$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: n0RLhqKofyawi4hVrGHhWtuDK/qI/6c31vluaFKV6AM= Subject key identifier: 4D:8A:2E:F5:16:46:C6:42:97:5D:4F:0B:DE:DD:7B:D0:1B:BF:80:48 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: BC Signing time: Fri 05 Sep 2025 06:20:44 +0000 Manifest this update: Fri 05 Sep 2025 06:20:44 +0000 Manifest next update: Fri 12 Sep 2025 06:20:43 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: ruoYjtPItJ9Y3iSs3/GPoRoxtMZ6O9Q8bbWuUSsfdKU=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: n3pzdI1R6OnpGAR7FmeF9nZ8iLEx5lsOyhq7ASsGK90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:20:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Sep 5 06:20:44 2025 GMT Not After : Sep 12 06:20:43 2025 GMT Subject: CN=68ba813c-f887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:01:06:2a:e3:cd:b3:14:0a:2c:11:4a:e5:cd: ee:92:6c:5d:17:79:53:37:13:d4:d2:78:08:e6:94: 78:21:7e:49:88:40:bc:fd:e7:2d:ad:0b:19:52:bc: 28:94:47:f2:a6:fa:eb:e8:66:8b:51:41:9e:2d:f6: d2:07:ec:08:b2:6e:27:15:5d:42:87:e2:4b:aa:33: 82:26:42:c0:3b:e5:47:25:1c:0a:9a:7e:a0:4e:c3: 4b:43:e3:0c:03:e9:5a:5a:e1:b4:90:4d:9e:15:74: c7:e3:49:92:e6:68:41:ff:94:8e:11:40:d9:26:4f: 43:e8:30:2a:28:ce:1d:f2:9a:59:b9:2d:eb:44:2e: 68:ad:55:bb:01:8b:67:93:ec:84:b2:a5:2a:6f:c4: c4:e6:3c:93:26:a5:1f:17:f4:e8:3d:b7:18:f8:de: ca:c4:f9:9f:01:5b:15:63:05:cb:d6:43:60:14:4a: 78:fa:e4:0e:5b:70:6c:42:d3:64:47:d3:66:b3:05: a9:56:24:95:30:9e:a7:6f:cd:d2:a7:d3:62:53:f8: 9d:9c:02:2e:5a:10:6e:12:e2:dc:7f:dd:9c:96:fb: 5d:88:69:73:e5:e9:0a:e0:8e:49:87:95:c7:83:f2: 5c:e3:ab:9e:72:3c:0f:7a:ec:dd:5d:5d:88:be:4b: fe:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:8A:2E:F5:16:46:C6:42:97:5D:4F:0B:DE:DD:7B:D0:1B:BF:80:48 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:1c:ca:e7:55:c6:63:9b:5b:f4:2a:81:61:35:09:a4:37:e0: 56:44:6a:0a:31:77:f0:5a:c0:07:df:bb:72:fa:93:ae:18:3e: 49:3c:f2:f6:4e:50:fb:58:f0:fd:ec:e5:44:a5:f7:1b:a6:1f: 90:25:d3:5c:83:d5:0d:c3:5d:3a:c6:ff:89:af:7e:f7:5e:84: 63:05:dd:3f:e5:ea:bd:5b:33:a1:81:5b:b6:d3:db:e2:e8:8b: c3:b0:8a:a9:f1:f4:d0:38:18:d7:6a:b6:66:bd:e3:2f:5d:f0: 7c:42:64:74:a1:15:39:9b:b1:43:58:47:cf:22:c5:03:bd:41: 6c:49:b7:2a:42:ab:2e:e7:4f:ef:59:b4:10:6a:b6:0f:e1:d8: 80:7d:93:19:2f:91:a6:c5:00:cc:e8:d4:0e:c5:c5:7a:90:a3: d2:a0:59:7a:c5:80:27:31:69:07:d5:2a:87:3a:05:1d:21:d6: 7c:13:bc:fe:c9:ae:75:57:53:88:cb:57:6c:9f:bc:44:7c:18: 04:84:10:b4:e6:84:fc:91:ca:ac:e3:fd:32:a0:50:70:e4:b0: 31:ef:2e:cc:71:2c:c7:21:4b:57:a8:84:c9:14:65:43:c1:fd: 36:5a:8e:21:28:6e:db:7e:48:60:c8:94:35:fd:38:9a:ca:90: f0:26:1c:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw NzU0MjQ0M0IwHhcNMjUwOTA1MDYyMDQ0WhcNMjUwOTEyMDYyMDQzWjAYMRYwFAYD VQQDEw02OGJhODEzYy1mODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QEGKuPNsxQKLBFK5c3ukmxdF3lTNxPU0ngI5pR4IX5JiEC8/ectrQsZUrwo lEfypvrr6GaLUUGeLfbSB+wIsm4nFV1Ch+JLqjOCJkLAO+VHJRwKmn6gTsNLQ+MM A+laWuG0kE2eFXTH40mS5mhB/5SOEUDZJk9D6DAqKM4d8ppZuS3rRC5orVW7AYtn k+yEsqUqb8TE5jyTJqUfF/ToPbcY+N7KxPmfAVsVYwXL1kNgFEp4+uQOW3BsQtNk R9NmswWpViSVMJ6nb83Sp9NiU/idnAIuWhBuEuLcf92clvtdiGlz5ekK4I5Jh5XH g/Jc46uecjwPeuzdXV2Ivkv+LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2KLvUW RsZCl11PC97de9Abv4BIMB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1 V05RNHZCZTZnaVVIVkNSRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrHMrnVcZjm1v0KoFhNQmkN+BWRGoKMXfwWsAH37ty+pOuGD5JPPL2 TlD7WPD97OVEpfcbph+QJdNcg9UNw106xv+Jr373XoRjBd0/5eq9WzOhgVu209vi 6IvDsIqp8fTQOBjXarZmveMvXfB8QmR0oRU5m7FDWEfPIsUDvUFsSbcqQqsu50/v WbQQarYP4diAfZMZL5GmxQDM6NQOxcV6kKPSoFl6xYAnMWkH1SqHOgUdIdZ8E7z+ ya51V1OIy1dsn7xEfBgEhBC05oT8kcqs4/0yoFBw5LAx7y7McSzHIUtXqITJFGVD wf02Wo4hKG7bfkhgyJQ1/TiaypDwJhyQ -----END CERTIFICATE-----Generated at Sat Sep 6 20:58:20 2025 by rpki-client