$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: z6z6sWN/MMGjLk4vYmdJmjiBgKKEDJ2feL4FwruofB4= Subject key identifier: 0B:17:AE:AF:3F:AC:B0:86:DC:50:B7:32:91:49:35:47:A4:D2:D1:DE Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 0682 Signing time: Fri 22 Aug 2025 22:33:55 +0000 Manifest this update: Fri 22 Aug 2025 22:33:55 +0000 Manifest next update: Fri 29 Aug 2025 22:33:55 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: Y1TLzYtPcF/BnjFDvY7AGe9g0qXnCJbDVJUFsjfywdo=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Aug 22 22:33:55 2025 GMT Not After : Aug 29 22:33:55 2025 GMT Subject: CN=68a8f053-315a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f8:3c:5e:a6:47:90:b6:1c:cf:d7:b7:c6:32: 87:53:2c:d2:8c:fd:1b:d6:a4:ea:46:90:89:68:92: bf:a0:31:27:e8:e0:b8:f2:9a:b8:5d:ba:69:db:36: 9a:8b:52:a4:ba:96:ac:59:16:7a:c3:12:25:09:f9: 26:13:30:91:2e:e2:f4:8f:04:50:1f:32:1b:01:27: d6:e6:55:67:f5:29:4d:06:78:76:58:f6:de:d5:72: c9:7f:37:6b:1e:18:8b:68:2f:34:64:46:c2:57:f6: 8d:4e:74:59:93:15:f1:e7:74:60:36:6b:ce:a4:5f: 3f:3f:ff:b9:00:7d:27:69:66:06:b9:06:1d:e4:cc: b9:2e:30:99:89:9a:2d:a3:c0:bc:b7:d5:4d:ae:32: 4e:c0:c1:9e:f4:21:7c:02:8b:f6:f1:cd:20:3d:f9: 61:00:0e:a4:6b:e3:0c:e2:e1:a2:50:00:6c:a0:54: 35:d6:e3:e7:c3:d6:41:dd:a3:97:3e:9f:23:47:01: f4:a4:84:b9:e4:c4:e8:53:c9:93:a6:9e:0f:04:14: 6c:a5:e1:55:3c:7a:42:8a:8e:8b:77:ec:7d:82:7e: a0:63:d1:84:13:bc:6a:7f:9d:98:e9:4a:87:63:05: c0:b0:a4:37:ec:3b:47:45:3c:32:3d:4d:49:45:95: ec:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:17:AE:AF:3F:AC:B0:86:DC:50:B7:32:91:49:35:47:A4:D2:D1:DE X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7b:66:7f:fb:9d:4f:c3:fd:a4:84:5c:35:d9:27:97:7b:4e: b4:02:48:da:2a:34:d7:b9:77:2b:db:92:60:cf:67:b2:c5:e9: 63:e1:e9:2f:1f:be:b5:b6:24:2d:a5:97:47:83:fc:bf:a4:dc: 3d:81:7e:5f:18:6b:f7:ec:98:96:9b:23:8c:15:f2:3c:fd:ad: ba:b6:89:9e:14:7d:28:3f:d3:38:eb:fa:46:08:f3:46:74:e8: 30:f6:0c:c8:24:1a:eb:8f:5a:2e:5b:7a:d8:5b:65:45:4b:ef: 85:81:de:85:ea:23:ae:d8:2d:db:1e:99:3d:64:02:2f:bf:aa: e3:63:45:8f:f5:76:ff:d3:a6:0c:15:d0:0e:92:1f:eb:b0:85: ea:9a:74:f9:5f:5b:31:7e:09:00:76:aa:9d:5c:b6:16:f6:e1: 26:21:01:c7:66:71:f0:a3:b6:79:df:3c:5c:ac:f3:7d:b0:c3: 95:36:b2:8e:f3:10:1c:d4:bb:3f:5a:86:67:a3:ab:64:c5:46: 7e:62:ab:45:b9:70:4f:d3:20:91:35:27:3e:67:f6:b3:de:cb: b5:29:2a:00:80:ad:22:54:aa:ee:db:a4:58:0a:02:20:6a:e8: 13:0a:5e:2f:a1:cf:3a:25:65:df:75:29:60:19:e5:e8:47:3e: 32:83:13:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUwODIyMjIzMzU1WhcNMjUwODI5MjIzMzU1WjAYMRYwFAYD VQQDEw02OGE4ZjA1My0zMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvg8XqZHkLYcz9e3xjKHUyzSjP0b1qTqRpCJaJK/oDEn6OC48pq4Xbpp2zaa i1KkupasWRZ6wxIlCfkmEzCRLuL0jwRQHzIbASfW5lVn9SlNBnh2WPbe1XLJfzdr HhiLaC80ZEbCV/aNTnRZkxXx53RgNmvOpF8/P/+5AH0naWYGuQYd5My5LjCZiZot o8C8t9VNrjJOwMGe9CF8Aov28c0gPflhAA6ka+MM4uGiUABsoFQ11uPnw9ZB3aOX Pp8jRwH0pIS55MToU8mTpp4PBBRspeFVPHpCio6Ld+x9gn6gY9GEE7xqf52Y6UqH YwXAsKQ37DtHRTwyPU1JRZXsQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsXrq8/ rLCG3FC3MpFJNUek0tHeMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8e2Z/+51Pw/2khFw12SeXe060AkjaKjTXuXcr25Jgz2eyxelj4ekv H761tiQtpZdHg/y/pNw9gX5fGGv37JiWmyOMFfI8/a26tomeFH0oP9M46/pGCPNG dOgw9gzIJBrrj1ouW3rYW2VFS++Fgd6F6iOu2C3bHpk9ZAIvv6rjY0WP9Xb/06YM FdAOkh/rsIXqmnT5X1sxfgkAdqqdXLYW9uEmIQHHZnHwo7Z53zxcrPN9sMOVNrKO 8xAc1Ls/WoZno6tkxUZ+YqtFuXBP0yCRNSc+Z/az3su1KSoAgK0iVKru26RYCgIg augTCl4voc86JWXfdSlgGeXoRz4ygxNN -----END CERTIFICATE-----Generated at Sat Aug 23 13:38:26 2025 by rpki-client