$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: KBgP4YNiBi/JhgwAYdIKUo4ajYJvJgWO0yIRebh5tXI= Subject key identifier: B8:8C:D6:5F:95:46:5F:EA:4D:B6:69:63:B6:C3:11:AA:42:C1:87:A7 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: 0200 Signing time: Sun 07 Sep 2025 02:52:13 +0000 Manifest this update: Sun 07 Sep 2025 02:52:13 +0000 Manifest next update: Sun 14 Sep 2025 02:52:12 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: tyJKsuEVn8IaVfa8rpy8GwSDimtYPuN4spoXOm6DHCk=) 2: C0C268B8441C11EF9E110F1EC4F9AE02.roa (hash: jnHEv+tk9LEmiC9T0eLpIu0ka8tlgw/1HGmQA/hDw9s=) 3: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (hash: Tod+meVH3/YYDYyQo78I9vVyyLfaumC1ya5cnKT+hFM=) 4: 08A1C0B8DC5011EF9C212C5CC4F9AE02.roa (hash: 3zWqR+4/bbh/62pxX54wkuJs0uKg6zeZhN4dCLWwFho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: Sep 7 02:52:13 2025 GMT Not After : Sep 14 02:52:12 2025 GMT Subject: CN=68bcf35d-7a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8d:ea:c0:88:65:f7:7a:ba:7f:fd:d1:8f:d7: 13:c1:3d:14:40:14:2c:bd:1f:fe:67:0e:3d:5e:4b: 57:ab:20:c3:b8:dc:b1:75:38:af:a8:b0:9b:56:1f: cb:b7:76:82:4d:b7:df:2e:c0:b7:c0:7c:06:a9:95: 8a:e8:3a:82:06:18:2e:fc:99:4e:2c:f8:21:d8:1d: bf:00:82:df:54:70:d0:52:76:c2:68:69:b4:a6:c2: ca:a3:ce:8f:31:ba:95:38:02:36:b1:e6:ea:60:25: af:23:bf:b6:c7:43:41:12:9c:ac:00:93:30:ca:92: c1:0d:f6:89:67:a6:8e:78:03:65:67:b1:6d:3a:9d: ac:a5:d2:83:19:b4:2f:1c:ca:4e:a1:6d:de:ac:dd: 11:1a:16:40:5a:26:b6:ae:3e:38:90:59:0a:48:b3: 60:70:3f:f0:47:d7:0b:31:19:e7:01:87:92:0d:26: b2:a3:f8:4b:d7:bc:37:84:15:4e:ab:12:b8:65:ad: f3:d0:c9:9a:6b:6c:77:4f:7e:8c:b1:46:31:29:cb: fe:cf:ea:7e:07:d5:fe:c7:f0:5e:3c:28:62:19:53: 7c:03:b0:94:bf:88:e5:d6:cf:0d:c1:dd:cb:48:8b: 1e:65:e3:3c:cb:26:3b:79:9f:ad:4b:b8:e1:fe:2e: 43:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8C:D6:5F:95:46:5F:EA:4D:B6:69:63:B6:C3:11:AA:42:C1:87:A7 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:82:86:b1:43:b5:3c:18:be:f7:79:00:fe:d5:e9:92:4f:d2: 02:96:a2:d2:41:7b:2f:8a:4a:91:fc:24:eb:2b:e1:a7:dd:90: d8:5b:a5:6b:1b:4d:31:96:7f:c0:3a:6a:a3:a8:e4:a6:eb:7f: 0e:ad:4b:de:59:79:90:f3:9e:93:54:00:7f:ef:b8:b6:2d:15: 70:3d:43:4f:5f:80:9f:da:76:fb:d1:00:bb:00:e3:b5:04:59: e9:a2:16:c5:67:28:f3:57:e1:b2:97:f5:a2:b6:c8:9a:c6:26: 1b:88:68:06:6e:63:d9:13:d2:be:52:32:b6:c0:d3:13:36:33: 7f:a5:b6:f2:c9:28:c0:9d:36:bd:ff:c2:a8:00:26:98:13:ce: ad:91:b8:6f:c2:77:b8:36:17:a3:4e:26:24:da:18:38:18:b5: 34:bb:e0:ed:4a:e2:02:f1:78:68:5b:4f:0f:48:90:55:4d:ae: a2:4d:34:c9:62:27:19:e0:5f:5b:76:56:4f:82:a3:44:d3:78: 33:86:37:38:3f:52:f5:ac:65:63:6d:87:47:14:30:51:c5:6d: 51:bd:36:d8:b2:9f:1d:b9:20:3f:9a:0f:92:da:4e:58:dc:6e: 36:bc:f6:43:60:02:d2:89:05:aa:69:98:60:35:c0:6a:22:06: a3:61:bd:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjUwOTA3MDI1MjEzWhcNMjUwOTE0MDI1MjEyWjAYMRYwFAYD VQQDEw02OGJjZjM1ZC03YTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqI3qwIhl93q6f/3Rj9cTwT0UQBQsvR/+Zw49XktXqyDDuNyxdTivqLCbVh/L t3aCTbffLsC3wHwGqZWK6DqCBhgu/JlOLPgh2B2/AILfVHDQUnbCaGm0psLKo86P MbqVOAI2sebqYCWvI7+2x0NBEpysAJMwypLBDfaJZ6aOeANlZ7FtOp2spdKDGbQv HMpOoW3erN0RGhZAWia2rj44kFkKSLNgcD/wR9cLMRnnAYeSDSayo/hL17w3hBVO qxK4Za3z0Mmaa2x3T36MsUYxKcv+z+p+B9X+x/BePChiGVN8A7CUv4jl1s8Nwd3L SIseZeM8yyY7eZ+tS7jh/i5DfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiM1l+V Rl/qTbZpY7bDEapCwYenMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqgoaxQ7U8GL73eQD+1emST9IClqLSQXsvikqR/CTrK+Gn3ZDYW6Vr G00xln/AOmqjqOSm638OrUveWXmQ856TVAB/77i2LRVwPUNPX4Cf2nb70QC7AOO1 BFnpohbFZyjzV+Gyl/WitsiaxiYbiGgGbmPZE9K+UjK2wNMTNjN/pbbyySjAnTa9 /8KoACaYE86tkbhvwne4NhejTiYk2hg4GLU0u+DtSuIC8XhoW08PSJBVTa6iTTTJ YicZ4F9bdlZPgqNE03gzhjc4P1L1rGVjbYdHFDBRxW1RvTbYsp8duSA/mg+S2k5Y 3G42vPZDYALSiQWqaZhgNcBqIgajYb1e -----END CERTIFICATE-----Generated at Mon Sep 8 08:36:46 2025 by rpki-client