$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: /izmw3l7qbivisQkAEb1VTkL6WzNlRIFgC1iO5uwvo8= Subject key identifier: 87:A2:CE:CE:07:DD:94:48:42:DC:A2:C8:DC:AF:2C:05:A5:9B:FB:4B Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: 010E Signing time: Thu 21 Aug 2025 05:06:49 +0000 Manifest this update: Thu 21 Aug 2025 05:06:48 +0000 Manifest next update: Thu 28 Aug 2025 05:06:48 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: os6hsAKWgNhgn9qPhqocHXLqrSEBCFqsfgjqHsfN3w8=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: Fb0vXPsGENJ9HpaLetk+Rjo+o9pYvcloVY8N7cgyCIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: Aug 21 05:06:48 2025 GMT Not After : Aug 28 05:06:48 2025 GMT Subject: CN=68a6a969-f2ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2f:ed:e4:b0:d6:d4:a0:67:01:4c:9c:12:89: cc:c5:c3:38:7b:cd:77:39:c6:e3:9d:26:f5:d2:8a: 44:db:fc:7a:53:67:4f:6a:96:79:9b:c1:68:c7:d9: 19:8d:5a:80:90:35:f9:2a:18:57:65:f6:e8:d6:0b: 3e:3f:6d:48:77:13:ba:a0:54:64:06:50:bf:71:f0: 54:55:5c:74:63:37:29:73:59:af:66:f0:33:2d:5a: b6:e6:b3:e4:8e:58:64:a0:fb:bb:cc:af:76:0d:4b: 18:ac:2f:43:f0:9f:09:25:dd:02:02:93:3d:c8:e8: d8:5a:5b:26:65:60:80:b5:f7:d1:c6:7e:e8:77:52: 77:cb:a0:15:44:4a:45:de:f2:9e:db:f6:24:85:1e: aa:50:7a:41:3b:09:ee:73:62:f0:e9:de:46:d7:7f: 14:30:3f:fe:a0:01:c4:5c:92:7d:4f:b7:fd:cd:b7: 37:be:c8:a6:4f:87:13:7f:b3:c4:5f:bf:00:ab:88: 60:32:cc:c3:df:d6:66:29:40:d1:2b:1f:54:bf:f6: 6f:89:0d:ff:89:10:e4:5e:59:56:db:90:43:fc:a5: b3:4b:8b:ec:00:eb:36:80:44:1e:15:d2:4e:cb:68: b9:af:b2:74:ec:d0:7c:2d:11:2b:fe:82:fc:11:7c: 08:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A2:CE:CE:07:DD:94:48:42:DC:A2:C8:DC:AF:2C:05:A5:9B:FB:4B X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c9:df:c5:7c:c7:c0:0f:98:f4:4d:b2:9f:20:71:75:ce:f7: 73:d0:63:cf:4f:14:70:e8:97:56:87:e4:9b:3a:ff:00:2e:72: ab:cd:cc:7f:43:1a:35:e6:5e:e1:4e:31:ce:86:46:20:e7:c1: aa:89:c4:b1:38:dd:c9:5b:bd:8b:ae:53:2e:1c:92:1c:26:d8: 58:2e:00:fa:f7:ea:33:7c:ff:b2:da:01:be:63:2d:05:aa:ba: bf:5e:3c:e0:a1:5f:4e:d3:8e:a7:2b:01:64:07:7d:aa:ce:96: a5:b3:34:97:fd:41:a8:41:c0:90:01:a4:e3:16:44:fb:96:3e: 79:bd:98:7f:91:69:96:a6:bb:a7:f9:dd:85:a5:f1:92:bc:3f: be:87:85:55:c4:2e:5d:fd:38:72:94:00:b8:8b:db:84:6d:64: 55:20:22:88:d3:c1:72:ba:2a:8c:f6:1b:91:ad:6b:e8:9e:5b: 96:99:3a:a1:51:01:fd:5b:50:04:19:4d:f3:d8:bd:a0:e3:63: 00:da:dc:c0:7a:dd:72:c5:6c:57:c8:5c:cb:ee:75:36:a3:0a: 0e:8d:7c:ad:04:e3:87:61:b9:02:2e:c4:96:9c:fd:3c:d4:b3: b4:bb:bc:10:f2:ef:dd:52:5b:82:79:0d:a7:01:54:82:2e:a2: e6:ac:87:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKDczMDYxQkE5MDQwMTgxRUMwQUVCNEQ4RjZFMDAzRjgz OEZDOUM0OEYwHhcNMjUwODIxMDUwNjQ4WhcNMjUwODI4MDUwNjQ4WjAYMRYwFAYD VQQDEw02OGE2YTk2OS1mMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC/t5LDW1KBnAUycEonMxcM4e813OcbjnSb10opE2/x6U2dPapZ5m8Fox9kZ jVqAkDX5KhhXZfbo1gs+P21IdxO6oFRkBlC/cfBUVVx0Yzcpc1mvZvAzLVq25rPk jlhkoPu7zK92DUsYrC9D8J8JJd0CApM9yOjYWlsmZWCAtffRxn7od1J3y6AVREpF 3vKe2/YkhR6qUHpBOwnuc2Lw6d5G138UMD/+oAHEXJJ9T7f9zbc3vsimT4cTf7PE X78Aq4hgMszD39ZmKUDRKx9Uv/ZviQ3/iRDkXllW25BD/KWzS4vsAOs2gEQeFdJO y2i5r7J07NB8LREr/oL8EXwIYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeizs4H 3ZRIQtyiyNyvLAWlm/tLMB8GA1UdIwQYMBaAFHMGG6kEAYHsCutNj24AP4OPycSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9ENEYzREI5RUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdld0s2MDJQYmdBX2c0X0p4 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9ENEYzREI5RUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdl d0s2MDJQYmdBX2c0X0p4STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnyd/FfMfAD5j0TbKfIHF1zvdz0GPPTxRw6JdWh+SbOv8ALnKrzcx/ Qxo15l7hTjHOhkYg58GqicSxON3JW72LrlMuHJIcJthYLgD69+ozfP+y2gG+Yy0F qrq/XjzgoV9O046nKwFkB32qzpalszSX/UGoQcCQAaTjFkT7lj55vZh/kWmWprun +d2FpfGSvD++h4VVxC5d/ThylAC4i9uEbWRVICKI08FyuiqM9huRrWvonluWmTqh UQH9W1AEGU3z2L2g42MA2tzAet1yxWxXyFzL7nU2owoOjXytBOOHYbkCLsSWnP08 1LO0u7wQ8u/dUluCeQ2nAVSCLqLmrIcJ -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:12 2025 by rpki-client