$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft (raw, json) Hash identifier: obg4cwi/Nly9Tjd54p5aP5t/cO8KBY0L9EZwJRxpQZI= Subject key identifier: 4B:41:ED:D0:D4:17:61:15:80:86:7A:20:62:43:B0:19:D7:B0:4F:58 Authority key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F Certificate issuer: /CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Certificate serial: 0BB0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft Manifest number: 0BA9 Signing time: Tue 02 Sep 2025 15:18:50 +0000 Manifest this update: Tue 02 Sep 2025 15:18:50 +0000 Manifest next update: Tue 09 Sep 2025 15:18:50 +0000 Files and hashes: 1: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl (hash: cdegYKC7HhEHYKkBMtCu+MP5xKD+jZ2IjggTC/nnAMI=) 2: 99D18D463C0211EAA729693AC4F9AE02.roa (hash: /8fEEtPdMyUdjQ1z+LPnGcbnmSc1TogzrljlPk/+Zoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 15:18:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Validity Not Before: Sep 2 15:18:50 2025 GMT Not After : Sep 9 15:18:50 2025 GMT Subject: CN=68b70ada-a878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:03:4d:b3:cd:b2:c7:8f:86:65:25:1b:f6:3d: 83:0b:3f:7a:21:92:35:d9:59:e2:d4:70:9c:c9:9e: 49:33:65:a9:f8:0c:11:9f:c2:35:3e:e1:de:0e:e5: c5:da:b6:38:91:49:60:ed:17:c6:27:aa:c6:55:1f: 04:4a:aa:80:cd:f2:fb:5e:d8:04:7f:68:1f:45:05: 3d:bf:22:56:34:66:65:bd:30:08:d2:f2:36:db:6c: e5:53:84:f9:a8:a8:17:4b:89:89:92:a2:3d:18:90: d4:93:40:69:93:82:de:2c:2e:d0:cb:1c:2a:30:d6: 18:a6:0c:18:82:89:c2:5c:4b:0f:ff:57:7e:2a:92: 33:5e:f2:e5:ce:60:f7:d0:12:f3:68:2f:c1:b7:e6: cb:3a:bc:63:ce:23:6c:26:b1:93:a4:5f:19:be:b7: 58:37:95:10:f0:87:36:2d:15:94:7f:bd:07:f8:be: 0b:f0:87:a5:67:42:99:c3:b6:e2:12:c3:31:af:e9: dc:00:df:f7:a7:b1:43:5f:2e:53:e6:3a:e8:39:2d: cb:66:2d:12:76:74:98:36:49:df:23:56:7e:8a:33: 69:3d:ef:78:f7:bd:13:9f:c9:ca:ed:a3:f8:70:d3: c8:ad:55:2f:0f:6f:2f:6b:d3:91:b0:ae:e0:33:75: da:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:41:ED:D0:D4:17:61:15:80:86:7A:20:62:43:B0:19:D7:B0:4F:58 X509v3 Authority Key Identifier: keyid:7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:0f:c5:1b:f0:ff:08:b1:ab:e0:a6:3a:f6:91:d2:83:c3:58: 19:31:81:1f:0d:ff:2f:d1:89:d8:d2:90:23:2f:2d:52:67:36: 5f:8f:62:d6:0b:7c:e7:fb:13:82:54:51:8f:68:02:dc:60:a3: 53:64:2d:cc:ea:8f:e0:95:fd:77:01:73:f5:ce:82:19:be:8f: 63:b2:1c:d5:f1:b2:76:4a:95:4d:8c:bf:ad:39:d0:ea:ea:81: e8:e4:6a:9f:d0:7d:41:d0:f1:8c:d7:27:b0:23:36:d5:70:d8: 6a:86:a4:f9:39:47:26:ed:a9:91:82:f1:1a:73:33:0c:cf:4a: 99:8e:bf:19:c4:8e:aa:9c:55:9f:ad:32:76:86:5c:cb:e1:8c: 1c:68:d8:97:dd:f9:fb:0e:f1:06:32:98:40:e9:f8:fd:2f:3b: 05:cb:2c:48:0e:ab:07:66:1e:67:ef:06:ba:3e:e0:09:af:ee: f0:43:6f:1a:57:6b:12:00:a2:3e:2d:c9:6f:67:95:10:1e:7c: 72:3c:93:25:6b:36:78:c1:ee:0b:19:71:ec:da:7a:ca:60:61: 14:55:dd:70:3b:d4:af:8a:0c:e1:a4:77:cd:78:a3:74:df:9c: 9a:fa:bd:1e:d1:fb:8d:2a:13:fa:03:66:5c:0f:79:ac:d4:ff: 96:37:ac:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDdEMDQ1MTY1QjI5QTY4QUZDQjhCQTgxNTk5Q0UzMDY3 NDU0NEZEOEYwHhcNMjUwOTAyMTUxODUwWhcNMjUwOTA5MTUxODUwWjAYMRYwFAYD VQQDEw02OGI3MGFkYS1hODc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgNNs82yx4+GZSUb9j2DCz96IZI12Vni1HCcyZ5JM2Wp+AwRn8I1PuHeDuXF 2rY4kUlg7RfGJ6rGVR8ESqqAzfL7XtgEf2gfRQU9vyJWNGZlvTAI0vI222zlU4T5 qKgXS4mJkqI9GJDUk0Bpk4LeLC7QyxwqMNYYpgwYgonCXEsP/1d+KpIzXvLlzmD3 0BLzaC/Bt+bLOrxjziNsJrGTpF8ZvrdYN5UQ8Ic2LRWUf70H+L4L8IelZ0KZw7bi EsMxr+ncAN/3p7FDXy5T5jroOS3LZi0SdnSYNknfI1Z+ijNpPe94970Tn8nK7aP4 cNPIrVUvD28va9ORsK7gM3XaJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtB7dDU F2EVgIZ6IGJDsBnXsE9YMB8GA1UdIwQYMBaAFH0EUWWymmivy4uoFZnOMGdFRP2P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi83QTc1MEEwQTJE RDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFLX0xpNmdWbWM0d1owVkVf WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZRUlJaYkthYUtfTGk2Z1ZtYzR3WjBWRV9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi83QTc1MEEwQTJERDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFL X0xpNmdWbWM0d1owVkVfWTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkD8Ub8P8Isavgpjr2kdKDw1gZMYEfDf8v0YnY0pAjLy1SZzZfj2LW C3zn+xOCVFGPaALcYKNTZC3M6o/glf13AXP1zoIZvo9jshzV8bJ2SpVNjL+tOdDq 6oHo5Gqf0H1B0PGM1yewIzbVcNhqhqT5OUcm7amRgvEaczMMz0qZjr8ZxI6qnFWf rTJ2hlzL4YwcaNiX3fn7DvEGMphA6fj9LzsFyyxIDqsHZh5n7wa6PuAJr+7wQ28a V2sSAKI+LclvZ5UQHnxyPJMlazZ4we4LGXHs2nrKYGEUVd1wO9SvigzhpHfNeKN0 35ya+r0e0fuNKhP6A2ZcD3ms1P+WN6zW -----END CERTIFICATE-----Generated at Thu Sep 4 14:02:17 2025 by rpki-client