$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft (raw, json) Hash identifier: 1Q6JDfhP41yH8sIK+5h1jhBo20CVGPBjQRzqIDE8BJ4= Subject key identifier: 3E:E6:0F:DF:BA:82:0C:5D:39:2C:74:80:6D:6E:2A:8F:12:50:0C:AC Authority key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F Certificate issuer: /CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Certificate serial: 0B99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft Manifest number: 0B92 Signing time: Sun 20 Jul 2025 15:14:44 +0000 Manifest this update: Sun 20 Jul 2025 15:14:43 +0000 Manifest next update: Sun 27 Jul 2025 15:14:43 +0000 Files and hashes: 1: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl (hash: YACAnrZ7Aab/7oTY3ExqEbjxQBThmdHQnKTRm1bsZpY=) 2: 99D18D463C0211EAA729693AC4F9AE02.roa (hash: /8fEEtPdMyUdjQ1z+LPnGcbnmSc1TogzrljlPk/+Zoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2969 (0xb99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Validity Not Before: Jul 20 15:14:43 2025 GMT Not After : Jul 27 15:14:43 2025 GMT Subject: CN=687d07e4-ed19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:00:1a:0b:8e:f3:5d:44:4c:a2:42:ea:8d:ae: fe:92:fc:8b:7e:9d:b3:5d:47:9f:45:d7:ed:d0:b4: ac:ad:66:35:e2:94:ab:0f:f5:d7:cc:c0:74:38:c5: 65:3e:85:bd:52:f7:14:e4:20:f4:23:88:37:92:9e: 5b:e0:bd:b2:ac:1e:c4:a3:a6:f1:5c:b2:5e:f6:0b: 68:0f:90:fe:4c:77:34:94:00:71:e4:46:bb:7b:f4: 8c:33:55:29:a5:2a:69:26:57:dd:ca:40:4f:bc:79: cb:d0:f3:0f:85:5f:02:10:a4:83:28:e5:f7:3f:6f: 95:c1:15:bb:d9:e3:6c:98:b1:2e:36:0d:46:4d:a5: b0:f3:c2:b6:94:69:12:75:9b:0e:29:7c:d2:2f:4a: 40:b4:61:e8:2b:f6:9f:22:7e:6c:f0:3d:bf:22:e1: ae:30:dd:4d:85:4e:ac:c3:73:62:ee:d4:2f:40:7d: 53:e3:97:ed:fe:a1:0f:02:e2:c0:32:90:25:66:b4: fe:7a:bb:e0:a7:ac:28:9f:d1:f3:1f:8f:fa:d5:b7: e6:c0:41:0c:45:e8:ae:c8:60:08:0e:29:bf:cd:ca: 73:0b:4d:a0:21:1c:96:31:f3:6e:80:f1:28:3c:ed: e3:40:47:92:5e:de:59:df:d3:f5:a0:be:8a:b9:e8: 06:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E6:0F:DF:BA:82:0C:5D:39:2C:74:80:6D:6E:2A:8F:12:50:0C:AC X509v3 Authority Key Identifier: keyid:7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:53:96:2f:40:13:1d:65:5c:8f:2b:01:1b:96:aa:13:a6:bf: 18:42:30:dd:73:0c:cc:3d:dc:8e:0b:3e:a9:ff:a5:14:70:6d: 82:65:0e:6b:44:01:a9:4c:38:4e:e2:42:de:c0:d8:f9:59:9d: 33:b3:01:04:d2:05:30:9a:d6:4c:fe:10:85:fb:da:e8:f5:89: 27:6d:89:dc:9c:ec:04:d3:6e:a7:66:07:dc:90:5a:e0:42:45: 61:e4:84:a9:94:a3:54:04:3d:29:31:2a:8b:56:06:83:a3:94: c9:15:b3:70:ab:84:79:82:dd:de:e7:59:31:32:37:5f:84:cc: 36:65:3a:27:3e:05:1f:37:2a:15:a5:57:bb:21:a5:52:7c:ab: 02:ae:69:db:9b:39:4d:6e:4e:64:fb:d2:39:4d:c0:81:c6:09: 47:e9:f4:c2:fb:6d:ba:c9:8a:60:5e:57:c6:ae:5f:72:8d:c2: 8a:6b:7f:57:85:3f:c3:a7:1c:58:24:a0:2b:8f:06:1a:2b:9c: a4:23:88:c9:d7:be:7a:dc:44:ef:83:29:5b:da:9d:a4:dd:0c: 15:2b:6a:3f:45:70:32:21:81:d7:4b:15:ce:6b:a9:a9:38:c0: 7e:ea:9f:5c:c7:dc:d0:63:14:42:df:1b:c4:01:f3:6a:6b:8b: df:8f:9d:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDdEMDQ1MTY1QjI5QTY4QUZDQjhCQTgxNTk5Q0UzMDY3 NDU0NEZEOEYwHhcNMjUwNzIwMTUxNDQzWhcNMjUwNzI3MTUxNDQzWjAYMRYwFAYD VQQDEw02ODdkMDdlNC1lZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAAaC47zXURMokLqja7+kvyLfp2zXUefRdft0LSsrWY14pSrD/XXzMB0OMVl PoW9UvcU5CD0I4g3kp5b4L2yrB7Eo6bxXLJe9gtoD5D+THc0lABx5Ea7e/SMM1Up pSppJlfdykBPvHnL0PMPhV8CEKSDKOX3P2+VwRW72eNsmLEuNg1GTaWw88K2lGkS dZsOKXzSL0pAtGHoK/afIn5s8D2/IuGuMN1NhU6sw3Ni7tQvQH1T45ft/qEPAuLA MpAlZrT+ervgp6won9HzH4/61bfmwEEMReiuyGAIDim/zcpzC02gIRyWMfNugPEo PO3jQEeSXt5Z39P1oL6KuegG9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7mD9+6 ggxdOSx0gG1uKo8SUAysMB8GA1UdIwQYMBaAFH0EUWWymmivy4uoFZnOMGdFRP2P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi83QTc1MEEwQTJE RDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFLX0xpNmdWbWM0d1owVkVf WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZRUlJaYkthYUtfTGk2Z1ZtYzR3WjBWRV9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi83QTc1MEEwQTJERDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFL X0xpNmdWbWM0d1owVkVfWTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8U5YvQBMdZVyPKwEblqoTpr8YQjDdcwzMPdyOCz6p/6UUcG2CZQ5r RAGpTDhO4kLewNj5WZ0zswEE0gUwmtZM/hCF+9ro9YknbYncnOwE026nZgfckFrg QkVh5ISplKNUBD0pMSqLVgaDo5TJFbNwq4R5gt3e51kxMjdfhMw2ZTonPgUfNyoV pVe7IaVSfKsCrmnbmzlNbk5k+9I5TcCBxglH6fTC+226yYpgXlfGrl9yjcKKa39X hT/DpxxYJKArjwYaK5ykI4jJ17563ETvgylb2p2k3QwVK2o/RXAyIYHXSxXOa6mp OMB+6p9cx9zQYxRC3xvEAfNqa4vfj51C -----END CERTIFICATE-----Generated at Sun Jul 20 18:49:35 2025 by rpki-client