$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft File: q-I6igEe0yhhVdpR9a14wbb8yT0.mft (raw, json) Hash identifier: 8sDw5vMB8PESd/YMYD878HTrSHTcayAIrnT9WXUvLt0= Subject key identifier: DA:44:2D:0C:22:6C:57:23:05:7E:2E:BA:84:7D:B0:1A:38:DF:31:DD Authority key identifier: AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D Certificate issuer: /CN=A91DAAAF/serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft Manifest number: 01A1 Signing time: Sat 09 Aug 2025 03:39:37 +0000 Manifest this update: Sat 09 Aug 2025 03:39:36 +0000 Manifest next update: Sat 16 Aug 2025 03:39:36 +0000 Files and hashes: 1: q-I6igEe0yhhVdpR9a14wbb8yT0.crl (hash: cIoQoFKDCa7igpVkC9h2nM6cqpaXUs+cLXL2WQrmrAU=) 2: 34EEA87C040511EEA466E336C4F9AE02.roa (hash: obDYb1FFvr0mB7iBHTgY83tEv9YylCIEzp5d/KneH78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAAAF, serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Validity Not Before: Aug 9 03:39:36 2025 GMT Not After : Aug 16 03:39:36 2025 GMT Subject: CN=6896c2f8-6345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cd:a7:40:86:4f:fb:2a:b0:50:41:c7:6c:b0: 7b:ec:93:32:3b:8a:16:d0:0f:bb:ec:ee:d1:df:9d: e6:c2:4f:31:49:16:57:90:8f:c9:ed:e6:58:b2:97: 50:80:ec:ce:92:cb:41:36:c0:8c:1d:4a:08:90:10: a5:62:73:61:fe:1a:fb:f8:2e:bb:b9:0d:50:01:0b: bb:2a:1a:1c:1f:7b:34:80:f8:5a:5f:2a:52:49:0a: 76:32:79:99:54:eb:3f:e3:0e:41:0d:f0:73:ce:28: 6a:1c:79:d3:be:b5:b9:d1:f1:ec:82:f8:02:0b:8f: ed:c9:7a:43:10:b0:02:2f:cd:57:46:81:f2:22:67: c0:fe:13:2a:16:7c:9c:75:e4:74:97:cc:a3:2a:d5: b1:23:df:43:11:ee:2b:56:49:c3:02:9a:a9:af:1d: 34:c2:44:dd:50:0c:31:91:51:cc:f5:77:94:e2:b0: 47:4a:30:1a:b7:02:52:83:97:b5:31:8f:51:04:00: 1d:6b:ba:b7:91:bf:70:55:8d:39:4e:57:bf:8c:b0: 5a:42:2c:e6:0d:6b:9b:ba:4d:1c:c4:98:34:84:d8: 11:4f:a3:9d:b0:60:58:b8:c9:0e:f0:57:a0:fe:47: 83:c1:42:4a:1d:2d:cc:21:59:2f:eb:d3:b3:ec:01: 56:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:44:2D:0C:22:6C:57:23:05:7E:2E:BA:84:7D:B0:1A:38:DF:31:DD X509v3 Authority Key Identifier: keyid:AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:0e:8b:fa:85:a2:b0:d8:b0:59:6c:11:a9:d5:67:8c:9b:fa: d3:87:8d:6d:37:e4:c5:38:8a:d6:4b:de:c5:d0:aa:78:62:8a: d1:56:01:21:ce:8e:e4:be:e6:1b:b5:56:54:65:1b:f8:7b:68: 8b:e1:3d:cb:57:67:b9:db:ab:3b:9c:24:f5:c6:1f:10:ef:37: e9:29:57:16:6d:70:c4:4b:43:6b:53:c6:2b:90:3d:6d:2b:e1: cd:25:d4:04:53:43:e2:5d:21:af:49:da:11:a8:31:e7:e7:fd: e2:6f:95:e0:a7:47:1a:22:66:7d:27:2a:1f:d8:af:75:49:22: 06:0f:19:d9:6c:d7:8f:95:30:3f:ea:57:19:44:cd:17:03:1c: ba:8c:75:7b:33:7e:c4:d2:1e:80:de:dd:ba:f9:41:6e:3b:8e: 0c:9c:c2:68:1c:c1:c4:ee:6c:be:09:2b:34:ac:f5:b4:b9:fa: e2:f7:c8:59:cf:00:53:dc:12:7b:48:38:44:a5:59:1b:39:64: 0d:83:d2:33:d3:70:b4:3e:8c:dd:8d:75:ca:64:af:22:9d:b3: fe:23:c7:1c:fc:4f:79:27:3d:d8:10:8d:2c:74:be:0d:8e:b4: 66:2b:df:d5:bc:7c:9e:46:77:98:7c:a9:f4:7c:b9:82:09:6e: c2:22:38:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFBQUYxMTAvBgNVBAUTKEFCRTIzQThBMDExRUQzMjg2MTU1REE1MUY1QUQ3OEMx QjZGQ0M5M0QwHhcNMjUwODA5MDMzOTM2WhcNMjUwODE2MDMzOTM2WjAYMRYwFAYD VQQDEw02ODk2YzJmOC02MzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApM2nQIZP+yqwUEHHbLB77JMyO4oW0A+77O7R353mwk8xSRZXkI/J7eZYspdQ gOzOkstBNsCMHUoIkBClYnNh/hr7+C67uQ1QAQu7KhocH3s0gPhaXypSSQp2MnmZ VOs/4w5BDfBzzihqHHnTvrW50fHsgvgCC4/tyXpDELACL81XRoHyImfA/hMqFnyc deR0l8yjKtWxI99DEe4rVknDApqprx00wkTdUAwxkVHM9XeU4rBHSjAatwJSg5e1 MY9RBAAda7q3kb9wVY05Tle/jLBaQizmDWubuk0cxJg0hNgRT6OdsGBYuMkO8Feg /keDwUJKHS3MIVkv69Oz7AFWtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpELQwi bFcjBX4uuoR9sBo43zHdMB8GA1UdIwQYMBaAFKviOooBHtMoYVXaUfWteMG2/Mk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUFBRi81NkIwMURDMEY4 NTExMUVEQTg2RkM4MjBDNEY5QUUwMi9xLUk2aWdFZTB5aGhWZHBSOWExNHdiYjh5 VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EtSTZpZ0VlMHloaFZkcFI5YTE0d2JiOHlUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUFBRi81NkIwMURDMEY4NTExMUVEQTg2RkM4MjBDNEY5QUUwMi9xLUk2aWdFZTB5 aGhWZHBSOWExNHdiYjh5VDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjDov6haKw2LBZbBGp1WeMm/rTh41tN+TFOIrWS97F0Kp4YorRVgEh zo7kvuYbtVZUZRv4e2iL4T3LV2e526s7nCT1xh8Q7zfpKVcWbXDES0NrU8YrkD1t K+HNJdQEU0PiXSGvSdoRqDHn5/3ib5Xgp0caImZ9Jyof2K91SSIGDxnZbNePlTA/ 6lcZRM0XAxy6jHV7M37E0h6A3t26+UFuO44MnMJoHMHE7my+CSs0rPW0ufri98hZ zwBT3BJ7SDhEpVkbOWQNg9Iz03C0PozdjXXKZK8inbP+I8cc/E95Jz3YEI0sdL4N jrRmK9/VvHyeRneYfKn0fLmCCW7CIjg4 -----END CERTIFICATE-----Generated at Sat Aug 9 14:18:12 2025 by rpki-client