$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft File: qK6pspMKYU1coxq59-hDeTYaL0M.mft (raw, json) Hash identifier: OL2jDJmB0U4afc27CSB43rK3PiJ3tgBYkGZKRtGK5og= Subject key identifier: 38:9F:4B:0E:65:AE:45:8E:8E:B7:B8:50:7A:3A:87:12:B9:2F:12:72 Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 09E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft Manifest number: 09D3 Signing time: Mon 08 Sep 2025 19:59:38 +0000 Manifest this update: Mon 08 Sep 2025 19:59:37 +0000 Manifest next update: Mon 15 Sep 2025 19:59:37 +0000 Files and hashes: 1: qK6pspMKYU1coxq59-hDeTYaL0M.crl (hash: liY3Q16Qsy2vNVlGVq3ZisW/BtSpHPM2OExZLVIRBDo=) 2: A292E3529E9711EEB6899B1CC4F9AE02.roa (hash: Ogu9kxXrFRJanE7jcwo9P/mePv/PXm/3vRabACePad8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2530 (0x9e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D, serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: Sep 8 19:59:37 2025 GMT Not After : Sep 15 19:59:37 2025 GMT Subject: CN=68bf35aa-ed00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:75:04:2f:28:15:91:be:56:f8:f1:bf:df:e6: 3f:43:22:9c:80:9e:04:97:1a:e9:2f:f7:43:2b:3a: 33:2b:5e:20:09:73:de:5f:aa:47:2e:af:2a:8f:7f: fc:97:c3:3f:90:0b:56:1b:7c:b1:4a:1f:b9:8b:b8: 88:b6:83:91:6e:ab:c6:76:2a:22:d8:da:ec:a8:55: 3b:b8:31:26:13:99:15:dc:2b:dd:15:0d:7e:6e:2e: 74:bb:3e:6e:f1:40:9c:0a:13:aa:1c:66:4c:69:b3: 3d:52:f5:19:75:ba:d9:66:bb:81:a7:ed:ec:57:3e: af:2c:7a:80:1e:fa:52:84:e1:2c:e7:10:61:e1:fc: 45:e6:0f:dd:fc:8a:5b:53:6f:4a:0b:df:28:3a:2d: b0:94:f4:17:b9:17:0a:d6:7b:af:03:bc:dd:f0:94: 9f:06:1d:68:d5:2b:f2:89:1f:a5:63:01:1d:f4:14: 0c:f3:97:5d:99:02:73:5b:c4:77:57:77:99:e2:f8: 4a:ee:61:8a:6b:08:3f:58:6e:25:65:8f:81:f3:df: db:79:ba:3c:f0:39:eb:75:fb:57:fd:f4:a6:fb:de: 6b:b4:d2:26:11:e8:c8:e0:4d:f2:07:90:fa:87:b7: 3f:d8:2a:32:08:d5:f6:7a:66:e2:60:34:38:31:f3: 16:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:9F:4B:0E:65:AE:45:8E:8E:B7:B8:50:7A:3A:87:12:B9:2F:12:72 X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:35:a2:1e:e1:49:60:20:da:71:9b:23:54:8e:97:06:46:80: f3:a6:63:a4:d8:2b:ed:17:40:88:6e:85:0a:58:0e:99:f9:78: d0:7c:6e:2e:9e:cd:c4:63:1f:71:52:91:5a:8a:2b:16:8b:ea: b3:a3:31:a0:10:2c:11:0f:31:e6:1a:fd:6a:76:78:74:b3:79: 53:86:5f:b2:01:66:0e:20:b3:36:0d:72:54:b1:ea:23:4e:8d: 6f:1b:88:64:67:7e:d9:72:64:ed:b4:26:be:14:17:7c:96:cb: 61:99:2e:39:1f:e2:bd:c5:9a:6c:7f:06:ac:cb:83:80:c2:d0: 71:ad:9a:3a:23:62:02:a3:e0:80:e7:10:71:cd:15:13:97:db: 5b:e4:7c:8f:20:4b:47:f2:20:4a:08:e5:18:d4:03:bf:81:3e: f2:5b:12:2d:c8:50:d0:e9:c4:41:79:3c:78:1d:8c:12:e1:1d: 22:49:c8:19:2c:52:ce:92:4b:7a:66:3b:49:39:a7:ba:36:01: 40:d8:da:fa:d4:38:a2:6c:80:6b:fe:cb:35:57:d7:8f:56:80: 59:96:ba:85:8c:52:cd:ce:76:7e:d2:61:40:46:54:f2:cd:c6: f5:ae:e8:72:a8:2f:d7:49:7b:37:b5:59:f6:43:98:23:4f:3c: 6b:b2:db:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjUwOTA4MTk1OTM3WhcNMjUwOTE1MTk1OTM3WjAYMRYwFAYD VQQDEw02OGJmMzVhYS1lZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nUELygVkb5W+PG/3+Y/QyKcgJ4ElxrpL/dDKzozK14gCXPeX6pHLq8qj3/8 l8M/kAtWG3yxSh+5i7iItoORbqvGdioi2NrsqFU7uDEmE5kV3CvdFQ1+bi50uz5u 8UCcChOqHGZMabM9UvUZdbrZZruBp+3sVz6vLHqAHvpShOEs5xBh4fxF5g/d/Ipb U29KC98oOi2wlPQXuRcK1nuvA7zd8JSfBh1o1SvyiR+lYwEd9BQM85ddmQJzW8R3 V3eZ4vhK7mGKawg/WG4lZY+B89/bebo88DnrdftX/fSm+95rtNImEejI4E3yB5D6 h7c/2CoyCNX2embiYDQ4MfMWcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDifSw5l rkWOjre4UHo6hxK5LxJyMB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0MxRC9BODA3MEFGMjhBRjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lV MWNveHE1OS1oRGVUWWFMME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALNaIe4UlgINpxmyNUjpcGRoDzpmOk2CvtF0CIboUKWA6Z+XjQfG4u ns3EYx9xUpFaiisWi+qzozGgECwRDzHmGv1qdnh0s3lThl+yAWYOILM2DXJUseoj To1vG4hkZ37ZcmTttCa+FBd8lsthmS45H+K9xZpsfwasy4OAwtBxrZo6I2ICo+CA 5xBxzRUTl9tb5HyPIEtH8iBKCOUY1AO/gT7yWxItyFDQ6cRBeTx4HYwS4R0iScgZ LFLOkkt6ZjtJOae6NgFA2Nr61DiibIBr/ss1V9ePVoBZlrqFjFLNznZ+0mFARlTy zcb1ruhyqC/XSXs3tVn2Q5gjTzxrstsl -----END CERTIFICATE-----Generated at Wed Sep 10 04:17:37 2025 by rpki-client