$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft File: q6TDlMi5vRUbOziWObjG_4BwSfI.mft (raw, json) Hash identifier: nqWJrhcXdzwh4Cous/QasxdotngESrItYi00lTleJwg= Subject key identifier: A6:C9:A9:B6:09:24:01:E5:70:CA:D8:C6:2C:7D:4B:C8:A1:8D:9B:71 Authority key identifier: AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 Certificate issuer: /CN=A91F77FC/serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Certificate serial: 0E25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft Manifest number: 0E1C Signing time: Sun 10 Aug 2025 17:50:24 +0000 Manifest this update: Sun 10 Aug 2025 17:50:24 +0000 Manifest next update: Sun 17 Aug 2025 17:50:24 +0000 Files and hashes: 1: q6TDlMi5vRUbOziWObjG_4BwSfI.crl (hash: jj3Lzi//B2O+JElNlxXBvPt262hS6M8/6jn9Xo67yKM=) 2: 70783ACCAF3411E99DF2F83EC4F9AE02.roa (hash: zDcQXuAykU10DhyikYZPwzsk10KGNkvQLJMhbZSIlBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3621 (0xe25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77FC, serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Validity Not Before: Aug 10 17:50:24 2025 GMT Not After : Aug 17 17:50:24 2025 GMT Subject: CN=6898dbe0-0c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fa:5d:a5:f1:4a:55:4b:10:55:c3:c9:9c:13: 70:66:98:59:5c:61:31:a9:a0:aa:42:42:9c:db:94: 59:ee:68:5b:15:85:10:ee:c7:4e:7b:5f:c5:8f:06: 38:cf:43:40:2b:fc:09:14:b7:2d:16:df:00:df:e3: 11:17:6b:df:45:f9:3a:38:89:17:33:dd:20:5a:b4: 1b:7f:da:73:80:fd:97:c4:c5:19:a6:44:09:3b:1c: 23:cb:2d:c8:9e:b6:51:1b:a3:06:e1:04:af:22:fe: cd:86:d8:92:8e:ec:e7:27:03:3d:f9:74:53:80:85: e3:04:2b:b4:43:8f:48:20:d7:30:0f:67:6b:f3:1f: ac:61:7b:7a:44:ff:f7:87:f8:7c:df:54:e6:60:aa: ed:a2:64:17:c1:c1:17:0e:20:c2:2e:17:89:d9:ba: 1d:55:dd:a9:f1:04:46:ee:8f:d7:99:69:10:05:31: fe:82:55:d4:8c:41:8e:fc:44:29:ee:8a:79:39:01: af:80:7b:a6:3a:65:08:f8:4c:fa:42:d7:e3:8b:d9: af:21:b1:22:89:60:d5:5f:fc:68:3c:9f:7e:b4:3b: be:c0:bb:1a:89:6d:64:20:7e:47:ea:85:61:9a:8d: 30:8e:28:67:1d:7d:a1:1a:ae:20:79:57:d6:c5:6d: 91:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C9:A9:B6:09:24:01:E5:70:CA:D8:C6:2C:7D:4B:C8:A1:8D:9B:71 X509v3 Authority Key Identifier: keyid:AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:f1:53:00:b3:04:80:b9:98:d4:ef:88:e5:28:8b:c1:77:08: a8:cd:bc:92:b7:17:d5:70:34:db:40:c2:eb:1d:57:b5:1f:82: c7:b6:5b:6f:31:98:7c:94:46:83:1b:56:59:0c:84:4c:6c:d8: 91:80:36:47:68:2f:d6:b4:32:aa:f8:e0:fc:93:46:4e:3e:8b: 6c:45:85:04:43:f2:99:f9:a8:39:eb:68:4e:2e:cd:b6:28:8f: e3:73:ec:3c:2c:de:00:1a:65:0b:c8:dc:27:e5:7c:0c:41:50: 19:ea:98:b3:4e:b4:9d:ef:f9:7e:b7:a8:31:e3:5d:04:de:c2: 70:21:b2:a7:3d:6a:7a:ae:01:24:1f:77:2e:67:cf:8b:a8:3e: cd:6a:67:64:60:52:f0:55:b4:fc:8b:dc:3b:11:0e:13:b9:d8: 0a:01:57:7a:05:9f:63:b6:0c:6f:6b:32:f0:03:af:fb:a6:87: e8:6e:1b:bd:8b:ab:b3:dc:97:92:ff:37:9e:ca:30:65:37:81: 6c:da:a6:1e:b6:d0:02:74:f7:c8:9f:fa:6a:db:a9:c5:d5:b2: 75:17:4f:fe:c6:d5:70:e4:e9:3f:65:52:fb:83:56:df:c9:cc: de:9d:66:d3:d8:e5:8c:86:b1:2c:cd:2e:23:45:cd:24:3a:63: 86:93:f3:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3RkMxMTAvBgNVBAUTKEFCQTRDMzk0QzhCOUJEMTUxQjNCMzg5NjM5QjhDNkZG ODA3MDQ5RjIwHhcNMjUwODEwMTc1MDI0WhcNMjUwODE3MTc1MDI0WjAYMRYwFAYD VQQDEw02ODk4ZGJlMC0wYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfpdpfFKVUsQVcPJnBNwZphZXGExqaCqQkKc25RZ7mhbFYUQ7sdOe1/FjwY4 z0NAK/wJFLctFt8A3+MRF2vfRfk6OIkXM90gWrQbf9pzgP2XxMUZpkQJOxwjyy3I nrZRG6MG4QSvIv7NhtiSjuznJwM9+XRTgIXjBCu0Q49IINcwD2dr8x+sYXt6RP/3 h/h831TmYKrtomQXwcEXDiDCLheJ2bodVd2p8QRG7o/XmWkQBTH+glXUjEGO/EQp 7op5OQGvgHumOmUI+Ez6Qtfji9mvIbEiiWDVX/xoPJ9+tDu+wLsaiW1kIH5H6oVh mo0wjihnHX2hGq4geVfWxW2RfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbJqbYJ JAHlcMrYxix9S8ihjZtxMB8GA1UdIwQYMBaAFKukw5TIub0VGzs4ljm4xv+AcEny MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdGQy9GRUQ5MDE1NkFG MzAxMUU5QUVFMTNFMzRDNEY5QUUwMi9xNlREbE1pNXZSVWJPemlXT2JqR180QndT ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E2VERsTWk1dlJVYk96aVdPYmpHXzRCd1NmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzdGQy9GRUQ5MDE1NkFGMzAxMUU5QUVFMTNFMzRDNEY5QUUwMi9xNlREbE1pNXZS VWJPemlXT2JqR180QndTZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb8VMAswSAuZjU74jlKIvBdwiozbyStxfVcDTbQMLrHVe1H4LHtltv MZh8lEaDG1ZZDIRMbNiRgDZHaC/WtDKq+OD8k0ZOPotsRYUEQ/KZ+ag562hOLs22 KI/jc+w8LN4AGmULyNwn5XwMQVAZ6pizTrSd7/l+t6gx410E3sJwIbKnPWp6rgEk H3cuZ8+LqD7NamdkYFLwVbT8i9w7EQ4TudgKAVd6BZ9jtgxvazLwA6/7pofobhu9 i6uz3JeS/zeeyjBlN4Fs2qYettACdPfIn/pq26nF1bJ1F0/+xtVw5Ok/ZVL7g1bf yczenWbT2OWMhrEszS4jRc0kOmOGk/N/ -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:49 2025 by rpki-client