$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft File: AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft (raw, json) Hash identifier: MxCVzeaTv2bgNNARkUbzYSjEYEQhxTP9uFXGAm0/amI= Subject key identifier: 12:1B:56:16:EE:95:8D:93:FA:BD:10:CF:38:E3:A0:1F:89:48:EE:53 Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft Manifest number: 60 Signing time: Sun 03 Aug 2025 07:28:49 +0000 Manifest this update: Sun 03 Aug 2025 07:28:49 +0000 Manifest next update: Sun 10 Aug 2025 07:28:49 +0000 Files and hashes: 1: AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl (hash: S84Wl4G7AbR8bZHIA3LviaTESv7bWy5jdFm/mUEuMuQ=) 2: 7970EAA266DA11F084325D42C4F9AE02.roa (hash: PikBYoAiLsYP3+Plkjib3H61VZb7HfjBFcsCC14z91s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 07:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Aug 3 07:28:49 2025 GMT Not After : Aug 10 07:28:49 2025 GMT Subject: CN=688f0fb1-49db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d8:4a:e0:14:ef:6d:c1:f1:6c:df:10:10:71: 68:5e:e6:b8:cd:a9:08:0b:4a:60:cc:21:f8:f4:37: a1:46:33:e2:76:41:d0:4f:01:59:4d:e1:24:e4:ae: 4a:68:39:d0:97:64:87:96:f7:3b:08:1a:e0:57:fd: 1d:c1:2b:a6:cb:18:a9:b9:ab:b2:40:73:d7:d2:e5: 25:8c:45:ca:83:84:4a:5d:ae:0f:a1:57:53:7a:41: 5d:e6:35:a4:52:44:5a:87:af:15:f0:d5:50:44:0d: 3f:7f:72:5b:c0:ff:a7:da:36:29:e3:c5:fd:ba:b3: b2:e9:73:90:47:5f:92:cb:3d:ca:bd:8f:48:e8:4c: ee:28:8e:38:a1:3e:de:12:4f:7e:11:b0:9d:bb:13: d4:08:74:b6:0a:9f:1b:07:bd:be:5b:f9:ec:ae:83: 92:5d:b8:d7:69:26:26:0f:46:9a:15:46:c1:03:28: 77:8f:bd:62:5b:79:ce:f7:d2:9e:ca:58:0c:90:d4: 6d:e9:e9:c6:32:3b:7a:ec:1f:ad:8c:ce:00:b9:aa: 8e:98:34:44:81:cb:21:e9:0f:09:c7:70:5a:d8:b0: 42:33:99:98:c2:61:c3:df:7e:62:69:5a:4a:5c:84: f8:e6:a5:68:04:ee:c0:9c:30:22:81:be:98:66:2d: 6e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1B:56:16:EE:95:8D:93:FA:BD:10:CF:38:E3:A0:1F:89:48:EE:53 X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:d1:46:06:b3:56:c2:b3:43:1b:68:f8:a9:b4:dc:e3:01:ef: ed:69:14:f3:65:e6:80:5f:0b:3f:a8:61:51:a7:da:eb:08:7b: 4a:30:23:c1:e0:05:0c:57:29:3d:0b:47:16:b8:47:74:9d:2d: 04:d9:61:bf:04:a3:68:61:61:75:ea:9b:b4:74:b2:3d:25:10: b4:93:29:69:0e:52:d2:d9:0b:f4:df:a1:93:81:fe:41:83:87: c4:18:27:82:1f:27:76:7d:b2:d3:8c:88:c1:5e:5c:02:86:06: 16:93:d9:d1:20:2c:16:99:0a:82:4e:d0:81:36:05:9f:7c:94: 24:c9:fd:c2:6d:4f:08:89:5b:c3:71:42:41:85:d8:1c:23:ee: 32:e6:a6:be:cb:01:64:2a:05:e2:91:a9:f0:66:1a:2c:33:a3: f2:d5:10:3e:24:d7:a4:1d:74:df:69:28:73:4e:53:d7:89:63: cd:86:02:11:1b:90:21:ce:f3:16:dc:7f:05:36:bc:35:25:4c: f6:61:0b:25:79:4c:04:13:06:d8:c2:71:6b:51:03:7a:2a:0d: 6c:77:b0:9a:c2:e8:c4:91:df:8a:f4:8a:04:c5:cd:32:67:c5: 66:04:f1:df:1d:84:16:37:a7:70:f3:62:0f:37:a2:d2:b8:1d: 4a:92:27:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDlFQTExMC8GA1UEBRMoMDBGRDMxRkQwNkI0MjA0QzNERENCNjM1MDcxODk1MzM3 NzhDQ0NGODAeFw0yNTA4MDMwNzI4NDlaFw0yNTA4MTAwNzI4NDlaMBgxFjAUBgNV BAMTDTY4OGYwZmIxLTQ5ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq2ErgFO9twfFs3xAQcWhe5rjNqQgLSmDMIfj0N6FGM+J2QdBPAVlN4STkrkpo OdCXZIeW9zsIGuBX/R3BK6bLGKm5q7JAc9fS5SWMRcqDhEpdrg+hV1N6QV3mNaRS RFqHrxXw1VBEDT9/clvA/6faNinjxf26s7Lpc5BHX5LLPcq9j0joTO4ojjihPt4S T34RsJ27E9QIdLYKnxsHvb5b+eyug5JduNdpJiYPRpoVRsEDKHePvWJbec730p7K WAyQ1G3p6cYyO3rsH62MzgC5qo6YNESByyHpDwnHcFrYsEIzmZjCYcPffmJpWkpc hPjmpWgE7sCcMCKBvphmLW5TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEhtWFu6V jZP6vRDPOOOgH4lI7lMwHwYDVR0jBBgwFoAUAP0x/Qa0IEw93LY1BxiVM3eMzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwOUVBLzhDNTkxMkZFRTEz QjExRUZCQTdCREYzQkM0RjlBRTAyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQVAweF9RYTBJRXc5M0xZMUJ4aVZNM2VNelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw OUVBLzhDNTkxMkZFRTEzQjExRUZCQTdCREYzQkM0RjlBRTAyL0FQMHhfUWEwSUV3 OTNMWTFCeGlWTTNlTXpQZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHPRRgazVsKzQxto+Km03OMB7+1pFPNl5oBfCz+oYVGn2usIe0owI8Hg BQxXKT0LRxa4R3SdLQTZYb8Eo2hhYXXqm7R0sj0lELSTKWkOUtLZC/TfoZOB/kGD h8QYJ4IfJ3Z9stOMiMFeXAKGBhaT2dEgLBaZCoJO0IE2BZ98lCTJ/cJtTwiJW8Nx QkGF2Bwj7jLmpr7LAWQqBeKRqfBmGiwzo/LVED4k16QddN9pKHNOU9eJY82GAhEb kCHO8xbcfwU2vDUlTPZhCyV5TAQTBtjCcWtRA3oqDWx3sJrC6MSR34r0igTFzTJn xWYE8d8dhBY3p3DzYg83otK4HUqSJz0= -----END CERTIFICATE-----Generated at Mon Aug 4 11:11:06 2025 by rpki-client