$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: unvIN4mQQULNOrk1camPhMh8DhV8u9ppWuDXO9g9YfM= Subject key identifier: 31:8C:92:61:89:4E:83:0A:D2:10:70:07:8A:7E:27:2C:23:ED:8C:B3 Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 016E Signing time: Sat 09 Aug 2025 04:18:24 +0000 Manifest this update: Sat 09 Aug 2025 04:18:23 +0000 Manifest next update: Sat 16 Aug 2025 04:18:23 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: ApCYabVRr6L9JRgZisQ27jX0vavXVg5+7v72zqsYVpU=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Aug 9 04:18:23 2025 GMT Not After : Aug 16 04:18:23 2025 GMT Subject: CN=6896cc10-a8b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:82:9a:c8:93:57:67:c1:34:2b:84:c8:95:ea: 4b:83:89:a2:0e:df:a8:6a:27:d5:62:62:fe:85:61: 97:ae:69:09:92:83:3e:36:c4:a6:86:58:f5:05:dc: a3:4a:fe:22:3e:04:95:68:8d:d4:42:5d:09:01:33: 76:65:8a:df:8e:14:dc:a9:90:91:b4:58:ba:a1:d7: 0c:58:33:ea:b4:ad:42:aa:42:e5:8f:b2:a7:e4:25: d5:ef:5e:8e:d8:d0:11:76:fd:9f:71:51:e1:af:9d: 63:96:49:db:54:02:50:3c:5e:38:48:7d:a5:38:c7: 02:6d:51:31:7f:d3:f0:60:b0:4a:23:65:07:56:74: d1:1d:26:53:67:56:17:8e:11:41:61:3b:20:9e:43: c3:05:03:ca:c7:97:01:0f:52:ec:51:8f:30:de:c5: 4f:bb:38:a2:31:76:6e:7b:33:96:5b:24:9d:f0:57: 69:e6:a8:c9:94:59:36:c2:7c:f7:d2:bd:62:c8:ed: 6a:b1:5d:09:3e:a8:f4:27:5d:c7:42:31:87:84:4f: f3:be:ea:6b:6b:5a:2c:a7:9f:d7:8a:23:9a:fc:01: b5:32:7c:5c:c6:00:33:11:70:3f:7a:ed:d4:52:e3: 98:66:5f:5c:d5:0d:ad:79:15:e7:46:99:4e:8d:d1: 62:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:8C:92:61:89:4E:83:0A:D2:10:70:07:8A:7E:27:2C:23:ED:8C:B3 X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:42:f3:a1:1d:ba:e8:66:31:da:58:a4:ac:08:c0:be:ab:06: cf:38:31:3a:45:78:03:6b:fa:0d:35:39:63:60:18:32:34:02: ac:d6:7a:9f:0a:2a:37:d4:ed:24:93:6c:01:a8:d6:aa:95:6a: 35:55:65:91:81:0c:06:a6:df:fb:53:3a:bc:77:36:83:f2:40: 91:3c:1d:78:17:de:08:3a:e8:2e:b3:31:55:22:ee:89:85:4a: ae:ec:e0:2a:f0:4c:c6:92:19:cd:1e:a9:8c:ee:4a:8a:74:b6: 2b:7d:8e:89:f6:ba:26:e7:06:29:41:10:3a:26:dc:af:7d:1d: 2d:47:50:4c:51:a4:70:36:48:f4:4a:1e:5a:16:d4:7a:0e:cb: 3f:c6:fd:f7:3b:b6:f3:a9:d3:13:bc:30:83:bc:0e:68:bc:b5: b6:5b:3b:77:4c:52:5a:f3:b6:9b:69:27:6d:80:38:b8:dc:aa: d0:a4:ed:ca:28:d1:0e:d2:c6:35:cf:4c:26:1f:ba:73:fd:a1: 70:f2:00:2b:d3:43:2a:b0:c6:bd:96:b2:a7:0d:7a:74:68:0b: 81:9e:f9:d7:d4:20:c6:8c:c9:22:a0:14:d8:10:e2:91:e1:ff: 87:06:2d:3f:0c:af:41:b2:25:46:4b:f9:17:bb:22:a8:6e:83: b8:e7:15:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjUwODA5MDQxODIzWhcNMjUwODE2MDQxODIzWjAYMRYwFAYD VQQDEw02ODk2Y2MxMC1hOGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54KayJNXZ8E0K4TIlepLg4miDt+oaifVYmL+hWGXrmkJkoM+NsSmhlj1Bdyj Sv4iPgSVaI3UQl0JATN2ZYrfjhTcqZCRtFi6odcMWDPqtK1CqkLlj7Kn5CXV716O 2NARdv2fcVHhr51jlknbVAJQPF44SH2lOMcCbVExf9PwYLBKI2UHVnTRHSZTZ1YX jhFBYTsgnkPDBQPKx5cBD1LsUY8w3sVPuziiMXZuezOWWySd8Fdp5qjJlFk2wnz3 0r1iyO1qsV0JPqj0J13HQjGHhE/zvupra1osp5/XiiOa/AG1MnxcxgAzEXA/eu3U UuOYZl9c1Q2teRXnRplOjdFi3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGMkmGJ ToMK0hBwB4p+Jywj7YyzMB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHQvOhHbroZjHaWKSsCMC+qwbPODE6RXgDa/oNNTljYBgyNAKs1nqf Cio31O0kk2wBqNaqlWo1VWWRgQwGpt/7Uzq8dzaD8kCRPB14F94IOuguszFVIu6J hUqu7OAq8EzGkhnNHqmM7kqKdLYrfY6J9rom5wYpQRA6JtyvfR0tR1BMUaRwNkj0 Sh5aFtR6Dss/xv33O7bzqdMTvDCDvA5ovLW2Wzt3TFJa87abaSdtgDi43KrQpO3K KNEO0sY1z0wmH7pz/aFw8gAr00MqsMa9lrKnDXp0aAuBnvnX1CDGjMkioBTYEOKR 4f+HBi0/DK9BsiVGS/kXuyKoboO45xWL -----END CERTIFICATE-----Generated at Mon Aug 11 04:27:21 2025 by rpki-client