$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: tJnRkUCkBBaDWOphPn3dgAHAY7xK0mWvdOVMTYyM73A= Subject key identifier: F8:34:96:7B:F0:67:38:62:DF:08:6A:90:36:AD:92:70:4A:13:EC:9A Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 30CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 30C6 Signing time: Fri 18 Jul 2025 15:30:29 +0000 Manifest this update: Fri 18 Jul 2025 15:30:28 +0000 Manifest next update: Fri 25 Jul 2025 15:30:28 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: 3c7ykUco0OjSzYPCUguI6Zoaa9/mSoSDaKH2AmQYunw=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: QijzfOAskdpqspHv2hl6DWJmVGpVIoUXprNfU2Pxi8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12490 (0x30ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Jul 18 15:30:28 2025 GMT Not After : Jul 25 15:30:28 2025 GMT Subject: CN=687a6894-678a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dc:66:94:15:7c:b2:55:17:29:13:0b:04:eb: df:64:ab:21:b9:4f:28:b1:ef:b3:1f:11:fd:af:86: 8d:ae:a5:b5:5d:2c:e2:d6:94:8c:82:e7:8a:fb:f1: b8:73:c0:f8:a0:c8:b1:dc:cf:97:a6:31:1d:de:4b: 06:91:f3:be:3a:fc:9a:e1:79:30:30:45:21:40:22: cb:31:e6:cc:7e:4c:aa:2b:84:5a:6b:4d:1b:cd:a0: e8:7a:a6:a2:e2:e8:27:60:b7:39:d2:b0:2d:88:40: 66:44:f0:44:fc:05:c3:af:90:70:af:9d:39:b9:eb: 2e:05:d1:d2:39:0a:19:ad:3a:57:7e:48:39:65:4e: 1d:28:c8:90:b5:19:6b:ad:33:27:49:f3:28:05:93: e3:92:38:73:8f:b4:a9:64:29:d7:a7:94:4d:e6:77: ae:90:59:94:04:80:88:ba:f1:8a:9e:61:bb:a4:ef: 75:d6:fa:24:08:05:25:11:b3:03:27:44:97:17:2b: 97:d0:ff:99:f0:28:60:57:bb:5e:ac:6d:18:b7:dd: fd:4b:65:32:67:2f:8a:49:c5:cf:96:65:a3:0a:e2: 9f:90:56:95:5d:a2:b0:fd:9e:83:d3:86:ff:a0:05: dd:c0:5f:1c:8d:f4:ed:e3:f3:40:9a:03:bd:71:26: e1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:34:96:7B:F0:67:38:62:DF:08:6A:90:36:AD:92:70:4A:13:EC:9A X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:4e:0e:05:45:25:66:55:36:fd:a7:d6:32:61:f5:69:c6:f4: ff:ed:16:3f:6e:b1:17:68:38:12:6e:a3:18:68:5a:af:b9:3c: 34:bb:da:1c:8e:f6:44:1b:14:17:75:d6:c8:cd:fb:e8:57:ed: 78:a3:e9:7f:32:b2:69:58:1d:cb:35:80:6b:76:09:4e:8e:77: c9:33:5c:3c:cc:00:93:ff:3a:8d:7a:25:d4:53:ed:43:c9:e6: 29:bd:89:ca:75:d2:2d:eb:9f:d8:d0:83:c2:9d:87:df:34:9a: da:9f:19:75:9a:bd:1c:f0:e3:94:3e:a2:b3:b7:77:6c:78:90: f6:a3:7e:6c:65:09:4a:44:4c:49:a1:ec:1a:c9:10:1b:bf:27: 49:fe:3f:a1:ac:a1:75:f5:90:a2:72:68:05:dd:e0:e1:87:4a: 4a:be:e6:be:13:49:40:49:24:3c:be:ae:70:ce:06:ee:17:9e: 6d:a2:54:a2:fd:b5:40:25:04:53:0c:cb:2d:3a:c8:37:91:40: 0b:9f:b5:1b:21:e8:18:b4:56:47:68:0b:45:a2:c7:69:66:30: 5b:d6:f1:41:cd:85:12:88:c6:76:ed:c1:4a:e3:82:83:77:bf: 29:c8:15:af:5a:f4:8d:d6:b2:5f:8d:d9:a2:dc:c8:be:54:e7: de:0f:35:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUwNzE4MTUzMDI4WhcNMjUwNzI1MTUzMDI4WjAYMRYwFAYD VQQDEw02ODdhNjg5NC02NzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtxmlBV8slUXKRMLBOvfZKshuU8ose+zHxH9r4aNrqW1XSzi1pSMgueK+/G4 c8D4oMix3M+XpjEd3ksGkfO+Ovya4XkwMEUhQCLLMebMfkyqK4Raa00bzaDoeqai 4ugnYLc50rAtiEBmRPBE/AXDr5Bwr505uesuBdHSOQoZrTpXfkg5ZU4dKMiQtRlr rTMnSfMoBZPjkjhzj7SpZCnXp5RN5neukFmUBICIuvGKnmG7pO911vokCAUlEbMD J0SXFyuX0P+Z8ChgV7terG0Yt939S2UyZy+KScXPlmWjCuKfkFaVXaKw/Z6D04b/ oAXdwF8cjfTt4/NAmgO9cSbhaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPg0lnvw Zzhi3whqkDatknBKE+yaMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuTg4FRSVmVTb9p9YyYfVpxvT/7RY/brEXaDgSbqMYaFqvuTw0u9oc jvZEGxQXddbIzfvoV+14o+l/MrJpWB3LNYBrdglOjnfJM1w8zACT/zqNeiXUU+1D yeYpvYnKddIt65/Y0IPCnYffNJranxl1mr0c8OOUPqKzt3dseJD2o35sZQlKRExJ oewayRAbvydJ/j+hrKF19ZCicmgF3eDhh0pKvua+E0lASSQ8vq5wzgbuF55tolSi /bVAJQRTDMstOsg3kUALn7UbIegYtFZHaAtFosdpZjBb1vFBzYUSiMZ27cFK44KD d78pyBWvWvSN1rJfjdmi3Mi+VOfeDzVm -----END CERTIFICATE-----Generated at Sun Jul 20 14:58:11 2025 by rpki-client