$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft File: apjAwIy9NBmpCCuGDSm_qXL98qc.mft (raw, json) Hash identifier: EcE+b0peoVK6QMDSebG/bawH6Q+ZhAGSqZunJtqyfaE= Subject key identifier: C8:FE:6A:43:7F:02:D2:C2:3D:74:6C:50:25:83:53:2F:55:51:5A:AB Authority key identifier: 6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 Certificate issuer: /CN=A91A2BD6/serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Certificate serial: 0458 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft Manifest number: 0454 Signing time: Thu 21 Aug 2025 00:22:33 +0000 Manifest this update: Thu 21 Aug 2025 00:22:33 +0000 Manifest next update: Thu 28 Aug 2025 00:22:33 +0000 Files and hashes: 1: apjAwIy9NBmpCCuGDSm_qXL98qc.crl (hash: ErRuHDnzfAV47mWoT2faMqmg7VGA/k+6aF1pVFND+QA=) 2: 61B3CBDC631911ECAE6AA33DC4F9AE02.roa (hash: /+PqdcGfeQGq1JSsbPZ7utBGw8SAzSRzzxhLFAim1J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2BD6, serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Validity Not Before: Aug 21 00:22:33 2025 GMT Not After : Aug 28 00:22:33 2025 GMT Subject: CN=68a666c9-b3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:74:99:91:f1:ee:84:85:78:25:ac:e0:a1: c1:d3:10:d5:e3:88:93:1b:99:8a:8d:ac:ed:37:44: b0:fc:13:52:ed:d5:89:e8:30:fd:de:56:71:9b:18: 8b:a1:93:fa:fd:a0:b7:b6:3c:4a:49:c8:cd:ca:11: ed:d4:bf:a0:3c:21:2a:eb:98:0a:aa:90:7d:92:db: 2a:d5:00:67:ed:13:c3:ef:89:c8:b7:cf:6e:db:d3: 96:c1:88:b8:95:5d:94:49:32:3b:e4:b9:b7:3b:04: 54:f2:49:59:32:33:00:40:f2:e2:d6:c1:b9:6f:42: 03:3d:21:1e:7a:cf:cf:5d:4a:a1:90:01:4d:81:3e: 37:f7:ef:ac:94:ad:c2:b2:36:db:0b:7b:04:05:86: 01:f0:4c:f9:b9:3e:8c:df:8d:07:98:2b:01:20:3e: 3d:63:89:9a:15:08:c1:64:16:5c:48:f7:07:3f:3f: ae:01:9e:e9:16:76:09:8d:3e:85:c3:7d:f7:1d:9b: 43:f8:9f:98:c3:77:b0:0a:75:a3:75:e2:8d:d3:c6: 39:2d:29:4f:d3:4c:31:50:37:96:af:7c:59:71:21: 04:a5:a1:0a:b8:72:5b:ba:12:82:82:17:e4:43:4a: e9:66:7b:89:13:ec:94:95:4d:68:4a:69:de:96:c8: 30:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:FE:6A:43:7F:02:D2:C2:3D:74:6C:50:25:83:53:2F:55:51:5A:AB X509v3 Authority Key Identifier: keyid:6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:92:41:c8:8a:96:1a:50:40:31:cd:c0:9c:e5:1e:9d:6f:c6: fa:74:06:c1:47:0d:bf:72:8f:06:b2:77:67:18:5a:38:2a:71: 3f:c4:4a:54:0e:13:da:3b:b3:f1:29:f4:68:7f:ab:64:b5:22: 6c:af:f9:b3:06:6d:43:18:d2:2e:f2:6e:21:7d:c5:cd:f6:4f: 1f:48:10:b2:1f:ed:9a:c4:5c:c0:ee:09:c8:3b:7d:fe:bd:aa: 1c:0f:6a:b8:1e:c4:82:23:99:a4:23:79:84:78:18:70:bb:53: 31:07:b5:05:16:70:25:bf:d1:ab:77:f3:06:a9:7e:e8:d2:9e: ee:7e:17:cc:7d:7a:13:c8:df:23:9f:c1:86:52:ab:2e:5d:61: 8e:ed:2a:aa:04:b4:a4:67:2f:74:7e:24:8d:e9:be:d5:b4:65: 84:62:0a:fc:03:31:5c:da:92:d7:7d:58:3d:1e:95:9f:9b:fe: 4e:f5:2a:03:3e:a0:cf:70:26:46:20:80:02:68:94:46:0a:c6: 3e:7d:0a:67:87:eb:c4:c5:17:2a:42:73:9f:1d:d9:85:22:eb: 85:75:ae:c7:13:52:b9:e5:ee:15:f3:32:1a:86:67:cb:bc:34: 1c:e3:18:e5:9e:52:54:ce:6d:d5:82:bc:2d:45:28:80:6e:0b: 48:1d:db:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJCRDYxMTAvBgNVBAUTKDZBOThDMEMwOENCRDM0MTlBOTA4MkI4NjBEMjlCRkE5 NzJGREYyQTcwHhcNMjUwODIxMDAyMjMzWhcNMjUwODI4MDAyMjMzWjAYMRYwFAYD VQQDEw02OGE2NjZjOS1iM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQJ0mZHx7oSFeCWs4KHB0xDV44iTG5mKjaztN0Sw/BNS7dWJ6DD93lZxmxiL oZP6/aC3tjxKScjNyhHt1L+gPCEq65gKqpB9ktsq1QBn7RPD74nIt89u29OWwYi4 lV2USTI75Lm3OwRU8klZMjMAQPLi1sG5b0IDPSEees/PXUqhkAFNgT439++slK3C sjbbC3sEBYYB8Ez5uT6M340HmCsBID49Y4maFQjBZBZcSPcHPz+uAZ7pFnYJjT6F w333HZtD+J+Yw3ewCnWjdeKN08Y5LSlP00wxUDeWr3xZcSEEpaEKuHJbuhKCghfk Q0rpZnuJE+yUlU1oSmnelsgwfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMj+akN/ AtLCPXRsUCWDUy9VUVqrMB8GA1UdIwQYMBaAFGqYwMCMvTQZqQgrhg0pv6ly/fKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkJENi85QzU4NURCMDYz MTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5CbXBDQ3VHRFNtX3FYTDk4 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwakF3SXk5TkJtcENDdUdEU21fcVhMOThxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkJENi85QzU4NURCMDYzMTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5C bXBDQ3VHRFNtX3FYTDk4cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0kkHIipYaUEAxzcCc5R6db8b6dAbBRw2/co8GsndnGFo4KnE/xEpU DhPaO7PxKfRof6tktSJsr/mzBm1DGNIu8m4hfcXN9k8fSBCyH+2axFzA7gnIO33+ vaocD2q4HsSCI5mkI3mEeBhwu1MxB7UFFnAlv9Grd/MGqX7o0p7ufhfMfXoTyN8j n8GGUqsuXWGO7SqqBLSkZy90fiSN6b7VtGWEYgr8AzFc2pLXfVg9HpWfm/5O9SoD PqDPcCZGIIACaJRGCsY+fQpnh+vExRcqQnOfHdmFIuuFda7HE1K55e4V8zIahmfL vDQc4xjlnlJUzm3VgrwtRSiAbgtIHdtx -----END CERTIFICATE-----Generated at Sat Aug 23 02:02:36 2025 by rpki-client