$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft File: pIqTm2fbIrr3fgB7Id87dFtig5A.mft (raw, json) Hash identifier: 2DO/a6xmU9C+MB0c7nJZBMdAMbzbqAoxshcg8iGh/AE= Subject key identifier: DA:AD:2C:8E:98:AD:B0:EA:4C:40:B4:6C:27:4D:26:94:12:52:2B:D4 Authority key identifier: A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 Certificate issuer: /CN=A91E1ED2/serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft Manifest number: 0683 Signing time: Wed 06 Aug 2025 22:43:41 +0000 Manifest this update: Wed 06 Aug 2025 22:43:40 +0000 Manifest next update: Wed 13 Aug 2025 22:43:40 +0000 Files and hashes: 1: pIqTm2fbIrr3fgB7Id87dFtig5A.crl (hash: qAsfkAnSNTsUAzH8SuwffMNusIPjZ8OsqI/RjE5vuaQ=) 2: A3AA461082BE11EB93A19A35C4F9AE02.roa (hash: pKScxQMxg1WdvXI6uB4aKpZXfYDWDJw+VDC0QK45Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1ED2, serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Validity Not Before: Aug 6 22:43:40 2025 GMT Not After : Aug 13 22:43:40 2025 GMT Subject: CN=6893da9c-82e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fe:91:9c:e0:16:1b:22:2d:57:66:de:8d:84: de:15:b6:7e:78:1a:2c:cf:a2:a5:60:57:45:2a:89: ee:6f:80:cb:1e:db:99:58:14:eb:74:66:29:be:45: 34:c9:c4:c7:23:8c:84:86:a1:10:fe:d8:ca:fd:4f: 08:56:18:5c:e2:20:03:18:ad:52:55:21:f1:82:e8: c1:75:54:d8:2b:23:87:c2:c6:92:31:7e:c3:72:9f: 3a:5f:10:79:df:34:81:b6:75:a8:f8:09:45:d6:53: 22:fd:27:42:e2:ec:30:df:13:66:3c:98:ce:3e:17: ee:30:43:6f:29:70:39:f9:64:0b:7b:79:87:10:e5: 0b:18:26:1d:5e:07:f3:ce:52:d4:1c:51:87:a1:a2: bf:13:58:1d:d9:d6:40:e1:a0:1c:6c:55:cd:f7:e4: b2:d6:7e:e3:f6:dc:66:36:d4:de:8e:e2:4d:69:23: 57:71:d9:36:04:f9:c7:d6:f7:80:70:18:55:56:40: ce:bd:45:01:c0:39:3a:60:7b:d2:a3:bf:af:b4:93: 3f:4e:2c:20:25:54:ba:ca:56:a8:88:54:93:fc:ad: 30:29:df:1e:bd:c0:07:4a:c8:37:36:7a:03:64:b9: 11:44:86:f5:bd:b3:1d:40:a3:da:cb:87:b4:2a:86: f3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AD:2C:8E:98:AD:B0:EA:4C:40:B4:6C:27:4D:26:94:12:52:2B:D4 X509v3 Authority Key Identifier: keyid:A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:e6:98:cf:2c:85:62:7a:44:70:e6:9e:50:95:4c:8b:5a:7e: e3:fe:cc:80:8e:6d:ae:7c:34:1e:cc:54:ea:08:e6:80:60:20: ac:8d:21:74:ef:1c:bf:3b:ad:22:12:b2:f4:a6:8e:6c:5f:88: 3a:34:b5:94:ed:7f:a6:04:5b:e1:9d:f4:e8:fa:3a:36:1b:ae: 5b:df:4f:ed:3b:0e:63:18:46:e1:40:df:25:0f:29:ea:2c:8b: dd:93:28:6e:53:36:4b:53:79:a2:f0:f1:79:77:b1:b8:8e:b4: a6:b9:54:3e:a3:70:66:49:97:07:a1:45:55:8c:cd:04:d4:8f: eb:1c:08:d0:df:5f:6b:20:1e:48:da:d7:42:b7:e3:a3:1a:00: 63:a7:53:c1:04:d8:3d:0a:01:8e:6a:d5:eb:9d:f3:da:9d:be: 69:e5:9d:ec:4a:fb:e9:17:27:0b:ac:3d:da:82:3b:ee:6d:f7: a1:7b:b4:a7:f5:76:98:d4:11:db:99:32:60:8b:9b:72:75:34: fc:a9:51:2a:43:39:fe:54:3b:52:5a:1a:ed:b0:03:8a:78:d8: c2:90:41:3b:79:61:6d:66:2f:a0:01:b1:2d:e8:90:d6:0c:4c: 2a:db:0e:a1:f6:1d:3d:d9:42:58:b0:31:be:a9:d0:84:37:0a: e4:75:86:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFFRDIxMTAvBgNVBAUTKEE0OEE5MzlCNjdEQjIyQkFGNzdFMDA3QjIxREYzQjc0 NUI2MjgzOTAwHhcNMjUwODA2MjI0MzQwWhcNMjUwODEzMjI0MzQwWjAYMRYwFAYD VQQDEw02ODkzZGE5Yy04MmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmv6RnOAWGyItV2bejYTeFbZ+eBosz6KlYFdFKonub4DLHtuZWBTrdGYpvkU0 ycTHI4yEhqEQ/tjK/U8IVhhc4iADGK1SVSHxgujBdVTYKyOHwsaSMX7Dcp86XxB5 3zSBtnWo+AlF1lMi/SdC4uww3xNmPJjOPhfuMENvKXA5+WQLe3mHEOULGCYdXgfz zlLUHFGHoaK/E1gd2dZA4aAcbFXN9+Sy1n7j9txmNtTejuJNaSNXcdk2BPnH1veA cBhVVkDOvUUBwDk6YHvSo7+vtJM/TiwgJVS6ylaoiFST/K0wKd8evcAHSsg3NnoD ZLkRRIb1vbMdQKPay4e0Kobz5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqtLI6Y rbDqTEC0bCdNJpQSUivUMB8GA1UdIwQYMBaAFKSKk5tn2yK6934AeyHfO3RbYoOQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUVEMi8zRkU4REU2Qzgy QkQxMUVCOUJDNUQzMzRDNEY5QUUwMi9wSXFUbTJmYklycjNmZ0I3SWQ4N2RGdGln NUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BJcVRtMmZiSXJyM2ZnQjdJZDg3ZEZ0aWc1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUVEMi8zRkU4REU2QzgyQkQxMUVCOUJDNUQzMzRDNEY5QUUwMi9wSXFUbTJmYkly cjNmZ0I3SWQ4N2RGdGlnNUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs5pjPLIViekRw5p5QlUyLWn7j/syAjm2ufDQezFTqCOaAYCCsjSF0 7xy/O60iErL0po5sX4g6NLWU7X+mBFvhnfTo+jo2G65b30/tOw5jGEbhQN8lDynq LIvdkyhuUzZLU3mi8PF5d7G4jrSmuVQ+o3BmSZcHoUVVjM0E1I/rHAjQ319rIB5I 2tdCt+OjGgBjp1PBBNg9CgGOatXrnfPanb5p5Z3sSvvpFycLrD3agjvubfehe7Sn 9XaY1BHbmTJgi5tydTT8qVEqQzn+VDtSWhrtsAOKeNjCkEE7eWFtZi+gAbEt6JDW DEwq2w6h9h092UJYsDG+qdCENwrkdYY8 -----END CERTIFICATE-----Generated at Thu Aug 7 04:26:45 2025 by rpki-client