$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: xI2khM8m/zPoKrHTZr72Yp/XpoepnMwFjw1cEou5ak8= Subject key identifier: B5:2A:1C:6F:4D:29:82:74:BA:19:6B:23:F3:A7:4D:C5:D9:AB:68:AD Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: 5B Signing time: Sat 19 Jul 2025 07:27:51 +0000 Manifest this update: Sat 19 Jul 2025 07:27:51 +0000 Manifest next update: Sat 26 Jul 2025 07:27:51 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: +oiOITqV6J9GGQQFIZw9s27dYmtPBPd0fIRFtNFSOKA=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Jul 19 07:27:51 2025 GMT Not After : Jul 26 07:27:51 2025 GMT Subject: CN=687b48f7-9add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4f:e0:84:a1:74:5e:5a:ba:0a:b7:cf:39:a0: d1:93:dc:45:13:9e:59:08:1b:07:4c:1a:c2:8e:32: 54:01:63:6d:87:1f:51:57:a0:16:c8:93:0e:ce:b0: f0:14:df:f5:b4:a9:85:9a:ff:86:19:c4:df:50:b1: af:2b:71:1c:a5:a4:b6:13:71:eb:0c:2f:a5:68:82: b4:63:48:a5:34:c2:c2:32:e9:29:c6:a6:e6:6f:8a: 52:88:6a:2a:3d:46:43:d2:76:04:77:87:68:ee:74: ee:0b:c5:f5:a8:dd:bd:ab:83:27:6f:84:14:75:e2: 47:60:07:7b:f9:56:cd:44:d9:f9:b4:20:60:f8:fb: 10:3b:d6:91:23:f3:c8:a2:43:55:73:be:5d:0a:af: 3b:3d:4d:40:28:ea:d3:19:d6:b4:18:f8:e6:a7:37: cd:8c:70:30:c4:09:06:ba:70:03:00:44:c1:50:f5: d3:85:a1:67:cb:1d:4a:55:b5:fd:16:fb:c5:fa:20: 58:dc:91:61:a5:da:68:61:e9:8f:38:58:3f:36:2f: 62:29:65:4a:8d:8c:b1:5a:e6:f7:19:f6:db:6d:c9: f4:74:d1:d7:49:85:a6:5c:29:24:4f:5c:50:01:00: 26:83:ae:1f:12:cb:dc:fc:27:0b:18:48:a5:c0:59: 9b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2A:1C:6F:4D:29:82:74:BA:19:6B:23:F3:A7:4D:C5:D9:AB:68:AD X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:a3:f4:d4:c9:8b:a0:3c:12:5b:19:51:75:8e:43:58:0b:6d: 57:fa:06:aa:cb:bf:88:f4:af:fb:c7:9b:b3:d8:6c:39:13:90: 10:91:8b:17:60:65:c7:05:34:58:2f:83:97:1e:66:3e:03:fe: fb:9a:01:7a:44:18:53:cf:c4:88:7a:03:62:d9:50:fe:11:93: e3:db:d0:5e:9e:a8:5d:5c:bb:ac:7e:1d:ef:18:58:7a:04:c7: 15:23:f8:cf:b8:5e:d5:e9:1d:44:ea:a5:94:c3:fd:0a:6d:21: d0:c0:8f:25:bb:04:af:53:e8:82:8e:21:36:69:99:65:ed:c3: 6d:03:6b:db:2c:bf:86:32:07:44:d9:8c:45:4c:76:ba:db:25: 2d:25:a5:cc:8d:7c:91:ea:be:12:9e:cf:51:1d:0e:43:93:8a: f2:88:0b:8f:14:46:83:c3:03:9d:85:1c:d8:06:70:e6:58:48: 30:8e:19:71:08:8c:08:e7:87:9c:51:4a:84:80:40:2c:cb:3b: 09:64:6a:40:87:dd:0b:73:7c:22:88:33:18:06:53:ff:83:16: 0f:7d:2f:eb:5d:3e:43:94:7a:ab:ae:d7:74:14:0f:9c:1f:9b: cd:0b:ff:df:6f:8b:e2:cc:c7:6d:4f:52:e2:6a:56:22:51:03: 2f:37:61:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTA3MTkwNzI3NTFaFw0yNTA3MjYwNzI3NTFaMBgxFjAUBgNV BAMTDTY4N2I0OGY3LTlhZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqT+CEoXReWroKt885oNGT3EUTnlkIGwdMGsKOMlQBY22HH1FXoBbIkw7OsPAU 3/W0qYWa/4YZxN9Qsa8rcRylpLYTcesML6VogrRjSKU0wsIy6SnGpuZvilKIaio9 RkPSdgR3h2judO4LxfWo3b2rgydvhBR14kdgB3v5Vs1E2fm0IGD4+xA71pEj88ii Q1Vzvl0Krzs9TUAo6tMZ1rQY+OanN82McDDECQa6cAMARMFQ9dOFoWfLHUpVtf0W +8X6IFjckWGl2mhh6Y84WD82L2IpZUqNjLFa5vcZ9tttyfR00ddJhaZcKSRPXFAB ACaDrh8Sy9z8JwsYSKXAWZuhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtSocb00p gnS6GWsj86dNxdmraK0wHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjA4LzlFMjg1NTdFRTRFRTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4 WnhrN3ZRSlR1QzdXSEh0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACej9NTJi6A8ElsZUXWOQ1gLbVf6BqrLv4j0r/vHm7PYbDkTkBCRixdg ZccFNFgvg5ceZj4D/vuaAXpEGFPPxIh6A2LZUP4Rk+Pb0F6eqF1cu6x+He8YWHoE xxUj+M+4XtXpHUTqpZTD/QptIdDAjyW7BK9T6IKOITZpmWXtw20Da9ssv4YyB0TZ jEVMdrrbJS0lpcyNfJHqvhKez1EdDkOTivKIC48URoPDA52FHNgGcOZYSDCOGXEI jAjnh5xRSoSAQCzLOwlkakCH3QtzfCKIMxgGU/+DFg99L+tdPkOUequu13QUD5wf m80L/99vi+LMx21PUuJqViJRAy83YbY= -----END CERTIFICATE-----Generated at Sun Jul 20 11:33:00 2025 by rpki-client