$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: o0iHWCwZpz9/50UVi8L+mG0IsOYfYIbM4m5J6d0xTUs= Subject key identifier: 01:3D:3E:AB:DB:46:D7:32:25:AC:83:46:E1:66:6C:F3:9A:2C:7A:52 Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 0715 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 070D Signing time: Wed 20 Aug 2025 21:55:48 +0000 Manifest this update: Wed 20 Aug 2025 21:55:47 +0000 Manifest next update: Wed 27 Aug 2025 21:55:47 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: le9EoZqBYtMQSjOKgjdozgyZ34lXhihmqRx3t/w1PRk=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1813 (0x715) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Aug 20 21:55:47 2025 GMT Not After : Aug 27 21:55:47 2025 GMT Subject: CN=68a64464-990b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1c:77:44:34:60:8f:25:1d:31:f3:5b:5c:70: 4e:5e:11:fe:f7:b7:8f:f8:6c:e9:c6:33:aa:8a:12: c2:d4:a2:13:d3:a4:3c:e5:10:ae:67:6b:44:99:dc: fb:06:48:ac:59:52:66:d4:63:fb:e6:ae:1a:8f:d2: 52:95:f5:af:18:eb:ae:d4:29:5b:ad:61:6d:22:01: a7:9c:bb:40:2b:c8:c6:48:b8:6d:d2:28:fa:d2:63: 62:15:9c:04:d1:9c:e2:57:6a:ae:4c:5f:90:fb:81: 25:f2:93:42:9d:10:d3:f3:40:14:3c:61:6c:2c:09: f2:12:36:2b:5e:be:31:64:7f:42:4d:73:0e:f0:28: 42:e8:42:6f:94:46:3f:d5:eb:55:d8:2a:84:46:a0: ff:91:0f:ac:96:73:a7:17:76:61:aa:2d:44:b9:a7: 27:98:a4:7d:da:12:5d:db:b1:2f:d4:15:8f:a1:62: 76:4d:fe:34:0c:46:d7:6f:63:0e:0b:56:8d:f1:89: c9:f8:cc:b2:3a:9f:08:e1:b0:ef:dd:ef:b1:fc:87: 2f:54:b9:6b:ca:da:cd:26:d8:5b:82:75:c1:63:54: 76:33:c9:a9:fb:15:17:da:14:8b:d4:50:c9:77:4b: db:07:1b:f2:99:29:72:42:69:2b:0c:5d:27:e5:72: ca:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3D:3E:AB:DB:46:D7:32:25:AC:83:46:E1:66:6C:F3:9A:2C:7A:52 X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:3c:ef:e7:15:79:f2:65:52:a1:24:6e:20:fd:50:ef:9a:9d: 24:34:99:42:b3:af:c5:e9:bd:fe:2d:1b:4c:13:24:3e:83:4d: 08:e4:4a:b0:9b:00:9f:ca:17:84:ae:f8:ad:5d:88:08:94:72: b1:56:d2:18:b5:60:b7:f4:a6:cc:67:0d:ea:6e:65:76:9a:de: 0e:af:f2:73:9c:9f:d3:68:28:42:ad:a5:56:18:43:4d:86:0c: 25:1e:62:eb:ed:07:e5:73:9e:ab:bf:5b:81:9a:1c:82:e5:62: 8f:0e:a2:3c:2d:51:04:0e:4a:c3:47:ac:64:de:79:49:ae:dd: f6:0c:45:1a:0a:96:9f:7b:ce:9e:ce:69:28:05:84:08:41:a0: 3f:25:c4:53:bf:55:96:91:f2:d4:b0:50:76:b8:24:7e:78:ab: 39:40:f9:5c:0b:27:23:46:dd:ae:52:2b:a9:6a:6c:f1:db:7f: f7:e9:8e:83:ba:97:04:cf:d8:cc:63:57:6f:1f:3a:7a:fb:79: a1:d3:46:46:d6:d3:65:d4:be:d8:17:df:94:b3:5b:06:47:66: a1:45:bf:40:6d:b3:a4:04:51:51:1a:6b:b9:e3:f6:6a:89:0a: 63:bb:02:89:a7:ff:d5:e8:49:7f:5b:a2:16:48:c5:e9:4c:c0: c8:cf:c4:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjUwODIwMjE1NTQ3WhcNMjUwODI3MjE1NTQ3WjAYMRYwFAYD VQQDEw02OGE2NDQ2NC05OTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Bx3RDRgjyUdMfNbXHBOXhH+97eP+GzpxjOqihLC1KIT06Q85RCuZ2tEmdz7 BkisWVJm1GP75q4aj9JSlfWvGOuu1ClbrWFtIgGnnLtAK8jGSLht0ij60mNiFZwE 0ZziV2quTF+Q+4El8pNCnRDT80AUPGFsLAnyEjYrXr4xZH9CTXMO8ChC6EJvlEY/ 1etV2CqERqD/kQ+slnOnF3Zhqi1EuacnmKR92hJd27Ev1BWPoWJ2Tf40DEbXb2MO C1aN8YnJ+MyyOp8I4bDv3e+x/IcvVLlrytrNJthbgnXBY1R2M8mp+xUX2hSL1FDJ d0vbBxvymSlyQmkrDF0n5XLKQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE9Pqvb RtcyJayDRuFmbPOaLHpSMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRPO/nFXnyZVKhJG4g/VDvmp0kNJlCs6/F6b3+LRtMEyQ+g00I5Eqw mwCfyheErvitXYgIlHKxVtIYtWC39KbMZw3qbmV2mt4Or/JznJ/TaChCraVWGENN hgwlHmLr7Qflc56rv1uBmhyC5WKPDqI8LVEEDkrDR6xk3nlJrt32DEUaCpafe86e zmkoBYQIQaA/JcRTv1WWkfLUsFB2uCR+eKs5QPlcCycjRt2uUiupamzx23/36Y6D upcEz9jMY1dvHzp6+3mh00ZG1tNl1L7YF9+Us1sGR2ahRb9AbbOkBFFRGmu54/Zq iQpjuwKJp//V6El/W6IWSMXpTMDIz8RX -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:09 2025 by rpki-client