/3rwph5FcEbVtHHw6duB4e6AUSuuCrJjliY67jgV pJ+2gpntozgoe00AydLYoZPY6ueq79VaOJmmUbXZDGtYhpKrA4JWB0DDlbUiZM/L w8J3j8xAnY71uCTHzTLCplKMtngonR2ZiArIZDQazRgBBw1EFuGqCC4mho9pCYTA Lq/tCLwGdiJK7ZMZx+CoM5yXXAFFYgYSNLWPwj/5WUf2zLw91nf/ZK8xJEHn91E3 XqzrFhjhih+6jgA++zJqVvXi+GFBrU9SXlbVygqZtWgsynX0i2xZ5x+6LSZbVc5S WUY5ZOyOELQo1Ji1RCDaoGZcc4U2+BI= -----END CERTIFICATE-----Generated at Sat Aug 9 02:56:22 2025 by rpki-client