$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: UmhPbvCEZ4fKv4FZ9DlQYo3S6PcPvgKWsZ1i+z6Rp5A= Subject key identifier: E4:B9:21:65:AE:34:F8:A0:06:5B:3A:22:C8:3E:3C:19:E8:C3:99:5E Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 74 Signing time: Tue 19 Aug 2025 07:22:07 +0000 Manifest this update: Tue 19 Aug 2025 07:22:07 +0000 Manifest next update: Tue 26 Aug 2025 07:22:07 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: b8Ba5J3opOG41jcGeZUktV5YRZyGMhK5kBe6RWHzKd8=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: AKFJ0EmXDuIFiZbxj+tbIwUPsfALbR27GRMsJeNf4oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: Aug 19 07:22:07 2025 GMT Not After : Aug 26 07:22:07 2025 GMT Subject: CN=68a4261f-ea4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:80:ac:6f:2d:28:cf:24:49:74:6f:9d:e8:a0: c5:fb:9b:2d:79:d8:ac:f2:df:bc:cc:d0:fb:e5:84: dc:62:b5:34:ed:ed:1b:25:7f:2c:fb:75:0b:1f:63: ab:b4:56:dd:6a:ab:fa:7c:1f:fd:6a:c2:2c:98:87: 17:74:62:07:79:03:f8:e4:c3:96:33:a1:d6:b6:b2: 54:ec:60:b8:92:5c:6d:bf:66:8e:92:14:75:73:a5: 62:50:13:0e:22:f1:d2:60:3c:26:c5:51:6e:5a:e3: c3:b0:45:1a:d9:ad:e6:f8:a1:c0:aa:04:5f:61:58: 27:4c:8f:74:56:88:ce:2d:d3:17:e0:6a:cf:68:51: 56:e8:06:30:8c:a9:43:92:4d:5a:b7:50:5a:9a:ea: 88:90:43:ec:35:bf:6e:f8:b7:24:36:de:57:55:68: 4b:30:79:f8:cb:b6:be:55:ae:fb:09:e6:5e:3a:1b: 1f:f9:40:98:03:37:d5:06:b7:72:f3:9b:82:ee:18: 46:4a:ca:95:71:82:7e:ac:b9:d8:60:d0:2e:1b:76: f8:13:18:ff:f3:6b:f7:4c:ae:64:e8:19:31:d8:4a: 7f:e6:d4:25:bf:04:2e:7b:bd:c3:b0:a6:2f:3d:2d: 17:86:65:e4:6c:82:c2:43:9d:1f:23:ba:f0:a5:27: 97:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B9:21:65:AE:34:F8:A0:06:5B:3A:22:C8:3E:3C:19:E8:C3:99:5E X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:69:4c:64:ba:7c:63:ec:8f:c5:11:f3:00:0e:80:fd:50:e0: c9:c3:b7:80:02:7b:b1:71:67:12:eb:0e:c9:3f:97:57:b2:7e: c1:0e:6b:48:bb:2a:53:7b:c3:52:d8:02:d7:9b:0f:65:41:a0: 86:fa:58:03:b4:03:35:b2:be:21:e3:cf:38:8c:a1:4f:e3:8b: 02:9d:2d:8c:91:61:84:fc:3d:a7:50:19:85:c3:99:12:38:d7: 41:8a:0f:8b:86:bb:9d:6b:37:98:c7:28:fe:c0:a8:0f:5d:2b: da:2f:45:06:7a:17:59:33:b6:75:62:dc:92:25:66:d9:d9:d8: 16:2d:9f:64:d2:88:fd:13:15:f9:1e:94:e8:8f:f6:5c:22:99: 58:4b:46:a9:26:5f:e2:2d:b0:8e:e2:e7:92:3c:10:eb:44:c8: 21:60:fa:4f:91:d5:a1:e3:b6:a7:ed:1f:06:6a:46:32:f2:8a: 3e:e8:80:f5:d5:65:64:41:91:ab:6b:e1:be:d2:5c:98:6a:9b: ca:5d:cb:88:b6:5a:a2:ac:b2:b5:8a:90:c6:7d:70:8b:fc:5e: a5:c5:be:f4:9f:7a:03:b9:19:cb:4c:8c:a7:8b:63:16:2a:3e: ca:27:78:7b:29:28:61:ab:1a:be:a4:c7:1c:7b:65:fa:96:50: 3c:8a:d8:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoNjk0RjU2MUI2M0RBN0NDNTc3OTMxNjM2RDQ3ODhBRDJC MEI0QUUyMDAeFw0yNTA4MTkwNzIyMDdaFw0yNTA4MjYwNzIyMDdaMBgxFjAUBgNV BAMTDTY4YTQyNjFmLWVhNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhgKxvLSjPJEl0b53ooMX7my152Kzy37zM0PvlhNxitTTt7Rslfyz7dQsfY6u0 Vt1qq/p8H/1qwiyYhxd0Ygd5A/jkw5Yzoda2slTsYLiSXG2/Zo6SFHVzpWJQEw4i 8dJgPCbFUW5a48OwRRrZreb4ocCqBF9hWCdMj3RWiM4t0xfgas9oUVboBjCMqUOS TVq3UFqa6oiQQ+w1v274tyQ23ldVaEswefjLtr5VrvsJ5l46Gx/5QJgDN9UGt3Lz m4LuGEZKypVxgn6sudhg0C4bdvgTGP/za/dMrmToGTHYSn/m1CW/BC57vcOwpi89 LReGZeRsgsJDnR8juvClJ5ctAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5LkhZa40 +KAGWzoiyD48GejDmV4wHwYDVR0jBBgwFoAUaU9WG2PafMV3kxY21HiK0rC0riAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0M4NkNEODA2RDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVU5V0cyUGFmTVYza3hZMjFIaUswckMwcmlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MDgzL0M4NkNEODA2RDFCMDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1W M2t4WTIxSGlLMHJDMHJpQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA5pTGS6fGPsj8UR8wAOgP1Q4MnDt4ACe7FxZxLrDsk/l1eyfsEOa0i7 KlN7w1LYAtebD2VBoIb6WAO0AzWyviHjzziMoU/jiwKdLYyRYYT8PadQGYXDmRI4 10GKD4uGu51rN5jHKP7AqA9dK9ovRQZ6F1kztnVi3JIlZtnZ2BYtn2TSiP0TFfke lOiP9lwimVhLRqkmX+ItsI7i55I8EOtEyCFg+k+R1aHjtqftHwZqRjLyij7ogPXV ZWRBkatr4b7SXJhqm8pdy4i2WqKssrWKkMZ9cIv8XqXFvvSfegO5GctMjKeLYxYq PsoneHspKGGrGr6kxxx7ZfqWUDyK2Gk= -----END CERTIFICATE-----Generated at Thu Aug 21 03:58:13 2025 by rpki-client