$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: BZdVsxWXXDDak8EeIs5/SFBYIj/V9/wFbafZWyj7+OQ= Subject key identifier: 5D:83:B2:3E:B5:E7:6A:0F:9D:D9:62:D1:80:AC:10:DD:11:27:F1:6E Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 016C Signing time: Mon 11 Aug 2025 03:58:28 +0000 Manifest this update: Mon 11 Aug 2025 03:58:28 +0000 Manifest next update: Mon 18 Aug 2025 03:58:28 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: hzwlw1Vv+nw36kDqwFWS9dptINNV6xwFlhbl4NpOcZc=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Aug 11 03:58:28 2025 GMT Not After : Aug 18 03:58:28 2025 GMT Subject: CN=68996a64-f010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ba:c6:82:a3:6a:53:73:87:7d:a6:3b:91:c4: 2f:0c:46:b2:90:5d:f0:f5:9a:65:d2:c4:c5:d7:95: 89:7e:dc:7f:45:4f:c5:43:2b:7e:a3:db:e4:f9:19: 8a:c6:05:97:4e:7d:a2:7f:b5:93:36:2b:86:30:75: ae:5f:9a:14:b0:ee:10:dd:22:01:a1:5c:eb:2a:76: 62:19:87:cf:fc:7b:e6:22:ce:1d:9e:b0:32:60:08: ba:57:ff:a9:a2:04:e3:da:ce:2c:0b:00:11:93:44: ca:96:9a:17:c7:00:d3:a3:b5:f3:ae:2e:a4:90:e3: 8f:88:e1:d8:b3:d5:13:fe:f0:d2:0f:36:e3:7d:fd: 53:c3:2c:0d:ac:ba:ab:6d:84:15:ae:fb:ea:fe:de: bb:5e:d1:b7:a2:5b:1b:2a:40:bf:07:1d:4f:fb:d1: 40:67:cd:e5:54:b9:d5:e5:fc:c3:76:dd:d1:55:8d: 57:6d:4a:4c:ce:b8:1b:31:81:09:e7:ac:df:7f:1f: 43:5a:7a:e3:9c:ab:04:41:3a:0c:ae:33:ad:8a:18: b4:fa:04:bb:05:0e:ad:04:a9:89:01:10:2e:ec:98: 88:2a:d1:95:58:60:b8:88:a7:4c:83:1e:91:f8:e1: d5:c0:0f:ee:58:63:31:27:85:f1:fb:19:b2:d1:73: 1b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:83:B2:3E:B5:E7:6A:0F:9D:D9:62:D1:80:AC:10:DD:11:27:F1:6E X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:8f:0b:3d:4a:8f:7c:47:c8:44:e0:ae:e7:d1:cb:ae:ec:3f: 98:81:17:62:59:1f:34:fe:56:72:f5:66:f8:02:32:36:88:54: 4a:6d:36:65:55:96:c4:b9:49:c3:c4:3f:07:b2:a1:a3:86:91: 17:ab:2f:8b:59:8c:01:07:cb:fd:47:29:24:52:bd:39:f0:b6: b8:97:ce:60:74:0e:61:36:99:2c:88:f5:8f:c8:84:b0:f8:2d: 4b:a9:4a:46:15:e8:39:f0:2d:dd:60:35:e4:60:f7:99:51:08: 17:f3:04:0d:56:9d:51:0f:84:f3:21:cf:eb:0e:fa:37:b6:c8: 87:01:76:6f:f1:9a:4a:07:14:f3:d3:60:73:39:cb:a3:8b:80: ce:ae:59:91:11:ef:b9:92:90:45:87:4a:8d:69:e0:77:79:f4: 5e:f6:56:cd:96:18:c9:11:ae:9e:6e:4a:a7:69:af:8c:40:61: c9:00:53:68:39:a0:6a:55:ba:47:71:05:b0:3c:a1:a4:3b:9a: 4f:a1:9b:fc:35:10:26:25:97:24:72:dd:c5:27:c4:90:5f:f0: 0d:2e:b9:0e:85:da:e7:6d:22:a9:75:d1:fd:2f:cc:7b:8b:2b: fc:be:81:35:15:c0:1e:8d:79:3e:6c:0c:c9:d8:ba:44:4e:70: 91:02:d1:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwODExMDM1ODI4WhcNMjUwODE4MDM1ODI4WjAYMRYwFAYD VQQDEw02ODk5NmE2NC1mMDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbrGgqNqU3OHfaY7kcQvDEaykF3w9Zpl0sTF15WJftx/RU/FQyt+o9vk+RmK xgWXTn2if7WTNiuGMHWuX5oUsO4Q3SIBoVzrKnZiGYfP/HvmIs4dnrAyYAi6V/+p ogTj2s4sCwARk0TKlpoXxwDTo7Xzri6kkOOPiOHYs9UT/vDSDzbjff1TwywNrLqr bYQVrvvq/t67XtG3olsbKkC/Bx1P+9FAZ83lVLnV5fzDdt3RVY1XbUpMzrgbMYEJ 56zffx9DWnrjnKsEQToMrjOtihi0+gS7BQ6tBKmJARAu7JiIKtGVWGC4iKdMgx6R +OHVwA/uWGMxJ4Xx+xmy0XMbtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2Dsj61 52oPndli0YCsEN0RJ/FuMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgjws9So98R8hE4K7n0cuu7D+YgRdiWR80/lZy9Wb4AjI2iFRKbTZl VZbEuUnDxD8HsqGjhpEXqy+LWYwBB8v9RykkUr058La4l85gdA5hNpksiPWPyISw +C1LqUpGFeg58C3dYDXkYPeZUQgX8wQNVp1RD4TzIc/rDvo3tsiHAXZv8ZpKBxTz 02BzOcuji4DOrlmREe+5kpBFh0qNaeB3efRe9lbNlhjJEa6ebkqnaa+MQGHJAFNo OaBqVbpHcQWwPKGkO5pPoZv8NRAmJZckct3FJ8SQX/ANLrkOhdrnbSKpddH9L8x7 iyv8voE1FcAejXk+bAzJ2LpETnCRAtHY -----END CERTIFICATE-----Generated at Mon Aug 11 10:45:42 2025 by rpki-client