$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: UU24Joh/+bEQR+OX5UyLzKqrww11C2Bpew2z+qHqfUw= Subject key identifier: 62:8A:0C:57:5D:B0:6B:1C:C8:5B:01:F8:E4:3E:15:7D:FF:45:EF:4F Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: 01E6 Signing time: Sat 19 Jul 2025 02:58:16 +0000 Manifest this update: Sat 19 Jul 2025 02:58:16 +0000 Manifest next update: Sat 26 Jul 2025 02:58:16 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: w0jpSlDXX+o869lkhR0KszT7JJM/Umvri+7nJKueZ0Q=) 2: C0C268B8441C11EF9E110F1EC4F9AE02.roa (hash: jnHEv+tk9LEmiC9T0eLpIu0ka8tlgw/1HGmQA/hDw9s=) 3: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (hash: Tod+meVH3/YYDYyQo78I9vVyyLfaumC1ya5cnKT+hFM=) 4: 08A1C0B8DC5011EF9C212C5CC4F9AE02.roa (hash: 3zWqR+4/bbh/62pxX54wkuJs0uKg6zeZhN4dCLWwFho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: Jul 19 02:58:16 2025 GMT Not After : Jul 26 02:58:16 2025 GMT Subject: CN=687b09c8-d825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0e:ef:07:10:57:57:60:6b:4a:d9:32:84:bd: 69:86:c3:e9:bd:e1:d0:79:c7:ea:e6:08:28:96:4a: 27:97:51:ed:bc:41:d0:77:e3:25:5f:b0:68:c6:16: a3:b7:80:66:0f:93:d2:b7:e5:b8:04:aa:b8:57:5a: e5:09:73:55:75:a3:1c:99:49:51:01:ea:ae:e4:51: e1:f7:e2:4b:bb:97:9c:08:54:da:e5:dd:9c:cb:07: 3c:46:42:24:c8:2e:4a:4f:d2:ca:9b:55:f8:3e:a9: 13:49:26:b1:30:d8:01:9d:1d:19:20:46:1d:40:0c: c9:cd:a8:60:98:38:45:06:a4:cb:95:05:bc:ac:0d: db:8d:74:f7:d4:75:ba:17:13:4a:94:a0:27:84:5a: af:4f:4b:19:03:f9:66:5a:40:d3:07:ae:18:0a:9e: 68:4b:30:fb:52:ff:5b:9a:ee:55:b9:40:23:db:34: d5:10:f1:b7:fc:7b:99:a5:6b:5c:fa:e5:6d:87:31: 97:a4:00:5f:d2:7f:55:f1:f4:5a:08:55:ad:e0:29: c6:f5:86:40:62:9e:a5:b7:f2:9b:6c:4a:ae:91:e1: 8b:f8:5a:ae:dd:4c:3e:4f:ad:fd:04:e7:14:84:45: 31:33:fc:31:8c:46:e1:56:1d:8a:1c:06:13:14:0b: 95:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8A:0C:57:5D:B0:6B:1C:C8:5B:01:F8:E4:3E:15:7D:FF:45:EF:4F X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:3e:e3:c2:d4:bd:81:86:4c:58:9b:e7:c4:ba:cb:aa:94:47: e4:c2:d4:ab:4c:38:d2:39:ba:b6:0f:e1:e0:4d:cf:b4:4b:dc: 25:92:e8:8a:36:5b:5b:e9:a8:08:00:0f:73:f9:73:15:f7:5c: a5:6a:a5:60:e6:b2:ba:cb:b4:17:46:f1:21:f0:b1:f4:64:39: 55:47:36:18:23:88:32:ad:53:21:a4:54:c9:ec:27:56:00:fb: 94:5c:e0:89:b9:66:a3:d0:ed:bd:76:32:48:41:54:2a:46:78: 11:53:04:04:bd:37:77:b2:93:0a:e8:44:f8:6f:64:f5:b8:c4: 17:64:1b:ef:b3:14:b5:cc:44:a2:dc:92:d9:d8:da:60:b8:e3: 3e:75:79:58:84:7a:fd:66:8a:83:7d:22:97:c3:35:df:f0:26: a7:07:6d:f5:fc:c5:20:40:1c:ea:6c:17:14:0a:77:e0:3c:74: bd:ac:6d:0e:0c:0c:69:8b:36:b9:72:74:1b:13:09:98:3b:bc: 41:fa:4c:c4:cc:67:3e:77:a1:f9:00:96:8c:3a:98:53:7d:c5: 92:33:3b:5e:fd:8d:66:c9:f1:5a:ec:6f:1c:d5:b4:c9:cb:f5: be:21:12:6a:23:8b:bb:d5:64:d0:63:d3:83:0d:4a:c8:43:c8: bc:3b:08:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjUwNzE5MDI1ODE2WhcNMjUwNzI2MDI1ODE2WjAYMRYwFAYD VQQDEw02ODdiMDljOC1kODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3w7vBxBXV2BrStkyhL1phsPpveHQecfq5ggolkonl1HtvEHQd+MlX7Boxhaj t4BmD5PSt+W4BKq4V1rlCXNVdaMcmUlRAequ5FHh9+JLu5ecCFTa5d2cywc8RkIk yC5KT9LKm1X4PqkTSSaxMNgBnR0ZIEYdQAzJzahgmDhFBqTLlQW8rA3bjXT31HW6 FxNKlKAnhFqvT0sZA/lmWkDTB64YCp5oSzD7Uv9bmu5VuUAj2zTVEPG3/HuZpWtc +uVthzGXpABf0n9V8fRaCFWt4CnG9YZAYp6lt/KbbEqukeGL+Fqu3Uw+T639BOcU hEUxM/wxjEbhVh2KHAYTFAuVUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKKDFdd sGscyFsB+OQ+FX3/Re9PMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAPuPC1L2BhkxYm+fEusuqlEfkwtSrTDjSObq2D+HgTc+0S9wlkuiK Nltb6agIAA9z+XMV91ylaqVg5rK6y7QXRvEh8LH0ZDlVRzYYI4gyrVMhpFTJ7CdW APuUXOCJuWaj0O29djJIQVQqRngRUwQEvTd3spMK6ET4b2T1uMQXZBvvsxS1zESi 3JLZ2NpguOM+dXlYhHr9ZoqDfSKXwzXf8CanB231/MUgQBzqbBcUCnfgPHS9rG0O DAxpiza5cnQbEwmYO7xB+kzEzGc+d6H5AJaMOphTfcWSMzte/Y1myfFa7G8c1bTJ y/W+IRJqI4u71WTQY9ODDUrIQ8i8OwgS -----END CERTIFICATE-----Generated at Sun Jul 20 06:16:09 2025 by rpki-client