$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: enhyQ1nSBM0TYuEOSBAyKwGDnXR2Zt4GCjpHn019p4k= Subject key identifier: 5C:56:3A:02:32:1C:1B:79:2F:03:F3:1C:BE:FA:57:A0:AF:BE:B5:20 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: 1F Signing time: Fri 25 Jul 2025 08:16:46 +0000 Manifest this update: Fri 25 Jul 2025 08:16:45 +0000 Manifest next update: Fri 01 Aug 2025 08:16:45 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: HKpU/3l0PZbE5ibKY5wlKdi6gbBjBgvcZF7E4R+BnC4=) 2: 765A9AEC3C6F11F0A83E954EC4F9AE02.roa (hash: 1LK4ltfDfUObnmcEpgqLd5X9zDYVgPh3Q6BVcaMlN3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 08:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Jul 25 08:16:45 2025 GMT Not After : Aug 1 08:16:45 2025 GMT Subject: CN=68833d6d-a7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3a:69:a9:8a:7c:b4:4a:45:27:55:c1:08:fb: 4d:07:fa:e0:d4:b4:53:d0:5c:c2:c7:e1:7a:80:2f: 65:eb:0b:dc:7a:26:3a:69:f4:55:46:58:ba:77:3a: a3:e0:77:71:65:2c:a3:2e:e8:5a:5e:0d:15:be:59: c0:77:be:66:35:2a:0e:18:09:ad:68:6e:a4:56:11: cd:bd:55:ad:05:f1:2d:7c:ec:9b:41:55:61:77:91: a1:9d:83:00:0f:b2:57:f6:9e:40:22:f4:ec:12:fe: 4f:22:2d:f1:15:80:25:23:bd:d6:cf:6c:b6:72:c7: f7:e7:fd:1f:c5:a0:7d:b2:2c:55:7e:28:b5:0e:0c: 29:e4:ad:88:2a:60:c0:29:58:ea:c7:3d:67:1d:67: c8:d4:45:34:ff:bf:48:cf:76:a8:71:1d:c1:2c:3d: f4:4f:83:e4:51:ba:2a:7d:c3:d7:9a:69:b1:32:1d: 7e:85:2f:5b:42:60:94:e1:a2:f7:03:1e:cb:c0:c1: 4a:1a:f9:2c:be:f9:08:c5:76:90:a4:5f:2a:d7:9b: cc:56:f6:11:c5:67:00:15:e3:b2:bb:e9:48:74:79: 0c:f3:e5:75:b2:19:b3:ef:30:c7:1a:24:1a:58:2c: a6:80:2b:e3:0b:53:d8:2c:c9:4c:3c:3a:eb:a1:d1: 24:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:56:3A:02:32:1C:1B:79:2F:03:F3:1C:BE:FA:57:A0:AF:BE:B5:20 X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:32:75:ad:83:fc:3f:52:98:c3:8f:35:52:e5:dd:a7:07:c0: c1:5f:8a:7f:db:b5:fc:61:bb:92:5c:76:55:20:e2:82:68:3a: 53:9b:a3:04:b6:50:90:a6:ff:b5:11:bc:aa:a4:90:52:e3:b9: d0:95:cb:29:17:4e:1f:2a:58:de:1d:50:61:bf:dc:b8:76:54: 52:63:c0:59:30:aa:bd:d0:15:c8:b6:05:4d:4b:70:f7:9e:ae: 0e:78:b1:e7:0c:cd:0a:85:90:30:91:5d:bd:38:45:8c:85:27: a3:75:08:44:e5:b7:85:7b:65:ee:65:34:e6:be:82:8f:1b:99: 46:8c:a9:0d:0c:06:b6:4f:7d:96:cc:30:6a:d1:79:a1:93:87: df:0b:cb:86:88:91:b4:c9:1a:6a:4a:d0:aa:cc:ff:6b:f5:98: d5:a9:3d:47:36:66:41:a8:58:42:28:84:6e:ac:9f:31:27:af: 16:de:6b:9e:eb:4b:75:f5:4e:73:5a:32:c4:b9:d8:29:ab:8d: 43:e7:3b:84:46:24:09:25:66:64:14:c0:6a:55:eb:fb:21:62: 44:b9:97:88:f7:d7:e7:06:c5:0f:94:a5:c0:66:47:e3:27:30: 90:53:ad:f0:8e:98:62:f5:46:28:e9:e0:77:55:50:aa:7e:62: e3:ff:06:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0U1QjExMC8GA1UEBRMoQUI1M0Q5OTI4MTAyQjkxOURCN0M1NDY1QzhERDVGRjI2 Njc0NDNCMzAeFw0yNTA3MjUwODE2NDVaFw0yNTA4MDEwODE2NDVaMBgxFjAUBgNV BAMTDTY4ODMzZDZkLWE3YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2Ommpiny0SkUnVcEI+00H+uDUtFPQXMLH4XqAL2XrC9x6Jjpp9FVGWLp3OqPg d3FlLKMu6FpeDRW+WcB3vmY1Kg4YCa1obqRWEc29Va0F8S187JtBVWF3kaGdgwAP slf2nkAi9OwS/k8iLfEVgCUjvdbPbLZyx/fn/R/FoH2yLFV+KLUODCnkrYgqYMAp WOrHPWcdZ8jURTT/v0jPdqhxHcEsPfRPg+RRuip9w9eaabEyHX6FL1tCYJThovcD HsvAwUoa+Sy++QjFdpCkXyrXm8xW9hHFZwAV47K76Uh0eQzz5XWyGbPvMMcaJBpY LKaAK+MLU9gsyUw8Ouuh0STdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXFY6AjIc G3kvA/McvvpXoK++tSAwHwYDVR0jBBgwFoAUq1PZkoECuRnbfFRlyN1f8mZ0Q7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3RTVCL0Q4NEU3QkYyM0M2 RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcTFQWmtvRUN1Um5iZkZSbHlOMWY4bVowUTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 RTVCL0Q4NEU3QkYyM0M2RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJu YmZGUmx5TjFmOG1aMFE3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG4yda2D/D9SmMOPNVLl3acHwMFfin/btfxhu5JcdlUg4oJoOlObowS2 UJCm/7URvKqkkFLjudCVyykXTh8qWN4dUGG/3Lh2VFJjwFkwqr3QFci2BU1LcPee rg54secMzQqFkDCRXb04RYyFJ6N1CETlt4V7Ze5lNOa+go8bmUaMqQ0MBrZPfZbM MGrReaGTh98Ly4aIkbTJGmpK0KrM/2v1mNWpPUc2ZkGoWEIohG6snzEnrxbea57r S3X1TnNaMsS52CmrjUPnO4RGJAklZmQUwGpV6/shYkS5l4j31+cGxQ+UpcBmR+Mn MJBTrfCOmGL1Rijp4HdVUKp+YuP/Blg= -----END CERTIFICATE-----Generated at Fri Jul 25 20:29:23 2025 by rpki-client