$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: Czx9YeggL2azaETTDiNfB/yPETsuZEDkMRevyLINSso= Subject key identifier: E3:DE:68:84:AA:4B:2A:28:D4:3B:25:2C:31:2E:3D:16:50:3F:E0:FB Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0DF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0DD4 Signing time: Mon 04 Aug 2025 18:06:45 +0000 Manifest this update: Mon 04 Aug 2025 18:06:44 +0000 Manifest next update: Mon 11 Aug 2025 18:06:44 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: CqP7qJeUZxkm2XJNyxvBAyuU2ISx7oLgkyH7vDZ15l8=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: /hGH0Pm/VcL/t48Buv7bSF4xPC6xqGHOH5JeW2XnqTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3574 (0xdf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9, serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Aug 4 18:06:44 2025 GMT Not After : Aug 11 18:06:44 2025 GMT Subject: CN=6890f6b4-485f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:88:c7:52:5d:27:54:3d:22:4a:fd:5e:a1: ff:0f:99:3d:bb:77:c6:a3:38:c0:1d:62:74:63:51: 0e:af:d1:41:8e:ba:2f:59:55:27:5f:31:1f:7d:b0: 7c:b0:32:41:af:82:5e:5e:b4:8c:3d:c3:ac:d0:bb: ce:09:35:bc:ce:71:ca:d0:30:83:47:b5:ce:73:1d: 02:4e:e3:1a:2f:4b:a8:b9:d2:06:b8:d6:39:62:d6: 23:f2:59:49:62:a4:0e:9c:c8:51:86:29:0e:f8:3d: 06:40:97:99:31:78:0f:14:e1:43:fd:1c:37:1f:2b: 71:0f:31:a0:c0:ec:75:c2:db:ef:fa:58:9f:1f:e1: f1:1d:c6:d9:b4:ce:84:2b:fe:09:4f:29:be:74:f4: 97:d8:dc:6e:9f:5d:53:bb:db:17:54:df:e0:4e:76: d9:b6:fa:6d:9f:59:35:f8:77:24:c4:21:e7:f2:18: 1e:77:dd:2f:ac:b6:42:a3:3c:86:36:87:dd:40:17: ea:bf:5d:e0:31:63:c5:ad:87:5b:72:16:d5:af:b9: b9:9c:38:70:bf:12:94:d7:6a:5e:28:74:e4:64:75: ef:54:ec:3c:24:24:cd:83:b4:00:d5:0b:b0:f1:a6: 64:95:fd:d1:57:fe:ee:ef:9e:59:c3:1b:cb:6b:8d: 2f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DE:68:84:AA:4B:2A:28:D4:3B:25:2C:31:2E:3D:16:50:3F:E0:FB X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:80:40:b8:07:3f:4d:d5:5b:09:e7:55:f5:d5:7e:d3:95:36: f5:be:ca:77:b4:ad:cf:34:c4:75:33:22:eb:65:52:a0:f7:b7: 24:32:00:3d:a0:8e:c0:af:6a:5b:85:fa:ce:15:9f:7a:8f:a2: bb:68:77:a3:da:15:80:82:5e:36:1a:7e:b7:68:ab:e2:d1:55: 91:e8:db:0c:c1:3a:21:8b:c1:fd:c1:fa:aa:ff:d4:a6:55:21: 07:c7:15:15:68:95:e9:be:c5:24:86:dd:47:79:eb:4b:94:fc: b7:9f:4c:ad:ad:89:a5:94:bb:97:59:ec:22:a4:2e:97:e7:71: f6:1f:7e:fe:cb:46:35:37:89:2b:8f:27:02:f4:20:66:cf:09: aa:38:ee:78:7f:db:92:09:25:a7:fc:0e:e9:7c:7a:e2:d0:9a: 51:55:6e:8e:2e:f7:1c:bf:18:c9:52:33:b9:8d:72:c3:9a:02: bd:cb:c5:4e:a8:12:3a:93:2e:10:9a:34:17:f3:f3:95:6c:19: 4e:0c:47:55:16:c6:a3:56:bb:14:43:74:93:21:43:6d:a1:69: c1:1b:4b:82:b1:5c:c4:20:79:b7:b3:11:19:dc:9d:d5:c3:e0: d1:84:b9:21:8e:d2:8d:a3:d0:98:28:a6:51:a2:b9:ff:dd:4e: 8f:52:a8:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjUwODA0MTgwNjQ0WhcNMjUwODExMTgwNjQ0WjAYMRYwFAYD VQQDEw02ODkwZjZiNC00ODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxL+Ix1JdJ1Q9Ikr9XqH/D5k9u3fGozjAHWJ0Y1EOr9FBjrovWVUnXzEffbB8 sDJBr4JeXrSMPcOs0LvOCTW8znHK0DCDR7XOcx0CTuMaL0uoudIGuNY5YtYj8llJ YqQOnMhRhikO+D0GQJeZMXgPFOFD/Rw3HytxDzGgwOx1wtvv+lifH+HxHcbZtM6E K/4JTym+dPSX2Nxun11Tu9sXVN/gTnbZtvptn1k1+HckxCHn8hged90vrLZCozyG NofdQBfqv13gMWPFrYdbchbVr7m5nDhwvxKU12peKHTkZHXvVOw8JCTNg7QA1Quw 8aZklf3RV/7u755ZwxvLa40vTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPeaISq Syoo1DslLDEuPRZQP+D7MB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGgEC4Bz9N1VsJ51X11X7TlTb1vsp3tK3PNMR1MyLrZVKg97ckMgA9 oI7Ar2pbhfrOFZ96j6K7aHej2hWAgl42Gn63aKvi0VWR6NsMwTohi8H9wfqq/9Sm VSEHxxUVaJXpvsUkht1HeetLlPy3n0ytrYmllLuXWewipC6X53H2H37+y0Y1N4kr jycC9CBmzwmqOO54f9uSCSWn/A7pfHri0JpRVW6OLvccvxjJUjO5jXLDmgK9y8VO qBI6ky4QmjQX8/OVbBlODEdVFsajVrsUQ3STIUNtoWnBG0uCsVzEIHm3sxEZ3J3V w+DRhLkhjtKNo9CYKKZRorn/3U6PUqim -----END CERTIFICATE-----Generated at Wed Aug 6 11:19:55 2025 by rpki-client