$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: oa1kowA0ZN1HvQbA+9PTdwbwcE+uXdcg/Wa3YDElxtY= Subject key identifier: 16:B1:29:8F:F1:25:09:08:CC:81:08:63:BB:0E:EC:FA:D8:00:F1:7A Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 0753 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 074D Signing time: Thu 24 Jul 2025 21:54:40 +0000 Manifest this update: Thu 24 Jul 2025 21:54:39 +0000 Manifest next update: Thu 31 Jul 2025 21:54:39 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: UKhrA6tENbiz8nLmbwgHLPm56o4nJjfjhB+HwdjTiZ0=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: Tkzl81mL9jCkezlpTqealMA+SaYDCxv0/vXNUScGesg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 21:54:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4, serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: Jul 24 21:54:39 2025 GMT Not After : Jul 31 21:54:39 2025 GMT Subject: CN=6882aba0-c0a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5b:3f:75:05:75:79:8a:58:1c:31:30:6c:bc: 49:8a:2b:18:b4:3c:3a:4d:55:5e:e8:25:c3:aa:08: c8:b6:17:4b:82:69:0f:18:bc:68:2a:fd:8c:7a:34: d3:61:2f:92:a3:6e:f5:11:c3:2f:fb:fd:ab:73:f3: 1a:59:83:ff:23:ec:2d:ad:04:bd:a9:b1:de:f3:60: 58:cd:3a:22:71:aa:0f:2d:eb:38:ab:5d:d6:83:4f: ee:ef:5d:00:41:4b:09:7f:dd:84:b4:12:74:b8:cb: f2:6e:c4:5b:fd:35:e6:8b:85:fe:a2:e5:9e:3f:53: b4:e6:6e:e7:da:2a:80:5a:35:8b:ad:05:fb:fe:a7: 44:b6:90:fa:6b:01:1e:be:a4:34:39:96:0a:9c:7a: 5c:be:14:f9:a4:20:34:52:b9:f7:f3:6d:90:c2:de: 32:34:43:c0:e6:37:de:71:69:d3:56:1c:db:32:7f: ef:22:6f:b2:15:61:6a:7d:f5:6b:30:10:e0:f2:01: 0b:a5:43:fe:4d:fa:fd:03:f0:84:fc:03:a1:d3:8f: 8a:82:a5:9a:25:d5:4b:4b:d0:f1:4a:e3:2f:af:c6: 8e:df:b9:8d:66:1d:de:b8:2a:e0:ee:11:07:5b:d2: c4:5c:17:1c:ff:d5:02:fb:08:35:4f:86:18:8d:0a: 41:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B1:29:8F:F1:25:09:08:CC:81:08:63:BB:0E:EC:FA:D8:00:F1:7A X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f5:7d:fc:94:29:93:c5:17:d7:ed:6d:92:c4:60:be:b4:96: 2f:58:e8:09:9d:7b:36:7c:2d:a2:b2:c7:80:ec:7b:02:ac:05: f4:f2:2e:6d:50:bf:a2:4d:ec:20:e9:2f:86:84:e6:bb:d2:55: 0e:b6:c0:99:67:33:53:99:22:87:08:2c:dc:24:88:55:41:36: 9f:ec:4a:e2:35:36:de:72:21:d5:d6:cd:53:80:51:6a:c2:e2: f4:05:4c:ad:dc:dc:39:9a:ee:ae:ef:8d:e2:a6:86:d9:5e:13: ed:06:de:0a:50:c4:86:01:9e:c0:95:a0:50:75:f0:67:56:e9: 0c:a8:7d:08:28:f6:8d:f3:5f:d6:46:ea:c5:5a:04:2d:3b:79: 92:49:31:a7:e2:50:a2:6d:7d:de:bc:ec:e0:74:cc:a4:48:4a: 41:1b:f0:df:89:75:84:90:34:d2:f6:81:70:f5:ef:b5:57:8a: a4:c7:9a:95:36:5c:11:5d:be:ec:91:42:bf:43:41:07:74:b8: 87:e0:f4:0e:8a:61:ca:0e:b5:b2:77:cf:2f:36:da:ea:58:a8: 26:cc:89:f0:c9:11:8d:8f:ec:24:91:9d:f0:56:cb:68:a0:51: 94:31:bd:e5:28:24:b6:00:66:f2:aa:a5:68:ec:a4:08:22:f2: f5:ac:3b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjUwNzI0MjE1NDM5WhcNMjUwNzMxMjE1NDM5WjAYMRYwFAYD VQQDEw02ODgyYWJhMC1jMGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVs/dQV1eYpYHDEwbLxJiisYtDw6TVVe6CXDqgjIthdLgmkPGLxoKv2MejTT YS+So271EcMv+/2rc/MaWYP/I+wtrQS9qbHe82BYzToicaoPLes4q13Wg0/u710A QUsJf92EtBJ0uMvybsRb/TXmi4X+ouWeP1O05m7n2iqAWjWLrQX7/qdEtpD6awEe vqQ0OZYKnHpcvhT5pCA0Urn3822Qwt4yNEPA5jfecWnTVhzbMn/vIm+yFWFqffVr MBDg8gELpUP+Tfr9A/CE/AOh04+KgqWaJdVLS9DxSuMvr8aO37mNZh3euCrg7hEH W9LEXBcc/9UC+wg1T4YYjQpBsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaxKY/x JQkIzIEIY7sO7PrYAPF6MB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr9X38lCmTxRfX7W2SxGC+tJYvWOgJnXs2fC2isseA7HsCrAX08i5t UL+iTewg6S+GhOa70lUOtsCZZzNTmSKHCCzcJIhVQTaf7EriNTbeciHV1s1TgFFq wuL0BUyt3Nw5mu6u743ipobZXhPtBt4KUMSGAZ7AlaBQdfBnVukMqH0IKPaN81/W RurFWgQtO3mSSTGn4lCibX3evOzgdMykSEpBG/DfiXWEkDTS9oFw9e+1V4qkx5qV NlwRXb7skUK/Q0EHdLiH4PQOimHKDrWyd88vNtrqWKgmzInwyRGNj+wkkZ3wVsto oFGUMb3lKCS2AGbyqqVo7KQIIvL1rDs0 -----END CERTIFICATE-----Generated at Sat Jul 26 00:19:41 2025 by rpki-client