$ rpki-client -vvf rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft File: AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft (raw, json) Hash identifier: JbA5Xmn7pKsCquzHqsnC8MW6xD5weDmFC5+ZlyRHqxQ= Subject key identifier: F5:7F:5A:9F:49:61:A7:F4:05:79:CB:7E:8C:D6:B5:F8:60:D3:32:F5 Authority key identifier: 00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB Certificate issuer: /CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Certificate serial: 0B6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft Manifest number: 0B64 Signing time: Thu 24 Jul 2025 19:13:30 +0000 Manifest this update: Thu 24 Jul 2025 19:13:30 +0000 Manifest next update: Thu 31 Jul 2025 19:13:30 +0000 Files and hashes: 1: AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl (hash: L6pVmmKrksj/mAzqPcQ02tkA3K1JTi6zoffnA+N9TVI=) 2: 32DDB7DA368B11EA9713E971C4F9AE02.roa (hash: KCGgayyIaV9bw3+jN02UdfN4476+RHEdK89wpH03TIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2925 (0xb6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91735C9, serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Validity Not Before: Jul 24 19:13:30 2025 GMT Not After : Jul 31 19:13:30 2025 GMT Subject: CN=688285da-f28a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:38:13:d5:fc:2d:43:7f:48:96:85:a2:a7:a9: 2d:d9:94:74:8f:19:40:59:c2:20:21:42:57:e7:65: 99:3a:fa:e8:70:1b:02:8e:1b:43:30:6e:76:17:c1: 87:9c:fe:ca:5f:6c:19:00:c6:50:cb:86:8c:14:7a: 48:28:3c:c8:57:83:39:ce:13:86:0c:0c:55:d2:2a: 41:54:ed:b6:0e:ff:f9:0d:c1:4a:39:30:fd:55:7d: 1b:fc:ba:05:6e:0f:87:bd:09:d1:30:1e:75:af:a9: df:3d:6d:e4:25:37:90:31:03:44:b2:e5:4b:91:a2: 31:db:fd:7c:ea:5f:14:91:22:12:26:13:a7:54:7d: b3:2c:50:81:f7:24:49:24:2d:7a:70:e4:59:b6:cf: 9c:8c:f3:a7:7e:b5:94:4e:e8:a2:d4:5e:84:c4:90: 62:a3:b4:0c:16:d3:d3:17:b0:50:af:73:35:61:9d: 37:c0:0c:cc:91:78:57:68:e7:e1:0a:32:e2:6b:01: e9:12:61:f1:24:9b:86:c2:f2:18:27:7e:bc:74:82: aa:25:da:fb:5d:1d:4b:21:9e:40:2e:c7:95:73:4f: 7e:9a:22:c2:98:ef:59:59:81:4a:1e:9e:31:ec:40: 50:38:0a:3c:64:65:dc:15:31:c9:55:29:f4:24:30: 8c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7F:5A:9F:49:61:A7:F4:05:79:CB:7E:8C:D6:B5:F8:60:D3:32:F5 X509v3 Authority Key Identifier: keyid:00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:fc:89:09:d8:38:20:41:81:9f:ba:bc:e8:a1:31:20:f2:c0: 5e:5b:b6:1d:9e:10:d7:a5:f4:eb:bf:d0:9b:66:7f:4f:12:a2: 88:26:cb:d6:95:e4:84:6b:f3:77:df:11:c8:06:7d:3b:cd:46: d6:ba:fe:55:11:63:43:08:d4:25:f0:d1:10:f8:6f:11:d8:51: 3d:d0:a4:8c:6b:15:a7:a9:7d:9c:37:ba:9b:71:d8:da:84:f3: 2f:a6:21:e0:01:ab:b1:63:0b:aa:54:0d:0e:15:95:07:f6:f7: 89:c5:7f:c6:33:9b:33:f0:a8:bb:70:a1:a4:ee:ef:9e:16:df: 42:e7:4a:c3:56:8b:a7:e7:47:7d:30:8d:07:48:e1:dd:c0:c4: 8f:46:ca:f9:34:78:3f:97:0e:68:31:c2:f9:9a:86:c7:e7:e3: cc:e6:ec:f1:6a:9e:81:97:08:e9:ac:6c:0f:71:c0:21:9b:c5: 4b:ee:a5:f5:26:b3:42:00:67:fd:60:a5:ce:ca:23:d0:d4:5f: e5:68:b2:d8:11:07:77:f6:ba:d7:44:5e:d9:8a:aa:bd:13:f9: 5a:94:49:d2:6c:25:27:fc:f0:b8:56:fd:4d:47:62:00:6d:bd: 4d:db:0c:90:f9:94:83:be:09:be:85:3a:db:c9:2c:49:3e:a5: 0e:ff:67:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1QzkxMTAvBgNVBAUTKDAwNjMyM0E4REQwMURFQTk1QkQxQUU0NEM5RkZDNDUz NDA0NDI1Q0IwHhcNMjUwNzI0MTkxMzMwWhcNMjUwNzMxMTkxMzMwWjAYMRYwFAYD VQQDEw02ODgyODVkYS1mMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zgT1fwtQ39IloWip6kt2ZR0jxlAWcIgIUJX52WZOvrocBsCjhtDMG52F8GH nP7KX2wZAMZQy4aMFHpIKDzIV4M5zhOGDAxV0ipBVO22Dv/5DcFKOTD9VX0b/LoF bg+HvQnRMB51r6nfPW3kJTeQMQNEsuVLkaIx2/186l8UkSISJhOnVH2zLFCB9yRJ JC16cORZts+cjPOnfrWUTuii1F6ExJBio7QMFtPTF7BQr3M1YZ03wAzMkXhXaOfh CjLiawHpEmHxJJuGwvIYJ368dIKqJdr7XR1LIZ5ALseVc09+miLCmO9ZWYFKHp4x 7EBQOAo8ZGXcFTHJVSn0JDCMmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPV/Wp9J Yaf0BXnLfozWtfhg0zL1MB8GA1UdIwQYMBaAFABjI6jdAd6pW9GuRMn/xFNARCXL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzVDOS9FQTk2RTZENDM1 QzkxMUVBOEU1QTJGMTZDNEY5QUUwMi9BR01qcU4wQjNxbGIwYTVFeWZfRVUwQkVK Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FHTWpxTjBCM3FsYjBhNUV5Zl9FVTBCRUpjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzVDOS9FQTk2RTZENDM1QzkxMUVBOEU1QTJGMTZDNEY5QUUwMi9BR01qcU4wQjNx bGIwYTVFeWZfRVUwQkVKY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC/IkJ2DggQYGfurzooTEg8sBeW7YdnhDXpfTrv9CbZn9PEqKIJsvW leSEa/N33xHIBn07zUbWuv5VEWNDCNQl8NEQ+G8R2FE90KSMaxWnqX2cN7qbcdja hPMvpiHgAauxYwuqVA0OFZUH9veJxX/GM5sz8Ki7cKGk7u+eFt9C50rDVoun50d9 MI0HSOHdwMSPRsr5NHg/lw5oMcL5mobH5+PM5uzxap6BlwjprGwPccAhm8VL7qX1 JrNCAGf9YKXOyiPQ1F/laLLYEQd39rrXRF7Ziqq9E/lalEnSbCUn/PC4Vv1NR2IA bb1N2wyQ+ZSDvgm+hTrbySxJPqUO/2c2 -----END CERTIFICATE-----Generated at Fri Jul 25 07:03:08 2025 by rpki-client