$ rpki-client -vvf rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft File: Aonh4IK22hq6VVKEDAyrAsKjt04.mft (raw, json) Hash identifier: +m8w9ZVz35MvV0JFZBRD/Z3a1Risp071yzRNqaVnIGQ= Subject key identifier: 45:6E:0F:64:7D:90:8F:B2:72:6C:85:4F:57:E2:41:05:23:0B:69:9B Authority key identifier: 02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E Certificate issuer: /CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft Manifest number: 043D Signing time: Sat 23 Aug 2025 01:01:45 +0000 Manifest this update: Sat 23 Aug 2025 01:01:45 +0000 Manifest next update: Sat 30 Aug 2025 01:01:45 +0000 Files and hashes: 1: Aonh4IK22hq6VVKEDAyrAsKjt04.crl (hash: oINaq7Fj9abQhFUgWmtqSbqeg/yF6AiNCRCWxnBtI9w=) 2: F23B6474DCCB11EFA04C156DC4F9AE02.roa (hash: g65ejbm+l69Ptue1On4uxEa8cqbfVm8kgqBG4BRL7rA=) 3: B250F522DCCB11EFB54CD16CC4F9AE02.roa (hash: 9O93tqLrMpLEnAApshkrc2rnOUZiNN8MfYKvWhlISq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144C70, serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Validity Not Before: Aug 23 01:01:45 2025 GMT Not After : Aug 30 01:01:45 2025 GMT Subject: CN=68a912f9-df3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ea:d7:af:c9:65:02:a2:65:32:4f:d1:18:ef: f5:b4:78:80:1a:4b:4a:83:d1:0a:0c:da:08:b2:a7: 52:09:7d:10:d7:29:2c:92:08:43:04:cd:78:85:6e: fa:cd:6e:b9:15:cd:b1:84:bf:93:d5:52:c4:61:13: 34:f6:b4:37:b3:0c:bc:5e:78:48:a6:15:73:63:c8: fc:9f:0d:12:83:ef:23:a2:2c:bd:10:25:d0:f0:e8: da:b1:8b:3f:4e:ec:50:16:17:3f:28:4e:6a:68:2f: 57:ae:10:d4:34:0c:21:3a:34:d6:ee:a6:42:b5:5d: e3:65:71:d0:32:4b:ea:e0:09:60:84:d5:03:8d:95: d9:78:fe:c6:6d:20:05:94:12:0b:02:f9:40:d2:20: ea:d1:96:99:f3:75:06:e4:a9:b0:a1:08:6c:ed:b3: a3:69:2b:6c:91:e9:46:59:d7:b6:ee:2b:29:bd:b6: 19:89:33:20:53:39:b9:3a:28:f9:6b:54:f5:f3:f4: 42:5f:29:15:b7:42:43:77:63:bb:e4:3c:cc:63:17: ae:c8:50:00:19:0c:df:40:aa:fe:9a:00:ae:21:6b: d1:a3:31:4f:46:e6:52:12:99:d1:45:dc:8b:0e:4d: 0c:f2:2e:67:f3:b9:1a:6d:49:c9:21:61:7f:c2:08: 98:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:6E:0F:64:7D:90:8F:B2:72:6C:85:4F:57:E2:41:05:23:0B:69:9B X509v3 Authority Key Identifier: keyid:02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:3e:50:7f:af:6d:d5:a4:01:6f:63:a2:89:5d:27:63:ee:16: 9e:fc:91:f4:3a:02:de:41:c4:8f:8b:30:6d:c5:f6:38:94:94: 9a:6e:05:40:e8:7a:65:9c:27:bb:1b:11:4b:b9:4c:6f:6f:84: fb:10:81:f0:d7:d1:d1:5c:d8:97:cf:93:79:46:69:df:7d:a8: a2:6b:cf:ab:80:94:2f:35:d6:ab:b7:20:56:8c:8e:f3:ae:88: c9:f1:23:b7:be:3c:eb:45:6c:a2:ab:24:a8:80:c4:dc:0c:2b: cf:e0:27:27:16:cf:e0:26:02:0b:f7:15:77:89:1f:19:a9:4f: bd:88:7a:26:02:2e:e9:47:b8:c6:63:5e:bd:13:b8:69:ea:4f: a8:c0:cb:4d:b4:3b:85:08:8c:fa:6d:3a:a6:0c:50:a5:04:78: 89:22:d8:1d:99:84:87:0b:82:bb:b9:5d:fa:b8:1e:75:48:6c: 58:2d:e7:da:85:8a:28:b0:02:66:55:62:1c:f6:99:70:45:33: a9:ca:95:1d:4b:19:73:b8:8c:9d:34:83:4b:c7:85:2d:10:41: 86:e2:06:07:23:94:c9:df:d2:46:88:8b:43:f1:a7:24:5a:cc: 2d:1b:2f:43:49:8a:91:1a:41:46:99:0e:a8:82:01:c1:20:67: c0:4d:9e:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDNzAxMTAvBgNVBAUTKDAyODlFMUUwODJCNkRBMUFCQTU1NTI4NDBDMENBQjAy QzJBM0I3NEUwHhcNMjUwODIzMDEwMTQ1WhcNMjUwODMwMDEwMTQ1WjAYMRYwFAYD VQQDEw02OGE5MTJmOS1kZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+rXr8llAqJlMk/RGO/1tHiAGktKg9EKDNoIsqdSCX0Q1ykskghDBM14hW76 zW65Fc2xhL+T1VLEYRM09rQ3swy8XnhIphVzY8j8nw0Sg+8joiy9ECXQ8OjasYs/ TuxQFhc/KE5qaC9XrhDUNAwhOjTW7qZCtV3jZXHQMkvq4AlghNUDjZXZeP7GbSAF lBILAvlA0iDq0ZaZ83UG5KmwoQhs7bOjaStskelGWde27ispvbYZiTMgUzm5Oij5 a1T18/RCXykVt0JDd2O75DzMYxeuyFAAGQzfQKr+mgCuIWvRozFPRuZSEpnRRdyL Dk0M8i5n87kabUnJIWF/wgiYpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVuD2R9 kI+ycmyFT1fiQQUjC2mbMB8GA1UdIwQYMBaAFAKJ4eCCttoaulVShAwMqwLCo7dO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEM3MC84MkJDODRFRUFD NjcxMUVDQjc1Q0RBMjRDNEY5QUUwMi9Bb25oNElLMjJocTZWVktFREF5ckFzS2p0 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fvbmg0SUsyMmhxNlZWS0VEQXlyQXNLanQwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEM3MC84MkJDODRFRUFDNjcxMUVDQjc1Q0RBMjRDNEY5QUUwMi9Bb25oNElLMjJo cTZWVktFREF5ckFzS2p0MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3PlB/r23VpAFvY6KJXSdj7hae/JH0OgLeQcSPizBtxfY4lJSabgVA 6HplnCe7GxFLuUxvb4T7EIHw19HRXNiXz5N5Rmnffaiia8+rgJQvNdartyBWjI7z rojJ8SO3vjzrRWyiqySogMTcDCvP4CcnFs/gJgIL9xV3iR8ZqU+9iHomAi7pR7jG Y169E7hp6k+owMtNtDuFCIz6bTqmDFClBHiJItgdmYSHC4K7uV36uB51SGxYLefa hYoosAJmVWIc9plwRTOpypUdSxlzuIydNINLx4UtEEGG4gYHI5TJ39JGiItD8ack WswtGy9DSYqRGkFGmQ6oggHBIGfATZ48 -----END CERTIFICATE-----Generated at Sat Aug 23 03:25:44 2025 by rpki-client