$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: 3o8lmLh2qgfzhfF4S33BAMQLQRzNWqyPy+zugNVO8j8= Subject key identifier: BB:94:31:14:67:60:88:EB:FE:A0:21:72:FD:9A:06:7A:E1:19:FA:44 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0E85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0E6C Signing time: Fri 08 Aug 2025 17:57:28 +0000 Manifest this update: Fri 08 Aug 2025 17:57:28 +0000 Manifest next update: Fri 15 Aug 2025 17:57:28 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: ZrEOUZ/Ucw1TI0lu7aAKLH0wGzAhjC3OnRNRAthjGZM=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: xJh5HRbn741snUCbMX+RHgdNum29ocH1QT8bD3kB9Uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3717 (0xe85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Aug 8 17:57:28 2025 GMT Not After : Aug 15 17:57:28 2025 GMT Subject: CN=68963a88-4402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bc:d3:e2:7c:00:07:a9:ed:2b:ef:1b:41:14: f0:a5:49:3d:69:51:20:e5:32:2c:31:68:72:25:f9: ee:ba:54:54:58:c2:84:e8:64:68:07:04:82:35:25: 0b:0d:5e:4a:5c:3f:38:48:0a:15:ec:b2:df:b8:37: 21:09:49:dc:e9:39:75:b8:47:c1:6e:1a:2e:74:1d: d6:4d:58:ee:6e:9d:00:db:92:5c:fc:d8:5b:77:d0: 2c:a0:8c:93:b2:9d:0f:ac:df:59:8d:9e:29:b6:f5: 49:7d:3c:5a:a4:72:e7:6c:69:bf:0e:b4:0d:e1:97: 78:b0:e9:49:eb:93:e0:c4:99:da:be:02:f0:d3:cb: 1b:56:d7:f4:2a:39:89:53:1a:a1:a8:41:95:ac:2c: ad:f7:41:79:39:ae:30:0f:97:38:bb:95:ac:05:40: 91:c7:7b:34:b3:85:8f:60:25:c9:6c:5c:c0:ea:8b: 54:a5:e8:aa:ab:69:78:57:4d:eb:e3:4f:6b:de:6d: 8a:c2:1f:50:a0:ca:70:87:fb:1b:2d:b3:f3:be:02: f1:63:e8:9b:f5:8a:8b:f8:32:4d:a3:10:49:f4:ba: cf:1f:a1:b1:c3:69:3b:c9:73:d9:47:9f:5e:7b:76: 90:a0:bb:42:a3:04:3e:4d:ea:a6:35:bd:c1:b5:df: db:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:94:31:14:67:60:88:EB:FE:A0:21:72:FD:9A:06:7A:E1:19:FA:44 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:89:26:70:41:50:13:77:5b:20:c8:6b:b9:72:32:be:51:b0: bb:81:bd:b9:b9:c5:d9:31:43:a4:be:1c:b3:1b:ad:7d:75:5e: cb:b5:22:09:51:e1:25:be:36:ee:89:54:77:22:0d:ec:af:2e: 68:f0:19:e4:1b:6f:f8:ea:a7:de:82:50:87:51:7e:c1:d5:af: 5a:f3:83:1e:86:0a:02:01:e1:0a:75:3e:11:e9:17:50:a8:ab: 8e:82:08:d1:66:d3:0d:2a:01:a1:82:37:cd:6a:b8:7c:7f:aa: d0:2e:25:83:18:13:ba:aa:71:8e:6d:c6:9f:e9:6f:cd:da:64: 38:4f:6b:0b:eb:66:00:80:d1:7b:76:ce:02:61:c0:0b:e4:b9: 82:b3:c2:32:aa:8b:e1:c7:74:cd:9b:b3:a7:b3:d4:d1:46:ba: f8:6c:14:7f:89:93:15:c7:e6:41:b4:71:42:2c:72:64:50:6a: c5:17:25:32:ec:53:ef:99:8e:5a:3a:b3:04:9f:b6:fd:dc:a8: 53:4e:4b:06:98:93:2b:cb:07:de:81:39:c2:5a:6c:5c:13:c5: 59:0b:8b:4b:fd:c1:69:ce:c6:46:73:5a:57:00:f9:d9:bc:02: a8:73:5f:e2:15:8a:7c:38:8a:0d:6b:4c:46:33:a0:f5:d2:fd: 23:ca:26:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjUwODA4MTc1NzI4WhcNMjUwODE1MTc1NzI4WjAYMRYwFAYD VQQDEw02ODk2M2E4OC00NDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybzT4nwAB6ntK+8bQRTwpUk9aVEg5TIsMWhyJfnuulRUWMKE6GRoBwSCNSUL DV5KXD84SAoV7LLfuDchCUnc6Tl1uEfBbhoudB3WTVjubp0A25Jc/Nhbd9AsoIyT sp0PrN9ZjZ4ptvVJfTxapHLnbGm/DrQN4Zd4sOlJ65PgxJnavgLw08sbVtf0KjmJ UxqhqEGVrCyt90F5Oa4wD5c4u5WsBUCRx3s0s4WPYCXJbFzA6otUpeiqq2l4V03r 409r3m2Kwh9QoMpwh/sbLbPzvgLxY+ib9YqL+DJNoxBJ9LrPH6Gxw2k7yXPZR59e e3aQoLtCowQ+TeqmNb3Btd/bbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuUMRRn YIjr/qAhcv2aBnrhGfpEMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4iSZwQVATd1sgyGu5cjK+UbC7gb25ucXZMUOkvhyzG619dV7LtSIJ UeElvjbuiVR3Ig3sry5o8BnkG2/46qfeglCHUX7B1a9a84MehgoCAeEKdT4R6RdQ qKuOggjRZtMNKgGhgjfNarh8f6rQLiWDGBO6qnGObcaf6W/N2mQ4T2sL62YAgNF7 ds4CYcAL5LmCs8Iyqovhx3TNm7Ons9TRRrr4bBR/iZMVx+ZBtHFCLHJkUGrFFyUy 7FPvmY5aOrMEn7b93KhTTksGmJMrywfegTnCWmxcE8VZC4tL/cFpzsZGc1pXAPnZ vAKoc1/iFYp8OIoNa0xGM6D10v0jyiax -----END CERTIFICATE-----Generated at Sun Aug 10 14:00:37 2025 by rpki-client