$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft File: DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft (raw, json) Hash identifier: YkKCir6oQQVWe66FC51PMVyvttZ91TFuhgcXoaBgUjw= Subject key identifier: F3:6B:2C:CB:BA:8D:75:4D:EA:05:6C:BA:BC:3C:D5:D9:ED:0F:26:0F Authority key identifier: 0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 Certificate issuer: /CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft Manifest number: AD Signing time: Sat 19 Jul 2025 06:25:54 +0000 Manifest this update: Sat 19 Jul 2025 06:25:54 +0000 Manifest next update: Sat 26 Jul 2025 06:25:53 +0000 Files and hashes: 1: DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl (hash: /acvj0UalhPgwfARSlzLC6e/H/qXt+zQk47JPHZfT5g=) 2: 6E7D3C16816811EF99DD7787C4F9AE02.roa (hash: GJjFHlhUrw3PK9n6h+pqP/cBSWFV8op0nahH1r+sT6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA96A, serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Validity Not Before: Jul 19 06:25:54 2025 GMT Not After : Jul 26 06:25:53 2025 GMT Subject: CN=687b3a72-ad85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:13:f5:70:c5:7b:38:3a:83:74:31:3f:57:cb: ad:5e:50:ea:7f:cc:4b:cc:83:f9:6d:39:e7:ad:88: b2:0f:4a:77:1e:ca:f8:59:cd:8d:2d:53:93:ae:76: 63:ba:f2:77:21:64:1b:3d:8f:23:21:cc:bb:88:bd: 6c:5d:a9:ca:01:fa:ad:17:67:b0:97:d3:4f:f1:53: f9:db:fd:79:42:c7:71:04:5b:08:d2:52:64:dc:a4: 1c:9d:be:ba:04:6b:c0:eb:67:7a:51:6a:de:bd:23: 60:06:f0:b4:08:f4:ef:fb:ef:5c:8f:03:b0:e9:06: 09:3c:e3:ca:55:4b:da:dd:ad:47:57:21:72:02:5b: a4:dc:5e:70:33:de:2c:1f:1e:9c:31:12:74:14:df: b4:54:e6:06:5a:78:83:c4:48:7e:f8:76:02:a5:e3: 8c:83:f0:da:a7:32:f7:41:6d:86:2a:03:f8:36:a1: 95:e5:e9:1a:64:c9:7c:de:7a:31:60:fb:8d:a1:94: 0b:64:11:c2:9a:33:18:4f:4e:b4:f9:ff:b7:78:c9: e4:b8:12:22:55:db:9c:55:ca:cf:78:d9:00:4c:82: 18:81:59:71:89:01:81:86:3f:f9:1b:12:c0:33:bc: 86:9d:9d:1b:12:69:1e:17:64:50:0d:95:f8:df:9c: 8a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6B:2C:CB:BA:8D:75:4D:EA:05:6C:BA:BC:3C:D5:D9:ED:0F:26:0F X509v3 Authority Key Identifier: keyid:0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:43:0a:08:04:1b:15:70:64:ac:b0:c6:b4:16:bf:63:3d:e5: af:39:cd:aa:3e:96:5a:60:a6:3a:90:c5:53:ee:26:fb:4c:83: b0:f5:f3:c5:25:30:35:43:99:34:15:f8:cd:25:c9:39:87:52: 86:85:64:24:ee:a3:26:2a:2b:b2:90:74:8d:f7:d4:03:6c:fa: 9a:ba:a9:b6:7d:56:b3:d9:01:1b:ce:9f:f7:6c:86:eb:ef:a4: dd:33:82:3b:d9:6f:49:63:fb:6f:38:ca:1a:5e:c5:6f:27:e5: 93:cd:b1:48:2c:34:ff:c8:1a:55:45:25:ab:9e:4e:b2:15:c8: 42:c9:0d:5e:b6:6e:06:85:1c:05:01:39:f9:90:ef:0c:80:3b: c4:09:77:23:6a:87:d9:3c:47:dd:9e:1f:60:a8:8b:14:89:e3: 6e:29:53:83:a8:dc:bf:55:2f:ef:d4:17:52:2e:ae:bd:e8:0f: ab:44:1e:50:0b:5f:2a:c0:7d:f7:4d:21:62:3f:8a:9d:3c:9e: 9c:c5:c1:d3:8b:dd:2d:8f:34:31:0e:fd:0f:0b:09:48:66:6a: f1:4f:3d:15:9d:30:1e:6e:41:eb:08:0a:c7:54:e2:9f:55:1d: 12:50:a5:9b:3b:f1:23:b8:b7:3a:94:ba:bf:b5:77:b1:07:96: 20:08:0a:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE5NkExMTAvBgNVBAUTKDBDREQ1MDU4MzJFQThDOUE0RDIzQjEwNjM3MjAxRDc5 NDI5NTY0QzAwHhcNMjUwNzE5MDYyNTU0WhcNMjUwNzI2MDYyNTUzWjAYMRYwFAYD VQQDEw02ODdiM2E3Mi1hZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRP1cMV7ODqDdDE/V8utXlDqf8xLzIP5bTnnrYiyD0p3Hsr4Wc2NLVOTrnZj uvJ3IWQbPY8jIcy7iL1sXanKAfqtF2ewl9NP8VP52/15QsdxBFsI0lJk3KQcnb66 BGvA62d6UWrevSNgBvC0CPTv++9cjwOw6QYJPOPKVUva3a1HVyFyAluk3F5wM94s Hx6cMRJ0FN+0VOYGWniDxEh++HYCpeOMg/DapzL3QW2GKgP4NqGV5ekaZMl83nox YPuNoZQLZBHCmjMYT060+f+3eMnkuBIiVducVcrPeNkATIIYgVlxiQGBhj/5GxLA M7yGnZ0bEmkeF2RQDZX435yKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNrLMu6 jXVN6gVsurw81dntDyYPMB8GA1UdIwQYMBaAFAzdUFgy6oyaTSOxBjcgHXlClWTA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTk2QS9ENEMxNjg4MjZB NkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpKcE5JN0VHTnlBZGVVS1Za TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROMVFXRExxakpwTkk3RUdOeUFkZVVLVlpNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTk2QS9ENEMxNjg4MjZBNkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpK cE5JN0VHTnlBZGVVS1ZaTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPQwoIBBsVcGSssMa0Fr9jPeWvOc2qPpZaYKY6kMVT7ib7TIOw9fPF JTA1Q5k0FfjNJck5h1KGhWQk7qMmKiuykHSN99QDbPqauqm2fVaz2QEbzp/3bIbr 76TdM4I72W9JY/tvOMoaXsVvJ+WTzbFILDT/yBpVRSWrnk6yFchCyQ1etm4GhRwF ATn5kO8MgDvECXcjaofZPEfdnh9gqIsUieNuKVODqNy/VS/v1BdSLq696A+rRB5Q C18qwH33TSFiP4qdPJ6cxcHTi90tjzQxDv0PCwlIZmrxTz0VnTAebkHrCArHVOKf VR0SUKWbO/EjuLc6lLq/tXexB5YgCAoW -----END CERTIFICATE-----Generated at Mon Jul 21 06:11:48 2025 by rpki-client