$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: q6W9ckc2aNQ3tL7WEkFsUaQqBFU+opyT31cnHwTErG4= Subject key identifier: 84:DC:1B:E8:5C:5E:04:F8:CB:C0:6D:EB:AA:EF:AA:8A:0B:B3:0A:71 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0161 Signing time: Mon 21 Jul 2025 04:02:37 +0000 Manifest this update: Mon 21 Jul 2025 04:02:37 +0000 Manifest next update: Mon 28 Jul 2025 04:02:37 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: xm0aUm+ztLjFfSaZhNdvtTtD9ImXShZoyHOQfVKYB2k=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Jul 21 04:02:37 2025 GMT Not After : Jul 28 04:02:37 2025 GMT Subject: CN=687dbbdd-938f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:46:f8:58:bd:e7:bf:31:a3:34:0c:a3:66:b9: 94:87:f9:d0:d7:2d:c8:97:34:67:d4:58:99:41:07: d5:9a:42:9f:4e:9a:c0:fb:eb:0f:95:3c:d9:c6:b5: ce:fb:1a:68:af:15:e4:0a:9a:a2:e1:f9:fd:b6:b0: fd:9d:f5:9a:e6:9d:8a:18:dc:57:c1:f0:99:36:26: 29:c7:28:17:31:75:ac:35:b8:dd:29:ee:8f:13:b6: 31:00:e0:4d:cb:39:97:4f:a4:c0:76:f1:9c:c3:d2: 9a:b8:67:3c:53:ae:29:15:61:28:a5:ed:42:2b:d5: 9d:9b:85:57:6f:6d:b6:65:b1:be:12:d8:2a:59:41: be:ba:b7:b7:d0:52:ab:31:a6:5e:80:92:17:cd:4b: 4c:01:58:e8:cf:40:9f:ff:87:6e:d1:19:61:e6:dc: 58:a4:1e:5c:fa:58:b4:9a:d7:62:85:7d:0f:cd:4d: 60:82:de:8a:d4:72:87:97:f6:b6:4a:66:fc:b3:70: 2a:6b:ef:37:8e:9f:cb:62:fe:bd:54:01:78:42:5e: 98:18:a5:1e:fb:76:dc:5e:ca:b2:3d:7f:7a:09:c2: 2e:ff:39:0b:b0:83:b0:18:8d:9b:7d:c8:07:18:3f: 06:29:bd:9e:12:6c:58:87:1d:ac:85:96:9f:b0:73: a0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DC:1B:E8:5C:5E:04:F8:CB:C0:6D:EB:AA:EF:AA:8A:0B:B3:0A:71 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:fb:21:1f:d0:0f:ea:3e:7f:59:2b:09:c0:78:71:b3:05:b0: bf:48:3c:5c:97:a5:7e:b7:1c:88:6e:21:c2:5f:95:cc:e7:ef: e6:19:45:9e:f5:91:76:ed:cc:32:e7:17:bb:ac:68:9a:43:c9: 16:c0:36:ef:81:6c:7c:62:ed:40:2b:54:d8:79:a3:96:9a:6c: 84:96:8b:cf:95:47:df:e5:28:49:09:21:15:50:77:a6:9b:19: 90:0f:5f:15:c5:33:4d:ff:97:11:21:ba:40:fc:50:b7:6e:c7: 31:0a:d9:7e:89:58:f3:c4:e3:ae:54:df:d2:f7:6d:ee:3e:d1: 68:6d:8a:ea:ac:2e:c8:91:19:33:5a:f2:2a:f7:31:49:f9:b9: 3f:aa:0c:2d:51:d1:ee:bc:57:9a:e9:94:79:9e:d4:19:c7:f4: 44:c0:00:13:e8:77:40:48:4c:80:6a:92:85:25:97:8a:60:3e: c3:c9:6e:7c:a8:33:11:e3:40:38:b1:be:d9:a2:b0:ee:d0:33: 64:d4:9d:bc:6b:49:11:1a:b1:c9:67:b1:f4:88:d7:dc:0f:e2: 3d:1e:c3:83:45:e5:ae:39:24:5e:55:56:5c:0a:50:fc:8b:e6: 95:ec:88:6d:9c:ac:14:26:04:21:6e:98:eb:e7:25:40:aa:e0: bf:6b:d5:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwNzIxMDQwMjM3WhcNMjUwNzI4MDQwMjM3WjAYMRYwFAYD VQQDEw02ODdkYmJkZC05MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkb4WL3nvzGjNAyjZrmUh/nQ1y3IlzRn1FiZQQfVmkKfTprA++sPlTzZxrXO +xporxXkCpqi4fn9trD9nfWa5p2KGNxXwfCZNiYpxygXMXWsNbjdKe6PE7YxAOBN yzmXT6TAdvGcw9KauGc8U64pFWEope1CK9Wdm4VXb222ZbG+EtgqWUG+ure30FKr MaZegJIXzUtMAVjoz0Cf/4du0Rlh5txYpB5c+li0mtdihX0PzU1ggt6K1HKHl/a2 Smb8s3Aqa+83jp/LYv69VAF4Ql6YGKUe+3bcXsqyPX96CcIu/zkLsIOwGI2bfcgH GD8GKb2eEmxYhx2shZafsHOgsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITcG+hc XgT4y8Bt66rvqooLswpxMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf+yEf0A/qPn9ZKwnAeHGzBbC/SDxcl6V+txyIbiHCX5XM5+/mGUWe 9ZF27cwy5xe7rGiaQ8kWwDbvgWx8Yu1AK1TYeaOWmmyElovPlUff5ShJCSEVUHem mxmQD18VxTNN/5cRIbpA/FC3bscxCtl+iVjzxOOuVN/S923uPtFobYrqrC7IkRkz WvIq9zFJ+bk/qgwtUdHuvFea6ZR5ntQZx/REwAAT6HdASEyAapKFJZeKYD7DyW58 qDMR40A4sb7ZorDu0DNk1J28a0kRGrHJZ7H0iNfcD+I9HsODReWuOSReVVZcClD8 i+aV7IhtnKwUJgQhbpjr5yVAquC/a9Xe -----END CERTIFICATE-----Generated at Tue Jul 22 05:13:28 2025 by rpki-client