$ rpki-client -vvf rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft File: wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft (raw, json) Hash identifier: GuTI6C5tzXIaVZJI78KSO8JImysGFHI1X+kq/OpMtKc= Subject key identifier: 28:2E:72:B7:33:A5:0F:57:24:F3:BA:5D:DD:6E:7F:FF:08:8F:FD:A2 Authority key identifier: C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 Certificate issuer: /CN=A91365B9/serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Certificate serial: 03AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft Manifest number: 03AB Signing time: Mon 21 Jul 2025 00:58:49 +0000 Manifest this update: Mon 21 Jul 2025 00:58:48 +0000 Manifest next update: Mon 28 Jul 2025 00:58:48 +0000 Files and hashes: 1: wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl (hash: at29H5FFqmkP7M80eQ5E338dFHhlsJyKG19AGXxGvVM=) 2: AFF4E1F89EB711EC8210607DC4F9AE02.roa (hash: l4NiEiTB+02p0Uj+cCqIOLwgHYhCmg6R+xhxmoCEOiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 943 (0x3af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91365B9, serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Validity Not Before: Jul 21 00:58:48 2025 GMT Not After : Jul 28 00:58:48 2025 GMT Subject: CN=687d90c9-16c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:14:f2:98:10:0e:81:cd:a3:1d:7c:0e:3f:15: f4:85:ee:9c:34:52:1a:32:2e:14:bb:69:93:b3:76: 9d:0d:55:2c:03:f3:e5:83:40:11:68:c4:d1:d5:40: 16:80:6d:d6:a0:35:06:42:38:27:07:01:38:4d:a2: 1c:3d:ac:e5:2c:77:db:64:7a:f1:33:e1:d1:6e:f8: f7:c9:b8:96:33:be:51:26:a8:b9:ac:8c:af:dd:c2: 7e:fc:0b:e0:dc:84:de:dd:08:8e:dc:ce:d4:f4:fe: 5b:f9:1e:3a:a2:5b:a1:d6:d9:42:88:2d:43:3f:5d: f0:13:2e:e2:50:19:f6:5a:f1:0e:fa:55:c4:ca:6f: 03:92:bb:07:1b:03:be:5f:02:e7:84:59:77:3c:7c: 05:9c:04:7b:25:63:d2:26:43:ae:f5:1b:b5:46:5d: 3a:aa:b9:41:06:8a:b9:59:7e:b8:f1:97:0b:e8:fe: 1f:85:da:de:d8:21:d2:53:98:2d:5e:9a:a5:06:fb: 07:60:7f:a2:e4:75:63:3c:2a:01:1b:56:bc:d9:23: 9c:e1:01:be:4b:a4:93:6e:c5:2c:88:43:42:89:53: e9:d9:d2:13:5d:ca:b7:8a:11:76:6c:2c:56:d7:e3: f6:3f:97:ae:bd:c1:5a:60:28:4d:c3:a2:c3:81:2d: f1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:2E:72:B7:33:A5:0F:57:24:F3:BA:5D:DD:6E:7F:FF:08:8F:FD:A2 X509v3 Authority Key Identifier: keyid:C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:73:34:7d:44:a8:97:a5:75:d2:b6:47:da:20:d6:bc:84:f8: 99:01:26:72:8b:1a:5d:19:34:5c:04:95:b5:d6:40:d3:3c:a3: db:3f:8c:1e:bb:90:d6:47:ea:94:c6:a5:cd:38:1d:85:5b:06: 7b:62:9b:62:3c:1c:46:e4:19:70:7d:41:90:47:33:9d:0a:2f: ce:4c:f8:a1:bf:d2:5a:74:96:37:78:04:5c:42:3b:bd:3a:b9: fe:48:40:0c:20:10:9d:d1:fa:8a:9d:e7:49:6c:73:a5:87:df: 85:33:88:f2:d7:c2:91:11:c4:e6:aa:33:cc:a4:be:ec:4b:aa: d1:a0:fe:62:88:c5:53:16:3f:3c:f0:ae:a0:0f:6d:ff:58:94: 96:6b:41:75:f3:ce:36:e6:af:08:16:94:b5:9a:e1:e9:31:3c: 52:9d:61:35:6c:60:4b:44:12:e1:32:04:4d:7b:cf:12:12:1e: 3d:61:16:4c:0d:7c:9e:ce:54:86:bc:e2:92:4d:2e:a9:57:49: 29:24:49:ba:ff:35:e5:9f:6b:da:a6:cb:29:3e:11:63:43:10: 6b:56:49:2f:c7:21:b9:1f:97:ea:68:d1:13:7a:be:9e:b0:a3: 70:ec:1a:fc:ee:bf:11:53:f0:25:fe:63:76:5e:72:21:df:d2: 0d:f0:2c:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY1QjkxMTAvBgNVBAUTKEMyQTJFQjRDRjkxMDI3NzhBNDJFMTVDQ0QyMEE1ODRF RENFREMyNzIwHhcNMjUwNzIxMDA1ODQ4WhcNMjUwNzI4MDA1ODQ4WjAYMRYwFAYD VQQDEw02ODdkOTBjOS0xNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhTymBAOgc2jHXwOPxX0he6cNFIaMi4Uu2mTs3adDVUsA/Plg0ARaMTR1UAW gG3WoDUGQjgnBwE4TaIcPazlLHfbZHrxM+HRbvj3ybiWM75RJqi5rIyv3cJ+/Avg 3ITe3QiO3M7U9P5b+R46oluh1tlCiC1DP13wEy7iUBn2WvEO+lXEym8DkrsHGwO+ XwLnhFl3PHwFnAR7JWPSJkOu9Ru1Rl06qrlBBoq5WX648ZcL6P4fhdre2CHSU5gt XpqlBvsHYH+i5HVjPCoBG1a82SOc4QG+S6STbsUsiENCiVPp2dITXcq3ihF2bCxW 1+P2P5euvcFaYChNw6LDgS3xYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgucrcz pQ9XJPO6Xd1uf/8Ij/2iMB8GA1UdIwQYMBaAFMKi60z5ECd4pC4VzNIKWE7c7cJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjVCOS83NDVENzcwMjlF QjQxMUVDQkYwRTE0NzdDNEY5QUUwMi93cUxyVFBrUUozaWtMaFhNMGdwWVR0enR3 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dxTHJUUGtRSjNpa0xoWE0wZ3BZVHR6dHduSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjVCOS83NDVENzcwMjlFQjQxMUVDQkYwRTE0NzdDNEY5QUUwMi93cUxyVFBrUUoz aWtMaFhNMGdwWVR0enR3bkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5czR9RKiXpXXStkfaINa8hPiZASZyixpdGTRcBJW11kDTPKPbP4we u5DWR+qUxqXNOB2FWwZ7YptiPBxG5BlwfUGQRzOdCi/OTPihv9JadJY3eARcQju9 Orn+SEAMIBCd0fqKnedJbHOlh9+FM4jy18KREcTmqjPMpL7sS6rRoP5iiMVTFj88 8K6gD23/WJSWa0F188425q8IFpS1muHpMTxSnWE1bGBLRBLhMgRNe88SEh49YRZM DXyezlSGvOKSTS6pV0kpJEm6/zXln2vapsspPhFjQxBrVkkvxyG5H5fqaNETer6e sKNw7Br87r8RU/Al/mN2XnIh39IN8CxD -----END CERTIFICATE-----Generated at Mon Jul 21 07:14:04 2025 by rpki-client