$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: E7P3/8E/pqNI4fGCB64dtS9rR4vOmi7UUPJCU67qi7Y= Subject key identifier: 6E:21:0D:95:0F:3B:21:33:BE:46:B8:97:5E:7F:19:83:04:89:5E:3A Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 0625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 0620 Signing time: Thu 18 Sep 2025 23:04:45 +0000 Manifest this update: Thu 18 Sep 2025 23:04:44 +0000 Manifest next update: Thu 25 Sep 2025 23:04:44 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: 5ZV0WLqpfuFfrSRS0CsqK6Kiq7MSKWrR0DkrBcMxUmE=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: x6RJn5oQmyrZkTIL+jnIDh/DG4GNtduzvhq+KZOjCjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Sep 18 23:04:44 2025 GMT Not After : Sep 25 23:04:44 2025 GMT Subject: CN=68cc900d-1492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f8:e2:60:37:66:88:9c:cf:85:e1:79:cd:65: 25:28:7d:e7:5d:db:a7:75:8f:28:5e:45:e1:9d:30: e0:26:55:09:65:98:cc:3a:dd:bf:d3:6e:bd:61:1b: 12:a8:73:6d:c7:f2:50:1a:ba:3d:79:16:f9:68:31: e4:06:b9:35:a1:a8:95:e5:38:29:57:9a:7c:e3:67: 20:e8:9b:29:52:88:eb:78:cc:f6:8e:b7:82:bc:64: 70:ff:10:f2:eb:08:fd:3a:1b:d7:fe:2e:6e:2b:ce: 1d:11:0d:be:51:8b:66:58:3b:ae:88:d6:08:91:2a: c5:54:bc:39:e9:8a:de:e0:f5:0a:7a:d0:3f:b8:67: 77:eb:56:2c:4f:c5:1e:4e:f4:4b:f7:45:f3:84:4f: 05:e9:7b:51:6c:6d:8a:25:22:dd:e1:54:18:02:ae: c8:4b:05:d4:b9:ce:1c:82:bc:7b:59:23:ca:58:13: 01:ed:d3:68:90:4d:03:46:8e:d8:c0:1d:d0:f7:b7: d0:c9:9c:0f:69:de:49:7c:fe:e7:6c:ee:5c:b6:3e: ce:33:76:2c:3b:54:ba:94:51:d7:35:e8:b2:e9:de: 85:f6:e6:2b:67:ac:0c:ff:9c:b9:17:b8:0c:f3:de: 82:3f:98:e4:50:95:59:0e:64:c3:dc:90:c8:4d:b6: 83:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:21:0D:95:0F:3B:21:33:BE:46:B8:97:5E:7F:19:83:04:89:5E:3A X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:09:72:8a:e5:b1:05:23:1e:77:cd:bb:4a:a3:f8:25:ba:f8: d5:3f:4b:7d:17:ee:12:65:8c:9a:f9:33:61:03:25:22:12:49: b0:4e:a4:bd:e6:d4:e2:82:c9:2f:f4:c9:b0:5a:1e:0f:2d:3d: e2:46:5e:00:3b:88:3c:cb:9c:95:b9:a7:10:8c:9a:ed:34:2a: 0e:2d:9d:83:ed:f2:45:ea:85:07:de:9e:d7:0b:7e:82:88:bd: 06:06:48:64:a3:19:fe:33:88:9b:ae:3c:91:bd:80:09:48:f1: 5d:14:43:60:3b:34:83:ae:d1:35:5a:7a:8b:14:70:79:7b:5e: 45:51:45:c2:62:1f:30:ee:53:cc:29:79:e7:3a:bd:c6:78:e4: db:26:7a:0c:f0:75:14:d5:ea:07:56:4b:ea:08:f1:63:25:a1: b4:ab:e2:bc:82:15:4e:02:02:6d:7c:21:78:25:7e:10:36:bb: 2e:e2:55:26:9a:de:c7:32:db:84:ca:31:81:8c:5f:88:c1:2d: f4:36:21:4e:ac:1f:88:10:57:33:aa:6a:50:5f:ba:cc:33:45: 9d:d2:19:69:a3:76:e4:0c:e3:f2:e6:01:df:0f:3a:58:ae:82: 43:2e:0e:0a:35:46:06:87:18:5e:48:35:43:f0:b7:c3:fe:db: 68:38:7b:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwOTE4MjMwNDQ0WhcNMjUwOTI1MjMwNDQ0WjAYMRYwFAYD VQQDEw02OGNjOTAwZC0xNDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6fjiYDdmiJzPheF5zWUlKH3nXdundY8oXkXhnTDgJlUJZZjMOt2/0269YRsS qHNtx/JQGro9eRb5aDHkBrk1oaiV5TgpV5p842cg6JspUojreMz2jreCvGRw/xDy 6wj9OhvX/i5uK84dEQ2+UYtmWDuuiNYIkSrFVLw56Yre4PUKetA/uGd361YsT8Ue TvRL90XzhE8F6XtRbG2KJSLd4VQYAq7ISwXUuc4cgrx7WSPKWBMB7dNokE0DRo7Y wB3Q97fQyZwPad5JfP7nbO5ctj7OM3YsO1S6lFHXNeiy6d6F9uYrZ6wM/5y5F7gM 896CP5jkUJVZDmTD3JDITbaDFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4hDZUP OyEzvka4l15/GYMEiV46MB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQCXKK5bEFIx53zbtKo/gluvjVP0t9F+4SZYya+TNhAyUiEkmwTqS9 5tTigskv9MmwWh4PLT3iRl4AO4g8y5yVuacQjJrtNCoOLZ2D7fJF6oUH3p7XC36C iL0GBkhkoxn+M4ibrjyRvYAJSPFdFENgOzSDrtE1WnqLFHB5e15FUUXCYh8w7lPM KXnnOr3GeOTbJnoM8HUU1eoHVkvqCPFjJaG0q+K8ghVOAgJtfCF4JX4QNrsu4lUm mt7HMtuEyjGBjF+IwS30NiFOrB+IEFczqmpQX7rMM0Wd0hlpo3bkDOPy5gHfDzpY roJDLg4KNUYGhxheSDVD8LfD/ttoOHvM -----END CERTIFICATE-----Generated at Fri Sep 19 07:14:02 2025 by rpki-client