$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: hN7tWdlc9Jg1bQnMKGmbhs9yu+7CWdd/qFEGLEo7cCg= Subject key identifier: 57:D1:73:85:70:18:C9:FE:49:CD:AD:2A:42:C0:0C:86:37:7A:FB:85 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 34BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 34B3 Signing time: Sun 10 Aug 2025 15:05:55 +0000 Manifest this update: Sun 10 Aug 2025 15:05:54 +0000 Manifest next update: Sun 17 Aug 2025 15:05:54 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: 2HFoMKNcx0xQWq2o/Cgby/hpAxQZepHKivfRvRztYVc=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13502 (0x34be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Aug 10 15:05:54 2025 GMT Not After : Aug 17 15:05:54 2025 GMT Subject: CN=6898b552-1169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:86:e7:08:a8:1a:4a:ea:8a:53:10:f6:1f:17: 43:05:e8:57:51:46:90:8a:4a:8d:67:cb:99:32:3a: 18:00:df:1d:54:30:f9:e1:85:38:ae:93:07:95:bb: 27:43:75:af:d7:cb:57:4d:f8:ee:ef:42:96:6d:20: 2e:03:32:b7:6a:f3:9f:d0:37:e7:86:8a:a4:8c:40: 7a:90:e4:d0:88:69:93:ca:8d:95:0e:e8:af:5a:75: 48:0c:69:83:43:d0:6d:bb:cd:9d:96:0d:ab:b6:e3: c7:af:3f:0f:4f:72:5a:b3:71:0a:d7:a0:06:97:81: d2:0a:9f:31:43:90:4a:ce:f9:44:aa:26:59:06:52: c7:c1:8a:bf:db:64:9e:a1:eb:8b:a7:c1:0f:e8:04: 67:1e:54:dd:5b:da:8f:5c:0b:63:1e:42:6f:89:b0: 0a:96:0f:4e:49:18:3c:b5:fd:d2:27:aa:8e:a9:30: 78:99:36:1e:30:cd:e8:bf:c5:8e:2d:4c:3b:42:99: 40:a6:98:a9:b2:07:9d:e3:d6:ed:dd:11:99:02:8b: 26:68:b6:05:6b:1a:dd:bb:61:23:8a:a2:98:86:bf: f0:f5:2c:33:cf:11:f9:8c:bb:74:63:64:4e:01:6d: 5b:c6:58:be:7c:10:b2:5b:8d:8a:44:41:53:5f:ce: 37:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D1:73:85:70:18:C9:FE:49:CD:AD:2A:42:C0:0C:86:37:7A:FB:85 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:9e:46:87:b5:0b:ed:3c:5a:79:7d:61:0e:61:7a:81:6e:05: 57:f4:5f:2c:bc:8e:d2:b3:6b:62:3a:bc:e5:72:48:03:2d:25: 5a:70:41:a6:22:e4:8b:54:45:9f:e4:e9:32:fc:87:88:36:7c: ed:df:40:20:6e:12:85:4d:2c:4c:f2:ca:45:b4:f0:68:1b:d1: de:14:86:28:62:be:a8:13:53:72:6a:f0:46:db:f6:cc:81:4a: 0e:2e:ed:16:17:f9:74:6e:5e:26:c5:3d:2c:96:68:bd:5d:9d: ea:d7:32:a5:58:a9:c9:f0:b4:e3:33:88:e4:f6:23:5a:fb:ba: 6a:2e:b2:f3:f1:a9:0f:7b:7d:93:88:a8:62:80:98:c8:17:9a: d4:34:6e:ad:21:93:13:78:d2:2f:31:ab:23:e4:5b:1d:d5:60: 19:40:03:8c:a4:fe:f1:9b:08:f3:f7:89:6f:f3:33:86:9a:e6: 17:2a:db:02:0b:aa:ad:e4:24:46:e9:de:bb:c3:39:63:a0:a7: 9e:dc:ba:2f:53:ee:6a:f1:9c:c4:ef:9f:74:3d:5e:e3:3e:74: 97:9d:a7:84:04:c5:74:68:1a:23:65:d9:46:d5:ae:45:09:36: 26:a6:fc:34:9e:65:b7:73:4b:63:5a:1d:7a:d0:06:70:5a:65: 87:02:3d:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUwODEwMTUwNTU0WhcNMjUwODE3MTUwNTU0WjAYMRYwFAYD VQQDEw02ODk4YjU1Mi0xMTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4bnCKgaSuqKUxD2HxdDBehXUUaQikqNZ8uZMjoYAN8dVDD54YU4rpMHlbsn Q3Wv18tXTfju70KWbSAuAzK3avOf0DfnhoqkjEB6kOTQiGmTyo2VDuivWnVIDGmD Q9Btu82dlg2rtuPHrz8PT3Jas3EK16AGl4HSCp8xQ5BKzvlEqiZZBlLHwYq/22Se oeuLp8EP6ARnHlTdW9qPXAtjHkJvibAKlg9OSRg8tf3SJ6qOqTB4mTYeMM3ov8WO LUw7QplAppipsged49bt3RGZAosmaLYFaxrdu2EjiqKYhr/w9SwzzxH5jLt0Y2RO AW1bxli+fBCyW42KREFTX843qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfRc4Vw GMn+Sc2tKkLADIY3evuFMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZnkaHtQvtPFp5fWEOYXqBbgVX9F8svI7Ss2tiOrzlckgDLSVacEGm IuSLVEWf5Oky/IeINnzt30AgbhKFTSxM8spFtPBoG9HeFIYoYr6oE1NyavBG2/bM gUoOLu0WF/l0bl4mxT0slmi9XZ3q1zKlWKnJ8LTjM4jk9iNa+7pqLrLz8akPe32T iKhigJjIF5rUNG6tIZMTeNIvMasj5Fsd1WAZQAOMpP7xmwjz94lv8zOGmuYXKtsC C6qt5CRG6d67wzljoKee3LovU+5q8ZzE7590PV7jPnSXnaeEBMV0aBojZdlG1a5F CTYmpvw0nmW3c0tjWh160AZwWmWHAj0N -----END CERTIFICATE-----Generated at Sun Aug 10 18:13:06 2025 by rpki-client