$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft File: awKSxgJwici6idjGWhozDUiLCiw.mft (raw, json) Hash identifier: 2A3MY6l5qS1v7S0/7YEWYAENFLKDdz1P19b5VwFqJds= Subject key identifier: C7:1C:BB:A9:53:42:C0:D4:42:4B:31:48:11:BE:C7:86:B9:CA:F9:D2 Authority key identifier: 6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C Certificate issuer: /CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft Manifest number: 9B Signing time: Sat 19 Jul 2025 06:35:38 +0000 Manifest this update: Sat 19 Jul 2025 06:35:38 +0000 Manifest next update: Sat 26 Jul 2025 06:35:38 +0000 Files and hashes: 1: awKSxgJwici6idjGWhozDUiLCiw.crl (hash: GNpI6KF5cvADlKJ0Lv/FGIv/Rp25xyEY36G1+b4Q/L0=) 2: 17782970808311EFBB9C2A46C4F9AE02.roa (hash: p+Li5x5IRkEHLsrKLMYZtCUY4xOsEsGyH8peATkiJDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Validity Not Before: Jul 19 06:35:38 2025 GMT Not After : Jul 26 06:35:38 2025 GMT Subject: CN=687b3cba-c956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1d:6f:e5:d0:96:b5:21:f5:3d:b2:48:95:d5: 4a:a2:f0:8c:5a:b4:fa:9c:ec:73:15:88:c6:1b:56: 85:85:ab:3b:77:f7:04:19:52:2c:e5:09:49:8c:b6: aa:c7:ab:77:46:84:65:e1:8c:12:08:14:da:bf:46: e2:9d:46:58:3e:07:25:14:32:b0:a0:75:35:bf:fb: aa:a1:c1:7b:d4:c7:3f:4e:23:7d:02:a6:e4:c0:e2: ed:0c:db:41:29:b4:7a:68:fe:d9:90:df:f6:19:3a: 93:a2:a0:0b:aa:04:8c:73:e4:dd:cb:53:ac:15:1c: f9:49:f0:dc:1a:0a:43:aa:c4:53:9a:86:6f:a9:02: ff:d6:a6:e3:9c:8f:7b:c8:83:61:b5:0c:9c:63:36: 54:3b:b2:2b:58:ae:ec:03:56:e5:1a:49:ef:52:a9: 75:8b:c0:28:ab:df:67:73:91:d0:80:6c:b7:4d:f2: bf:00:00:73:cb:88:ac:3f:0c:61:89:d7:1f:45:73: ad:fb:39:c1:29:a7:fe:6d:4e:83:8c:ed:94:ad:94: 52:b9:a0:b2:e5:7d:98:2c:1c:3e:f4:8e:fa:4c:1d: 38:8a:b0:f5:8f:22:ac:7e:8d:1a:96:48:aa:24:8a: 94:e8:a6:c6:73:30:06:d8:f3:10:a7:a3:e9:ef:8f: 48:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:1C:BB:A9:53:42:C0:D4:42:4B:31:48:11:BE:C7:86:B9:CA:F9:D2 X509v3 Authority Key Identifier: keyid:6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:0b:ff:00:c4:36:0f:ca:a8:43:88:f6:a5:e5:1e:53:08:5d: d7:ba:28:51:4c:be:2f:1b:40:46:fc:0c:e8:0a:7e:9e:49:9f: d1:fb:1c:1f:7f:ab:f8:80:3a:c0:15:86:2f:e3:4f:ca:79:47: 8f:6a:59:5e:44:23:fc:a0:b1:93:da:b1:5c:ab:7b:80:c4:fd: 39:74:a1:14:1a:ca:03:08:c6:1e:0e:50:61:1b:d9:2f:6f:61: 09:c2:6f:b5:92:5e:89:7c:15:7f:2f:fd:b2:38:d8:e7:7b:bb: 3e:05:d6:dd:46:41:70:41:db:99:93:26:dd:e4:00:23:ba:2b: ae:a2:68:ad:3a:c1:5f:a6:fe:21:d5:24:4c:18:c8:6a:fa:ad: 5c:ad:d4:20:77:c3:7e:14:1e:ca:a2:77:2e:ee:c6:cd:f8:37: 7f:11:f9:67:77:3c:11:be:e4:c2:50:d1:e0:0b:7b:6a:c7:85: d2:48:39:80:53:bd:34:37:91:d0:64:37:fe:fa:88:22:3d:35: 50:74:b8:ca:69:1c:59:19:f4:f7:66:a2:0c:12:61:ff:3a:6f: d6:58:08:d8:c0:e4:d9:52:87:cd:17:6c:55:f6:f1:02:c3:93: 70:34:e1:a1:8d:17:c4:aa:a1:3c:f5:6a:4d:1b:21:00:5a:ca: b6:85:58:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDZCMDI5MkM2MDI3MDg5QzhCQTg5RDhDNjVBMUEzMzBE NDg4QjBBMkMwHhcNMjUwNzE5MDYzNTM4WhcNMjUwNzI2MDYzNTM4WjAYMRYwFAYD VQQDEw02ODdiM2NiYS1jOTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApB1v5dCWtSH1PbJIldVKovCMWrT6nOxzFYjGG1aFhas7d/cEGVIs5QlJjLaq x6t3RoRl4YwSCBTav0binUZYPgclFDKwoHU1v/uqocF71Mc/TiN9AqbkwOLtDNtB KbR6aP7ZkN/2GTqToqALqgSMc+Tdy1OsFRz5SfDcGgpDqsRTmoZvqQL/1qbjnI97 yINhtQycYzZUO7IrWK7sA1blGknvUql1i8Aoq99nc5HQgGy3TfK/AABzy4isPwxh idcfRXOt+znBKaf+bU6DjO2UrZRSuaCy5X2YLBw+9I76TB04irD1jyKsfo0alkiq JIqU6KbGczAG2PMQp6Pp749I8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMccu6lT QsDUQksxSBG+x4a5yvnSMB8GA1UdIwQYMBaAFGsCksYCcInIuonYxloaMw1Iiwos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80NEJDQTYzMjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2ljaTZpZGpHV2hvekRVaUxD aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2F3S1N4Z0p3aWNpNmlkakdXaG96RFVpTENpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80NEJDQTYzMjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2lj aTZpZGpHV2hvekRVaUxDaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnC/8AxDYPyqhDiPal5R5TCF3XuihRTL4vG0BG/AzoCn6eSZ/R+xwf f6v4gDrAFYYv40/KeUePalleRCP8oLGT2rFcq3uAxP05dKEUGsoDCMYeDlBhG9kv b2EJwm+1kl6JfBV/L/2yONjne7s+BdbdRkFwQduZkybd5AAjuiuuomitOsFfpv4h 1SRMGMhq+q1crdQgd8N+FB7Koncu7sbN+Dd/EflndzwRvuTCUNHgC3tqx4XSSDmA U700N5HQZDf++ogiPTVQdLjKaRxZGfT3ZqIMEmH/Om/WWAjYwOTZUofNF2xV9vEC w5NwNOGhjRfEqqE89WpNGyEAWsq2hVhq -----END CERTIFICATE-----Generated at Sun Jul 20 20:43:08 2025 by rpki-client