$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft File: 0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json) Hash identifier: kneCRrrP2SbLBVt3UE2mLG/Dz+TfzViapnlEA3RWmZ0= Subject key identifier: BC:16:53:B7:C8:AE:3B:D4:DA:04:0B:CC:AA:31:8A:3B:20:EE:53:4E Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 0B38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft Manifest number: 0B2B Signing time: Wed 20 Aug 2025 19:19:40 +0000 Manifest this update: Wed 20 Aug 2025 19:19:39 +0000 Manifest next update: Wed 27 Aug 2025 19:19:39 +0000 Files and hashes: 1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: kNbnOXc+lafMEDz1j334Zvs+/OI/fLzyyLIt0LN9PxE=) 2: A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa (hash: wBezilbHgFlLqA1qqUMQVDVzvkJDksyuC7XhtfdBEgk=) 3: 3FC1B85E431811EA84E68121C4F9AE02.roa (hash: kRXthgEAoGC/b23UrIEWTh9+gf3/yFfF1cVAtff2rTg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2872 (0xb38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: Aug 20 19:19:39 2025 GMT Not After : Aug 27 19:19:39 2025 GMT Subject: CN=68a61fcb-054f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:91:07:a4:34:7b:46:7d:4c:42:c9:20:70:63: eb:a1:ae:e3:1b:d7:a7:a3:c5:3c:ec:6e:34:27:83: 4e:e3:80:0e:6b:dd:35:5b:bf:8b:60:f5:aa:e0:92: d1:e2:13:e3:c1:b2:5d:b2:a3:d5:dc:f5:4d:9d:a6: 9d:cc:13:d8:61:a6:6a:c8:d3:18:c0:1e:5a:27:49: 71:c9:3f:40:e8:1e:79:bd:0d:72:42:0c:2d:b2:61: 89:e7:88:18:be:6f:92:65:b5:48:3e:ec:e3:5f:e3: f8:ca:5e:3c:2f:8f:15:3f:af:49:d6:1c:13:b8:14: fb:59:a4:4d:e7:4e:15:ed:5b:91:87:36:20:4c:65: ae:da:b2:82:2c:a8:c0:e9:da:4f:bd:ec:87:01:fc: 88:88:69:19:a1:14:2f:90:e3:d8:6f:38:0d:f2:e7: ec:3f:bd:db:2d:e4:2b:ff:33:42:bc:cd:f6:28:b0: fb:0d:fc:17:16:be:16:24:81:de:b8:0b:ff:91:c1: 19:17:b7:33:fe:82:e4:56:76:1c:97:79:f5:01:c1: c2:71:6f:a7:d8:13:58:bb:1a:2b:a3:91:00:ef:82: 16:59:da:30:4c:ea:bd:cf:09:59:8d:16:91:c7:22: df:e2:30:45:c5:51:39:e5:02:87:7d:75:5f:c4:a6: d1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:16:53:B7:C8:AE:3B:D4:DA:04:0B:CC:AA:31:8A:3B:20:EE:53:4E X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:76:6b:ef:c0:eb:31:3d:6b:8e:61:28:b7:89:db:16:fc:16: 75:69:9b:a9:d9:0b:a8:c9:11:54:aa:5c:fa:ab:34:76:d7:65: 60:e1:4e:f0:d2:a5:c3:09:21:b1:07:70:3c:a6:a6:17:27:2c: f2:44:13:9f:68:43:e3:83:d4:fc:d0:d9:2a:22:74:b3:48:bb: 51:81:cd:c3:17:46:9f:2f:77:22:fa:71:79:00:61:b5:44:14: 84:45:1d:13:74:3e:3c:0c:5e:73:d9:1c:61:2c:9a:eb:02:53: 06:41:8b:18:6a:45:36:d0:05:86:2f:e1:ea:71:43:3d:71:1c: 33:d1:a7:4e:e8:d6:8a:41:e8:eb:56:b9:ef:34:9f:66:2b:a8: 96:40:4b:28:30:66:54:b7:7f:90:3c:71:ff:db:22:bb:7e:11: 7e:6a:32:a2:c9:33:6a:66:1f:08:0e:11:fd:ca:cf:d1:ce:15: 60:6e:08:6a:c1:9d:64:6b:88:8d:d1:88:c5:f8:bd:22:20:bc: 0f:37:4d:5b:15:4c:54:49:37:7d:65:a7:08:58:6e:8a:33:3c: 4c:d7:da:22:83:2e:94:86:0a:8b:3d:7b:b7:74:78:6a:a3:c1: db:72:3e:98:b4:53:8b:c6:a9:b2:dd:e6:05:11:31:74:8f:9c: cb:e4:19:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjUwODIwMTkxOTM5WhcNMjUwODI3MTkxOTM5WjAYMRYwFAYD VQQDEw02OGE2MWZjYi0wNTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ZEHpDR7Rn1MQskgcGProa7jG9eno8U87G40J4NO44AOa901W7+LYPWq4JLR 4hPjwbJdsqPV3PVNnaadzBPYYaZqyNMYwB5aJ0lxyT9A6B55vQ1yQgwtsmGJ54gY vm+SZbVIPuzjX+P4yl48L48VP69J1hwTuBT7WaRN504V7VuRhzYgTGWu2rKCLKjA 6dpPveyHAfyIiGkZoRQvkOPYbzgN8ufsP73bLeQr/zNCvM32KLD7DfwXFr4WJIHe uAv/kcEZF7cz/oLkVnYcl3n1AcHCcW+n2BNYuxoro5EA74IWWdowTOq9zwlZjRaR xyLf4jBFxVE55QKHfXVfxKbRLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwWU7fI rjvU2gQLzKoxijsg7lNOMB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVEQy80NjEyRDUxRTQzMTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4 MjQxX1JNYnh6UlBuUEM4akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmdmvvwOsxPWuOYSi3idsW/BZ1aZup2QuoyRFUqlz6qzR212Vg4U7w 0qXDCSGxB3A8pqYXJyzyRBOfaEPjg9T80NkqInSzSLtRgc3DF0afL3ci+nF5AGG1 RBSERR0TdD48DF5z2RxhLJrrAlMGQYsYakU20AWGL+HqcUM9cRwz0adO6NaKQejr VrnvNJ9mK6iWQEsoMGZUt3+QPHH/2yK7fhF+ajKiyTNqZh8IDhH9ys/RzhVgbghq wZ1ka4iN0YjF+L0iILwPN01bFUxUSTd9ZacIWG6KMzxM19oigy6UhgqLPXu3dHhq o8Hbcj6YtFOLxqmy3eYFETF0j5zL5Bma -----END CERTIFICATE-----Generated at Thu Aug 21 07:25:30 2025 by rpki-client