$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft File: aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft (raw, json) Hash identifier: ZPE7H2PHxTH50iNWDc/LKDSt5Rtg9WIF5Doyj4sv9MU= Subject key identifier: 90:B6:1B:C5:10:FE:1B:BC:D8:0D:85:EA:F6:28:E0:BB:B0:F7:07:CE Authority key identifier: 69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 Certificate issuer: /CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Certificate serial: 0610 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft Manifest number: 060B Signing time: Fri 18 Jul 2025 23:09:45 +0000 Manifest this update: Fri 18 Jul 2025 23:09:45 +0000 Manifest next update: Fri 25 Jul 2025 23:09:45 +0000 Files and hashes: 1: aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl (hash: btrqo5zvxhv3IBgP1T2VGIpCWui4srGMrfnY7bKbGUg=) 2: 4BB44892AE1111EBB4C2DA11C4F9AE02.roa (hash: JNSnvB3lv0/9vnQPkUAqkaUeoo68hc8fXSyVzWlD/Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:09:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC146, serialNumber=690C729F18390564D670B18F7774754E5D279951 Validity Not Before: Jul 18 23:09:45 2025 GMT Not After : Jul 25 23:09:45 2025 GMT Subject: CN=687ad439-b4dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9c:ea:5e:bd:e2:64:01:e4:5c:13:2c:f5:3d: 6f:7c:24:ed:50:86:6a:77:38:6e:aa:8b:bb:5b:3a: 0d:22:d9:6c:61:5e:ab:9f:06:d2:60:2a:0a:80:f6: a1:32:5b:75:db:1c:18:84:54:19:b4:38:3a:27:bc: 14:c6:44:07:6c:87:62:33:46:46:d9:37:fc:97:f9: 42:6d:b0:42:33:85:c8:42:df:88:f4:6a:58:77:94: c7:69:ae:61:5a:1d:b5:d2:a5:c2:2b:16:e9:3f:85: 6a:71:3b:f9:fb:5f:19:e2:86:d6:ea:b0:8b:07:93: a3:98:ca:97:cc:62:2d:5d:f3:ff:b6:98:bd:3f:9f: 5f:c5:23:92:0d:35:a2:39:88:b6:2b:98:2d:40:3e: 50:43:26:04:a0:20:ba:76:63:10:10:fa:63:e5:8b: 11:4a:0a:b7:e2:d0:f6:31:dc:13:9b:7b:c6:b8:0e: 29:80:de:03:83:22:9d:d5:35:35:eb:64:4c:b9:d7: f9:ae:e9:c8:66:bc:5a:6a:0a:04:46:3d:eb:80:19: ed:b0:b7:fb:31:95:57:67:34:49:0a:9b:27:a3:64: e0:c4:f4:2e:eb:27:c6:ae:af:e1:82:05:a9:9f:cd: f3:13:bf:e0:dd:ee:8f:bf:1f:06:54:9f:6c:e8:61: 59:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B6:1B:C5:10:FE:1B:BC:D8:0D:85:EA:F6:28:E0:BB:B0:F7:07:CE X509v3 Authority Key Identifier: keyid:69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:31:bd:68:5e:6c:f5:4b:d7:5c:d4:49:7f:16:d0:c0:a3:cf: d7:2d:8b:22:60:56:db:6c:c4:f5:d5:17:51:d9:ad:7e:7c:92: 15:5a:d7:67:0d:83:f8:6f:1e:ba:54:2d:3b:be:5b:87:d8:03: 80:34:50:35:76:6a:a7:f5:81:51:90:a6:4f:6b:77:e3:68:ad: 11:92:ec:48:da:1d:85:83:b5:f4:12:36:9d:75:65:bc:f5:c9: 2b:89:4f:91:dd:a0:57:4b:8c:5b:62:37:0d:32:77:a7:06:8e: d5:43:b6:b1:5a:15:1a:3a:08:61:49:be:5a:dc:e4:a0:ec:ad: f9:24:eb:7b:3d:27:75:a0:7a:3b:43:1b:b1:b6:51:c6:fc:50: 08:2b:93:04:51:6a:f4:4f:8b:76:83:46:66:6d:32:b3:57:d6: bc:b7:ad:0d:57:30:f0:8b:d3:14:75:96:15:bc:db:39:f6:ba: 54:9e:97:09:7a:ec:c7:1a:4b:53:47:b1:c0:cd:a6:33:bc:51: 91:1e:7f:69:44:9c:aa:4e:e7:af:25:50:b0:40:89:6d:55:89: 9d:bc:b4:c8:16:ae:86:42:88:f7:ab:8c:2f:ff:8c:3e:c3:bc: 9b:b0:94:77:f6:5a:1d:30:96:ab:c5:d0:a0:ce:de:b7:8a:b0: 9a:23:b3:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMxNDYxMTAvBgNVBAUTKDY5MEM3MjlGMTgzOTA1NjRENjcwQjE4Rjc3NzQ3NTRF NUQyNzk5NTEwHhcNMjUwNzE4MjMwOTQ1WhcNMjUwNzI1MjMwOTQ1WjAYMRYwFAYD VQQDEw02ODdhZDQzOS1iNGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZzqXr3iZAHkXBMs9T1vfCTtUIZqdzhuqou7WzoNItlsYV6rnwbSYCoKgPah Mlt12xwYhFQZtDg6J7wUxkQHbIdiM0ZG2Tf8l/lCbbBCM4XIQt+I9GpYd5THaa5h Wh210qXCKxbpP4VqcTv5+18Z4obW6rCLB5OjmMqXzGItXfP/tpi9P59fxSOSDTWi OYi2K5gtQD5QQyYEoCC6dmMQEPpj5YsRSgq34tD2MdwTm3vGuA4pgN4DgyKd1TU1 62RMudf5runIZrxaagoERj3rgBntsLf7MZVXZzRJCpsno2TgxPQu6yfGrq/hggWp n83zE7/g3e6Pvx8GVJ9s6GFZ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJC2G8UQ /hu82A2F6vYo4Luw9wfOMB8GA1UdIwQYMBaAFGkMcp8YOQVk1nCxj3d0dU5dJ5lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzE0Ni9EQUE3NjQ5MkFF MEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJXVFdjTEdQZDNSMVRsMG5t VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FReHlueGc1QldUV2NMR1BkM1IxVGwwbm1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzE0Ni9EQUE3NjQ5MkFFMEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJX VFdjTEdQZDNSMVRsMG5tVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATMb1oXmz1S9dc1El/FtDAo8/XLYsiYFbbbMT11RdR2a1+fJIVWtdn DYP4bx66VC07vluH2AOANFA1dmqn9YFRkKZPa3fjaK0RkuxI2h2Fg7X0EjaddWW8 9ckriU+R3aBXS4xbYjcNMnenBo7VQ7axWhUaOghhSb5a3OSg7K35JOt7PSd1oHo7 QxuxtlHG/FAIK5MEUWr0T4t2g0ZmbTKzV9a8t60NVzDwi9MUdZYVvNs59rpUnpcJ euzHGktTR7HAzaYzvFGRHn9pRJyqTuevJVCwQIltVYmdvLTIFq6GQoj3q4wv/4w+ w7ybsJR39lodMJarxdCgzt63irCaI7M2 -----END CERTIFICATE-----Generated at Sun Jul 20 03:23:21 2025 by rpki-client