$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: EduFE55w5hXeFbXDAx5x+15TPzM0eIYcbOvkRVRjvMo= Subject key identifier: 60:94:C8:64:47:58:9B:8D:04:FC:7B:B9:67:4A:7D:15:22:B3:02:B8 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05A9 Signing time: Thu 10 Jul 2025 23:39:47 +0000 Manifest this update: Thu 10 Jul 2025 23:39:47 +0000 Manifest next update: Thu 17 Jul 2025 23:39:47 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: mb0a0K10dxinOxqxobgfR/IAQttksw72Fyx3KAMq6Z0=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Jul 2025 23:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Jul 10 23:39:47 2025 GMT Not After : Jul 17 23:39:47 2025 GMT Subject: CN=68704f43-4144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:e8:41:35:4a:c6:73:26:5e:85:62:ca:88: 1b:22:5f:b2:76:60:0c:ac:8d:06:d5:39:b3:11:6e: e8:a2:7f:b3:a4:e1:c2:03:d6:c0:52:90:53:66:7e: f3:fa:1b:09:96:af:38:03:84:a5:e5:04:78:43:61: 33:79:6e:41:48:cf:c1:32:fb:25:54:2e:f6:72:d1: ba:67:05:b4:1e:6b:14:59:94:b1:8b:3a:c4:c3:9d: 0c:23:3a:97:dd:57:ca:05:c2:82:c7:9a:a4:e5:54: e7:cd:5a:70:f6:3d:16:b3:df:df:1b:65:a6:dc:56: 91:01:ae:8c:c4:e1:44:86:96:6a:4e:07:9f:91:09: 8c:7d:00:e2:7b:29:38:c9:6f:08:a4:3b:a6:2e:82: 90:ef:73:6b:7d:f5:3a:0f:bb:92:4a:b4:b1:93:a4: 75:0b:43:07:24:b8:20:b8:71:9e:33:12:6c:19:15: e3:b0:29:6b:8f:a1:f7:2f:ae:5b:20:12:68:82:23: cd:39:26:b7:6f:e1:12:cc:24:ec:bd:88:05:43:8b: 43:4b:6c:b8:22:e3:74:b3:13:a6:71:c6:5f:c3:3e: 4b:f8:dd:75:d3:96:a5:cc:51:44:4d:eb:5e:68:5b: d4:eb:23:37:6a:b3:59:70:2c:27:db:92:a7:9f:e9: 16:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:94:C8:64:47:58:9B:8D:04:FC:7B:B9:67:4A:7D:15:22:B3:02:B8 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:4a:c8:41:31:5e:ed:a1:dd:09:59:5a:65:8c:41:9b:aa:2c: 4c:2e:62:c9:73:32:ab:c6:ab:f9:a1:83:b5:5a:b4:1d:27:81: d3:4f:26:5a:ff:48:a8:59:50:ed:fb:7e:c4:df:a1:dd:09:66: 8f:ef:5a:f3:d7:a7:d2:b5:05:dd:79:10:32:c1:5d:25:fb:5d: 8f:0e:39:1e:7c:f7:ff:da:fd:ff:ec:b5:70:1c:14:36:31:c2: 93:d2:3f:39:42:58:55:fb:11:63:97:84:24:56:fc:b0:bc:35: 69:83:cd:eb:eb:d0:6c:62:c3:9b:3e:dd:6c:46:5c:ff:13:d1: 30:47:33:ed:e4:50:ed:36:6e:bf:6a:c5:62:f0:64:7d:96:80: a7:8c:9d:15:62:70:2e:e1:22:09:f1:c7:b0:c0:06:5e:97:32: 37:da:e9:0a:6a:e8:09:70:92:a5:04:81:07:e5:6b:e8:de:d6: b6:b9:93:e0:2f:f0:ed:5d:af:a7:38:17:6e:23:cd:60:95:5d: 88:01:e9:ec:2e:ac:0f:db:a4:37:84:cb:9f:8b:b2:fb:a0:ee: 38:bd:40:62:e8:28:25:de:11:23:9d:2c:f9:e1:cc:bf:ef:b7: dc:ab:6d:c3:56:72:ed:b5:ab:a2:0e:b7:4f:b3:8a:a7:bb:68: 50:6f:7c:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwNzEwMjMzOTQ3WhcNMjUwNzE3MjMzOTQ3WjAYMRYwFAYD VQQDEw02ODcwNGY0My00MTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfHoQTVKxnMmXoViyogbIl+ydmAMrI0G1TmzEW7oon+zpOHCA9bAUpBTZn7z +hsJlq84A4Sl5QR4Q2EzeW5BSM/BMvslVC72ctG6ZwW0HmsUWZSxizrEw50MIzqX 3VfKBcKCx5qk5VTnzVpw9j0Ws9/fG2Wm3FaRAa6MxOFEhpZqTgefkQmMfQDieyk4 yW8IpDumLoKQ73NrffU6D7uSSrSxk6R1C0MHJLgguHGeMxJsGRXjsClrj6H3L65b IBJogiPNOSa3b+ESzCTsvYgFQ4tDS2y4IuN0sxOmccZfwz5L+N1105alzFFETete aFvU6yM3arNZcCwn25Knn+kWPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCUyGRH WJuNBPx7uWdKfRUiswK4MB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8SshBMV7tod0JWVpljEGbqixMLmLJczKrxqv5oYO1WrQdJ4HTTyZa /0ioWVDt+37E36HdCWaP71rz16fStQXdeRAywV0l+12PDjkefPf/2v3/7LVwHBQ2 McKT0j85QlhV+xFjl4QkVvywvDVpg83r69BsYsObPt1sRlz/E9EwRzPt5FDtNm6/ asVi8GR9loCnjJ0VYnAu4SIJ8cewwAZelzI32ukKaugJcJKlBIEH5Wvo3ta2uZPg L/DtXa+nOBduI81glV2IAensLqwP26Q3hMufi7L7oO44vUBi6Cgl3hEjnSz54cy/ 77fcq23DVnLttauiDrdPs4qnu2hQb3zL -----END CERTIFICATE-----Generated at Sat Jul 12 16:42:34 2025 by rpki-client