$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: hJaRvqSnq82rdIGCPXfh9KrPB6Hf0VzjKIKuj8Nu87Y= Subject key identifier: 76:AA:9C:A8:C7:42:BF:16:81:B8:97:9F:85:4D:FB:F2:6D:64:3B:77 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: 7C Signing time: Sat 23 Aug 2025 07:00:36 +0000 Manifest this update: Sat 23 Aug 2025 07:00:35 +0000 Manifest next update: Sat 30 Aug 2025 07:00:35 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: m1LDuGHEB44DySWsYWVBI08xylDcy1AdLWmxwEHujQA=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Aug 23 07:00:35 2025 GMT Not After : Aug 30 07:00:35 2025 GMT Subject: CN=68a96713-0e0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1c:99:c1:4a:88:9c:82:aa:80:31:47:de:19: b6:65:2a:8f:04:9f:4c:66:96:cd:40:45:6a:cc:b3: 59:be:b8:6f:1a:74:f7:d7:8c:c3:49:71:39:12:99: d5:80:5c:2e:36:05:cb:36:3f:03:de:2a:e4:7d:8e: fc:fb:44:ba:c0:93:fb:7d:98:ad:9f:7f:0c:98:e9: fe:8e:74:73:80:60:cc:55:11:e6:f1:3b:ee:01:bd: 16:8a:a2:6e:71:1c:ac:23:e3:1e:53:26:9b:4e:10: 41:8f:1d:12:0c:c8:56:c4:17:e1:5b:38:fc:5a:fe: b7:e7:8e:32:66:99:92:2a:9e:de:b8:07:7f:88:ae: 94:92:fe:08:c7:d5:ba:0f:31:c6:38:99:fb:0b:bb: d6:dc:1a:1b:1d:37:90:8d:e4:02:26:d9:0a:b3:e8: 15:d4:8b:c4:de:fd:cb:c1:24:15:37:0f:24:c8:f4: d4:5e:b7:52:38:2a:19:54:2d:28:b9:e6:18:98:b3: c0:b1:93:2b:5d:82:52:14:a4:ed:1d:c7:9b:e8:c7: 56:a2:4a:28:72:94:b5:2c:26:7f:ff:1c:a5:61:0b: 7b:a5:83:05:b7:cf:f2:be:cf:5e:0e:4f:54:41:05: 3c:ff:ec:6d:8c:73:65:91:28:84:d0:7e:91:f4:46: 5c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:AA:9C:A8:C7:42:BF:16:81:B8:97:9F:85:4D:FB:F2:6D:64:3B:77 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:89:92:2c:98:93:21:0a:23:72:48:bf:4f:d0:f9:52:47:f4: 96:ed:b5:7f:d0:28:43:8f:aa:82:07:57:61:5c:57:3f:5f:c0: 8f:0b:f9:1f:6b:85:09:a1:82:12:fd:e9:61:cd:2c:d4:89:85: ec:4d:a8:05:67:22:29:75:47:50:26:df:c1:68:b9:a1:1f:49: d3:c3:33:36:22:c1:4e:87:69:31:4b:02:33:6a:3e:93:13:ef: 7d:80:d1:7f:75:f6:40:b5:25:64:ea:75:a1:7e:71:e8:05:c6: 9a:55:68:1f:38:22:8d:4b:6f:fe:0d:1e:ee:69:e7:0b:6c:f0: d5:d0:80:17:82:78:07:7a:96:55:90:bf:4b:b6:30:ee:bc:b2: a0:8c:55:08:3b:bb:87:6f:c5:cd:92:d3:c9:61:ab:5d:7f:27: da:c6:ec:6d:50:af:ec:8f:49:92:c9:12:23:65:35:16:aa:63: 14:be:ab:79:5f:bf:a9:0d:26:85:d7:d4:56:0b:0b:8f:30:2e: d0:88:ed:23:31:aa:49:95:85:78:cb:aa:d9:d5:f6:e0:29:83: 8f:3f:aa:74:86:fb:f7:46:6e:80:7f:ec:ee:64:c2:1c:5f:79: fa:de:79:15:1a:95:f5:52:df:ef:dd:81:77:66:45:3f:ef:cf: d1:fc:73:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjUwODIzMDcwMDM1WhcNMjUwODMwMDcwMDM1WjAYMRYwFAYD VQQDEw02OGE5NjcxMy0wZTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRyZwUqInIKqgDFH3hm2ZSqPBJ9MZpbNQEVqzLNZvrhvGnT314zDSXE5EpnV gFwuNgXLNj8D3irkfY78+0S6wJP7fZitn38MmOn+jnRzgGDMVRHm8TvuAb0WiqJu cRysI+MeUyabThBBjx0SDMhWxBfhWzj8Wv63544yZpmSKp7euAd/iK6Ukv4Ix9W6 DzHGOJn7C7vW3BobHTeQjeQCJtkKs+gV1IvE3v3LwSQVNw8kyPTUXrdSOCoZVC0o ueYYmLPAsZMrXYJSFKTtHceb6MdWokoocpS1LCZ//xylYQt7pYMFt8/yvs9eDk9U QQU8/+xtjHNlkSiE0H6R9EZcFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaqnKjH Qr8WgbiXn4VN+/JtZDt3MB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPiZIsmJMhCiNySL9P0PlSR/SW7bV/0ChDj6qCB1dhXFc/X8CPC/kf a4UJoYIS/elhzSzUiYXsTagFZyIpdUdQJt/BaLmhH0nTwzM2IsFOh2kxSwIzaj6T E+99gNF/dfZAtSVk6nWhfnHoBcaaVWgfOCKNS2/+DR7uaecLbPDV0IAXgngHepZV kL9LtjDuvLKgjFUIO7uHb8XNktPJYatdfyfaxuxtUK/sj0mSyRIjZTUWqmMUvqt5 X7+pDSaF19RWCwuPMC7QiO0jMapJlYV4y6rZ1fbgKYOPP6p0hvv3Rm6Af+zuZMIc X3n63nkVGpX1Ut/v3YF3ZkU/78/R/HMl -----END CERTIFICATE-----Generated at Sat Aug 23 10:42:47 2025 by rpki-client