$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft File: qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json) Hash identifier: wj2S7HmqUlbtyKj4j2Xj8oJ2d2TMhGgI/TN8qJz4L6w= Subject key identifier: 4A:3F:70:68:E8:5B:D5:7F:08:49:0D:24:43:79:15:A1:21:B2:C7:42 Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft Manifest number: 54 Signing time: Fri 05 Sep 2025 07:46:35 +0000 Manifest this update: Fri 05 Sep 2025 07:46:34 +0000 Manifest next update: Fri 12 Sep 2025 07:46:34 +0000 Files and hashes: 1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: IvdvjR/GBDWheznTU4EjAkBApSE65pwBcvyqXxILzJw=) 2: A94836600F7111F08BC42022C4F9AE02.roa (hash: P0ugR8U/wyMnqraRD80X5tdZACXWqmlF+Xy2XfETkeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Sep 5 07:46:34 2025 GMT Not After : Sep 12 07:46:34 2025 GMT Subject: CN=68ba955a-2b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ad:b0:d6:ce:9c:98:8b:77:9d:82:44:ba:48: 53:fa:38:f1:3f:15:b4:6d:06:98:c9:30:54:02:03: c3:94:55:ec:61:20:5c:b0:73:20:54:f0:7d:47:5e: 21:b1:ff:4e:63:de:1a:be:fd:73:1d:94:7d:80:7d: ec:84:cf:68:08:b1:14:b5:0d:0f:b6:c7:68:6e:bc: ed:45:8d:40:9f:db:d6:84:46:b5:8a:5e:51:6a:a9: 8b:ef:97:86:52:f9:5a:b2:50:99:00:de:ce:2c:6a: cf:dd:89:0c:0e:4e:cc:a1:20:06:c7:48:dd:32:2b: 34:bb:ec:78:b4:21:6c:f2:03:8d:ea:8f:39:5b:7a: 35:c2:e9:15:e6:d0:a2:71:20:64:f8:9d:aa:e3:ed: e0:b6:d4:75:75:43:86:ae:98:e5:a5:cf:18:f0:2c: 21:fd:c5:d2:7b:80:0d:b2:be:97:d5:c9:8d:d7:29: c2:b9:0d:7a:b6:81:91:b0:0d:4f:16:0d:3d:ee:39: 2f:fd:45:d9:f6:3b:9b:9d:37:2a:bc:49:07:b0:84: 33:26:7f:2a:f5:da:92:29:fe:8c:4f:6c:5e:73:bd: 78:4c:1d:87:da:8a:00:ef:9d:91:38:6a:03:98:16: 0a:4e:98:72:87:f0:58:ee:39:8d:e9:03:26:a4:de: 72:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3F:70:68:E8:5B:D5:7F:08:49:0D:24:43:79:15:A1:21:B2:C7:42 X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:3a:77:d2:dd:1f:b3:8d:7f:40:37:77:4d:5c:12:de:82:61: 65:26:c5:cc:10:08:dd:ca:03:62:86:f3:47:08:08:74:4d:ab: 0b:aa:6c:90:c6:32:76:2b:60:78:f2:f1:75:0a:1c:1b:dd:27: 57:68:38:4e:90:ac:dc:0b:1d:d1:ba:2d:48:46:71:a7:bb:a5: 18:84:a1:77:a7:24:e9:78:28:3a:48:ae:d4:5e:2a:03:0c:19: bb:cc:c4:3b:c0:a5:10:60:c7:31:c8:37:dd:23:e4:c8:c2:de: b7:48:93:21:2a:ff:41:5c:71:f3:de:50:6d:0a:c2:81:ed:8d: 1a:90:cd:63:5c:75:3a:be:fb:87:38:64:8e:de:bc:04:71:4d: 7e:35:58:01:21:1a:aa:02:16:a7:33:cc:0b:bc:74:f5:74:22: b9:f7:9b:07:72:90:0f:55:04:d4:58:9b:75:7f:95:b6:e5:7b: f2:cb:27:f5:03:99:b1:fa:0c:18:79:84:d1:3d:8c:3f:7f:59: 1f:5f:22:3e:b0:a8:41:1d:51:00:63:77:ed:9b:6f:4f:c1:41: d1:82:26:88:47:47:47:6f:49:e0:85:9b:fc:eb:2b:ed:d2:3e: 1e:91:a1:a1:37:13:3d:93:07:49:dc:1a:a7:9e:2b:4b:da:d9: 7d:47:4f:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoQTg5RDBGRDRGNDhBQkY2OTRGRDlERjc3MDRFNTk2NDY0 REVEMjE3OTAeFw0yNTA5MDUwNzQ2MzRaFw0yNTA5MTIwNzQ2MzRaMBgxFjAUBgNV BAMTDTY4YmE5NTVhLTJiNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjrbDWzpyYi3edgkS6SFP6OPE/FbRtBpjJMFQCA8OUVexhIFywcyBU8H1HXiGx /05j3hq+/XMdlH2AfeyEz2gIsRS1DQ+2x2huvO1FjUCf29aERrWKXlFqqYvvl4ZS +VqyUJkA3s4sas/diQwOTsyhIAbHSN0yKzS77Hi0IWzyA43qjzlbejXC6RXm0KJx IGT4narj7eC21HV1Q4aumOWlzxjwLCH9xdJ7gA2yvpfVyY3XKcK5DXq2gZGwDU8W DT3uOS/9Rdn2O5udNyq8SQewhDMmfyr12pIp/oxPbF5zvXhMHYfaigDvnZE4agOY FgpOmHKH8FjuOY3pAyak3nLNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSj9waOhb 1X8ISQ0kQ3kVoSGyx0IwHwYDVR0jBBgwFoAUqJ0P1PSKv2lP2d93BOWWRk3tIXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzFBN0FERUNBMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUowUDFQU0t2MmxQMmQ5M0JPV1dSazN0SVhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzFBN0FERUNBMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJs UDJkOTNCT1dXUmszdElYay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGI6d9LdH7ONf0A3d01cEt6CYWUmxcwQCN3KA2KG80cICHRNqwuqbJDG MnYrYHjy8XUKHBvdJ1doOE6QrNwLHdG6LUhGcae7pRiEoXenJOl4KDpIrtReKgMM GbvMxDvApRBgxzHIN90j5MjC3rdIkyEq/0FccfPeUG0KwoHtjRqQzWNcdTq++4c4 ZI7evARxTX41WAEhGqoCFqczzAu8dPV0Irn3mwdykA9VBNRYm3V/lbble/LLJ/UD mbH6DBh5hNE9jD9/WR9fIj6wqEEdUQBjd+2bb0/BQdGCJohHR0dvSeCFm/zrK+3S Ph6RoaE3Ez2TB0ncGqeeK0va2X1HT0c= -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:18 2025 by rpki-client