$ rpki-client -vvf rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft File: aecBsfM0KSOA56u5AcNCYzLGqlo.mft (raw, json) Hash identifier: g57fUPfLXcavQEGLO1mcytJTAyCUin2mpIUbMWlQPDk= Subject key identifier: 34:B4:42:11:59:81:4E:CE:B8:8C:16:41:86:C0:65:AB:F0:40:FC:E7 Authority key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A Certificate issuer: /CN=A91F44EA/serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Certificate serial: 15E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft Manifest number: 15D8 Signing time: Sun 20 Jul 2025 16:47:33 +0000 Manifest this update: Sun 20 Jul 2025 16:47:33 +0000 Manifest next update: Sun 27 Jul 2025 16:47:33 +0000 Files and hashes: 1: aecBsfM0KSOA56u5AcNCYzLGqlo.crl (hash: 52FvC4UHYm26kSJTplUewIPqbjHYiDoDmEYTxwp3KIA=) 2: F6CE4EEC56F911E997D5B40AC4F9AE02.roa (hash: jy3Wft/F/5UxXAXx08sOlZkwBarb1srk+Xi5m/F+Ac0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:47:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5606 (0x15e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F44EA, serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Validity Not Before: Jul 20 16:47:33 2025 GMT Not After : Jul 27 16:47:33 2025 GMT Subject: CN=687d1da5-5e65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a1:61:65:51:02:d2:34:a7:8f:4c:a8:b2:16: cf:c6:52:86:d3:0b:6a:80:51:12:9e:62:5a:9a:4a: 51:d9:7f:c5:a8:bd:8b:61:2c:83:82:de:01:37:c4: b8:c0:57:8a:ba:88:49:b6:8a:ba:b1:6f:f3:27:a5: f2:68:4e:72:47:29:f3:f7:c9:55:96:66:d4:86:a0: a7:fe:cc:57:ec:c5:f8:12:0d:9a:95:a8:92:b1:7c: e2:fa:0b:1a:0e:90:c0:50:87:50:20:57:f7:c2:ea: dd:2a:6f:bf:5f:97:40:4b:25:4f:4c:d8:83:fb:7f: e7:20:ce:02:aa:d2:d9:de:7d:d1:20:c9:38:19:58: 07:66:7d:ba:40:a4:14:99:73:7b:c8:46:12:56:cb: 44:05:4a:ad:fe:20:63:47:41:f3:f1:02:24:45:0e: 2f:9a:ef:97:9c:2c:78:28:e9:e0:77:72:d5:af:57: 33:75:93:fc:08:7c:d9:80:0f:9f:83:6a:a0:3b:aa: ac:66:5b:43:3d:bc:34:a2:37:37:e2:42:f5:0c:b0: f8:cf:a6:58:9b:36:ad:8f:e2:21:1f:05:e6:c1:17: fc:6b:98:6f:46:74:63:3c:0c:16:95:09:b2:8f:5e: 6d:78:06:46:ff:7a:07:11:c1:99:ed:c9:1d:ee:e2: 6c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B4:42:11:59:81:4E:CE:B8:8C:16:41:86:C0:65:AB:F0:40:FC:E7 X509v3 Authority Key Identifier: keyid:69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:98:16:09:82:62:45:8c:5c:a9:83:97:22:a5:0a:44:cf:a3: b3:b0:fa:ea:ed:e4:61:76:61:82:ac:c1:6c:7c:57:52:3f:72: b3:dd:2a:49:ce:15:48:c9:42:fd:68:26:81:fc:02:7d:07:92: ac:ff:be:cf:ed:57:34:aa:6e:7d:ec:f3:09:7d:09:a3:b5:df: b9:d2:b0:4b:e4:6e:96:35:3c:e5:a9:c2:96:b8:87:a4:80:34: 4a:63:38:0f:98:cd:b5:76:56:8f:50:51:80:da:a0:c2:6f:eb: 70:0e:67:f0:62:b3:0c:36:68:ca:32:a9:dd:5c:92:db:99:f6: 62:e4:99:4d:26:cf:3d:27:62:7d:39:c9:d3:6e:7a:ec:a8:3a: 14:7e:6d:fb:3f:ac:4c:1e:5f:49:f8:27:cb:b6:1c:ef:06:15: cc:b2:2d:4a:2c:7d:28:47:73:18:fc:47:32:ea:bb:aa:72:28: 13:d3:ed:8f:17:ba:4a:af:eb:96:ff:38:b3:7b:34:31:30:72: da:7b:98:30:73:f9:f0:45:af:99:36:d9:e6:e0:c2:8d:ed:b3: 9f:46:3c:f6:99:dd:75:dd:cf:3e:44:3b:82:6a:af:52:59:0d: e3:f6:af:3a:ac:d9:81:db:fc:1a:5a:4b:19:0d:30:20:3a:e9: 53:8c:80:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ0RUExMTAvBgNVBAUTKDY5RTcwMUIxRjMzNDI5MjM4MEU3QUJCOTAxQzM0MjYz MzJDNkFBNUEwHhcNMjUwNzIwMTY0NzMzWhcNMjUwNzI3MTY0NzMzWjAYMRYwFAYD VQQDEw02ODdkMWRhNS01ZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKFhZVEC0jSnj0yoshbPxlKG0wtqgFESnmJamkpR2X/FqL2LYSyDgt4BN8S4 wFeKuohJtoq6sW/zJ6XyaE5yRynz98lVlmbUhqCn/sxX7MX4Eg2alaiSsXzi+gsa DpDAUIdQIFf3wurdKm+/X5dASyVPTNiD+3/nIM4CqtLZ3n3RIMk4GVgHZn26QKQU mXN7yEYSVstEBUqt/iBjR0Hz8QIkRQ4vmu+XnCx4KOngd3LVr1czdZP8CHzZgA+f g2qgO6qsZltDPbw0ojc34kL1DLD4z6ZYmzatj+IhHwXmwRf8a5hvRnRjPAwWlQmy j15teAZG/3oHEcGZ7ckd7uJskQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS0QhFZ gU7OuIwWQYbAZavwQPznMB8GA1UdIwQYMBaAFGnnAbHzNCkjgOeruQHDQmMyxqpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDRFQS82ODkwMzM5NjJC NDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtTT0E1NnU1QWNOQ1l6TEdx bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlY0JzZk0wS1NPQTU2dTVBY05DWXpMR3Fsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDRFQS82ODkwMzM5NjJCNDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtT T0E1NnU1QWNOQ1l6TEdxbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOmBYJgmJFjFypg5cipQpEz6OzsPrq7eRhdmGCrMFsfFdSP3Kz3SpJ zhVIyUL9aCaB/AJ9B5Ks/77P7Vc0qm597PMJfQmjtd+50rBL5G6WNTzlqcKWuIek gDRKYzgPmM21dlaPUFGA2qDCb+twDmfwYrMMNmjKMqndXJLbmfZi5JlNJs89J2J9 OcnTbnrsqDoUfm37P6xMHl9J+CfLthzvBhXMsi1KLH0oR3MY/Ecy6ruqcigT0+2P F7pKr+uW/zizezQxMHLae5gwc/nwRa+ZNtnm4MKN7bOfRjz2md113c8+RDuCaq9S WQ3j9q86rNmB2/waWksZDTAgOulTjIAo -----END CERTIFICATE-----Generated at Tue Jul 22 05:20:23 2025 by rpki-client