$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: N7SljzRABQcX7me8tYBqIwNSv61e/jXyGxytUoyNnn4= Subject key identifier: 46:A3:54:04:77:81:96:6D:86:A6:0D:45:E6:41:F4:BB:10:9D:49:9C Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05C6 Signing time: Thu 04 Sep 2025 23:22:00 +0000 Manifest this update: Thu 04 Sep 2025 23:21:59 +0000 Manifest next update: Thu 11 Sep 2025 23:21:59 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: x45x4NXQ7EK+gCXRCYXn6B380OFziHKds6Msep6x6i0=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Sep 4 23:21:59 2025 GMT Not After : Sep 11 23:21:59 2025 GMT Subject: CN=68ba1f18-5304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6e:d7:c6:f8:0f:a2:96:d1:82:79:f8:6a:5f: 18:58:f9:d4:ff:bf:64:19:a4:d4:5e:53:95:43:71: ef:06:de:3a:6d:ad:15:87:99:3e:51:30:1e:c4:a1: e6:da:de:98:b5:90:32:33:c6:86:0e:10:8a:30:81: f3:47:96:19:c6:8c:87:65:bf:bb:93:4e:3c:3f:c8: ea:0a:2c:a8:b5:55:a0:76:b4:5d:11:cf:10:79:8e: 9d:bc:3c:8c:f1:ce:d0:07:44:73:65:98:e0:eb:06: a3:08:56:f9:86:37:c1:e0:8c:0b:16:c4:fd:c5:9a: a1:17:c0:fd:04:9a:f7:7d:74:bb:61:8c:5e:71:49: 7b:5e:59:05:c6:0c:58:81:02:3c:36:ab:f9:37:da: f2:72:a2:57:f1:92:8b:ba:ec:a9:a2:cc:55:30:69: 46:c7:4c:bc:c2:10:2d:2e:41:6d:2e:94:93:ea:be: 09:16:0e:4f:f3:33:b4:2a:0f:8b:ee:af:b7:b0:70: 40:de:cb:ff:3e:5a:ad:dd:82:c7:87:2c:2f:a4:db: 72:e3:d0:64:91:fb:94:ee:84:c0:46:40:71:1f:d3: 1f:61:84:74:9e:e0:96:54:8b:58:2c:fd:c8:30:36: f5:60:8b:86:ef:67:58:63:3a:aa:4c:7f:34:eb:cc: 49:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A3:54:04:77:81:96:6D:86:A6:0D:45:E6:41:F4:BB:10:9D:49:9C X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a4:9c:99:ac:9f:47:9e:16:4c:7b:e5:ec:b5:67:6f:b1:e0: 02:19:61:e9:65:e0:0a:fb:e9:5c:c6:c8:7c:2b:a8:b9:44:3b: fd:2f:ce:c5:7c:e0:a7:3b:e9:d5:4e:d6:a2:90:09:4d:88:8a: 7c:ee:6f:24:71:4a:d6:52:37:96:ff:b9:9a:0d:33:61:8e:19: 1b:67:e9:ea:ce:74:b9:18:76:42:9e:fa:5e:5e:26:19:fd:e1: a6:97:88:9e:c5:5d:b9:89:f0:fa:1b:74:cc:4c:f6:11:e2:bb: b2:a6:8d:f7:c9:5a:94:f8:4c:e9:6d:c5:df:63:56:9a:17:cf: 17:5a:b8:52:3c:e9:ab:d6:ad:16:64:33:84:b3:66:a7:fe:30: 3d:6e:2d:be:68:08:3a:13:dc:4d:55:9c:4c:0b:d7:f2:35:82: 80:b0:74:59:a2:3f:f4:04:6a:9e:96:74:ba:97:27:00:10:fe: 2a:eb:94:03:70:1f:43:9e:ea:68:1f:c0:0e:ef:3f:3d:4c:f7: 34:6c:e4:2d:fc:0e:4f:9d:b7:9e:7d:c3:be:09:c0:aa:da:11: 93:56:c5:9e:aa:6f:ef:3f:a0:95:3b:41:19:a7:5d:d9:fb:1a: 50:b5:06:3d:3f:d2:8c:fd:78:f3:59:3c:3e:bb:b2:ea:9c:d4: 80:a4:36:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwOTA0MjMyMTU5WhcNMjUwOTExMjMyMTU5WjAYMRYwFAYD VQQDEw02OGJhMWYxOC01MzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvG7XxvgPopbRgnn4al8YWPnU/79kGaTUXlOVQ3HvBt46ba0Vh5k+UTAexKHm 2t6YtZAyM8aGDhCKMIHzR5YZxoyHZb+7k048P8jqCiyotVWgdrRdEc8QeY6dvDyM 8c7QB0RzZZjg6wajCFb5hjfB4IwLFsT9xZqhF8D9BJr3fXS7YYxecUl7XlkFxgxY gQI8Nqv5N9rycqJX8ZKLuuyposxVMGlGx0y8whAtLkFtLpST6r4JFg5P8zO0Kg+L 7q+3sHBA3sv/Plqt3YLHhywvpNty49BkkfuU7oTARkBxH9MfYYR0nuCWVItYLP3I MDb1YIuG72dYYzqqTH8068xJvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEajVAR3 gZZthqYNReZB9LsQnUmcMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBypJyZrJ9HnhZMe+XstWdvseACGWHpZeAK++lcxsh8K6i5RDv9L87F fOCnO+nVTtaikAlNiIp87m8kcUrWUjeW/7maDTNhjhkbZ+nqznS5GHZCnvpeXiYZ /eGml4iexV25ifD6G3TMTPYR4ruypo33yVqU+EzpbcXfY1aaF88XWrhSPOmr1q0W ZDOEs2an/jA9bi2+aAg6E9xNVZxMC9fyNYKAsHRZoj/0BGqelnS6lycAEP4q65QD cB9DnupoH8AO7z89TPc0bOQt/A5PnbeefcO+CcCq2hGTVsWeqm/vP6CVO0EZp13Z +xpQtQY9P9KM/XjzWTw+u7LqnNSApDaX -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:24 2025 by rpki-client