$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: 7AGmFcCSFPtDvQ6P11wtocUZQWZgZUgQL+QSIDqEAr8= Subject key identifier: AA:8F:2D:A8:A7:35:55:09:E7:1F:A8:BA:6F:25:37:E1:42:44:D6:C2 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3428 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 340B Signing time: Mon 04 Aug 2025 15:24:01 +0000 Manifest this update: Mon 04 Aug 2025 15:24:01 +0000 Manifest next update: Mon 11 Aug 2025 15:24:01 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: rCPehu1r3+u2GmIRIv3bbSAO+7vBeqbE/xJxXRvBSA4=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 15:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13352 (0x3428) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Aug 4 15:24:01 2025 GMT Not After : Aug 11 15:24:01 2025 GMT Subject: CN=6890d091-e4e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dc:8f:81:bc:64:72:02:dd:9f:37:1a:00:59: 81:8d:38:98:84:68:6e:9a:aa:58:90:9f:ca:4c:6f: 99:93:29:8f:55:46:62:a1:40:69:10:f1:96:7e:5c: bf:6c:ef:6c:bc:98:b9:34:70:ee:d2:15:17:de:4b: 8d:6f:3b:5e:2f:05:13:1e:38:d2:e7:2a:70:63:5a: 0c:9b:d4:60:39:14:8d:39:49:7f:b2:38:82:dd:a0: 61:d0:55:59:2f:2f:5e:cd:0a:47:fa:9c:09:0e:df: 80:15:b6:e7:bf:14:8e:2b:1f:8d:9c:64:7d:c8:42: 33:59:2c:69:60:32:b2:c2:de:95:31:e8:6b:b7:ea: b5:7e:56:de:bc:6b:82:6e:46:9e:3e:b2:a8:bf:96: 46:83:80:7e:01:c3:dd:c4:29:fa:fe:2e:d5:5c:a7: 99:31:39:0c:58:49:ef:bf:67:bd:3c:86:3f:fb:02: f3:37:30:18:60:18:da:34:96:dc:02:c7:57:f7:5e: a0:05:62:8e:23:53:19:7c:83:1c:fa:b8:15:39:b8: 03:a0:7a:43:89:66:e1:e9:e2:2d:ec:4a:39:c5:3a: db:67:e6:b8:23:33:04:dd:04:61:0c:36:fe:2e:b6: 4d:ca:d8:39:c1:c8:a2:f9:98:1e:78:02:e0:84:e1: 05:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8F:2D:A8:A7:35:55:09:E7:1F:A8:BA:6F:25:37:E1:42:44:D6:C2 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:3a:14:b4:ed:7b:67:00:ee:d1:c0:fb:c7:f5:d2:c1:db:38: 21:03:c1:93:16:0f:0f:3e:42:7e:30:cc:18:a6:03:95:4a:04: 6a:73:ed:64:3b:ef:5a:08:54:a9:26:c0:b5:dc:4b:24:33:47: f3:bb:72:ee:67:b8:a4:34:d6:cd:6d:de:24:2d:ae:06:07:d9: 5d:b6:98:c4:42:08:c0:85:d2:c4:6a:12:f8:45:a5:5b:94:70: 88:51:c1:b0:4f:a3:6b:5d:d5:3b:f3:d1:8b:04:95:7c:a2:f1: c0:5b:37:71:27:9d:fe:36:f8:07:fb:6b:22:d1:6b:59:f3:2a: 6d:12:c2:fb:13:c9:29:5a:d6:8d:59:dc:90:71:97:0a:3b:b4: 07:0a:f2:09:f4:9c:7e:45:36:4a:eb:14:a3:ef:f1:4e:85:d0: 36:c7:d4:b0:d8:26:b5:b1:7c:97:aa:56:50:a7:bb:0a:75:57: b0:d3:fe:6e:b9:db:21:a6:a5:7f:fa:db:c2:d0:6c:70:49:3d: 0d:be:a6:ce:14:0e:6d:16:31:b0:b9:dc:b9:dc:ea:13:2d:c0: ae:f0:8d:f2:41:4f:c2:35:05:67:54:d6:f2:86:ea:26:4c:ea: 5e:2f:3e:36:fb:87:7c:61:9e:a2:e0:4a:ec:a4:3b:02:b9:ee: 76:1e:35:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwODA0MTUyNDAxWhcNMjUwODExMTUyNDAxWjAYMRYwFAYD VQQDEw02ODkwZDA5MS1lNGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNyPgbxkcgLdnzcaAFmBjTiYhGhumqpYkJ/KTG+ZkymPVUZioUBpEPGWfly/ bO9svJi5NHDu0hUX3kuNbzteLwUTHjjS5ypwY1oMm9RgORSNOUl/sjiC3aBh0FVZ Ly9ezQpH+pwJDt+AFbbnvxSOKx+NnGR9yEIzWSxpYDKywt6VMehrt+q1flbevGuC bkaePrKov5ZGg4B+AcPdxCn6/i7VXKeZMTkMWEnvv2e9PIY/+wLzNzAYYBjaNJbc AsdX916gBWKOI1MZfIMc+rgVObgDoHpDiWbh6eIt7Eo5xTrbZ+a4IzME3QRhDDb+ LrZNytg5wcii+ZgeeALghOEF4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqPLain NVUJ5x+oum8lN+FCRNbCMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuOhS07XtnAO7RwPvH9dLB2zghA8GTFg8PPkJ+MMwYpgOVSgRqc+1k O+9aCFSpJsC13EskM0fzu3LuZ7ikNNbNbd4kLa4GB9ldtpjEQgjAhdLEahL4RaVb lHCIUcGwT6NrXdU789GLBJV8ovHAWzdxJ53+NvgH+2si0WtZ8yptEsL7E8kpWtaN WdyQcZcKO7QHCvIJ9Jx+RTZK6xSj7/FOhdA2x9Sw2Ca1sXyXqlZQp7sKdVew0/5u udshpqV/+tvC0GxwST0NvqbOFA5tFjGwudy53OoTLcCu8I3yQU/CNQVnVNbyhuom TOpeLz42+4d8YZ6i4ErspDsCue52HjUS -----END CERTIFICATE-----Generated at Wed Aug 6 14:14:37 2025 by rpki-client