$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: n7H4Wnmz6104QVdYNy+bs5yS6n5PUNZQrQfIggI9EsY= Subject key identifier: 62:E9:CB:16:06:3D:08:FF:32:63:2A:04:90:E9:B3:CD:6B:8E:AF:11 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: 83 Signing time: Fri 05 Sep 2025 07:10:07 +0000 Manifest this update: Fri 05 Sep 2025 07:10:07 +0000 Manifest next update: Fri 12 Sep 2025 07:10:07 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: 6pzDkpC1/sCrcnhqPq+zfFuTIoEUWQoaAFWUgAG0jBk=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Sep 5 07:10:07 2025 GMT Not After : Sep 12 07:10:07 2025 GMT Subject: CN=68ba8ccf-685d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1a:62:fd:68:65:1b:a7:b3:c6:62:a3:dc:0d: 6a:0c:b7:22:44:fa:5f:45:0e:79:63:5c:ea:e0:dd: 2e:92:6f:23:26:c9:c9:e5:0d:d1:c8:aa:5d:14:02: c5:ac:2f:45:6c:c3:3b:b1:ca:c9:62:26:08:5e:1a: 81:0c:ca:5b:1b:1b:03:d9:67:c2:ad:57:b3:06:d5: c2:59:dc:d5:42:fc:02:3e:12:a6:80:90:b8:85:83: 09:fe:de:d1:8b:25:ea:8c:5f:23:3b:8a:88:6d:02: e2:ad:a0:3f:d6:fa:44:82:65:a7:9d:1d:da:6d:8c: 67:4a:6f:97:cf:83:e6:61:f8:ad:17:11:e5:68:dd: b5:2a:b1:38:a3:4f:4e:08:8a:26:44:0e:1e:d2:50: 33:ec:03:bb:81:e8:e0:ab:5a:37:f6:80:45:56:53: 29:6a:1c:73:36:f9:e3:4e:3f:2c:46:01:6e:16:a8: 32:49:69:ec:7f:a7:66:80:84:02:e1:26:63:19:f7: ea:89:6e:3c:b7:18:24:e2:21:60:dd:9f:c6:82:fe: e4:ff:99:3e:80:d0:5e:d0:a6:9e:ca:8a:21:fd:2c: fa:de:d5:9a:86:4a:45:6c:95:dc:6f:b6:60:71:7c: 3d:1e:dc:7f:c0:59:fa:10:9f:42:9b:a9:c0:3d:25: 4b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E9:CB:16:06:3D:08:FF:32:63:2A:04:90:E9:B3:CD:6B:8E:AF:11 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:21:b9:3c:e1:3a:f0:d6:3e:88:45:58:3d:d3:58:69:58:ce: 2e:17:db:52:41:4e:c3:b7:6f:0c:dc:9a:2a:a1:89:3c:73:59: e8:44:88:2b:f4:8c:6d:02:2c:be:0d:8d:8e:a5:cc:9a:3f:3d: 42:15:bc:6f:0e:c1:41:20:1c:fd:47:92:50:7d:0a:06:40:00: a3:66:61:73:9a:d9:f3:1c:e9:f1:d6:2a:db:67:52:a4:49:23: 40:c7:c0:55:ac:95:4e:1c:eb:bd:a0:d8:60:bf:e9:c3:9c:4e: 95:1b:21:4c:d2:de:3f:1c:06:41:62:47:d3:e8:bd:37:e6:20: 93:c2:9a:43:e5:8a:91:83:43:68:f0:59:4a:1f:22:cc:f6:9a: 01:ec:e5:b4:db:b5:c1:0a:1a:bf:b4:88:7b:8c:41:2a:73:41: 36:42:6f:1e:3f:ff:e3:74:b1:c9:5a:9b:42:7f:b6:38:b5:b8: b3:c2:cb:71:3f:78:c4:82:46:df:8a:a5:b4:e0:5d:2f:68:18: 5a:33:72:8a:35:60:88:0b:73:4b:e9:48:27:37:98:9b:ca:1f: 94:77:d0:ae:c6:37:c2:ed:df:04:fa:28:6b:43:58:c0:b4:04: 16:df:e2:3c:d6:94:65:a0:e1:17:4d:55:a0:6e:11:e8:4d:f3: 3b:35:47:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjUwOTA1MDcxMDA3WhcNMjUwOTEyMDcxMDA3WjAYMRYwFAYD VQQDEw02OGJhOGNjZi02ODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRpi/WhlG6ezxmKj3A1qDLciRPpfRQ55Y1zq4N0ukm8jJsnJ5Q3RyKpdFALF rC9FbMM7scrJYiYIXhqBDMpbGxsD2WfCrVezBtXCWdzVQvwCPhKmgJC4hYMJ/t7R iyXqjF8jO4qIbQLiraA/1vpEgmWnnR3abYxnSm+Xz4PmYfitFxHlaN21KrE4o09O CIomRA4e0lAz7AO7gejgq1o39oBFVlMpahxzNvnjTj8sRgFuFqgySWnsf6dmgIQC 4SZjGffqiW48txgk4iFg3Z/Ggv7k/5k+gNBe0Kaeyooh/Sz63tWahkpFbJXcb7Zg cXw9Htx/wFn6EJ9Cm6nAPSVLhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLpyxYG PQj/MmMqBJDps81rjq8RMB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOIbk84Trw1j6IRVg901hpWM4uF9tSQU7Dt28M3JoqoYk8c1noRIgr 9IxtAiy+DY2OpcyaPz1CFbxvDsFBIBz9R5JQfQoGQACjZmFzmtnzHOnx1irbZ1Kk SSNAx8BVrJVOHOu9oNhgv+nDnE6VGyFM0t4/HAZBYkfT6L035iCTwppD5YqRg0No 8FlKHyLM9poB7OW027XBChq/tIh7jEEqc0E2Qm8eP//jdLHJWptCf7Y4tbizwstx P3jEgkbfiqW04F0vaBhaM3KKNWCIC3NL6UgnN5ibyh+Ud9CuxjfC7d8E+ihrQ1jA tAQW3+I81pRloOEXTVWgbhHoTfM7NUeH -----END CERTIFICATE-----Generated at Sat Sep 6 15:15:13 2025 by rpki-client