$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft File: 0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft (raw, json) Hash identifier: it/2twjHNRt5454UxEfGXe7RKg+d2eapuB6EhSUJWcs= Subject key identifier: F4:A7:C4:FC:18:79:CF:52:55:64:1E:D9:71:29:7F:8F:A6:B6:4B:23 Authority key identifier: D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F Certificate issuer: /CN=A91139AB/serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft Manifest number: 08CA Signing time: Wed 20 Aug 2025 21:35:33 +0000 Manifest this update: Wed 20 Aug 2025 21:35:32 +0000 Manifest next update: Wed 27 Aug 2025 21:35:32 +0000 Files and hashes: 1: 0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl (hash: pEW7lDhDuAs6NJ1PYjrVlnWklYvbOWm/GYvYDUZ1eZI=) 2: 5428E56AF53911EEB8A4592AC4F9AE02.roa (hash: V0jvv16GxWWSgYF6je4xv4QElPKOl/7nA+3XTVSMXTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB, serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Validity Not Before: Aug 20 21:35:32 2025 GMT Not After : Aug 27 21:35:32 2025 GMT Subject: CN=68a63fa4-9a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:96:12:1e:17:66:47:63:f8:74:34:72:70:4b: 31:6b:f9:8e:e7:30:1d:69:73:3c:87:57:6f:61:34: 53:03:a2:41:3c:ef:9e:63:33:78:2e:ae:30:fc:18: 92:4c:a4:89:dd:2d:89:43:73:5c:3a:b1:66:cb:ba: 32:df:cf:1c:92:dd:47:8b:6d:3e:92:45:99:17:90: 65:d1:86:b3:23:eb:6d:15:68:b1:57:66:f3:15:94: 58:07:2d:c1:82:4c:35:aa:4c:0b:5d:5e:e7:2d:82: 93:90:42:d2:e4:3c:36:1a:c5:f1:87:d4:d5:5c:85: eb:59:f0:b7:6b:f8:21:78:86:6a:22:3e:ac:0d:ee: 8f:da:2e:d3:76:d5:ad:a5:86:c7:b9:3b:61:51:9c: c1:1f:b0:e8:db:86:05:b5:17:3a:3b:a8:c7:03:a6: 8b:59:8f:dd:1c:fd:3c:47:de:a7:70:d3:e4:23:96: a5:85:05:46:91:10:02:eb:08:59:7a:dc:a4:a9:10: da:46:c2:79:a3:93:b3:6c:e4:f3:b4:d1:34:ab:c4: 17:c1:8a:84:4e:75:e4:8e:a6:c2:a1:32:ff:cd:b9: 92:db:8c:0d:e3:72:32:66:69:93:fe:32:d9:ba:7f: 33:15:db:d4:19:fd:27:50:60:2e:61:ba:d6:bd:c7: bc:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A7:C4:FC:18:79:CF:52:55:64:1E:D9:71:29:7F:8F:A6:B6:4B:23 X509v3 Authority Key Identifier: keyid:D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:19:db:e6:7d:7c:1a:10:48:fe:f7:9f:cb:c0:b9:00:4f:7d: b2:8f:b2:78:38:4a:3e:e5:a2:58:e1:55:c0:87:97:65:17:97: 56:65:f6:46:3d:85:41:45:40:12:66:40:50:08:ea:86:ca:77: 4c:02:86:e5:e7:ad:41:83:e3:94:a1:50:38:a0:ae:63:ac:5a: 84:07:21:57:03:16:b3:f1:53:f4:7c:17:80:a9:a5:e1:ab:de: ce:13:c6:6f:0a:94:84:97:c9:b8:46:bb:39:6c:d8:34:c9:c6: 3b:b2:11:2f:1a:05:67:2e:b7:98:24:e3:f4:68:54:e4:e8:0a: 70:73:e4:a5:fe:0c:b7:92:3c:20:e6:47:0f:04:4f:4b:f5:2e: 7d:e8:4a:56:fb:8f:0e:86:15:59:fc:47:d0:2c:1e:75:b5:87: 61:59:aa:30:a5:7d:73:77:78:c2:46:18:ab:7b:fe:bd:7d:95: cb:0b:d5:50:84:4b:ce:78:b5:80:24:ea:72:24:0e:e4:55:fb: 59:27:51:12:ad:4b:08:9c:31:2e:ca:a8:4b:14:67:83:d4:30: 1d:fa:76:a6:16:14:3e:5b:8c:77:1c:ea:14:14:bf:7a:2a:26: 9f:39:a9:fe:3a:28:cc:98:4f:60:b7:13:28:df:d3:52:ff:20: cc:e4:0f:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEQxMEJBRjdBQThEQjczNEI5NTJEMDM2MDg3NzgzQzY0 Mzc4NDNDOEYwHhcNMjUwODIwMjEzNTMyWhcNMjUwODI3MjEzNTMyWjAYMRYwFAYD VQQDEw02OGE2M2ZhNC05YTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5YSHhdmR2P4dDRycEsxa/mO5zAdaXM8h1dvYTRTA6JBPO+eYzN4Lq4w/BiS TKSJ3S2JQ3NcOrFmy7oy388ckt1Hi20+kkWZF5Bl0YazI+ttFWixV2bzFZRYBy3B gkw1qkwLXV7nLYKTkELS5Dw2GsXxh9TVXIXrWfC3a/gheIZqIj6sDe6P2i7TdtWt pYbHuTthUZzBH7Do24YFtRc6O6jHA6aLWY/dHP08R96ncNPkI5alhQVGkRAC6whZ etykqRDaRsJ5o5OzbOTztNE0q8QXwYqETnXkjqbCoTL/zbmS24wN43IyZmmT/jLZ un8zFdvUGf0nUGAuYbrWvce81wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSnxPwY ec9SVWQe2XEpf4+mtksjMB8GA1UdIwQYMBaAFNELr3qo23NLlS0DYId4PGQ3hDyP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi8wUXV2ZXFqYmMwdVZMUU5naDNnOFpEZUVQ STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRdXZlcWpiYzB1VkxRTmdoM2c4WkRlRVBJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi8wUXV2ZXFqYmMw dVZMUU5naDNnOFpEZUVQSTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgGdvmfXwaEEj+95/LwLkAT32yj7J4OEo+5aJY4VXAh5dlF5dWZfZG PYVBRUASZkBQCOqGyndMAobl561Bg+OUoVA4oK5jrFqEByFXAxaz8VP0fBeAqaXh q97OE8ZvCpSEl8m4Rrs5bNg0ycY7shEvGgVnLreYJOP0aFTk6Apwc+Sl/gy3kjwg 5kcPBE9L9S596EpW+48OhhVZ/EfQLB51tYdhWaowpX1zd3jCRhire/69fZXLC9VQ hEvOeLWAJOpyJA7kVftZJ1ESrUsInDEuyqhLFGeD1DAd+namFhQ+W4x3HOoUFL96 KiafOan+OijMmE9gtxMo39NS/yDM5A/V -----END CERTIFICATE-----Generated at Fri Aug 22 16:34:39 2025 by rpki-client