$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft File: wQgOZhsN-mIOsJqrLerWA0uCjrw.mft (raw, json) Hash identifier: E9AKP5Efv+g9actO8sSIOlOuHM6GvNGl8mCtvw9VSH0= Subject key identifier: 66:D9:2D:BC:28:9F:28:C8:B8:9D:6A:D5:89:B5:87:02:F3:40:EA:26 Authority key identifier: C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC Certificate issuer: /CN=A91DB0C1/serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Certificate serial: 1914 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft Manifest number: 190C Signing time: Sun 24 Aug 2025 16:25:51 +0000 Manifest this update: Sun 24 Aug 2025 16:25:51 +0000 Manifest next update: Sun 31 Aug 2025 16:25:51 +0000 Files and hashes: 1: wQgOZhsN-mIOsJqrLerWA0uCjrw.crl (hash: hOtxx3/Tt/qe8/kDtmJ51dwlyu1SPyvcqSCfe9bQYFo=) 2: 35D9F1BE8A7C11E79774186BC4F9AE02.roa (hash: JsSR5Xyiam1gqDW8LZ3p6vMD1Unh1jWG06vXX1Pt4OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6420 (0x1914) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C1, serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Validity Not Before: Aug 24 16:25:51 2025 GMT Not After : Aug 31 16:25:51 2025 GMT Subject: CN=68ab3d0f-7df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0b:2c:fe:c5:61:12:9a:44:bf:8e:8a:89:6e: c7:63:eb:20:07:f3:6f:05:95:b8:cb:e0:f7:07:c9: 44:e7:95:5d:2f:a4:f3:0b:42:aa:14:67:37:60:c2: 1e:e6:c0:e3:c0:88:08:77:ef:7a:a6:2e:4a:f1:94: 06:c9:05:e0:4f:8b:06:ee:c5:6a:eb:9e:90:34:49: 47:91:55:9e:20:a0:fe:d0:4b:ab:8f:80:f5:be:a1: 43:1d:66:7d:41:f3:a3:78:94:25:85:a7:f8:e3:77: ff:6a:5e:33:fd:0f:21:0f:4e:2b:4d:94:9f:ac:6d: 2a:64:b1:f0:80:23:a9:aa:9c:cc:41:6f:36:08:d7: c9:8f:00:44:35:4f:63:ef:86:dd:5e:e5:6f:b8:90: fa:d0:12:ae:e0:df:07:d1:0f:bd:55:1d:ab:0d:78: 61:89:bf:e8:51:e7:72:c6:bb:aa:b6:bc:8e:ca:4d: 12:fd:55:c7:dd:39:39:c3:7d:fb:28:4e:ba:67:e4: fa:11:73:27:ce:45:ec:e7:eb:75:34:ca:38:e5:86: 3b:5a:bd:61:e0:de:19:e1:f7:6e:25:dc:ec:fe:a6: 43:36:ff:6d:04:45:94:67:3b:38:ca:2a:3a:66:0c: 86:51:10:5e:ba:b8:1a:2c:08:07:cd:02:af:09:b3: a1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:D9:2D:BC:28:9F:28:C8:B8:9D:6A:D5:89:B5:87:02:F3:40:EA:26 X509v3 Authority Key Identifier: keyid:C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:e2:ea:ac:ba:67:87:52:e2:52:0d:b0:06:4f:7d:97:76:10: b0:9b:45:f0:2c:fa:e7:b3:70:d3:6b:1c:b8:3d:e3:1f:92:87: 6a:99:e8:73:d6:4e:01:c3:ac:d9:36:57:9f:f9:0b:d7:56:8f: 09:2c:e9:e1:3a:d1:28:21:c1:66:30:1e:e8:1f:a5:35:5b:8e: f0:15:c4:93:13:5c:2f:dd:3b:4b:75:bd:eb:78:94:8b:00:e4: 04:94:0b:2a:38:0c:0d:c6:8c:0a:57:db:ae:a5:b0:f5:b1:f6: db:a1:e3:cd:8c:86:d6:f1:06:b7:1e:65:fa:db:b6:14:a4:4c: 13:42:3c:a4:9a:01:47:61:b2:77:e2:f0:e9:c7:70:24:e5:06: b0:65:bd:d2:99:12:80:4d:fe:eb:a9:cf:36:1b:61:fc:70:b5: 70:4a:54:7d:56:a5:28:3e:51:7f:06:d6:c5:25:26:25:57:9d: 17:87:e1:f7:c2:bf:de:19:f1:b4:80:1b:5d:fd:1e:0f:3b:78: 57:46:dc:6b:d4:1c:4e:7b:e0:71:e6:0e:0a:4b:6d:86:08:8c: 59:14:5d:64:05:2e:3c:5c:4b:bf:84:4d:a1:75:23:0d:71:47: 55:1c:ba:dd:5e:3a:eb:a6:c1:8a:78:11:8d:04:33:32:55:75: 0d:6a:30:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzExMTAvBgNVBAUTKEMxMDgwRTY2MUIwREZBNjIwRUIwOUFBQjJERUFENjAz NEI4MjhFQkMwHhcNMjUwODI0MTYyNTUxWhcNMjUwODMxMTYyNTUxWjAYMRYwFAYD VQQDEw02OGFiM2QwZi03ZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wss/sVhEppEv46KiW7HY+sgB/NvBZW4y+D3B8lE55VdL6TzC0KqFGc3YMIe 5sDjwIgId+96pi5K8ZQGyQXgT4sG7sVq656QNElHkVWeIKD+0Eurj4D1vqFDHWZ9 QfOjeJQlhaf443f/al4z/Q8hD04rTZSfrG0qZLHwgCOpqpzMQW82CNfJjwBENU9j 74bdXuVvuJD60BKu4N8H0Q+9VR2rDXhhib/oUedyxruqtryOyk0S/VXH3Tk5w337 KE66Z+T6EXMnzkXs5+t1NMo45YY7Wr1h4N4Z4fduJdzs/qZDNv9tBEWUZzs4yio6 ZgyGURBeurgaLAgHzQKvCbOheQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbZLbwo nyjIuJ1q1Ym1hwLzQOomMB8GA1UdIwQYMBaAFMEIDmYbDfpiDrCaqy3q1gNLgo68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMS84MDJDMjQzMjhB N0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1tSU9zSnFyTGVyV0EwdUNq cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dRZ09aaHNOLW1JT3NKcXJMZXJXQTB1Q2pydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMS84MDJDMjQzMjhBN0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1t SU9zSnFyTGVyV0EwdUNqcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ4uqsumeHUuJSDbAGT32XdhCwm0XwLPrns3DTaxy4PeMfkodqmehz 1k4Bw6zZNlef+QvXVo8JLOnhOtEoIcFmMB7oH6U1W47wFcSTE1wv3TtLdb3reJSL AOQElAsqOAwNxowKV9uupbD1sfbboePNjIbW8Qa3HmX627YUpEwTQjykmgFHYbJ3 4vDpx3Ak5QawZb3SmRKATf7rqc82G2H8cLVwSlR9VqUoPlF/BtbFJSYlV50Xh+H3 wr/eGfG0gBtd/R4PO3hXRtxr1BxOe+Bx5g4KS22GCIxZFF1kBS48XEu/hE2hdSMN cUdVHLrdXjrrpsGKeBGNBDMyVXUNajDB -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:21 2025 by rpki-client