$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: UNP7eTBFkTmvwd4nicN5pYZduhIcC+hQjcTDDMvqcrk= Subject key identifier: C0:69:45:89:2C:EF:43:7C:52:FE:89:A2:87:3E:AD:FA:59:76:35:92 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: AE Signing time: Sat 09 Aug 2025 06:31:24 +0000 Manifest this update: Sat 09 Aug 2025 06:31:23 +0000 Manifest next update: Sat 16 Aug 2025 06:31:23 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: gPBV+znq8Jr/1AhHTaykUlK/6il/jSSVi58J0p/ko9k=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: n3pzdI1R6OnpGAR7FmeF9nZ8iLEx5lsOyhq7ASsGK90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Aug 9 06:31:23 2025 GMT Not After : Aug 16 06:31:23 2025 GMT Subject: CN=6896eb3c-bb30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:81:78:3b:b1:79:e7:1d:87:13:1d:97:34:5f: 05:c0:bd:ab:11:5d:7a:1c:e6:de:ca:5d:a5:ce:47: ce:dc:c6:18:fd:1b:a1:10:e9:9f:6a:cc:eb:7a:d9: 18:0b:8a:8d:8e:8d:05:73:81:b1:59:26:aa:68:1e: 44:dd:e2:12:4f:a1:25:eb:0f:1d:87:1b:21:97:9b: 60:3e:1d:76:9f:cd:c9:ec:f4:43:32:a9:cf:c7:f8: 5e:1e:24:7d:b5:36:b6:41:db:1f:e2:73:ca:4d:14: 93:e6:54:8a:0d:f4:cc:6f:69:a3:21:73:43:d8:11: 3c:c6:72:d1:2a:9e:96:a6:16:ad:12:a8:29:2a:b6: 1c:65:61:6d:d9:ba:84:56:a7:54:4c:e0:5d:cc:ea: 4b:07:76:13:f2:b4:fb:15:0d:ca:fe:a5:0c:18:cf: 61:c5:55:34:be:8a:69:d6:3c:71:de:65:d1:33:e7: 2a:84:b2:2b:a6:e8:04:d1:60:17:ba:cd:ee:c6:f9: 62:f9:ea:b6:00:0c:d3:c8:51:13:e2:32:d5:7a:1a: ae:ea:81:34:ec:cb:12:c6:63:a7:3d:a9:f5:b0:8f: 55:49:b3:60:09:27:6a:72:5c:d3:ab:2f:e4:ae:99: 2e:77:93:a9:08:cb:f1:72:3f:1b:ba:67:07:2e:67: 74:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:69:45:89:2C:EF:43:7C:52:FE:89:A2:87:3E:AD:FA:59:76:35:92 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:5b:d3:d1:4e:ee:c6:00:05:20:b4:11:6b:04:c8:87:6b:1a: 49:ca:64:96:7c:70:2f:ec:03:70:fd:5e:62:e7:20:cd:99:88: 45:70:b6:ae:85:79:b6:08:2c:e8:a6:f1:50:e0:a6:9a:54:e0: df:5e:ab:92:57:83:f7:b8:77:62:4f:bc:38:3a:c1:54:a9:05: bf:f4:ea:1c:c0:27:41:22:16:f0:2c:57:fa:f5:4a:1d:32:3b: 64:7d:95:e3:5e:0a:97:05:85:9d:0a:9d:37:1f:e6:fe:b7:80: e8:44:8f:36:68:21:03:2a:9c:17:16:48:ad:d4:ab:19:c7:e3: e1:e6:44:d1:41:30:fa:7b:da:c7:a9:2e:d3:a3:75:30:14:0b: 2e:58:e0:40:b4:b6:30:2f:32:e5:2d:40:61:80:58:df:13:5b: 6b:b4:3b:93:83:80:e5:1e:65:70:10:9d:09:4e:fe:a9:95:a0: db:64:25:89:e5:8d:64:4e:ff:e0:a9:05:3b:9b:c1:6e:9d:22: 9a:cd:9e:bb:a9:e1:6e:1e:98:f7:00:ed:3d:07:d2:a8:42:ad: 3a:a5:e1:d1:72:15:94:f8:f8:3e:ad:36:14:66:83:a6:d0:42: 34:fe:8a:af:59:bb:48:e4:94:26:37:41:5e:58:6c:9e:69:fc: 6c:c3:3c:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw NzU0MjQ0M0IwHhcNMjUwODA5MDYzMTIzWhcNMjUwODE2MDYzMTIzWjAYMRYwFAYD VQQDEw02ODk2ZWIzYy1iYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8oF4O7F55x2HEx2XNF8FwL2rEV16HObeyl2lzkfO3MYY/RuhEOmfaszretkY C4qNjo0Fc4GxWSaqaB5E3eIST6El6w8dhxshl5tgPh12n83J7PRDMqnPx/heHiR9 tTa2Qdsf4nPKTRST5lSKDfTMb2mjIXND2BE8xnLRKp6WphatEqgpKrYcZWFt2bqE VqdUTOBdzOpLB3YT8rT7FQ3K/qUMGM9hxVU0vopp1jxx3mXRM+cqhLIrpugE0WAX us3uxvli+eq2AAzTyFET4jLVehqu6oE07MsSxmOnPan1sI9VSbNgCSdqclzTqy/k rpkud5OpCMvxcj8bumcHLmd0KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBpRYks 70N8Uv6Jooc+rfpZdjWSMB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1 V05RNHZCZTZnaVVIVkNSRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSW9PRTu7GAAUgtBFrBMiHaxpJymSWfHAv7ANw/V5i5yDNmYhFcLau hXm2CCzopvFQ4KaaVODfXquSV4P3uHdiT7w4OsFUqQW/9OocwCdBIhbwLFf69Uod MjtkfZXjXgqXBYWdCp03H+b+t4DoRI82aCEDKpwXFkit1KsZx+Ph5kTRQTD6e9rH qS7To3UwFAsuWOBAtLYwLzLlLUBhgFjfE1trtDuTg4DlHmVwEJ0JTv6plaDbZCWJ 5Y1kTv/gqQU7m8FunSKazZ67qeFuHpj3AO09B9KoQq06peHRchWU+Pg+rTYUZoOm 0EI0/oqvWbtI5JQmN0FeWGyeafxswzzf -----END CERTIFICATE-----Generated at Sat Aug 9 15:15:08 2025 by rpki-client