$ rpki-client -vvf rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft File: AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft (raw, json) Hash identifier: /mQdHinSHzXTGxPrlF86NBwHr9GDrm1ep7/Xkd5iL+U= Subject key identifier: 0E:F2:62:F4:6E:95:D7:6B:53:C1:A3:73:3E:BE:D3:F6:32:BE:04:64 Authority key identifier: 00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB Certificate issuer: /CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Certificate serial: 0B6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft Manifest number: 0B63 Signing time: Tue 22 Jul 2025 19:19:09 +0000 Manifest this update: Tue 22 Jul 2025 19:19:08 +0000 Manifest next update: Tue 29 Jul 2025 19:19:08 +0000 Files and hashes: 1: AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl (hash: VFZofzEVKaKwS+5YyxGP4ML0ljtrlVPlpu6Zb5f4qQs=) 2: 32DDB7DA368B11EA9713E971C4F9AE02.roa (hash: KCGgayyIaV9bw3+jN02UdfN4476+RHEdK89wpH03TIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91735C9, serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Validity Not Before: Jul 22 19:19:08 2025 GMT Not After : Jul 29 19:19:08 2025 GMT Subject: CN=687fe42c-475c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9d:45:e6:91:d4:a6:3a:a9:65:f1:70:d7:88: e5:73:14:9e:82:a3:44:17:ed:02:34:6f:e6:e3:51: a0:4d:b7:37:39:51:98:b1:b4:b7:91:70:dc:d1:51: 93:c9:bc:07:15:df:76:86:b5:f0:b9:5f:6f:e1:33: ef:50:78:b0:8f:7d:d8:69:2f:6d:e4:3b:48:e3:47: 36:96:b1:50:24:7c:77:24:60:ea:e6:ce:3e:83:08: 2a:67:29:a2:43:cd:7a:72:dc:76:12:80:88:40:12: aa:b5:b6:84:57:bc:1d:e4:b4:1f:a6:7e:60:cd:cc: c1:5b:5c:59:f8:50:d3:27:fd:a8:02:78:b0:ae:d2: a3:d4:b4:52:02:e8:4e:43:96:bb:fe:08:ae:be:c7: ae:21:16:43:5f:a6:45:e9:e8:67:5b:9e:03:26:b5: c6:f1:2c:2c:92:f5:8a:fe:32:f5:86:45:b8:6e:07: 40:9a:13:45:99:e7:01:40:94:af:b2:28:09:99:12: a7:43:95:25:11:1e:53:9a:5f:58:08:16:ad:14:b5: c8:61:23:9c:17:a7:8a:95:10:95:db:fb:04:82:af: 19:d1:de:75:72:b5:4d:8c:75:cc:dc:60:c5:3c:30: 69:19:b3:86:c5:02:f4:0e:dc:39:56:da:93:ca:1d: 63:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F2:62:F4:6E:95:D7:6B:53:C1:A3:73:3E:BE:D3:F6:32:BE:04:64 X509v3 Authority Key Identifier: keyid:00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:49:bd:0e:90:91:e9:24:22:7e:99:cc:94:b7:22:0b:cb:e4: d8:b9:41:ff:19:7c:60:dd:31:19:64:9e:f9:09:5f:fb:cc:bc: 41:f9:33:bc:33:ce:01:1b:cd:34:1e:46:e9:35:95:ed:ee:f8: 6e:35:4d:f2:40:a8:3b:b3:39:d8:71:ee:55:6c:fd:6e:52:f9: 63:0f:d5:40:6f:ff:05:f8:76:50:ae:ae:ac:f3:00:bc:a8:5f: d7:10:07:ca:a3:a6:4b:99:ef:bc:60:d4:09:31:4d:2f:84:dd: 26:b4:81:98:f2:b7:43:89:92:ac:c3:d0:9d:5f:ae:d0:72:50: f7:a6:e3:f5:0f:16:df:03:27:42:9f:2e:2e:5e:32:db:f8:c0: 82:c5:07:2c:8a:ec:22:9f:ac:40:f1:ee:87:73:b7:4e:08:5e: 29:cd:5e:20:81:85:fe:c8:5a:6b:f7:b2:4f:2e:5b:b9:08:92: fc:68:64:65:d1:25:80:28:fc:ff:5e:5c:42:41:fa:2a:40:10: 95:36:6a:c2:6a:6d:63:a0:db:8d:5c:19:90:05:4a:a3:a9:6c: c2:8f:f2:8f:b9:1b:21:b9:95:7d:ff:d3:e7:70:d9:3c:7e:62: 3b:cb:f9:14:bf:51:d7:83:e8:4d:5d:77:f1:af:22:fd:1d:1d: 6a:a1:9e:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1QzkxMTAvBgNVBAUTKDAwNjMyM0E4REQwMURFQTk1QkQxQUU0NEM5RkZDNDUz NDA0NDI1Q0IwHhcNMjUwNzIyMTkxOTA4WhcNMjUwNzI5MTkxOTA4WjAYMRYwFAYD VQQDEw02ODdmZTQyYy00NzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2p1F5pHUpjqpZfFw14jlcxSegqNEF+0CNG/m41GgTbc3OVGYsbS3kXDc0VGT ybwHFd92hrXwuV9v4TPvUHiwj33YaS9t5DtI40c2lrFQJHx3JGDq5s4+gwgqZymi Q816ctx2EoCIQBKqtbaEV7wd5LQfpn5gzczBW1xZ+FDTJ/2oAniwrtKj1LRSAuhO Q5a7/giuvseuIRZDX6ZF6ehnW54DJrXG8SwskvWK/jL1hkW4bgdAmhNFmecBQJSv sigJmRKnQ5UlER5Tml9YCBatFLXIYSOcF6eKlRCV2/sEgq8Z0d51crVNjHXM3GDF PDBpGbOGxQL0Dtw5VtqTyh1jBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7yYvRu lddrU8Gjcz6+0/YyvgRkMB8GA1UdIwQYMBaAFABjI6jdAd6pW9GuRMn/xFNARCXL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzVDOS9FQTk2RTZENDM1 QzkxMUVBOEU1QTJGMTZDNEY5QUUwMi9BR01qcU4wQjNxbGIwYTVFeWZfRVUwQkVK Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FHTWpxTjBCM3FsYjBhNUV5Zl9FVTBCRUpjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzVDOS9FQTk2RTZENDM1QzkxMUVBOEU1QTJGMTZDNEY5QUUwMi9BR01qcU4wQjNx bGIwYTVFeWZfRVUwQkVKY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHSb0OkJHpJCJ+mcyUtyILy+TYuUH/GXxg3TEZZJ75CV/7zLxB+TO8 M84BG800HkbpNZXt7vhuNU3yQKg7sznYce5VbP1uUvljD9VAb/8F+HZQrq6s8wC8 qF/XEAfKo6ZLme+8YNQJMU0vhN0mtIGY8rdDiZKsw9CdX67QclD3puP1DxbfAydC ny4uXjLb+MCCxQcsiuwin6xA8e6Hc7dOCF4pzV4ggYX+yFpr97JPLlu5CJL8aGRl 0SWAKPz/XlxCQfoqQBCVNmrCam1joNuNXBmQBUqjqWzCj/KPuRshuZV9/9PncNk8 fmI7y/kUv1HXg+hNXXfxryL9HR1qoZ4C -----END CERTIFICATE-----Generated at Thu Jul 24 12:13:11 2025 by rpki-client