$ rpki-client -vvf rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft File: aK5b6xu35ELO4KfgFAKf9y49tB8.mft (raw, json) Hash identifier: dxH7hS1a0XA/1I3pgCv9wNChvK4hTXdgxnYl7lug184= Subject key identifier: 24:F2:16:00:8B:E8:5C:3D:BD:37:1A:C8:36:BA:B3:E5:55:92:8B:67 Authority key identifier: 68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F Certificate issuer: /CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Certificate serial: 0C12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft Manifest number: 0C07 Signing time: Fri 04 Jul 2025 19:04:20 +0000 Manifest this update: Fri 04 Jul 2025 19:04:19 +0000 Manifest next update: Fri 11 Jul 2025 19:04:19 +0000 Files and hashes: 1: aK5b6xu35ELO4KfgFAKf9y49tB8.crl (hash: YymbUkw0wDR1fAMteSmWpHF+qegKSP1x3LIPeN31eYE=) 2: 4C1F013E5AF511EFBAB1F86CC4F9AE02.roa (hash: 5YnlbFiESO7UmvUP8KNkIgeb7OYcXBskhmx0foLpcp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3090 (0xc12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104C9, serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Validity Not Before: Jul 4 19:04:19 2025 GMT Not After : Jul 11 19:04:19 2025 GMT Subject: CN=686825b3-8055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:79:9d:c4:6e:e5:54:ec:45:8c:e5:5e:57:27: ea:9e:3b:2e:d0:eb:27:f7:f2:4a:29:c0:93:51:07: d0:42:10:42:94:39:c4:e4:18:ea:a2:31:17:2f:2d: f7:f2:22:65:39:9d:e0:c8:57:8d:09:c3:b7:c3:e6: 4d:3d:be:f9:4b:6e:2c:37:0e:02:94:3e:16:a3:66: 22:7a:17:6c:aa:0c:73:ab:5d:20:57:f1:eb:17:19: c0:31:b2:83:af:b5:1e:b9:e0:eb:9f:b9:bc:a3:94: e9:27:f7:8c:94:78:15:06:a5:8c:27:1d:3c:d8:cd: 01:8a:ae:d0:ff:81:3a:10:1a:d0:d0:5c:78:b6:cf: 22:04:ea:16:70:f2:13:05:10:84:c5:c1:e7:17:51: 20:d4:de:39:76:dc:d8:4d:9a:92:8f:93:87:0d:b9: ef:d2:19:b1:8e:97:a2:0a:74:65:33:12:ec:04:1d: 3a:67:fc:96:a2:e2:98:4e:98:57:21:db:03:cd:5c: 0e:e2:1f:5f:ae:a2:58:6a:c4:65:92:d3:7a:74:f3: 73:e1:f1:b4:59:6b:d2:0f:94:53:71:11:bb:49:59: 97:67:96:95:78:06:fe:a7:0d:c6:99:ea:b4:59:e2: a9:6b:1f:cc:41:26:b5:00:4b:0f:a3:0c:09:6a:12: c3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F2:16:00:8B:E8:5C:3D:BD:37:1A:C8:36:BA:B3:E5:55:92:8B:67 X509v3 Authority Key Identifier: keyid:68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:42:49:17:66:87:a6:23:a1:3e:4e:52:8b:d8:c3:38:fd:18: e7:d4:c1:4a:9a:0c:d6:ef:b2:b3:d5:aa:a1:8e:f5:71:b7:92: fb:99:42:20:d5:c0:4d:05:e8:63:fe:c4:b2:ce:b7:0c:e2:75: b7:3a:60:d6:db:f4:bf:ad:69:7e:d7:cc:b0:af:d4:e6:58:25: 5d:c6:e4:00:76:07:a1:d3:e0:00:73:ce:58:94:9c:28:30:fc: 8f:95:b9:58:af:fa:36:6e:0e:6a:0e:46:85:c6:bf:e1:88:00: ea:e1:35:69:ad:9d:e0:17:d3:87:68:d1:a4:d4:08:82:77:fb: 2a:00:b2:11:a2:a1:4b:4e:ec:91:cc:e2:a5:06:62:14:02:44: dc:46:e1:5f:3b:7c:36:e1:d3:00:04:42:82:41:b6:9a:82:cb: e9:b5:c2:ff:d2:28:65:51:2e:a3:c4:57:4c:a2:fa:0b:cd:a9: e2:03:53:0a:c5:a0:6c:53:f3:28:36:e5:3a:bd:ca:53:85:ef: 65:7d:8d:79:3c:77:e5:59:23:19:2b:8b:54:8b:dd:4d:d0:45: a3:12:fb:51:f6:24:ad:c6:0a:3a:9d:7d:aa:b9:d7:c3:6c:af: f0:f6:df:be:bf:fe:4b:cc:b4:ed:e8:62:c0:1e:fe:e3:33:6b: 4d:53:46:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QzkxMTAvBgNVBAUTKDY4QUU1QkVCMUJCN0U0NDJDRUUwQTdFMDE0MDI5RkY3 MkUzREI0MUYwHhcNMjUwNzA0MTkwNDE5WhcNMjUwNzExMTkwNDE5WjAYMRYwFAYD VQQDEw02ODY4MjViMy04MDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XmdxG7lVOxFjOVeVyfqnjsu0Osn9/JKKcCTUQfQQhBClDnE5BjqojEXLy33 8iJlOZ3gyFeNCcO3w+ZNPb75S24sNw4ClD4Wo2Yiehdsqgxzq10gV/HrFxnAMbKD r7UeueDrn7m8o5TpJ/eMlHgVBqWMJx082M0Biq7Q/4E6EBrQ0Fx4ts8iBOoWcPIT BRCExcHnF1Eg1N45dtzYTZqSj5OHDbnv0hmxjpeiCnRlMxLsBB06Z/yWouKYTphX IdsDzVwO4h9frqJYasRlktN6dPNz4fG0WWvSD5RTcRG7SVmXZ5aVeAb+pw3Gmeq0 WeKpax/MQSa1AEsPowwJahLDDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTyFgCL 6Fw9vTcayDa6s+VVkotnMB8GA1UdIwQYMBaAFGiuW+sbt+RCzuCn4BQCn/cuPbQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRDOS8yQUE4QjM4ODE0 QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVFTE80S2ZnRkFLZjl5NDl0 QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLNWI2eHUzNUVMTzRLZmdGQUtmOXk0OXRCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRDOS8yQUE4QjM4ODE0QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVF TE80S2ZnRkFLZjl5NDl0QjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxQkkXZoemI6E+TlKL2MM4/Rjn1MFKmgzW77Kz1aqhjvVxt5L7mUIg 1cBNBehj/sSyzrcM4nW3OmDW2/S/rWl+18ywr9TmWCVdxuQAdgeh0+AAc85YlJwo MPyPlblYr/o2bg5qDkaFxr/hiADq4TVprZ3gF9OHaNGk1AiCd/sqALIRoqFLTuyR zOKlBmIUAkTcRuFfO3w24dMABEKCQbaagsvptcL/0ihlUS6jxFdMovoLzaniA1MK xaBsU/MoNuU6vcpThe9lfY15PHflWSMZK4tUi91N0EWjEvtR9iStxgo6nX2qudfD bK/w9t++v/5LzLTt6GLAHv7jM2tNU0ZH -----END CERTIFICATE-----Generated at Sat Jul 5 18:50:35 2025 by rpki-client