$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: WH1zAM/Do741UPFyw5A4GCKv+7hRebH7VLhx4mu7zx8= Subject key identifier: F5:E1:81:5A:58:64:AE:ED:89:81:E1:81:82:A6:F9:0D:77:13:56:1D Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 0606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 0601 Signing time: Sun 20 Jul 2025 23:02:30 +0000 Manifest this update: Sun 20 Jul 2025 23:02:29 +0000 Manifest next update: Sun 27 Jul 2025 23:02:29 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: CvlsCy7LfAydNxFpskin6NpaZ8tiPtIKWn6U4VW74Vk=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: x6RJn5oQmyrZkTIL+jnIDh/DG4GNtduzvhq+KZOjCjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Jul 20 23:02:29 2025 GMT Not After : Jul 27 23:02:29 2025 GMT Subject: CN=687d7585-4896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5e:45:c6:b0:fc:c3:49:de:fc:c3:e0:59:e8: d5:57:fa:03:0b:28:0c:da:94:b3:c7:c6:83:32:89: 8d:9b:f1:29:95:bd:e9:49:84:ce:b7:fb:d2:8c:6e: 62:ad:dc:7b:c5:cd:95:24:1f:40:45:57:c4:28:ce: 90:00:87:1e:c5:bc:eb:f3:be:e0:f3:cd:ba:0f:1f: 67:d9:4d:26:1c:aa:cd:6b:b7:94:40:5f:2f:08:0b: 67:2f:60:20:ed:de:f3:d5:6f:30:02:68:bc:32:c5: 2e:17:b0:ea:63:d6:ee:53:a8:4b:22:92:96:e5:59: 96:71:40:59:ee:12:46:ec:31:b3:f3:3b:45:50:18: b8:d6:aa:a6:36:6c:dc:b0:6d:c1:12:eb:26:de:93: c6:01:06:3f:96:95:00:18:c1:42:d4:b0:1a:b1:19: 60:70:8d:e9:d9:f8:d1:af:e9:55:27:3c:f9:95:94: 85:d4:72:53:76:96:91:2e:af:2d:a7:4e:31:7f:29: 45:46:81:80:66:38:70:c5:a8:e6:9f:87:2e:27:4d: 95:43:fd:ed:f1:6c:05:1f:4a:f0:45:04:55:c2:11: 43:4d:91:56:75:38:c0:f8:c0:b5:2c:9d:13:e6:d6: f8:2c:70:ad:5a:56:d5:55:b6:ff:f9:28:2e:ad:c8: bd:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E1:81:5A:58:64:AE:ED:89:81:E1:81:82:A6:F9:0D:77:13:56:1D X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:fb:33:8e:a1:30:f6:c9:a4:db:4b:aa:ce:5f:0c:52:e3:95: a1:0c:24:92:3d:0b:a7:ce:90:b9:9c:f0:52:09:43:1d:96:c3: 1d:6b:cd:31:17:3c:3c:49:1b:5b:e8:d4:84:a2:83:80:6a:42: dd:02:e4:0a:6c:52:1d:f6:f2:6b:7c:1f:8b:b4:e1:98:a9:55: cb:b1:f0:57:ee:c8:3c:10:7d:a9:98:e3:d9:82:80:c4:17:ab: 87:1e:a5:fd:ca:d4:54:f6:85:ca:37:72:56:87:10:a0:a6:77: ce:a7:af:85:c8:af:d6:bc:db:4e:9a:3b:fa:af:cb:35:ee:3e: 69:91:d9:99:35:ca:b2:63:1c:16:e1:05:28:c5:7a:5a:1c:5d: 27:ee:38:fd:97:1f:d2:71:af:a3:68:0e:85:d5:4f:ee:fc:a0: bc:b4:cd:bc:7a:dd:f5:c2:ed:fb:ea:c6:08:22:62:67:b6:34: c9:3b:86:88:6a:bd:50:f3:c6:c5:86:92:38:8f:81:4b:28:2e: 07:9a:b5:02:18:b5:e7:f8:b8:bd:70:34:84:7f:98:4a:9c:48: 40:aa:4e:f4:69:9b:ba:fe:6e:f0:bd:f9:18:ec:89:61:bb:bc: 8a:b9:73:ff:8e:a2:32:e7:37:be:0a:72:c4:8c:f9:5f:1f:b9: 09:fe:81:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwNzIwMjMwMjI5WhcNMjUwNzI3MjMwMjI5WjAYMRYwFAYD VQQDEw02ODdkNzU4NS00ODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApl5FxrD8w0ne/MPgWejVV/oDCygM2pSzx8aDMomNm/Eplb3pSYTOt/vSjG5i rdx7xc2VJB9ARVfEKM6QAIcexbzr877g8826Dx9n2U0mHKrNa7eUQF8vCAtnL2Ag 7d7z1W8wAmi8MsUuF7DqY9buU6hLIpKW5VmWcUBZ7hJG7DGz8ztFUBi41qqmNmzc sG3BEusm3pPGAQY/lpUAGMFC1LAasRlgcI3p2fjRr+lVJzz5lZSF1HJTdpaRLq8t p04xfylFRoGAZjhwxajmn4cuJ02VQ/3t8WwFH0rwRQRVwhFDTZFWdTjA+MC1LJ0T 5tb4LHCtWlbVVbb/+Sgurci9fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXhgVpY ZK7tiYHhgYKm+Q13E1YdMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt+zOOoTD2yaTbS6rOXwxS45WhDCSSPQunzpC5nPBSCUMdlsMda80x Fzw8SRtb6NSEooOAakLdAuQKbFId9vJrfB+LtOGYqVXLsfBX7sg8EH2pmOPZgoDE F6uHHqX9ytRU9oXKN3JWhxCgpnfOp6+FyK/WvNtOmjv6r8s17j5pkdmZNcqyYxwW 4QUoxXpaHF0n7jj9lx/Sca+jaA6F1U/u/KC8tM28et31wu376sYIImJntjTJO4aI ar1Q88bFhpI4j4FLKC4HmrUCGLXn+Li9cDSEf5hKnEhAqk70aZu6/m7wvfkY7Ilh u7yKuXP/jqIy5ze+CnLEjPlfH7kJ/oEM -----END CERTIFICATE-----Generated at Mon Jul 21 13:23:58 2025 by rpki-client