$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft File: q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft (raw, json) Hash identifier: mDsxdIdFTdhmpK8vCuU10MR/hlOqd3XrLLZhCobEq8A= Subject key identifier: 53:0F:7C:F0:B9:72:BC:D5:E6:B9:27:25:45:31:35:BC:C3:B2:B5:7C Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 0313 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft Manifest number: 0B37 Signing time: Sat 02 Aug 2025 21:04:25 +0000 Manifest this update: Sat 02 Aug 2025 21:04:24 +0000 Manifest next update: Sat 09 Aug 2025 21:04:24 +0000 Files and hashes: 1: q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl (hash: FP9M8z/SuDuuDyXX0r3hPqfyGKAvzC9p1CjyT9e9QmM=) 2: 743B3188E57211ECBC81A87EC4F9AE02.roa (hash: ukecD2pxHGlgKyIFMtJzbdcdaqfvaNOkIkVTe1ei8KE=) 3: FC358296CFA011EDA4AC5B18C4F9AE02.roa (hash: Kfs6t0RkTXatIBLPnXrK64Ffg/DQYtGVawG99/fXQls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 21:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Aug 2 21:04:24 2025 GMT Not After : Aug 9 21:04:24 2025 GMT Subject: CN=688e7d59-9ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2e:7b:03:6c:bf:68:6e:ee:18:47:d1:6a:df: 82:4f:2c:34:e3:50:bf:36:9a:80:7f:1a:17:79:1d: 48:e8:14:9f:ea:e2:ad:29:b7:12:53:49:4b:d2:85: 56:a4:a4:b2:b1:2c:af:d3:42:70:0e:5f:57:2b:e9: 45:33:52:4d:bb:97:63:1d:03:38:54:e5:22:e3:7c: 90:4c:24:c3:90:1f:61:f8:fe:e1:86:c1:1a:b4:b5: e0:bf:80:65:95:df:28:32:87:4e:05:7b:d1:c5:84: e0:fc:f9:30:e7:36:79:13:96:83:cc:82:d5:4d:6e: 26:18:69:8f:9b:1b:28:ba:cd:35:e3:1c:87:f5:00: 54:71:00:a7:27:ba:f9:cf:c9:f2:31:25:e7:a0:dd: cb:8f:46:e5:78:63:d8:40:74:30:70:b2:de:54:d8: c7:73:47:aa:7c:79:12:ac:d6:26:f2:30:40:7d:49: 98:fb:46:52:4c:ec:be:0a:b9:a9:9a:cd:a2:9b:3e: 49:2f:3a:f7:32:0c:7f:d1:d5:69:02:06:62:00:46: ac:b5:73:49:3e:d6:99:ba:58:68:a5:a5:9e:93:07: 79:23:bd:1f:c1:1d:2b:5c:da:b0:84:89:e7:5c:03: b1:95:37:4c:64:50:46:78:ee:e8:93:5e:7a:84:be: 45:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0F:7C:F0:B9:72:BC:D5:E6:B9:27:25:45:31:35:BC:C3:B2:B5:7C X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2e:21:26:0f:7b:cc:fe:66:ee:14:f6:37:29:c1:b0:b1:51: 5c:40:27:f4:66:1c:2f:f9:a9:59:b2:d9:40:c7:7f:05:79:af: 9c:03:03:ef:c5:f1:69:1c:6a:e3:bb:51:7f:71:52:9b:d1:4a: f3:aa:07:76:5f:ee:37:66:76:fa:af:bc:6e:54:44:1d:93:53: a3:4d:d0:74:49:95:11:8b:0b:19:74:b2:f5:93:46:af:e0:7f: 80:96:be:da:12:4c:aa:88:15:c3:be:ca:63:38:c2:0d:f4:41: 38:2e:57:be:41:91:ee:c0:45:95:c4:cd:3e:ba:40:56:7a:8f: d8:38:86:f1:98:d7:32:ef:20:20:56:cb:57:d1:98:c9:38:7b: 32:aa:c0:59:f0:9c:a6:c1:cd:23:13:2c:a8:78:5a:87:34:2c: eb:ef:19:e0:6a:9c:d3:ad:71:e3:a7:30:3d:80:bb:6c:d0:f1: 8e:ed:62:ad:fb:ba:d7:a6:95:c8:63:2a:af:96:5b:de:e6:f5: 36:c0:b7:95:34:23:c5:7b:56:91:e1:8d:e9:d0:76:25:80:a5: b4:cc:9e:a6:75:99:1b:df:03:46:e2:fc:aa:5d:f4:75:fc:a3: 35:46:cf:ac:0b:48:29:6c:b2:68:8b:75:b6:55:4e:b8:d1:be: b9:6f:7b:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjUwODAyMjEwNDI0WhcNMjUwODA5MjEwNDI0WjAYMRYwFAYD VQQDEw02ODhlN2Q1OS05YWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4i57A2y/aG7uGEfRat+CTyw041C/NpqAfxoXeR1I6BSf6uKtKbcSU0lL0oVW pKSysSyv00JwDl9XK+lFM1JNu5djHQM4VOUi43yQTCTDkB9h+P7hhsEatLXgv4Bl ld8oModOBXvRxYTg/Pkw5zZ5E5aDzILVTW4mGGmPmxsous014xyH9QBUcQCnJ7r5 z8nyMSXnoN3Lj0bleGPYQHQwcLLeVNjHc0eqfHkSrNYm8jBAfUmY+0ZSTOy+Crmp ms2imz5JLzr3Mgx/0dVpAgZiAEastXNJPtaZulhopaWekwd5I70fwR0rXNqwhInn XAOxlTdMZFBGeO7ok156hL5FAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMPfPC5 crzV5rknJUUxNbzDsrV8MB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUU0Qy83REFEQTU2Q0Q5NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJL Z3F6X2pjTmtYTmNXRUJQM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOLiEmD3vM/mbuFPY3KcGwsVFcQCf0Zhwv+alZstlAx38Fea+cAwPv xfFpHGrju1F/cVKb0Urzqgd2X+43Znb6r7xuVEQdk1OjTdB0SZURiwsZdLL1k0av 4H+Alr7aEkyqiBXDvspjOMIN9EE4Lle+QZHuwEWVxM0+ukBWeo/YOIbxmNcy7yAg VstX0ZjJOHsyqsBZ8Jymwc0jEyyoeFqHNCzr7xngapzTrXHjpzA9gLts0PGO7WKt +7rXppXIYyqvllve5vU2wLeVNCPFe1aR4Y3p0HYlgKW0zJ6mdZkb3wNG4vyqXfR1 /KM1Rs+sC0gpbLJoi3W2VU640b65b3tt -----END CERTIFICATE-----Generated at Mon Aug 4 11:24:10 2025 by rpki-client