$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: Z69+alaK+TaxgiL2fVUnZhmSN+OEgW7L0gopRHVfw84= Subject key identifier: 1F:CC:21:23:F5:80:1E:1B:05:68:A1:F4:33:15:FB:FB:83:AF:5E:A8 Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0A48 Signing time: Thu 24 Jul 2025 19:52:30 +0000 Manifest this update: Thu 24 Jul 2025 19:52:29 +0000 Manifest next update: Thu 31 Jul 2025 19:52:29 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: Jcg6CIAWnbJDrFzJbCOwOpkpmIA+tdo3EkxJK/pvhQE=) 2: 57C25DB2E42811EA881AB667C4F9AE02.roa (hash: E9181+VVT+rwNNkc7uINFuNWW6wPgms9gTqr7A850dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: Jul 24 19:52:29 2025 GMT Not After : Jul 31 19:52:29 2025 GMT Subject: CN=68828efd-2572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2e:37:9f:b1:ff:52:c0:c5:db:fa:98:01:84: 6c:dc:54:b8:3d:71:d5:82:a5:58:80:25:c1:13:b0: 44:8a:7a:92:cc:90:2f:07:91:ff:37:52:d2:c7:25: 07:3e:ec:b8:e0:24:de:77:b8:9d:39:91:f6:ab:e6: a7:45:30:41:16:42:dd:74:6b:d5:49:c7:cf:ab:3a: e4:dd:9c:66:47:f1:24:42:5b:b9:55:2b:72:da:05: d7:cb:5e:16:08:f6:9b:c1:f8:3f:69:7f:e0:e4:56: 87:3c:55:4c:85:d2:bd:aa:b0:40:13:3d:91:2a:a1: ca:1c:ec:51:0f:20:62:09:92:e2:64:67:af:50:5d: 3a:9c:39:3c:3c:2e:b4:d8:e6:45:d7:2a:d0:ca:ac: 33:ca:56:5d:1a:65:51:aa:39:9d:fb:e5:3c:30:8e: 70:8d:c8:b6:65:a3:37:10:e1:11:89:b3:5c:39:ce: 8c:f8:d4:4c:10:03:82:c0:63:75:55:01:c9:a4:0e: 1d:99:0a:62:77:d8:d2:27:31:40:d2:da:3e:2e:23: f2:4e:4d:40:c6:6e:3a:c2:05:37:a8:e5:cc:f1:ad: 75:4a:02:25:6a:06:e0:9b:89:69:60:61:1a:57:15: 2f:ef:aa:34:19:31:90:69:d1:a7:df:6b:eb:88:10: 8e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CC:21:23:F5:80:1E:1B:05:68:A1:F4:33:15:FB:FB:83:AF:5E:A8 X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:b8:f8:93:00:8d:50:3f:92:f6:ff:21:30:1a:6f:4c:68:12: 1d:19:6e:f5:80:87:47:a9:cc:85:29:5c:63:ed:27:e9:e4:c4: fd:e4:ec:c6:d9:00:38:18:62:30:d8:29:50:3f:3d:3b:5a:04: c6:4f:4d:c0:90:ad:62:83:c4:e0:0d:59:d1:24:aa:65:1b:17: 46:67:6d:a9:c6:34:46:87:88:c1:aa:b3:47:3c:5d:79:ba:e4: f3:39:dd:89:71:bf:b3:fc:c6:91:a5:e7:cb:33:b7:b8:24:da: 9c:a4:da:ca:48:21:35:b2:15:27:4d:19:fb:a0:ce:4e:55:01: 0b:5a:fa:1a:72:96:1e:ae:94:08:0f:e2:eb:75:d9:3f:1a:2b: 83:96:31:dc:bc:e6:b8:d8:ee:5d:2b:ba:13:ff:ca:80:64:b3: 75:47:70:1e:eb:57:68:95:33:e7:3c:cf:68:f3:da:00:2d:78: 70:89:f8:79:ab:5b:f0:9b:25:f0:99:53:6d:7e:35:c6:3d:84: 07:fa:51:bd:da:0a:96:7f:7e:d1:ac:b4:9a:5c:09:f4:f6:1f: cb:6e:b8:f2:ea:29:14:85:26:58:e8:3d:2f:c5:66:59:d8:cc: 35:ef:ce:c8:2a:08:ee:06:37:e4:7c:7b:91:9d:f1:db:68:90: a9:e9:09:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjUwNzI0MTk1MjI5WhcNMjUwNzMxMTk1MjI5WjAYMRYwFAYD VQQDEw02ODgyOGVmZC0yNTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy43n7H/UsDF2/qYAYRs3FS4PXHVgqVYgCXBE7BEinqSzJAvB5H/N1LSxyUH Puy44CTed7idOZH2q+anRTBBFkLddGvVScfPqzrk3ZxmR/EkQlu5VSty2gXXy14W CPabwfg/aX/g5FaHPFVMhdK9qrBAEz2RKqHKHOxRDyBiCZLiZGevUF06nDk8PC60 2OZF1yrQyqwzylZdGmVRqjmd++U8MI5wjci2ZaM3EOERibNcOc6M+NRMEAOCwGN1 VQHJpA4dmQpid9jSJzFA0to+LiPyTk1Axm46wgU3qOXM8a11SgIlagbgm4lpYGEa VxUv76o0GTGQadGn32vriBCOeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/MISP1 gB4bBWih9DMV+/uDr16oMB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDauPiTAI1QP5L2/yEwGm9MaBIdGW71gIdHqcyFKVxj7Sfp5MT95OzG 2QA4GGIw2ClQPz07WgTGT03AkK1ig8TgDVnRJKplGxdGZ22pxjRGh4jBqrNHPF15 uuTzOd2Jcb+z/MaRpefLM7e4JNqcpNrKSCE1shUnTRn7oM5OVQELWvoacpYerpQI D+Lrddk/GiuDljHcvOa42O5dK7oT/8qAZLN1R3Ae61dolTPnPM9o89oALXhwifh5 q1vwmyXwmVNtfjXGPYQH+lG92gqWf37RrLSaXAn09h/Lbrjy6ikUhSZY6D0vxWZZ 2Mw1787IKgjuBjfkfHuRnfHbaJCp6Qnx -----END CERTIFICATE-----Generated at Sat Jul 26 15:15:52 2025 by rpki-client