$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft File: AJko8LjNMO2gVjCoumdOdiqdKDM.mft (raw, json) Hash identifier: R9guADE/58dvJ05OPHwHb7KTfyFoCPazRcfcDvU+yV0= Subject key identifier: B3:5E:25:1F:CC:5A:FA:3E:68:A4:48:F9:46:AF:E9:4A:B5:B8:B3:69 Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft Manifest number: 015D Signing time: Mon 21 Jul 2025 04:11:08 +0000 Manifest this update: Mon 21 Jul 2025 04:11:08 +0000 Manifest next update: Mon 28 Jul 2025 04:11:08 +0000 Files and hashes: 1: AJko8LjNMO2gVjCoumdOdiqdKDM.crl (hash: ISBPCbepqgKwODuVWGzAoLH2Lv+jkDarGegBKwyTWA8=) 2: EC56413A5B4B11EE9A031C81C4F9AE02.roa (hash: L51Q68tVx2XVC4mIdbJx6yL7uZTn+EZdlLwf/zTugIc=) 3: 7022F6EE5B4611EE9093F11EC4F9AE02.roa (hash: 4Ob8OZ5S2H/WLKjYmff77WuX2DfNbq1F3IyX9D66TLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: Jul 21 04:11:08 2025 GMT Not After : Jul 28 04:11:08 2025 GMT Subject: CN=687dbddc-2ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f6:74:a6:4b:e7:28:8f:84:04:d2:27:d9:68: ad:53:83:f4:17:da:ae:1d:91:8c:1e:07:55:7a:89: 80:78:2d:dc:e4:de:ab:13:d2:25:95:29:55:51:68: 15:90:df:d6:56:4f:b1:a9:9b:dc:cf:9c:af:2f:c8: 95:c9:1d:b8:e7:0b:ac:6e:12:d0:1a:d6:98:f7:a8: 73:61:e0:a4:f1:da:80:f4:28:d1:e1:ed:85:83:40: 40:69:10:40:ca:78:47:88:c7:3b:64:ee:04:42:03: b3:9b:49:c8:e0:e3:a5:e2:95:67:c6:12:a2:91:ee: 6d:95:39:55:15:bc:cf:1c:df:f1:ed:fc:46:33:e5: 62:16:de:dc:00:fc:ca:38:f3:53:9c:89:4c:50:85: cd:32:c3:51:f8:11:63:de:64:ff:9e:b0:23:8a:bb: 55:9a:28:d3:9e:22:a4:cf:c3:1e:29:8b:23:e9:15: 38:34:3b:83:f9:fe:cd:ae:0d:2b:06:ed:5f:74:b5: a5:7b:0c:47:02:ab:78:b8:29:1c:98:90:1f:6b:b2: 65:a9:e6:56:64:51:8c:fa:fb:dc:87:7c:65:8d:37: 29:61:05:00:c8:4c:d1:10:e5:1d:da:d7:c8:80:87: e0:2f:47:8a:14:1d:69:32:cb:30:92:61:29:63:79: 40:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:5E:25:1F:CC:5A:FA:3E:68:A4:48:F9:46:AF:E9:4A:B5:B8:B3:69 X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:e4:c5:1f:64:89:34:4e:e2:3b:55:f1:86:78:1a:e2:74:0a: 4c:47:fb:46:57:27:29:09:24:3d:ae:15:03:42:e7:92:28:bc: ea:b5:e6:db:50:c3:a6:92:51:b0:37:1c:7a:b3:9a:7b:ae:7d: ba:25:c1:62:38:03:77:bb:78:c6:6e:cd:31:c5:b6:01:bd:a6: 42:ee:18:89:63:0b:97:98:61:af:d3:68:8e:ef:12:b9:d2:cd: 9f:fe:80:4a:fc:22:c9:ae:29:09:32:72:94:23:f2:cf:4a:55: e5:40:75:90:92:53:ea:5a:c4:4e:9c:b6:3e:c2:6d:60:c4:58: 7c:92:b8:7a:d1:e6:83:57:34:9f:7c:9b:b0:f1:20:08:a5:36: 0e:91:ba:a6:38:f8:8c:d8:05:4d:84:45:cb:4f:b0:05:33:a9: d0:de:c3:47:2e:c3:22:5f:d8:e9:57:11:c3:0e:32:d1:99:27: 0b:8e:e9:0f:98:53:0c:d7:f3:48:07:9c:35:60:10:e7:0c:94: f2:9e:5c:0e:3a:a6:5c:3c:8c:27:4a:f7:aa:b7:44:27:53:d7: c9:64:39:d5:66:d5:56:a1:60:0d:2f:cd:fe:ee:1e:c3:00:ed: 36:1e:6c:7d:fa:ca:da:36:f4:28:13:07:31:74:00:a3:19:16: 50:76:28:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDAwOTkyOEYwQjhDRDMwRURBMDU2MzBBOEJBNjc0RTc2 MkE5RDI4MzMwHhcNMjUwNzIxMDQxMTA4WhcNMjUwNzI4MDQxMTA4WjAYMRYwFAYD VQQDEw02ODdkYmRkYy0yZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPZ0pkvnKI+EBNIn2WitU4P0F9quHZGMHgdVeomAeC3c5N6rE9IllSlVUWgV kN/WVk+xqZvcz5yvL8iVyR245wusbhLQGtaY96hzYeCk8dqA9CjR4e2Fg0BAaRBA ynhHiMc7ZO4EQgOzm0nI4OOl4pVnxhKike5tlTlVFbzPHN/x7fxGM+ViFt7cAPzK OPNTnIlMUIXNMsNR+BFj3mT/nrAjirtVmijTniKkz8MeKYsj6RU4NDuD+f7Nrg0r Bu1fdLWlewxHAqt4uCkcmJAfa7JlqeZWZFGM+vvch3xljTcpYQUAyEzREOUd2tfI gIfgL0eKFB1pMsswkmEpY3lApQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNeJR/M Wvo+aKRI+Uav6Uq1uLNpMB8GA1UdIwQYMBaAFACZKPC4zTDtoFYwqLpnTnYqnSgz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9CMzc0OTcxMDVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1PMmdWakNvdW1kT2RpcWRL RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9CMzc0OTcxMDVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1P MmdWakNvdW1kT2RpcWRLRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ5MUfZIk0TuI7VfGGeBridApMR/tGVycpCSQ9rhUDQueSKLzqtebb UMOmklGwNxx6s5p7rn26JcFiOAN3u3jGbs0xxbYBvaZC7hiJYwuXmGGv02iO7xK5 0s2f/oBK/CLJrikJMnKUI/LPSlXlQHWQklPqWsROnLY+wm1gxFh8krh60eaDVzSf fJuw8SAIpTYOkbqmOPiM2AVNhEXLT7AFM6nQ3sNHLsMiX9jpVxHDDjLRmScLjukP mFMM1/NIB5w1YBDnDJTynlwOOqZcPIwnSveqt0QnU9fJZDnVZtVWoWANL83+7h7D AO02Hmx9+sraNvQoEwcxdACjGRZQdii6 -----END CERTIFICATE-----Generated at Mon Jul 21 12:35:30 2025 by rpki-client