$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft File: aMIYjATCDkkjq7YttIckmDVLSv0.mft (raw, json) Hash identifier: h1DERAn0aGEvMrCfdHm9NNd3iQapOsWiCZiS5Fq16vI= Subject key identifier: CE:A8:7A:BE:28:CD:1E:F5:19:B0:D8:01:9B:92:F6:E8:95:1C:21:73 Authority key identifier: 68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD Certificate issuer: /CN=A911750B/serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft Manifest number: 2D Signing time: Wed 03 Sep 2025 08:24:50 +0000 Manifest this update: Wed 03 Sep 2025 08:24:50 +0000 Manifest next update: Wed 10 Sep 2025 08:24:50 +0000 Files and hashes: 1: aMIYjATCDkkjq7YttIckmDVLSv0.crl (hash: SfB0E42PWhrAcv3EBrkkU1auQTTCJyvJPa9rF7zRDHY=) 2: CC9D872A468D11F0A82C5E5EC4F9AE02.roa (hash: WRJujiiFl5+2lSEzqzn6bhm3g2H9MHSY7ug8yl3Oc8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 08:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Validity Not Before: Sep 3 08:24:50 2025 GMT Not After : Sep 10 08:24:50 2025 GMT Subject: CN=68b7fb52-dfc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1e:0c:2f:5a:1c:17:1b:c9:48:34:c1:1c:b9: 98:83:61:33:89:80:4f:30:71:18:5a:7c:09:37:56: 5b:7e:d5:6b:ea:99:32:d7:28:66:fe:ec:f2:1d:30: 46:9f:a6:ce:62:13:7b:a3:a0:18:a3:a4:82:bd:3c: 44:a9:7b:e5:31:10:04:d2:df:16:44:38:bc:53:3e: 62:a2:9c:e3:e4:5c:55:a5:a2:83:a7:5a:4a:b6:ad: d7:2d:6d:2e:68:16:36:c8:9b:e3:81:00:c5:22:21: bc:0f:a2:85:4b:75:2a:78:e8:47:83:75:05:c1:65: ba:69:af:09:eb:a9:ac:17:be:3c:ed:c5:1a:19:aa: ac:60:b0:2a:da:cc:0d:eb:6a:5f:48:b6:e7:ed:05: 7c:ad:7e:d3:7c:e4:88:2f:d9:b5:a9:7f:66:73:81: 6e:00:87:80:cd:e6:99:f5:0e:3a:79:a5:50:a0:51: 10:2f:42:35:0e:29:5e:05:9f:ff:c2:60:e2:1a:27: 5d:8b:9a:62:11:1b:e2:67:08:3b:6b:c4:a2:e8:07: ee:58:d2:b7:9d:25:93:d7:56:f3:29:e4:f9:3f:c1: d4:58:87:6a:80:45:34:86:ef:71:4d:c0:d0:83:12: cd:09:93:9d:1b:4b:a2:1d:84:c8:11:ef:4b:61:ef: 8e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A8:7A:BE:28:CD:1E:F5:19:B0:D8:01:9B:92:F6:E8:95:1C:21:73 X509v3 Authority Key Identifier: keyid:68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:98:fc:1e:f3:3b:ec:51:df:8d:c7:6c:e0:92:83:99:aa:2b: b9:b2:61:1d:06:41:38:49:0c:b2:da:55:af:7f:14:c9:13:ad: 2b:50:15:71:77:8d:88:79:3b:e3:51:38:4e:6d:12:91:4f:43: 0d:e5:74:ab:c7:f3:e5:0e:83:71:c7:34:7e:7b:5b:ab:a9:6a: 29:bc:0f:ae:cd:c8:ea:70:74:5a:8d:52:a3:ae:71:55:80:3e: 8a:e1:91:66:f6:b5:c3:53:db:55:7e:9a:3c:58:d6:a9:12:87: 88:9a:d1:96:cb:59:24:c4:d6:b4:42:1f:2d:81:6f:3d:21:5d: 76:a9:47:ad:fb:73:49:be:99:f9:c2:97:30:bd:3c:b3:5c:69: 75:b6:ec:85:13:02:f4:a7:91:65:ee:aa:b5:1b:e5:bf:11:0d: 30:9d:b1:5f:17:ac:9d:32:c8:3e:da:54:3a:3e:7f:05:e2:cc: 86:15:59:14:57:61:e5:5d:2a:3f:c4:d7:26:5c:f9:36:0e:45: f4:0b:6f:5b:14:c4:9f:a3:f1:c5:9d:34:37:9c:0c:27:18:cb: 7a:36:aa:e2:81:da:a9:57:f6:91:f7:ca:e5:f2:84:7b:7b:45: 67:57:56:16:df:b4:ee:a1:ba:e4:1a:6b:ae:4f:db:58:68:3d: 67:76:f5:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoNjhDMjE4OEMwNEMyMEU0OTIzQUJCNjJEQjQ4NzI0OTgz NTRCNEFGRDAeFw0yNTA5MDMwODI0NTBaFw0yNTA5MTAwODI0NTBaMBgxFjAUBgNV BAMTDTY4YjdmYjUyLWRmYzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAHgwvWhwXG8lINMEcuZiDYTOJgE8wcRhafAk3Vlt+1WvqmTLXKGb+7PIdMEaf ps5iE3ujoBijpIK9PESpe+UxEATS3xZEOLxTPmKinOPkXFWlooOnWkq2rdctbS5o FjbIm+OBAMUiIbwPooVLdSp46EeDdQXBZbpprwnrqawXvjztxRoZqqxgsCrazA3r al9ItuftBXytftN85Igv2bWpf2ZzgW4Ah4DN5pn1Djp5pVCgURAvQjUOKV4Fn//C YOIaJ12LmmIRG+JnCDtrxKLoB+5Y0redJZPXVvMp5Pk/wdRYh2qARTSG73FNwNCD Es0Jk50bS6IdhMgR70th744pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzqh6vijN HvUZsNgBm5L26JUcIXMwHwYDVR0jBBgwFoAUaMIYjATCDkkjq7YttIckmDVLSv0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzVCMUMxRkFFNDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL2FNSVlqQVRDRGtranE3WXR0SWNrbURWTFN2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYU1JWWpBVENEa2tqcTdZdHRJY2ttRFZMU3YwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 NTBCLzVCMUMxRkFFNDY4QzExRjA4NEI2QTUzOUM0RjlBRTAyL2FNSVlqQVRDRGtr anE3WXR0SWNrbURWTFN2MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAISY/B7zO+xR343HbOCSg5mqK7myYR0GQThJDLLaVa9/FMkTrStQFXF3 jYh5O+NROE5tEpFPQw3ldKvH8+UOg3HHNH57W6upaim8D67NyOpwdFqNUqOucVWA PorhkWb2tcNT21V+mjxY1qkSh4ia0ZbLWSTE1rRCHy2Bbz0hXXapR637c0m+mfnC lzC9PLNcaXW27IUTAvSnkWXuqrUb5b8RDTCdsV8XrJ0yyD7aVDo+fwXizIYVWRRX YeVdKj/E1yZc+TYORfQLb1sUxJ+j8cWdNDecDCcYy3o2quKB2qlX9pH3yuXyhHt7 RWdXVhbftO6huuQaa65P21hoPWd29fo= -----END CERTIFICATE-----Generated at Thu Sep 4 15:57:38 2025 by rpki-client