$ rpki-client -vvf rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft File: _nQHcdbqABLeOHBW-Iy-3TbEqGA.mft (raw, json) Hash identifier: NyTp8SaS9CA8xc11U2Hl/kKKzBEE5IMZkfvSLtar9CQ= Subject key identifier: D2:C1:68:FE:31:DC:B7:E7:7F:26:30:F4:63:5C:01:AC:84:F4:08:2C Authority key identifier: FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 Certificate issuer: /CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft Manifest number: 0190 Signing time: Wed 23 Jul 2025 03:42:14 +0000 Manifest this update: Wed 23 Jul 2025 03:42:14 +0000 Manifest next update: Wed 30 Jul 2025 03:42:14 +0000 Files and hashes: 1: _nQHcdbqABLeOHBW-Iy-3TbEqGA.crl (hash: PEYPDTvwt4RHXgIeTR7vIzAsVCieflXQPj5RbA+jjjs=) 2: 37B318C0050111EEAFBCAE7EC4F9AE02.roa (hash: eMm1aATtYTxr8yulbbTqFy3KIRD0+Hc1f6QKDsCg/8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889A4, serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Validity Not Before: Jul 23 03:42:14 2025 GMT Not After : Jul 30 03:42:14 2025 GMT Subject: CN=68805a16-7832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:99:fd:10:7c:ab:5d:33:e8:fe:67:b2:49: 37:ee:30:a3:dd:76:60:4a:d6:50:04:59:9b:a6:07: 31:68:c9:82:93:37:bf:71:e3:50:9c:c1:0f:34:0f: 29:77:70:98:dd:1f:bc:7c:c4:04:bb:72:9c:7e:cb: a0:2d:0e:b9:f5:97:27:5b:c2:67:52:20:1b:cd:1f: 3e:d0:02:80:43:c8:4b:0b:05:e2:14:b1:d3:e2:ff: c1:6b:08:1c:1a:f4:dd:c2:3b:1f:ef:d3:cd:c2:e4: 41:f5:44:dc:8c:dd:77:c2:4a:cf:32:67:ca:e5:13: 52:e3:7e:86:85:e9:23:d8:ae:92:4e:1b:5d:65:78: 98:e8:73:8c:9c:1a:4d:7a:bc:9c:9e:47:b6:2f:7d: 8b:1b:3f:f1:da:02:3a:06:9f:75:6f:86:f9:75:ea: 45:6e:fd:b7:5e:82:92:b4:3a:a4:5b:94:76:ee:bf: 99:f8:04:69:60:d4:28:38:b3:e8:3f:88:c7:0b:d8: 68:dc:b5:a2:9f:f8:ab:fb:a2:30:4a:87:f9:d9:2a: c7:fb:a8:d9:32:d4:f0:09:88:67:cd:e2:e8:00:d9: 84:9a:8c:c9:9f:c8:1c:ca:b3:b4:8a:9a:a9:1e:d3: 99:f5:dd:c7:3e:88:f9:ef:3a:ef:55:e9:2f:18:ba: d4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C1:68:FE:31:DC:B7:E7:7F:26:30:F4:63:5C:01:AC:84:F4:08:2C X509v3 Authority Key Identifier: keyid:FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:62:a0:48:4b:2a:81:f9:8d:8a:6b:48:ea:80:b2:c5:54:9e: ef:38:23:3f:25:db:72:bd:16:9e:bd:cc:63:6c:5e:69:30:93: e4:ad:eb:6d:c1:90:c2:b9:95:96:d2:5e:85:fa:78:9c:af:0e: 51:97:3a:7e:a5:45:b5:51:32:32:89:e6:97:6a:25:dc:26:38: 43:5d:91:19:54:1c:b4:55:cb:64:ca:48:b4:9e:b5:22:fd:26: 07:0a:e8:7e:a2:fa:8e:66:54:5c:43:72:75:94:63:a9:33:71: 54:b1:25:20:d2:7a:7e:08:a4:0a:54:cf:0c:a8:3c:15:99:46: 7a:f3:b0:76:3d:3e:23:68:2d:4b:b8:c8:34:ef:83:33:b5:69: 77:f5:2c:f6:97:9a:fe:af:ed:0b:f9:02:4d:87:47:cf:44:2a: 9d:6b:30:ee:fc:40:f5:10:51:b8:2c:b2:fd:f4:dc:e6:73:53: d8:db:c5:8f:4c:5b:db:c8:18:0e:d3:c4:98:69:05:41:a0:b2: 23:68:ea:88:74:2f:18:6f:4c:b1:3a:86:7d:94:f6:70:96:62: 40:89:57:f3:a8:26:56:03:fb:2e:5a:b8:6b:f7:2b:59:7e:aa: a8:d5:29:b3:fc:72:bf:3a:b5:16:cd:b2:48:07:6c:40:75:98: 49:20:0f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QTQxMTAvBgNVBAUTKEZFNzQwNzcxRDZFQTAwMTJERTM4NzA1NkY4OENCRURE MzZDNEE4NjAwHhcNMjUwNzIzMDM0MjE0WhcNMjUwNzMwMDM0MjE0WjAYMRYwFAYD VQQDEw02ODgwNWExNi03ODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/OZ/RB8q10z6P5nskk37jCj3XZgStZQBFmbpgcxaMmCkze/ceNQnMEPNA8p d3CY3R+8fMQEu3KcfsugLQ659ZcnW8JnUiAbzR8+0AKAQ8hLCwXiFLHT4v/Bawgc GvTdwjsf79PNwuRB9UTcjN13wkrPMmfK5RNS436Ghekj2K6SThtdZXiY6HOMnBpN erycnke2L32LGz/x2gI6Bp91b4b5depFbv23XoKStDqkW5R27r+Z+ARpYNQoOLPo P4jHC9ho3LWin/ir+6IwSof52SrH+6jZMtTwCYhnzeLoANmEmozJn8gcyrO0ipqp HtOZ9d3HPoj57zrvVekvGLrUHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLBaP4x 3LfnfyYw9GNcAayE9AgsMB8GA1UdIwQYMBaAFP50B3HW6gAS3jhwVviMvt02xKhg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlBNC8yN0EyNUE1NjA0 RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFCTGVPSEJXLUl5LTNUYkVx R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19uUUhjZGJxQUJMZU9IQlctSXktM1RiRXFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlBNC8yN0EyNUE1NjA0RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFC TGVPSEJXLUl5LTNUYkVxR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIYqBISyqB+Y2Ka0jqgLLFVJ7vOCM/JdtyvRaevcxjbF5pMJPkrett wZDCuZWW0l6F+nicrw5Rlzp+pUW1UTIyieaXaiXcJjhDXZEZVBy0Vctkyki0nrUi /SYHCuh+ovqOZlRcQ3J1lGOpM3FUsSUg0np+CKQKVM8MqDwVmUZ687B2PT4jaC1L uMg074MztWl39Sz2l5r+r+0L+QJNh0fPRCqdazDu/ED1EFG4LLL99Nzmc1PY28WP TFvbyBgO08SYaQVBoLIjaOqIdC8Yb0yxOoZ9lPZwlmJAiVfzqCZWA/suWrhr9ytZ fqqo1Smz/HK/OrUWzbJIB2xAdZhJIA+g -----END CERTIFICATE-----Generated at Thu Jul 24 04:00:05 2025 by rpki-client