$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json) Hash identifier: xkvG2IBOspzJP0zlWDn4Wp7Md/d5FqPobDdjE9fQJoM= Subject key identifier: AC:BF:30:68:71:8F:7F:C9:06:6A:C4:F3:7A:9B:2E:AD:0E:45:64:51 Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft Manifest number: 0A47 Signing time: Fri 18 Jul 2025 19:59:12 +0000 Manifest this update: Fri 18 Jul 2025 19:59:12 +0000 Manifest next update: Fri 25 Jul 2025 19:59:12 +0000 Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: MzqEP9K+cazT+uBxf6i6GjyHxRZKoQp9JsN0O9+vKgY=) 2: 834C938A12C711F09998A234C4F9AE02.roa (hash: M4mfahqMzwmq58j++0Teybq9n4Aqspe3mvfksixkbgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC, serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Jul 18 19:59:12 2025 GMT Not After : Jul 25 19:59:12 2025 GMT Subject: CN=687aa790-75bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:eb:69:4a:cf:04:0a:13:81:74:dd:b9:84:14: 4d:92:bc:44:39:ac:53:98:08:a5:bd:e7:a1:af:35: 52:30:99:10:f4:88:c8:4f:d0:f0:aa:8a:51:be:8e: 52:cb:f7:0f:59:67:72:ee:29:00:a6:e0:9b:9c:83: db:68:62:ba:ba:02:d2:03:6b:b0:00:3d:5f:84:dd: 47:5b:07:3c:51:b2:fb:bb:2d:41:e7:7b:95:b7:d5: 5c:10:9c:b4:9f:ce:7a:cb:3b:00:81:e4:8a:ff:d9: f0:c5:18:e5:ff:a3:ad:a8:5b:c6:f7:64:1b:b9:16: 85:ca:58:1e:84:c8:98:b5:93:03:ff:89:84:d1:ca: 99:3e:32:d8:fb:32:ad:d7:f6:bf:81:0b:b3:93:6d: 7e:ef:14:98:53:01:86:b8:70:c7:36:b7:dd:c6:cd: c2:7e:ac:1f:a0:b5:07:4d:45:bd:67:c1:fe:4a:67: c4:83:14:1a:99:0e:56:e8:8f:da:a3:f7:c7:17:e2: 56:18:18:1f:97:3c:8e:98:6a:18:bd:78:04:6c:f0: 1f:01:a1:a3:1e:ef:ac:f0:3e:0c:f6:02:15:cc:e0: a7:8d:5a:25:6e:a0:b3:26:db:26:11:eb:07:22:84: 5e:32:7f:bd:68:52:37:fb:6e:cf:82:2b:5f:13:d8: 62:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:BF:30:68:71:8F:7F:C9:06:6A:C4:F3:7A:9B:2E:AD:0E:45:64:51 X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:b6:07:c9:54:1e:a7:6a:41:a3:2a:8f:3a:1e:82:0e:65:a7: 29:d5:b2:53:2c:a9:5b:52:23:6e:fb:ab:c8:13:b4:a4:c6:42: 80:58:20:4d:e1:c1:be:b8:30:ae:e4:2a:79:23:a8:3e:32:dc: 51:90:66:d7:70:e7:58:87:b5:f3:b2:bd:80:2a:8e:51:49:ab: 83:6a:ec:56:63:e7:d6:1f:5b:aa:5f:84:73:c1:27:77:7b:92: 4f:04:47:29:c6:53:2c:db:20:a3:61:d4:bb:fe:ce:a6:27:5e: a7:69:e5:d2:96:f2:e0:f3:bc:c6:48:dd:8b:1b:ea:b7:bd:66: d8:90:52:f4:d8:cc:87:b9:9f:2d:a8:96:04:c8:74:af:45:96: 90:fd:f7:b4:ef:56:46:02:e7:c0:13:7a:46:45:80:a4:b5:b4: 8b:3d:1f:8a:da:70:16:29:8f:6c:a6:cd:d1:e1:00:c5:fe:12: fe:d4:ab:22:35:15:fc:1e:b1:94:58:ed:20:fb:ea:85:b2:e2: b2:57:04:f2:ae:a0:aa:f6:c7:49:09:fa:ef:00:0b:d8:db:15: 1e:fa:28:34:c3:4a:91:49:bf:f1:c2:e8:ba:cc:80:21:30:64: 96:39:82:7b:ad:8e:39:e2:16:ca:ce:39:1b:3f:e0:5f:27:63: 8d:2a:73:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjUwNzE4MTk1OTEyWhcNMjUwNzI1MTk1OTEyWjAYMRYwFAYD VQQDEw02ODdhYTc5MC03NWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOtpSs8EChOBdN25hBRNkrxEOaxTmAilveehrzVSMJkQ9IjIT9DwqopRvo5S y/cPWWdy7ikApuCbnIPbaGK6ugLSA2uwAD1fhN1HWwc8UbL7uy1B53uVt9VcEJy0 n856yzsAgeSK/9nwxRjl/6OtqFvG92QbuRaFylgehMiYtZMD/4mE0cqZPjLY+zKt 1/a/gQuzk21+7xSYUwGGuHDHNrfdxs3CfqwfoLUHTUW9Z8H+SmfEgxQamQ5W6I/a o/fHF+JWGBgflzyOmGoYvXgEbPAfAaGjHu+s8D4M9gIVzOCnjVolbqCzJtsmEesH IoReMn+9aFI3+27PgitfE9hiMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy/MGhx j3/JBmrE83qbLq0ORWRRMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZGQy9BQjFGNEVDQTcyOUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tC Wm9QTTVNQ09BRWt5VVpSTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBztgfJVB6nakGjKo86HoIOZacp1bJTLKlbUiNu+6vIE7SkxkKAWCBN 4cG+uDCu5Cp5I6g+MtxRkGbXcOdYh7Xzsr2AKo5RSauDauxWY+fWH1uqX4RzwSd3 e5JPBEcpxlMs2yCjYdS7/s6mJ16naeXSlvLg87zGSN2LG+q3vWbYkFL02MyHuZ8t qJYEyHSvRZaQ/fe071ZGAufAE3pGRYCktbSLPR+K2nAWKY9sps3R4QDF/hL+1Ksi NRX8HrGUWO0g++qFsuKyVwTyrqCq9sdJCfrvAAvY2xUe+ig0w0qRSb/xwui6zIAh MGSWOYJ7rY454hbKzjkbP+BfJ2ONKnOD -----END CERTIFICATE-----Generated at Sun Jul 20 02:52:04 2025 by rpki-client