$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: YWfn2SLZ413X3bIm1D1LSkZ5oF2chh7zKoiHxMN5p+o= Subject key identifier: C9:9D:76:98:AF:EF:B4:EA:0B:F0:CC:1D:2E:4D:BF:2E:9D:92:EE:A8 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 0615 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 0611 Signing time: Sat 02 Aug 2025 23:14:31 +0000 Manifest this update: Sat 02 Aug 2025 23:14:30 +0000 Manifest next update: Sat 09 Aug 2025 23:14:30 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: uVj2TO1t+fsk72Hi32IBaWgIuQSGMq20uoOATXrxREs=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: gGaPSZTXBZeyhBvTnRDrA4x3lhLiqzg2ne+ktqQeFQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 23:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1557 (0x615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Aug 2 23:14:30 2025 GMT Not After : Aug 9 23:14:30 2025 GMT Subject: CN=688e9bd7-81fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b4:a4:72:9a:3b:36:68:2a:18:ec:96:a3:41: 2a:03:58:a1:8a:19:de:bd:17:1c:ce:4e:f2:5c:bd: ed:06:6a:f9:ac:37:22:40:a1:9a:6a:64:04:cf:c2: 98:14:6e:12:3f:e3:9b:3b:26:b7:f8:e6:dd:98:8e: 8e:64:ce:87:da:4f:97:d6:6c:85:49:be:74:68:d8: 65:69:ac:56:8f:80:d0:9d:70:17:df:cf:11:92:a4: 29:52:28:3f:a2:de:79:e4:1e:bf:7d:9c:c4:88:2f: e3:30:dc:9f:01:bf:fa:89:9f:54:42:c8:0c:45:03: c5:ed:2e:24:e0:9b:a9:8c:d5:ef:3a:6c:89:64:b0: 8d:09:f1:db:64:e9:66:9a:ac:74:7a:9a:ab:7a:ca: a5:93:c9:7e:2c:56:a2:fa:49:34:18:66:f7:1e:b4: 42:b8:34:e7:a4:60:02:b5:e8:b2:3a:87:f6:a5:47: 40:95:d6:dd:81:33:f2:91:9a:5c:a2:2d:37:87:da: 4e:a1:c1:b1:47:c5:01:51:d4:f1:83:1b:17:6f:d6: bd:39:2c:d0:88:e8:ce:9c:e3:b8:f7:3c:41:4a:71: 96:6c:8c:be:e2:7f:ef:94:30:1a:c0:8d:2a:eb:6f: f3:10:a4:69:80:9f:f6:a4:75:c1:14:0e:63:b3:54: 18:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9D:76:98:AF:EF:B4:EA:0B:F0:CC:1D:2E:4D:BF:2E:9D:92:EE:A8 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:9c:90:14:f5:ce:bf:0a:a4:17:a7:5b:61:a0:9a:9d:06:d2: 1a:86:2f:e8:1e:a8:a3:86:cb:23:65:9e:bb:6d:bd:43:d8:75: ee:24:86:f2:eb:02:58:99:c3:fe:14:75:1b:6b:ca:b9:aa:09: 24:12:9f:94:f5:3d:5e:20:d3:13:1f:ab:d4:de:af:b3:58:8e: 19:c4:e2:55:b6:fd:17:51:94:20:e9:27:b9:ef:16:5b:8f:c1: 88:d5:8a:dc:bf:71:95:43:44:e9:af:6e:96:b1:31:81:df:d6: 09:28:ea:5a:83:8b:83:30:d5:5a:a4:a1:96:16:fc:e8:d4:a2: 91:5d:b4:ca:4b:d0:b1:92:4e:e1:0d:da:25:1c:9c:df:da:1e: 92:c4:b5:29:4b:d7:ad:b6:eb:90:49:88:58:02:3b:93:7f:70: ad:b1:17:c1:b8:b3:28:cc:15:ea:f9:be:17:03:fe:3e:c9:7f: f6:88:2a:65:4d:9b:67:fd:3b:d8:a4:d8:a5:a9:b2:fb:cd:4c: 4f:3c:d1:f0:d8:9e:04:ff:a0:96:0b:da:99:4c:9d:96:35:2b: f8:aa:e5:57:98:24:e1:a4:46:fd:8e:40:3e:fd:38:ef:60:26: 2b:ad:25:68:b7:2b:99:c5:df:db:0a:0c:aa:60:04:1d:bd:c1: 00:75:11:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUwODAyMjMxNDMwWhcNMjUwODA5MjMxNDMwWjAYMRYwFAYD VQQDEw02ODhlOWJkNy04MWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7Skcpo7NmgqGOyWo0EqA1ihihnevRcczk7yXL3tBmr5rDciQKGaamQEz8KY FG4SP+ObOya3+ObdmI6OZM6H2k+X1myFSb50aNhlaaxWj4DQnXAX388RkqQpUig/ ot555B6/fZzEiC/jMNyfAb/6iZ9UQsgMRQPF7S4k4JupjNXvOmyJZLCNCfHbZOlm mqx0epqresqlk8l+LFai+kk0GGb3HrRCuDTnpGACteiyOof2pUdAldbdgTPykZpc oi03h9pOocGxR8UBUdTxgxsXb9a9OSzQiOjOnOO49zxBSnGWbIy+4n/vlDAawI0q 62/zEKRpgJ/2pHXBFA5js1QYgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmddpiv 77TqC/DMHS5Nvy6dku6oMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAInJAU9c6/CqQXp1thoJqdBtIahi/oHqijhssjZZ67bb1D2HXuJIby 6wJYmcP+FHUba8q5qgkkEp+U9T1eINMTH6vU3q+zWI4ZxOJVtv0XUZQg6Se57xZb j8GI1Yrcv3GVQ0Tpr26WsTGB39YJKOpag4uDMNVapKGWFvzo1KKRXbTKS9Cxkk7h DdolHJzf2h6SxLUpS9ettuuQSYhYAjuTf3CtsRfBuLMozBXq+b4XA/4+yX/2iCpl TZtn/TvYpNilqbL7zUxPPNHw2J4E/6CWC9qZTJ2WNSv4quVXmCThpEb9jkA+/Tjv YCYrrSVotyuZxd/bCgyqYAQdvcEAdRGr -----END CERTIFICATE-----Generated at Mon Aug 4 18:21:31 2025 by rpki-client