$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: dkJ7F+65CUvfgms16vfMkTl0ZxxdQHnjcY9tP8FNAU0= Subject key identifier: 1E:25:11:49:A4:46:36:0C:4D:91:E9:30:20:1E:6F:53:4D:32:B8:75 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: 62 Signing time: Thu 03 Jul 2025 07:19:25 +0000 Manifest this update: Thu 03 Jul 2025 07:19:25 +0000 Manifest next update: Thu 10 Jul 2025 07:19:24 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: HDfe/3osjgpYA2NWhOrNAwGGBKbzJKtwiL8f3GqQT4c=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Jul 3 07:19:25 2025 GMT Not After : Jul 10 07:19:24 2025 GMT Subject: CN=68662efd-824d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b0:f0:d7:82:8b:f0:34:6e:96:da:92:6f:c9: f2:1a:56:29:4e:00:cf:45:a6:69:79:20:58:9b:b0: 38:75:9f:4e:6b:3d:54:f9:e6:8f:a7:d2:cf:83:9b: fb:7f:0b:aa:e5:e3:9b:ad:6e:7f:12:a5:d7:16:17: 2e:d0:02:be:8b:bc:93:e0:68:45:0b:b0:84:79:70: e3:e1:d8:93:0d:83:2c:e0:11:fa:5e:47:38:ba:1f: 44:3e:11:93:5e:6d:20:f0:07:d3:0c:ed:7c:25:9b: 00:b0:54:af:9c:1d:f7:f4:3c:ba:c2:80:85:8d:69: 6f:ad:9d:a1:6c:5b:7c:fa:f0:8c:a3:e4:15:5a:b5: 03:df:61:28:76:b8:35:c5:6a:b9:28:ec:40:e2:56: 60:03:2d:5c:c3:02:6c:43:4d:4a:22:55:9d:01:00: 4b:ec:2d:25:b3:7b:84:51:d0:e1:45:8e:30:3b:e5: e6:f2:9b:2e:f0:00:a1:e8:3b:88:97:a9:38:dd:eb: 7c:88:9f:94:b2:ee:f1:ad:43:aa:27:4d:7b:ab:6b: a5:58:ae:67:3d:5c:14:a6:a0:68:2c:db:47:61:b4: f4:da:0f:80:fe:59:ec:98:f5:3e:02:3f:db:5d:ce: 6e:c6:a4:ab:1e:6f:98:82:e2:2b:05:22:38:0a:10: 40:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:25:11:49:A4:46:36:0C:4D:91:E9:30:20:1E:6F:53:4D:32:B8:75 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2e:00:fa:3b:77:23:9d:7c:26:c2:c9:fb:a7:0b:7d:d6:b7: 26:9c:70:cf:61:43:fa:15:08:1c:45:83:5f:35:3e:90:a8:27: da:1e:cd:be:3b:a9:dd:52:e5:72:1c:1d:06:00:ea:e0:0d:6f: 52:34:d5:26:99:9c:bc:bb:fb:b4:67:47:ba:1b:81:c2:25:90: ca:33:dc:0a:bc:df:30:1b:6e:1e:27:cc:95:d2:da:cb:55:9c: 38:9b:83:6a:13:c3:30:1e:07:44:b1:4a:52:7d:ee:44:56:86: c2:03:d6:67:47:e8:b0:d9:cd:0d:8a:10:3c:9a:32:47:6b:17: fe:5d:b8:5d:9b:c8:68:be:c7:83:dc:a0:1a:6f:e4:4f:da:79: ec:f1:f9:40:69:75:48:b6:4e:35:5b:34:7a:9c:a5:2a:b3:9f: 99:4a:a1:e0:fe:9b:75:33:e2:55:67:44:28:65:e8:da:7f:c6: 46:bc:09:f3:ce:3a:e0:81:1b:b7:7f:43:d7:d9:b9:81:50:85: ef:70:e1:e9:56:44:fd:e6:37:fa:42:fa:c0:a2:51:c5:c7:05: f0:61:5f:63:05:27:f9:e1:6e:4b:9c:af:fd:4a:62:35:81:5d: 43:b8:c9:1c:d7:96:60:5c:17:bf:b5:68:22:03:63:41:58:b7: ea:86:24:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzZFMjExMC8GA1UEBRMoNkFBRjNEOUJDM0RGQTNBMTI1MDgyOTY1RDhGRjMzQjgx MjhGMjkxRjAeFw0yNTA3MDMwNzE5MjVaFw0yNTA3MTAwNzE5MjRaMBgxFjAUBgNV BAMTDTY4NjYyZWZkLTgyNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwsPDXgovwNG6W2pJvyfIaVilOAM9Fpml5IFibsDh1n05rPVT55o+n0s+Dm/t/ C6rl45utbn8SpdcWFy7QAr6LvJPgaEULsIR5cOPh2JMNgyzgEfpeRzi6H0Q+EZNe bSDwB9MM7XwlmwCwVK+cHff0PLrCgIWNaW+tnaFsW3z68Iyj5BVatQPfYSh2uDXF arko7EDiVmADLVzDAmxDTUoiVZ0BAEvsLSWze4RR0OFFjjA75ebymy7wAKHoO4iX qTjd63yIn5Sy7vGtQ6onTXura6VYrmc9XBSmoGgs20dhtPTaD4D+WeyY9T4CP9td zm7GpKseb5iC4isFIjgKEECLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHiURSaRG NgxNkekwIB5vU00yuHUwHwYDVR0jBBgwFoAUaq89m8Pfo6ElCCll2P8zuBKPKR8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NkUyLzNCNTQxRjIwQ0Iz RDExRUY4NzAzRjc1QUM0RjlBRTAyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtS OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYXE4OW04UGZvNkVsQ0NsbDJQOHp1QktQS1I4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 NkUyLzNCNTQxRjIwQ0IzRDExRUY4NzAzRjc1QUM0RjlBRTAyL2FxODltOFBmbzZF bENDbGwyUDh6dUJLUEtSOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADouAPo7dyOdfCbCyfunC33WtyaccM9hQ/oVCBxFg181PpCoJ9oezb47 qd1S5XIcHQYA6uANb1I01SaZnLy7+7RnR7obgcIlkMoz3Aq83zAbbh4nzJXS2stV nDibg2oTwzAeB0SxSlJ97kRWhsID1mdH6LDZzQ2KEDyaMkdrF/5duF2byGi+x4Pc oBpv5E/aeezx+UBpdUi2TjVbNHqcpSqzn5lKoeD+m3Uz4lVnRChl6Np/xka8CfPO OuCBG7d/Q9fZuYFQhe9w4elWRP3mN/pC+sCiUcXHBfBhX2MFJ/nhbkucr/1KYjWB XUO4yRzXlmBcF7+1aCIDY0FYt+qGJIE= -----END CERTIFICATE-----Generated at Thu Jul 3 20:35:50 2025 by rpki-client