$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft File: rQWVkiI-gWrFPEM7llhG950wUjQ.mft (raw, json) Hash identifier: mME/H7HWShp57WDsK+6G+SYqlGp2K/3yrgEII1EpZGU= Subject key identifier: FB:94:D2:B2:D2:02:EA:67:B1:DE:ED:BD:C2:87:33:D5:36:F9:2B:20 Authority key identifier: AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 Certificate issuer: /CN=A91BAEDC/serialNumber=AD059592223E816AC53C433B965846F79D305234 Certificate serial: 1BB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft Manifest number: 1BA0 Signing time: Mon 04 Aug 2025 16:24:46 +0000 Manifest this update: Mon 04 Aug 2025 16:24:46 +0000 Manifest next update: Mon 11 Aug 2025 16:24:46 +0000 Files and hashes: 1: rQWVkiI-gWrFPEM7llhG950wUjQ.crl (hash: 4arWa/YIRE5cry3PaS+bphR6QG/tRgF+qrlIgwWv6X0=) 2: C85D0F7E477711EBB4044E31C4F9AE02.roa (hash: d9C+rmMNQQZELmuy5aIPVlKeATtzTC5JJ8WoYiMXlHI=) 3: C98708BE477711EBB4044E31C4F9AE02.roa (hash: V0J+K3DJnN+osBZ9dwTDUPh/HvfjgBzZSWLUoCMaCuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7095 (0x1bb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAEDC, serialNumber=AD059592223E816AC53C433B965846F79D305234 Validity Not Before: Aug 4 16:24:46 2025 GMT Not After : Aug 11 16:24:46 2025 GMT Subject: CN=6890dece-7d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1a:75:9d:d2:48:99:85:fb:6c:2d:ec:f3:55: 77:50:1f:97:65:28:3b:fe:21:d4:ba:90:14:6d:9c: eb:8e:79:34:f2:97:41:4c:6c:88:46:73:82:34:db: 0b:c3:b6:48:86:5a:65:1e:32:42:5a:b6:e9:a1:7b: ab:5d:d0:8c:e5:4a:bf:5e:69:0d:41:46:88:7d:42: ba:3b:fc:25:4d:51:49:bb:a8:e0:1b:9e:ab:77:05: 74:68:2f:6c:ee:8d:44:2a:30:8e:49:99:88:71:e9: 9d:c3:04:91:93:b1:de:05:f0:98:62:ea:fd:ce:fe: 7e:32:a9:b2:6d:e2:82:70:36:fc:b8:41:a1:97:17: 57:ef:48:27:c2:a3:92:a1:20:25:a3:65:2e:4b:33: 59:b4:a0:51:dd:41:e0:44:08:45:33:f4:ab:0c:f3: 0d:7f:62:21:86:3a:c9:3e:18:2f:52:ab:39:98:0d: 70:4c:08:21:d8:06:31:dd:e1:f2:5f:3a:a0:eb:be: 88:70:9d:e1:87:7c:ca:05:d3:4a:33:d0:52:e6:53: 04:b7:8f:4d:69:a8:cb:fc:8a:bc:ae:c8:18:4b:15: 41:0b:96:a3:a2:56:ee:ee:de:1c:0e:31:5e:a0:8a: 20:bf:64:f2:bf:06:0c:f7:83:96:97:bd:aa:51:62: cb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:94:D2:B2:D2:02:EA:67:B1:DE:ED:BD:C2:87:33:D5:36:F9:2B:20 X509v3 Authority Key Identifier: keyid:AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:0a:d4:e5:c0:6c:4d:f8:03:13:4f:b0:a8:92:e3:2e:8b:69: