$ rpki-client -vvf rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft File: q8dSj86PeUX0YPdSdIJB2tVnilo.mft (raw, json) Hash identifier: FCM6PdAS8S59dbkwK/av5FJyduJX/iUdBDi8bfznYn4= Subject key identifier: 8B:AE:59:D3:DE:E7:63:D3:CD:22:86:ED:86:29:B4:F2:A4:03:3B:D0 Authority key identifier: AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A Certificate issuer: /CN=A91F367D/serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft Manifest number: 07C9 Signing time: Sun 10 Aug 2025 21:10:42 +0000 Manifest this update: Sun 10 Aug 2025 21:10:41 +0000 Manifest next update: Sun 17 Aug 2025 21:10:41 +0000 Files and hashes: 1: q8dSj86PeUX0YPdSdIJB2tVnilo.crl (hash: cC8Htl2z7zGFEq0nZUmFIhJFzt1heH5ow9mf+gx09AE=) 2: AC1CD860039511EBBE8C7F47C4F9AE02.roa (hash: cujX/yOvlRxdf5P8eSmQLnHVmBWJtY4Bh7R/a7D9SZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 21:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F367D, serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Validity Not Before: Aug 10 21:10:41 2025 GMT Not After : Aug 17 21:10:41 2025 GMT Subject: CN=68990ad2-1709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:13:27:f9:11:f4:3e:84:63:d0:4a:21:db:de: 91:bc:a6:f4:64:36:09:b6:8a:7a:99:04:80:27:80: 88:c2:58:b8:ac:9d:15:93:f7:fb:56:2a:3a:6f:8c: ce:a9:6a:50:b1:89:f2:c9:e8:c5:ee:1f:69:2b:22: 59:c1:16:37:d2:b5:3e:c9:2d:9e:8e:ed:6e:da:64: 93:3b:b9:ad:a9:ad:43:aa:3d:df:64:50:9c:80:18: 85:e0:26:e6:60:e4:eb:6c:4c:ee:82:06:56:a8:1a: 2f:71:1f:3b:fd:ff:15:b5:30:33:28:5a:df:ec:2c: 0a:af:46:a5:a4:4d:1e:c5:f9:88:88:2e:ca:2e:8e: db:74:ca:a1:34:97:f4:32:8c:d4:1a:33:b6:58:eb: f5:0d:46:ae:fe:28:77:44:23:84:4b:50:5d:3d:db: 22:87:4f:f7:36:06:f4:7e:49:e0:37:e7:4e:0f:2b: e9:9c:de:74:97:6b:e0:5d:ed:1e:9f:49:77:21:2d: 5d:dd:7f:a0:eb:d4:2d:b5:ee:12:81:78:bb:45:24: 90:c3:59:f0:a1:39:55:8c:70:5b:49:37:23:3a:4e: d0:9d:79:85:c3:6a:db:10:1e:07:55:4c:3b:c4:1b: 1a:27:87:11:f9:b0:1c:47:7a:4b:89:10:1c:a3:af: fa:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:AE:59:D3:DE:E7:63:D3:CD:22:86:ED:86:29:B4:F2:A4:03:3B:D0 X509v3 Authority Key Identifier: keyid:AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:cc:4d:d4:18:f9:ab:a6:b2:4f:44:70:c6:ed:86:17:ea:9c: 62:cc:43:6f:fc:ad:de:c3:43:f3:60:8a:8c:da:1d:ca:a5:2a: 54:c0:bc:d0:48:04:f1:2c:52:e9:aa:0b:f7:dd:24:05:bc:fe: f9:3c:39:1f:61:03:eb:44:96:af:f5:de:ee:a2:8c:54:1f:fc: 8c:99:71:29:d7:36:fd:dc:61:fa:99:f5:d7:04:56:bb:3b:4e: 28:c0:3f:53:6c:e3:66:37:6b:77:2d:f7:2a:2f:11:bc:8f:e2: 99:e0:15:08:60:c9:5e:04:eb:de:74:d9:03:0e:c0:e5:98:a7: 29:1c:4f:21:f5:04:4c:50:c2:82:9e:7d:58:68:5b:42:ce:73: 06:43:86:26:d5:38:14:a1:c9:9d:19:71:ed:32:4c:52:d0:0c: c2:27:79:e2:59:a7:95:28:ab:e8:11:8a:c9:e8:8a:94:62:77: 40:da:7a:3a:1f:cc:9b:9c:c2:ec:de:17:44:92:d2:e9:45:4d: 01:8a:ff:92:26:85:db:44:0d:c1:2f:6d:c4:4a:19:ff:57:bd: d5:4e:2d:05:ef:56:19:4a:18:3a:c3:9d:02:45:d2:95:97:19: cc:d3:a9:22:bc:6e:53:11:78:b4:97:c0:fb:e2:d9:64:f8:fd: e9:54:87:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM2N0QxMTAvBgNVBAUTKEFCQzc1MjhGQ0U4Rjc5NDVGNDYwRjc1Mjc0ODI0MURB RDU2NzhBNUEwHhcNMjUwODEwMjExMDQxWhcNMjUwODE3MjExMDQxWjAYMRYwFAYD VQQDEw02ODk5MGFkMi0xNzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBMn+RH0PoRj0Eoh296RvKb0ZDYJtop6mQSAJ4CIwli4rJ0Vk/f7Vio6b4zO qWpQsYnyyejF7h9pKyJZwRY30rU+yS2eju1u2mSTO7mtqa1Dqj3fZFCcgBiF4Cbm YOTrbEzuggZWqBovcR87/f8VtTAzKFrf7CwKr0alpE0exfmIiC7KLo7bdMqhNJf0 MozUGjO2WOv1DUau/ih3RCOES1BdPdsih0/3Ngb0fkngN+dODyvpnN50l2vgXe0e n0l3IS1d3X+g69Qtte4SgXi7RSSQw1nwoTlVjHBbSTcjOk7QnXmFw2rbEB4HVUw7 xBsaJ4cR+bAcR3pLiRAco6/6UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuuWdPe 52PTzSKG7YYptPKkAzvQMB8GA1UdIwQYMBaAFKvHUo/Oj3lF9GD3UnSCQdrVZ4pa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzY3RC85OURBN0FCRTAz OTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVVWDBZUGRTZElKQjJ0Vm5p bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E4ZFNqODZQZVVYMFlQZFNkSUpCMnRWbmlsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzY3RC85OURBN0FCRTAzOTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVV WDBZUGRTZElKQjJ0Vm5pbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxzE3UGPmrprJPRHDG7YYX6pxizENv/K3ew0PzYIqM2h3KpSpUwLzQ SATxLFLpqgv33SQFvP75PDkfYQPrRJav9d7uooxUH/yMmXEp1zb93GH6mfXXBFa7 O04owD9TbONmN2t3LfcqLxG8j+KZ4BUIYMleBOvedNkDDsDlmKcpHE8h9QRMUMKC nn1YaFtCznMGQ4Ym1TgUocmdGXHtMkxS0AzCJ3niWaeVKKvoEYrJ6IqUYndA2no6 H8ybnMLs3hdEktLpRU0Biv+SJoXbRA3BL23EShn/V73VTi0F71YZShg6w50CRdKV lxnM06kivG5TEXi0l8D74tlk+P3pVId3 -----END CERTIFICATE-----Generated at Tue Aug 12 18:59:35 2025 by rpki-client