$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: 1XQW+PAqelUUO0O/itCt0o+y/51dQ62ahL+EF4nATxo= Subject key identifier: DA:04:92:3F:A0:8A:3D:CD:87:0B:95:D1:1D:EC:78:0C:CE:CE:03:4B Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 5B Signing time: Tue 01 Jul 2025 07:57:17 +0000 Manifest this update: Tue 01 Jul 2025 07:57:16 +0000 Manifest next update: Tue 08 Jul 2025 07:57:16 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: HcMT6XBnPCladgHv6sv/Yl+xjPkDyAWehW6gq0CVj9Y=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: AKFJ0EmXDuIFiZbxj+tbIwUPsfALbR27GRMsJeNf4oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: Jul 1 07:57:16 2025 GMT Not After : Jul 8 07:57:16 2025 GMT Subject: CN=686394dd-7f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:13:17:d8:84:0e:ef:4b:4f:5f:85:7f:bc:67: d8:a6:b2:59:b4:4e:f4:15:73:91:c0:eb:44:99:fd: 5a:f4:64:32:86:f9:97:75:89:4e:ef:2b:48:98:6e: ef:20:f1:6b:8f:56:29:e6:f8:b7:13:d6:2e:94:b9: f3:10:97:58:09:6c:9b:e5:99:09:a6:08:0c:0a:17: 1e:b3:6a:76:e4:8b:f0:a6:7d:0d:c9:85:77:a9:77: 2b:09:29:fd:b9:68:f1:86:4b:7a:67:db:38:86:09: 40:d0:8f:88:32:a7:1c:bb:78:38:63:9d:66:5e:20: 13:1d:92:0e:05:db:68:f6:ce:2d:9e:95:5d:84:5e: 3f:e9:79:5e:ca:18:0e:6e:d2:3a:ad:78:15:4e:93: 71:57:87:4d:09:32:74:74:25:6c:14:f6:01:34:b0: 3a:96:84:06:b8:3b:d2:66:66:3e:28:23:e8:2f:86: dd:6e:a7:c6:a5:35:dd:dc:89:c9:00:7b:cb:53:a0: 0e:0b:e5:54:b4:2d:85:16:ee:9f:2b:cb:3f:40:fa: 79:f7:56:d8:20:5d:67:98:f4:d6:62:5c:b4:e0:1f: c0:10:81:d6:5a:f7:a8:e2:e2:cd:c4:6b:34:5e:b4: 9c:39:36:d7:17:66:9b:e0:cb:84:1d:15:fd:82:24: 2e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:04:92:3F:A0:8A:3D:CD:87:0B:95:D1:1D:EC:78:0C:CE:CE:03:4B X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:7b:47:11:a9:a8:fd:7a:87:54:7d:02:70:2b:bb:b6:29:49: 0b:5c:4b:f9:7b:1c:00:65:77:34:fa:8d:7d:64:5e:01:40:79: fe:7a:94:18:91:3f:c8:ce:f5:33:a3:1d:54:94:cb:27:4e:b6: b9:85:65:40:f0:fd:cb:b9:1b:d7:8d:0e:4c:28:78:b3:c5:9d: 5e:f9:f1:03:13:9e:c7:81:3e:51:5b:07:f2:02:9e:50:ba:d1: 60:8c:ef:ca:67:97:e0:f1:77:3f:9b:64:fc:79:44:1d:6b:61: 7d:86:bb:7a:e1:96:ca:37:91:ac:a3:8e:ae:c1:92:cb:42:7a: 37:f2:9b:9c:fa:c8:45:f3:84:e5:db:a4:31:a3:2e:cb:58:bc: a4:75:3e:7c:70:21:82:87:02:67:ff:54:6b:56:62:5c:2f:dc: f3:15:21:ee:fa:22:e5:9f:72:30:96:b5:e9:f9:ea:ef:1d:fc: 82:b5:d9:3c:d3:b4:36:93:b0:d4:35:63:52:06:71:9d:61:a4: 2b:23:8c:ec:2f:bc:11:32:cc:90:7a:20:70:55:30:38:ea:f4: 1b:44:cc:df:4d:cd:de:bc:a7:ec:b3:f0:6a:a5:84:15:cf:58: 3a:65:c7:84:f2:be:32:1b:d5:bc:6e:e4:c9:1c:fc:64:d1:89: a4:e1:e3:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoNjk0RjU2MUI2M0RBN0NDNTc3OTMxNjM2RDQ3ODhBRDJC MEI0QUUyMDAeFw0yNTA3MDEwNzU3MTZaFw0yNTA3MDgwNzU3MTZaMBgxFjAUBgNV BAMTDTY4NjM5NGRkLTdmMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2ExfYhA7vS09fhX+8Z9imslm0TvQVc5HA60SZ/Vr0ZDKG+Zd1iU7vK0iYbu8g 8WuPVinm+LcT1i6UufMQl1gJbJvlmQmmCAwKFx6zanbki/CmfQ3JhXepdysJKf25 aPGGS3pn2ziGCUDQj4gypxy7eDhjnWZeIBMdkg4F22j2zi2elV2EXj/peV7KGA5u 0jqteBVOk3FXh00JMnR0JWwU9gE0sDqWhAa4O9JmZj4oI+gvht1up8alNd3cickA e8tToA4L5VS0LYUW7p8ryz9A+nn3VtggXWeY9NZiXLTgH8AQgdZa96ji4s3EazRe tJw5NtcXZpvgy4QdFf2CJC57AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2gSSP6CK Pc2HC5XRHex4DM7OA0swHwYDVR0jBBgwFoAUaU9WG2PafMV3kxY21HiK0rC0riAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0M4NkNEODA2RDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVU5V0cyUGFmTVYza3hZMjFIaUswckMwcmlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MDgzL0M4NkNEODA2RDFCMDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1W M2t4WTIxSGlLMHJDMHJpQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIN7RxGpqP16h1R9AnAru7YpSQtcS/l7HABldzT6jX1kXgFAef56lBiR P8jO9TOjHVSUyydOtrmFZUDw/cu5G9eNDkwoeLPFnV758QMTnseBPlFbB/ICnlC6 0WCM78pnl+Dxdz+bZPx5RB1rYX2Gu3rhlso3kayjjq7BkstCejfym5z6yEXzhOXb pDGjLstYvKR1PnxwIYKHAmf/VGtWYlwv3PMVIe76IuWfcjCWten56u8d/IK12TzT tDaTsNQ1Y1IGcZ1hpCsjjOwvvBEyzJB6IHBVMDjq9BtEzN9Nzd68p+yz8GqlhBXP WDplx4TyvjIb1bxu5Mkc/GTRiaTh4yo= -----END CERTIFICATE-----Generated at Tue Jul 1 19:38:57 2025 by rpki-client