c7:64:96:7b:5d:99:70:af:99:ae:13:7e:8e:4b:49:52:6d:09: 1e:ff:1a:ca:fe:a3:e7:be:94:1f:5a:4d:63:cd:29:de:5d:9c: a3:4d:79:d9:17:63:20:31:f7:75:59:1d:69:06:4c:b7:23:27: be:65:e7:0e:0c:ad:12:0e:92:01:a4:f5:bf:6a:6e:b0:39:51: de:bd:3a:b9:8f:66:aa:65:5e:54:26:59:ff:19:fd:78:0c:91: e4:a8:19:90:f1:9e:0b:de:1c:1d:67:b2:f4:ce:f3:a0:82:b5: 1f:4e:ab:a0:a0:dc:ef:48:33:4d:38:10:02:c3:74:14:13:e7: f8:8f:f1:f7:3f:56:c3:45:ed:8b:8f:4e:5d:b0:c6:bf:f5:b6: 2b:bf:4f:00:ad:9a:2f:aa:6f:4e:c4:b4:f5:b2:95:49:64:e6: 41:36:62:9b:ac:39:9e:80:eb:e2:f9:ab:ba:0e:af:8d:57:71: cd:7a:62:52:51:88:93:4a:0a:8b:6e:d4:92:8d:82:d1:ac:d1: fb:13:cb:d0:63:a2:c3:8f:b2:ef:7b:39:0e:c0:1e:24:79:fa: 88:59:a7:52:78:6c:3d:4d:ae:72:76:e2:0d:83:f7:63:10:5b: 2c:b5:09:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFREMxMTAvBgNVBAUTKEFEMDU5NTkyMjIzRTgxNkFDNTNDNDMzQjk2NTg0NkY3 OUQzMDUyMzQwHhcNMjUwODA0MTYyNDQ2WhcNMjUwODExMTYyNDQ2WjAYMRYwFAYD VQQDEw02ODkwZGVjZS03ZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Rp1ndJImYX7bC3s81V3UB+XZSg7/iHUupAUbZzrjnk08pdBTGyIRnOCNNsL w7ZIhlplHjJCWrbpoXurXdCM5Uq/XmkNQUaIfUK6O/wlTVFJu6jgG56rdwV0aC9s 7o1EKjCOSZmIcemdwwSRk7HeBfCYYur9zv5+MqmybeKCcDb8uEGhlxdX70gnwqOS oSAlo2UuSzNZtKBR3UHgRAhFM/SrDPMNf2IhhjrJPhgvUqs5mA1wTAgh2AYx3eHy Xzqg676IcJ3hh3zKBdNKM9BS5lMEt49NaajL/Iq8rsgYSxVBC5ajolbu7t4cDjFe oIogv2TyvwYM94OWl72qUWLLYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuU0rLS Aupnsd7tvcKHM9U2+SsgMB8GA1UdIwQYMBaAFK0FlZIiPoFqxTxDO5ZYRvedMFI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUVEQy8yREMxQkFGMjA5 ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdXckZQRU03bGxoRzk1MHdV alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRV1ZraUktZ1dyRlBFTTdsbGhHOTUwd1VqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUVEQy8yREMxQkFGMjA5ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdX ckZQRU03bGxoRzk1MHdValEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpCtTlwGxN+AMTT7CokuMui2nHZJZ7XZlwr5muE36OS0lSbQke/xrK /qPnvpQfWk1jzSneXZyjTXnZF2MgMfd1WR1pBky3Iye+ZecODK0SDpIBpPW/am6w OVHevTq5j2aqZV5UJln/Gf14DJHkqBmQ8Z4L3hwdZ7L0zvOggrUfTqugoNzvSDNN OBACw3QUE+f4j/H3P1bDRe2Lj05dsMa/9bYrv08ArZovqm9OxLT1spVJZOZBNmKb rDmegOvi+au6Dq+NV3HNemJSUYiTSgqLbtSSjYLRrNH7E8vQY6LDj7LvezkOwB4k efqIWadSeGw9Ta5yduINg/djEFsstQkm -----END CERTIFICATE-----Generated at Wed Aug 6 16:08:38 2025 by rpki-client