$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: iSsTrtTCBC4yNoSanYduBDLO9aDFpbOPKNi8/jSY6HI= Subject key identifier: 99:E5:81:9F:BC:AD:BF:BB:2B:85:49:F5:EB:23:F0:0C:7A:70:21:8A Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: A3 Signing time: Sat 23 Aug 2025 06:25:51 +0000 Manifest this update: Sat 23 Aug 2025 06:25:50 +0000 Manifest next update: Sat 30 Aug 2025 06:25:50 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: e0UarUT48SGiXlfOgiVwd+6pBeDPhZc/1VW+/asQA7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Aug 23 06:25:50 2025 GMT Not After : Aug 30 06:25:50 2025 GMT Subject: CN=68a95eee-b71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:47:15:b6:8f:f1:ed:d2:93:b2:d8:06:7c:77: 5d:4e:fe:9d:1d:44:67:7d:b6:e4:d6:21:e4:3b:65: dd:ab:57:14:b0:75:e2:cf:2c:4b:0e:a7:05:4f:99: 5e:88:3a:b1:4a:48:e8:f9:38:67:b9:5d:15:aa:cf: f2:f2:0f:95:97:86:b2:31:8a:1b:15:95:75:dc:0c: 89:80:f4:e2:61:f5:d7:e5:fe:4f:c0:48:38:ad:19: 4a:d0:65:87:e1:ab:93:d2:1e:ca:5e:82:e2:79:53: b8:a1:45:61:f4:19:83:a1:7b:8a:79:8d:f7:01:24: ae:52:e7:60:f0:81:56:1e:69:7a:90:c1:60:bd:3b: 02:5c:f0:d7:fb:de:33:f3:33:93:00:e4:e4:89:2c: df:64:cc:12:7b:2c:ae:13:5d:b0:3c:9d:ca:dd:33: bc:67:1e:c8:2e:46:a9:50:1b:7b:89:be:ae:da:a8: 5e:94:f5:bb:72:08:44:cc:43:ef:f1:0a:38:1c:e9: 6c:72:87:96:79:9e:c1:1a:99:fa:be:ff:06:2a:76: 67:e6:62:ba:ed:a6:5f:d9:46:6c:b4:72:3b:82:73: 74:f9:fd:f5:9c:51:b6:5d:37:fc:f0:53:8c:b4:67: d9:44:cf:06:7e:16:7f:1d:f1:4e:ee:86:96:8d:33: a0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E5:81:9F:BC:AD:BF:BB:2B:85:49:F5:EB:23:F0:0C:7A:70:21:8A X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:9a:38:90:bf:60:f1:2b:2f:05:6c:b8:85:d2:cd:ce:29:86: 51:61:81:48:bd:19:2e:c8:ac:0d:26:53:19:0c:fd:ed:44:0b: f9:c6:02:d1:cc:bf:c4:a9:9f:3c:15:cb:a1:aa:66:2b:5d:08: 35:0a:d3:6a:c3:b5:4c:35:e1:7e:7b:da:a4:72:48:c8:dc:d4: f2:17:5b:8e:98:a6:eb:09:f7:93:40:22:8d:f8:ff:48:fa:92: 36:5d:3f:99:af:a5:c8:95:f6:5c:a0:96:02:1f:6e:0f:9b:8b: ca:3e:8d:f0:b9:5d:0c:22:be:6d:ab:d4:fe:96:b4:f9:bc:51: 1b:73:3b:1d:da:28:18:72:af:70:f1:c7:ff:62:78:05:8a:8b: b6:c5:94:2b:3c:05:40:8a:ae:8d:90:ae:b4:42:05:31:39:5f: b2:83:01:c2:7b:7e:37:af:17:cf:65:f7:69:37:74:34:24:83: 81:97:b7:3c:e1:17:aa:ab:f3:c9:19:25:18:0e:bc:f7:ba:d9: 00:76:77:dc:c4:14:f4:15:b7:64:ed:3a:8b:21:27:8b:b0:8a: f6:cd:69:c4:a3:db:c9:a1:65:83:aa:2e:80:54:3b:0a:9d:15: a7:4e:c5:b4:64:13:7b:5b:d3:a3:e8:30:a1:8f:7c:81:27:82: 33:27:3d:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4QUQxMTAvBgNVBAUTKEQxMEMyMDk2RkI1REIzMDRBQkQyRjk5RjQ1QTI5NDg4 MjkyRDM3MjEwHhcNMjUwODIzMDYyNTUwWhcNMjUwODMwMDYyNTUwWjAYMRYwFAYD VQQDEw02OGE5NWVlZS1iNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0cVto/x7dKTstgGfHddTv6dHURnfbbk1iHkO2Xdq1cUsHXizyxLDqcFT5le iDqxSkjo+ThnuV0Vqs/y8g+Vl4ayMYobFZV13AyJgPTiYfXX5f5PwEg4rRlK0GWH 4auT0h7KXoLieVO4oUVh9BmDoXuKeY33ASSuUudg8IFWHml6kMFgvTsCXPDX+94z 8zOTAOTkiSzfZMwSeyyuE12wPJ3K3TO8Zx7ILkapUBt7ib6u2qhelPW7cghEzEPv 8Qo4HOlscoeWeZ7BGpn6vv8GKnZn5mK67aZf2UZstHI7gnN0+f31nFG2XTf88FOM tGfZRM8GfhZ/HfFO7oaWjTOgqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnlgZ+8 rb+7K4VJ9esj8Ax6cCGKMB8GA1UdIwQYMBaAFNEMIJb7XbMEq9L5n0WilIgpLTch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjhBRC9ERUJBMjM4MDg2 QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3U3Iwdm1mUmFLVWlDa3RO eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjhBRC9ERUJBMjM4MDg2QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3 U3Iwdm1mUmFLVWlDa3ROeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1mjiQv2DxKy8FbLiF0s3OKYZRYYFIvRkuyKwNJlMZDP3tRAv5xgLR zL/EqZ88FcuhqmYrXQg1CtNqw7VMNeF+e9qkckjI3NTyF1uOmKbrCfeTQCKN+P9I +pI2XT+Zr6XIlfZcoJYCH24Pm4vKPo3wuV0MIr5tq9T+lrT5vFEbczsd2igYcq9w 8cf/YngFiou2xZQrPAVAiq6NkK60QgUxOV+ygwHCe343rxfPZfdpN3Q0JIOBl7c8 4Reqq/PJGSUYDrz3utkAdnfcxBT0Fbdk7TqLISeLsIr2zWnEo9vJoWWDqi6AVDsK nRWnTsW0ZBN7W9Oj6DChj3yBJ4IzJz2g -----END CERTIFICATE-----Generated at Sun Aug 24 22:21:02 2025 by rpki-client