$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: hrnKIAs7g2FL51sZDMGLvYZmj64QLDG43H2qcr3xOw0= Subject key identifier: 64:F9:23:DB:B0:A6:54:5A:3D:52:3D:CE:00:48:2B:0C:6C:91:42:AB Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 014C Signing time: Sat 23 Aug 2025 04:24:52 +0000 Manifest this update: Sat 23 Aug 2025 04:24:51 +0000 Manifest next update: Sat 30 Aug 2025 04:24:51 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: p6cWSLYJsJBqBTrp/8DeXxe3f4wq8bIlu/AnIkn1qhE=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Aug 23 04:24:51 2025 GMT Not After : Aug 30 04:24:51 2025 GMT Subject: CN=68a94293-9a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:62:8c:08:dc:42:99:f2:bf:bb:80:70:03:f5: 25:3a:42:81:bd:c0:05:87:5a:6f:9a:cc:e0:3c:c6: b7:ab:5b:31:1d:37:c0:1e:8b:b8:7e:10:4c:70:b6: c7:fe:62:9e:4c:80:fb:7f:34:62:7c:96:b1:dd:58: 1e:20:3e:0d:ee:51:10:5a:e6:30:bc:e2:00:34:d7: 44:f6:3d:14:f0:dd:ba:c3:57:f8:04:44:74:6c:d1: d3:cd:db:7b:dd:27:de:f9:be:53:8f:e1:65:c0:d5: 9c:f3:16:1c:36:63:62:7c:7c:aa:7f:79:ff:70:fc: 30:dd:5f:10:5b:20:c2:8f:0b:43:0f:91:52:9d:3f: ba:cd:4a:99:63:a1:e2:6c:d2:e9:88:ea:7e:0d:d9: f9:8e:41:88:8e:10:c6:da:56:51:20:9a:58:33:65: db:ee:4c:00:be:9e:55:79:dc:e6:c7:c7:26:c1:2f: 3b:59:1b:03:bc:b8:0c:d8:13:4a:2d:cd:67:6c:73: 4b:40:a3:13:63:07:b8:26:7e:8d:b6:f3:ce:9c:50: 01:59:09:de:a4:6e:75:84:ad:b5:d7:e8:de:21:5b: 7b:a9:2a:c6:f9:22:bb:27:5f:06:3d:7f:b2:4a:6e: 46:99:a3:19:cd:01:f5:ae:11:c3:69:e5:16:7d:6a: 62:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F9:23:DB:B0:A6:54:5A:3D:52:3D:CE:00:48:2B:0C:6C:91:42:AB X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:51:f9:25:f2:82:54:74:55:d9:3c:74:25:22:65:33:8b:1b: ba:61:4c:dd:04:7d:27:37:fc:1f:2b:70:d6:dd:4e:f4:b4:2d: 3b:fc:b4:b9:dc:5a:3f:79:74:7f:eb:a5:3c:f5:2d:9d:31:9c: 6b:02:1f:5a:f8:01:38:d5:67:ae:5a:d4:39:60:c5:8c:a5:05: 07:5e:80:91:fa:ec:ec:c9:4e:95:29:df:d6:dd:a3:e2:76:42: 88:9f:52:63:3a:09:89:a7:bf:82:76:73:98:0e:32:4a:fa:b2: af:c3:e1:d3:21:20:5a:c3:67:d5:a5:25:76:cb:97:61:5f:91: ae:ce:99:5a:f7:57:a0:b9:89:f7:b0:2f:dd:e8:1a:62:61:f8: 56:ca:f2:8a:49:a4:41:da:16:22:ce:30:54:91:19:85:7f:2a: 41:63:d6:cc:e6:98:10:87:32:eb:09:38:8a:b0:0e:39:86:36: b8:24:c5:55:76:9e:58:a4:7d:5a:56:e2:f5:18:52:72:dd:eb: 91:5d:fe:7b:27:8a:92:a1:36:46:ac:be:66:0b:30:ac:a1:33: 7c:19:b7:a2:75:6f:25:ab:a6:e5:45:d9:7b:52:ca:3d:3f:c1: 3e:08:42:af:ec:7c:2a:03:86:3f:25:de:62:91:da:69:ad:67: 6c:31:62:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUwODIzMDQyNDUxWhcNMjUwODMwMDQyNDUxWjAYMRYwFAYD VQQDEw02OGE5NDI5My05YTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmKMCNxCmfK/u4BwA/UlOkKBvcAFh1pvmszgPMa3q1sxHTfAHou4fhBMcLbH /mKeTID7fzRifJax3VgeID4N7lEQWuYwvOIANNdE9j0U8N26w1f4BER0bNHTzdt7 3Sfe+b5Tj+FlwNWc8xYcNmNifHyqf3n/cPww3V8QWyDCjwtDD5FSnT+6zUqZY6Hi bNLpiOp+Ddn5jkGIjhDG2lZRIJpYM2Xb7kwAvp5Vedzmx8cmwS87WRsDvLgM2BNK Lc1nbHNLQKMTYwe4Jn6NtvPOnFABWQnepG51hK211+jeIVt7qSrG+SK7J18GPX+y Sm5GmaMZzQH1rhHDaeUWfWpiuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGT5I9uw plRaPVI9zgBIKwxskUKrMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByUfkl8oJUdFXZPHQlImUzixu6YUzdBH0nN/wfK3DW3U70tC07/LS5 3Fo/eXR/66U89S2dMZxrAh9a+AE41WeuWtQ5YMWMpQUHXoCR+uzsyU6VKd/W3aPi dkKIn1JjOgmJp7+CdnOYDjJK+rKvw+HTISBaw2fVpSV2y5dhX5Guzpla91eguYn3 sC/d6BpiYfhWyvKKSaRB2hYizjBUkRmFfypBY9bM5pgQhzLrCTiKsA45hja4JMVV dp5YpH1aVuL1GFJy3euRXf57J4qSoTZGrL5mCzCsoTN8GbeidW8lq6blRdl7Uso9 P8E+CEKv7HwqA4Y/Jd5ikdpprWdsMWJr -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:32 2025 by rpki-client