$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft File: aAYK77v8wH1z211yeLyPJJxX9RU.mft (raw, json) Hash identifier: kG1za0lTd0ac2hunObRwXRDZCdNlizb2fma4alkJiq0= Subject key identifier: 91:65:82:C7:D2:82:96:FE:11:98:9A:8C:C0:9C:91:6B:D2:A3:D5:D7 Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft Manifest number: 03CA Signing time: Sun 07 Sep 2025 01:01:49 +0000 Manifest this update: Sun 07 Sep 2025 01:01:49 +0000 Manifest next update: Sun 14 Sep 2025 01:01:49 +0000 Files and hashes: 1: aAYK77v8wH1z211yeLyPJJxX9RU.crl (hash: 1KUILJ8GjaOjeODTmKiny7OLmvfcWV+NjgxYigBKKaY=) 2: 5B639C667CEB11EDA3D10364C4F9AE02.roa (hash: /k7UGLxYpMRjSXOkhilDp1PbyHK35jDBnjLpEab1SqY=) 3: ADBB651E043411ED9F02B325C4F9AE02.roa (hash: nXP2TkV2xaQf8NtZFSYlzBkdLiCf/hTO1Pti6MrwpUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A, serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Validity Not Before: Sep 7 01:01:49 2025 GMT Not After : Sep 14 01:01:49 2025 GMT Subject: CN=68bcd97d-e919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ec:ab:6e:32:a7:a1:b5:a3:5f:64:41:b3:65: 7e:93:64:ed:4e:0d:6e:c2:a2:8b:33:a0:1d:e8:71: b9:75:bb:31:1f:47:59:3d:6b:05:b4:c5:c3:3a:58: 6a:04:cf:5c:56:4e:ac:0e:17:60:96:a2:64:c6:73: d9:0e:2b:a3:d3:a1:27:85:98:c1:e4:85:1e:64:0a: 87:75:f6:02:ea:c3:6d:2c:7c:e1:77:f7:bd:f9:7c: 9c:c0:91:58:58:38:89:4a:19:d4:9b:c3:31:fe:54: 16:de:87:6d:b2:0f:19:87:75:88:b8:bf:55:53:16: 94:29:6d:5c:61:0f:02:23:5c:a7:a8:4b:0f:67:47: 33:4e:0b:b2:44:18:a8:04:82:ab:ad:20:a7:eb:1a: b8:dd:7b:fc:f1:a8:14:1b:7f:e3:80:ff:d2:c2:ce: 4e:21:18:57:ea:af:99:8d:5d:d3:1d:41:0f:56:af: 78:d4:67:d1:4f:24:d8:e8:b0:ad:02:40:a2:4b:92: 7b:82:7d:e6:11:a4:a0:d1:bf:f7:a9:ad:91:70:f6: 0c:af:d7:43:86:bd:4c:eb:86:13:cf:2a:c2:71:a4: cb:a4:39:97:0b:ee:de:41:4b:a2:ad:ed:18:99:91: 21:c0:58:19:37:59:13:02:49:b1:b4:a0:04:23:e4: 42:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:65:82:C7:D2:82:96:FE:11:98:9A:8C:C0:9C:91:6B:D2:A3:D5:D7 X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:7c:c3:f4:b9:76:89:95:ac:e5:4e:81:42:6d:db:7e:3b:6c: f5:2d:6b:9b:d8:e0:bc:a7:58:41:b5:a5:1d:39:7c:60:5b:7b: 03:2f:22:c3:f6:59:2d:e1:43:b2:89:25:e0:74:62:b9:35:8e: 2b:f4:1f:33:38:cf:65:24:d5:a4:bb:03:a7:ac:54:c8:c3:1b: 12:c2:d0:4e:80:ad:2f:28:1e:2d:3a:16:70:0d:cf:50:f6:c9: 6b:fb:3c:9c:b8:f2:3c:d7:b8:09:a5:1f:1c:fd:d4:c1:56:db: f8:59:e1:3a:6f:81:4e:66:fa:6f:91:99:06:e6:d0:45:9c:37: b0:75:63:af:b2:d2:e8:f0:5f:e9:46:72:cd:35:b8:ab:64:41: e6:c5:dc:84:b1:98:f9:ed:f8:7f:fe:ca:17:5e:a0:dc:56:d8: e0:72:b6:24:35:fb:19:d3:82:8f:b2:e0:9c:07:8e:04:aa:3a: 87:e2:75:47:b8:b0:bf:79:d1:df:e8:1b:9f:b4:74:c1:11:c9: fd:d0:5c:b5:bf:6b:3c:fb:0f:9d:28:df:13:db:34:b9:6a:c4: 9b:df:56:c2:06:3e:ef:f6:55:55:eb:e4:e2:bd:42:10:41:6b: c9:0c:3b:2b:0f:f1:92:a7:c9:29:4f:b0:11:94:1b:ce:47:ae: fd:9a:7a:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjUwOTA3MDEwMTQ5WhcNMjUwOTE0MDEwMTQ5WjAYMRYwFAYD VQQDEw02OGJjZDk3ZC1lOTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruyrbjKnobWjX2RBs2V+k2TtTg1uwqKLM6Ad6HG5dbsxH0dZPWsFtMXDOlhq BM9cVk6sDhdglqJkxnPZDiuj06EnhZjB5IUeZAqHdfYC6sNtLHzhd/e9+XycwJFY WDiJShnUm8Mx/lQW3odtsg8Zh3WIuL9VUxaUKW1cYQ8CI1ynqEsPZ0czTguyRBio BIKrrSCn6xq43Xv88agUG3/jgP/Sws5OIRhX6q+ZjV3THUEPVq941GfRTyTY6LCt AkCiS5J7gn3mEaSg0b/3qa2RcPYMr9dDhr1M64YTzyrCcaTLpDmXC+7eQUuire0Y mZEhwFgZN1kTAkmxtKAEI+RCJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFlgsfS gpb+EZiajMCckWvSo9XXMB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU5QS9CQUNBQjdFQzlERkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdI MXoyMTF5ZUx5UEpKeFg5UlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABfMP0uXaJlazlToFCbdt+O2z1LWub2OC8p1hBtaUdOXxgW3sDLyLD 9lkt4UOyiSXgdGK5NY4r9B8zOM9lJNWkuwOnrFTIwxsSwtBOgK0vKB4tOhZwDc9Q 9slr+zycuPI817gJpR8c/dTBVtv4WeE6b4FOZvpvkZkG5tBFnDewdWOvstLo8F/p RnLNNbirZEHmxdyEsZj57fh//soXXqDcVtjgcrYkNfsZ04KPsuCcB44EqjqH4nVH uLC/edHf6BuftHTBEcn90Fy1v2s8+w+dKN8T2zS5asSb31bCBj7v9lVV6+TivUIQ QWvJDDsrD/GSp8kpT7ARlBvOR679mnp1 -----END CERTIFICATE-----Generated at Mon Sep 8 08:49:40 2025 by rpki-client