$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: xfx+/DP2ghQJEzPeyXEDkhe+wqIrjF5R6z406i6hBT4= Subject key identifier: 69:E8:BE:9C:36:2B:CD:15:F8:C2:7E:86:55:54:09:EE:87:79:CE:0F Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B49 Signing time: Sat 06 Sep 2025 19:21:32 +0000 Manifest this update: Sat 06 Sep 2025 19:21:32 +0000 Manifest next update: Sat 13 Sep 2025 19:21:32 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: PL0+F4oEat1ZSTvThUoer8/e2Oy06KxbLquGeHhH5yw=) 2: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: V1nVjcRX5R04AqVfR5w5cXlLTGnKcZ3YhA/Vr4DbC7g=) 3: 74CA44AA049F11F087661234C4F9AE02.roa (hash: Dt3Rxw54HIQ46kEi6T0edZoyMwWemQneM/8kvnTf7jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2903 (0xb57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Sep 6 19:21:32 2025 GMT Not After : Sep 13 19:21:32 2025 GMT Subject: CN=68bc89bc-3e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:4e:18:73:9f:69:ad:b9:15:a7:2a:63:2a: 47:5b:7f:92:9d:d2:36:18:72:d6:68:01:e5:4c:d7: eb:d8:16:ae:7e:88:34:a0:b8:30:80:67:d1:d7:57: f6:94:5d:8c:a9:b1:e0:7a:94:c4:40:fe:87:6a:c8: 34:a7:1b:e9:db:62:a9:39:b9:f1:67:fb:92:3f:8b: 84:71:be:e5:2a:c9:e5:68:75:58:6f:8b:9e:96:64: b3:29:72:9d:f5:d1:32:94:70:06:5c:97:73:52:65: 25:5b:8d:9e:19:88:fe:a3:86:30:f4:88:5d:81:36: 97:43:f4:0c:5d:91:d5:a2:c6:b7:f9:c4:ba:c9:ff: 21:47:64:77:13:89:37:ba:44:f1:d2:8c:06:c9:b3: 14:80:a3:e0:62:d4:41:15:58:b5:25:67:f5:4b:85: 38:cc:f9:fa:9c:04:6c:c4:ef:89:98:a3:b9:e5:89: 3f:29:ac:b8:ad:0f:44:bc:52:6d:c2:36:3e:ec:b1: 35:07:d2:f4:f4:3c:02:68:36:0e:c2:de:64:df:b9: 45:e6:2b:b3:63:3a:04:ec:37:93:3b:36:7c:19:47: 3f:ff:3e:78:10:9c:4d:00:eb:e8:f5:9c:d4:47:0f: 3b:1f:80:46:ba:52:ac:58:fa:3b:00:d3:16:6c:21: 0e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E8:BE:9C:36:2B:CD:15:F8:C2:7E:86:55:54:09:EE:87:79:CE:0F X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:25:32:1d:7a:59:a5:f4:b2:4f:a0:c8:27:98:a5:e9:2e:c2: c0:79:26:cc:dd:59:f5:f9:cf:08:cd:2d:d1:dd:9d:68:16:9c: 60:8c:72:7a:dd:61:e0:92:24:30:2b:56:5b:10:75:0c:89:d6: 6c:b2:2a:f4:52:62:55:14:16:6d:d4:bc:fc:30:47:9a:0d:40: 94:8f:ec:59:3a:31:3e:3c:ae:13:4e:f6:5e:5b:27:d3:89:9c: 65:8f:c5:b4:20:e3:b3:26:6b:3f:a1:64:66:1b:6c:17:1c:5f: 39:80:5d:22:0e:fa:f0:ed:85:bd:f7:5c:77:0e:e3:f8:02:63: c9:5f:3e:79:aa:bd:b4:61:10:0d:39:e1:07:a7:54:2f:2d:15: 4e:2b:dc:25:43:38:0a:c7:ea:30:4a:46:25:26:69:e5:a0:7a: 7e:e7:8d:5f:bb:4d:02:8d:5a:1e:2e:72:19:38:a6:c9:10:5a: e0:b3:5a:bf:58:30:df:55:fd:a5:6f:31:f1:cd:6f:3b:5f:51: 95:18:bb:9d:0a:fd:19:b3:de:6d:81:a1:a4:a9:e7:52:f2:c5: b3:52:d1:7c:02:a0:9c:c1:60:8e:6c:9e:27:30:73:7c:b0:05: d1:de:e5:3d:61:36:25:3a:34:f3:9d:19:03:4a:9c:4f:3e:c2: fa:d9:ea:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUwOTA2MTkyMTMyWhcNMjUwOTEzMTkyMTMyWjAYMRYwFAYD VQQDEw02OGJjODliYy0zZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya9OGHOfaa25FacqYypHW3+SndI2GHLWaAHlTNfr2Baufog0oLgwgGfR11f2 lF2MqbHgepTEQP6Hasg0pxvp22KpObnxZ/uSP4uEcb7lKsnlaHVYb4uelmSzKXKd 9dEylHAGXJdzUmUlW42eGYj+o4Yw9IhdgTaXQ/QMXZHVosa3+cS6yf8hR2R3E4k3 ukTx0owGybMUgKPgYtRBFVi1JWf1S4U4zPn6nARsxO+JmKO55Yk/Kay4rQ9EvFJt wjY+7LE1B9L09DwCaDYOwt5k37lF5iuzYzoE7DeTOzZ8GUc//z54EJxNAOvo9ZzU Rw87H4BGulKsWPo7ANMWbCEOcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnovpw2 K80V+MJ+hlVUCe6Hec4PMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCJTIdelml9LJPoMgnmKXpLsLAeSbM3Vn1+c8IzS3R3Z1oFpxgjHJ6 3WHgkiQwK1ZbEHUMidZssir0UmJVFBZt1Lz8MEeaDUCUj+xZOjE+PK4TTvZeWyfT iZxlj8W0IOOzJms/oWRmG2wXHF85gF0iDvrw7YW991x3DuP4AmPJXz55qr20YRAN OeEHp1QvLRVOK9wlQzgKx+owSkYlJmnloHp+541fu00CjVoeLnIZOKbJEFrgs1q/ WDDfVf2lbzHxzW87X1GVGLudCv0Zs95tgaGkqedS8sWzUtF8AqCcwWCObJ4nMHN8 sAXR3uU9YTYlOjTznRkDSpxPPsL62eq7 -----END CERTIFICATE-----Generated at Mon Sep 8 08:47:33 2025 by rpki-client