$ rpki-client -vvf rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft File: aK5b6xu35ELO4KfgFAKf9y49tB8.mft (raw, json) Hash identifier: O1M5n/pePWC7JOM9xPbRA4JdeI8kgK5W56dZOfc1ECA= Subject key identifier: 62:90:2B:94:B5:53:B5:D2:E3:06:1F:32:0E:BA:A6:E5:E9:62:D8:37 Authority key identifier: 68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F Certificate issuer: /CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Certificate serial: 0C2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft Manifest number: 0C20 Signing time: Fri 22 Aug 2025 18:49:15 +0000 Manifest this update: Fri 22 Aug 2025 18:49:14 +0000 Manifest next update: Fri 29 Aug 2025 18:49:14 +0000 Files and hashes: 1: aK5b6xu35ELO4KfgFAKf9y49tB8.crl (hash: Rn1GbOH2phwEnB6ZyV5L9KbTzgReOPC2/zoV1fk2MNU=) 2: 4C1F013E5AF511EFBAB1F86CC4F9AE02.roa (hash: 5YnlbFiESO7UmvUP8KNkIgeb7OYcXBskhmx0foLpcp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104C9, serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Validity Not Before: Aug 22 18:49:14 2025 GMT Not After : Aug 29 18:49:14 2025 GMT Subject: CN=68a8bbab-459a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6e:8f:07:5d:89:f6:65:aa:f2:c4:c7:f3:29: 54:b3:ab:6d:46:0b:1c:51:6f:65:c3:37:89:f1:8c: 2e:0e:a3:ab:53:10:ed:28:be:16:c7:71:ef:06:50: 2e:2f:6f:8f:99:bc:c6:85:bc:0b:d6:3d:b0:a1:3a: d9:2a:67:bb:c7:10:a4:17:89:ff:7b:cc:5b:25:0b: 5a:33:37:07:bc:e8:d8:2a:20:43:38:06:40:2c:a5: 02:de:50:9a:1b:ef:d3:78:3e:58:f7:d3:86:ae:d9: c2:cd:96:49:e1:44:41:92:0c:dd:e1:55:3f:d7:c4: b6:c6:6d:2c:4f:b6:b1:07:99:37:34:76:02:77:e9: ec:20:81:8a:6c:0c:d3:af:73:4c:9a:2c:13:26:45: c4:88:e0:06:04:3d:60:15:8a:17:c1:73:6b:b0:f2: f8:ea:95:fc:54:94:3a:a9:a8:48:e9:8f:3d:ed:8d: 8a:d5:21:bd:75:c3:6d:c0:90:e1:24:a8:e1:a8:40: 01:36:3c:b5:d6:19:ab:bc:32:a1:01:df:bf:28:b4: e9:73:c2:41:c3:b1:b2:7e:2c:c7:08:19:08:e4:18: 5c:df:83:31:0e:08:d1:8d:1a:76:3f:24:59:b3:75: aa:3d:e2:70:a7:67:3e:11:a2:df:19:b2:69:46:b5: 08:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:90:2B:94:B5:53:B5:D2:E3:06:1F:32:0E:BA:A6:E5:E9:62:D8:37 X509v3 Authority Key Identifier: keyid:68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:1d:be:24:1b:a1:44:b8:d2:e9:0d:52:d6:aa:79:06:84:4c: 49:1b:81:b1:7d:62:76:6a:6e:84:10:5a:45:4f:ed:d8:ee:c7: c9:85:e3:64:5b:b7:db:7e:48:5d:93:1e:88:3b:bc:50:4b:63: 57:bb:db:b9:e3:e1:24:ff:35:8f:88:f9:8b:e7:c7:39:de:0d: fb:ad:bd:90:b9:e7:bd:b4:73:1f:05:07:c7:50:ff:37:24:13: e2:2c:09:fe:38:ef:7f:52:3e:87:59:13:00:7f:68:c1:01:a5: 14:5f:cf:0e:7c:eb:9a:73:06:9e:55:51:5a:ec:13:f3:25:cc: c9:da:be:b8:8e:08:82:18:9e:74:27:12:aa:27:a4:2e:cf:7f: ec:3c:51:56:63:0d:67:81:f2:99:92:79:29:23:54:1c:a5:05: 9d:bf:a0:88:62:51:b7:99:11:71:7e:c0:1a:77:d5:c3:28:33: 46:4e:b3:26:46:e2:ed:92:f5:7d:a3:a0:8b:63:e1:68:4b:ba: 06:8d:76:fd:63:b4:8b:73:9a:14:f4:55:bc:b0:67:04:79:ac: ac:41:82:b9:27:25:8b:07:1f:e2:d2:69:5b:3a:1a:e8:96:16: 5c:12:bd:76:ce:d7:0e:0a:9d:2d:32:b9:dc:99:01:22:77:e4: 3d:e8:ea:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QzkxMTAvBgNVBAUTKDY4QUU1QkVCMUJCN0U0NDJDRUUwQTdFMDE0MDI5RkY3 MkUzREI0MUYwHhcNMjUwODIyMTg0OTE0WhcNMjUwODI5MTg0OTE0WjAYMRYwFAYD VQQDEw02OGE4YmJhYi00NTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0W6PB12J9mWq8sTH8ylUs6ttRgscUW9lwzeJ8YwuDqOrUxDtKL4Wx3HvBlAu L2+PmbzGhbwL1j2woTrZKme7xxCkF4n/e8xbJQtaMzcHvOjYKiBDOAZALKUC3lCa G+/TeD5Y99OGrtnCzZZJ4URBkgzd4VU/18S2xm0sT7axB5k3NHYCd+nsIIGKbAzT r3NMmiwTJkXEiOAGBD1gFYoXwXNrsPL46pX8VJQ6qahI6Y897Y2K1SG9dcNtwJDh JKjhqEABNjy11hmrvDKhAd+/KLTpc8JBw7GyfizHCBkI5Bhc34MxDgjRjRp2PyRZ s3WqPeJwp2c+EaLfGbJpRrUIKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKQK5S1 U7XS4wYfMg66puXpYtg3MB8GA1UdIwQYMBaAFGiuW+sbt+RCzuCn4BQCn/cuPbQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRDOS8yQUE4QjM4ODE0 QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVFTE80S2ZnRkFLZjl5NDl0 QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLNWI2eHUzNUVMTzRLZmdGQUtmOXk0OXRCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRDOS8yQUE4QjM4ODE0QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVF TE80S2ZnRkFLZjl5NDl0QjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByHb4kG6FEuNLpDVLWqnkGhExJG4GxfWJ2am6EEFpFT+3Y7sfJheNk W7fbfkhdkx6IO7xQS2NXu9u54+Ek/zWPiPmL58c53g37rb2Quee9tHMfBQfHUP83 JBPiLAn+OO9/Uj6HWRMAf2jBAaUUX88OfOuacwaeVVFa7BPzJczJ2r64jgiCGJ50 JxKqJ6Quz3/sPFFWYw1ngfKZknkpI1QcpQWdv6CIYlG3mRFxfsAad9XDKDNGTrMm RuLtkvV9o6CLY+FoS7oGjXb9Y7SLc5oU9FW8sGcEeaysQYK5JyWLBx/i0mlbOhro lhZcEr12ztcOCp0tMrncmQEid+Q96OpZ -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:23 2025 by rpki-client