$ rpki-client -vvf rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft File: AZgxEf1vCyfiQEY7aKehmEXHuwo.mft (raw, json) Hash identifier: W4W1SW4S5YAaJHjBT1phtIkE1Og6iQII4BSHhgbVClM= Subject key identifier: 13:17:F5:36:AA:D3:C4:84:5C:C4:F4:11:04:B4:51:F2:3B:BF:C3:00 Authority key identifier: 01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A Certificate issuer: /CN=A91513B0/serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Certificate serial: 0535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft Manifest number: 0526 Signing time: Sat 23 Aug 2025 06:33:12 +0000 Manifest this update: Sat 23 Aug 2025 06:33:11 +0000 Manifest next update: Sat 30 Aug 2025 06:33:11 +0000 Files and hashes: 1: AZgxEf1vCyfiQEY7aKehmEXHuwo.crl (hash: i33s2hKl2FoUx4Y5ggBrzElc0xtKADqMUKPCzNnA9qs=) 2: 08AC99F47FEB11F09D30C82CC4F9AE02.roa (hash: p+JrUsYOAEsVzHRE7jvcCJhLO6g7vFKO3I/Yr8XresI=) 3: 4FE459C8B97211EFA7B7E47DC4F9AE02.roa (hash: m7WV1VKI7ClZpgbpWthM6Ip2WNf7bXuqABVjburQENc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91513B0, serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Validity Not Before: Aug 23 06:33:11 2025 GMT Not After : Aug 30 06:33:11 2025 GMT Subject: CN=68a960a8-40b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5f:0a:5a:2b:c8:08:c5:b2:d3:b9:d3:5d:e2: 6e:ba:bd:f8:3a:a0:61:6c:b4:8a:38:f1:24:b7:f3: e2:40:4f:f3:13:3e:4f:06:81:cf:f8:77:19:b2:8a: 06:8d:77:4d:96:6f:0a:97:01:b6:60:d5:a5:4c:07: 94:78:73:91:55:5c:df:67:a7:d0:7d:9e:c6:02:27: ef:a4:b3:dc:9e:db:94:32:22:7d:09:cb:2a:a9:5d: 84:31:45:54:d9:cf:be:5a:8b:84:d3:bc:25:d1:b7: 85:1d:72:b8:87:24:71:bb:c8:81:23:fb:62:e7:57: 5e:33:ce:2a:00:d4:78:b6:a9:9e:68:60:54:2a:e9: 47:1c:ff:aa:50:6f:6b:79:e6:17:f2:73:65:a0:35: fd:4f:cd:82:fd:80:14:73:82:8a:2b:83:09:6d:23: 53:52:3a:88:ff:ab:e1:90:46:2d:b8:3c:12:10:d0: 42:76:5e:2a:8f:3e:36:18:79:a6:2f:f2:b3:7a:80: f6:0a:ac:b1:f2:fe:4e:72:d0:3c:f0:46:45:5a:08: e5:7e:ec:9f:1b:72:64:55:54:e8:1f:93:b6:eb:f3: 36:6d:35:79:29:56:dc:e3:18:3e:e1:15:01:e6:2f: 3a:94:d0:46:f7:8a:6d:f4:3b:4b:42:d3:c5:f3:4e: 4b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:17:F5:36:AA:D3:C4:84:5C:C4:F4:11:04:B4:51:F2:3B:BF:C3:00 X509v3 Authority Key Identifier: keyid:01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:2b:4d:4e:e1:10:c3:85:eb:e9:94:b8:f5:bf:e8:d2:44:82: a3:df:25:0a:a7:cb:76:c9:83:e0:15:2a:20:30:5a:d5:4d:ac: 8f:9a:9a:2c:82:3c:a3:2b:6b:62:f1:ce:94:20:c5:18:d5:47: 3b:8d:31:d8:f0:99:ad:7a:c4:f3:aa:da:86:af:20:47:03:3b: 13:16:86:5a:7a:42:e7:e9:a7:9b:9b:9b:40:d2:3d:ad:d9:d0: 2f:cc:f1:fd:e9:e5:71:02:83:c2:7d:7b:fa:8f:62:ad:fa:4b: 30:f4:10:23:bf:cc:c4:47:5b:1c:80:cb:99:50:59:20:b2:1a: cf:2c:ed:a2:55:64:05:19:6d:05:7b:1e:67:86:dd:7d:69:84: 9c:7c:d9:17:05:45:05:84:5b:e5:65:9b:61:c2:c6:0a:f2:f6: 75:7f:f4:7f:da:5d:f9:ac:97:e1:ec:7d:2d:41:3a:31:25:bc: de:80:2e:69:b7:87:6e:b8:da:37:f8:98:b2:e7:d0:16:47:22: 1e:c8:36:06:5b:47:e5:4c:1f:ae:4f:32:71:d0:2c:91:a8:bd: b8:65:9b:fd:4e:37:e5:82:48:57:04:86:00:48:72:08:41:99: c1:81:5e:da:6b:af:17:98:c7:f2:27:1e:ef:9f:e6:f1:1a:64: f2:55:aa:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEzQjAxMTAvBgNVBAUTKDAxOTgzMTExRkQ2RjBCMjdFMjQwNDYzQjY4QTdBMTk4 NDVDN0JCMEEwHhcNMjUwODIzMDYzMzExWhcNMjUwODMwMDYzMzExWjAYMRYwFAYD VQQDEw02OGE5NjBhOC00MGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs18KWivICMWy07nTXeJuur34OqBhbLSKOPEkt/PiQE/zEz5PBoHP+HcZsooG jXdNlm8KlwG2YNWlTAeUeHORVVzfZ6fQfZ7GAifvpLPcntuUMiJ9CcsqqV2EMUVU 2c++WouE07wl0beFHXK4hyRxu8iBI/ti51deM84qANR4tqmeaGBUKulHHP+qUG9r eeYX8nNloDX9T82C/YAUc4KKK4MJbSNTUjqI/6vhkEYtuDwSENBCdl4qjz42GHmm L/KzeoD2Cqyx8v5OctA88EZFWgjlfuyfG3JkVVToH5O26/M2bTV5KVbc4xg+4RUB 5i86lNBG94pt9DtLQtPF805L6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMX9Taq 08SEXMT0EQS0UfI7v8MAMB8GA1UdIwQYMBaAFAGYMRH9bwsn4kBGO2inoZhFx7sK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTNCMC8xMzhFMTQzMDE0 NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5ZmlRRVk3YUtlaG1FWEh1 d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaZ3hFZjF2Q3lmaVFFWTdhS2VobUVYSHV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTNCMC8xMzhFMTQzMDE0NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5 ZmlRRVk3YUtlaG1FWEh1d28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgK01O4RDDhevplLj1v+jSRIKj3yUKp8t2yYPgFSogMFrVTayPmpos gjyjK2ti8c6UIMUY1Uc7jTHY8JmtesTzqtqGryBHAzsTFoZaekLn6aebm5tA0j2t 2dAvzPH96eVxAoPCfXv6j2Kt+ksw9BAjv8zER1scgMuZUFkgshrPLO2iVWQFGW0F ex5nht19aYScfNkXBUUFhFvlZZthwsYK8vZ1f/R/2l35rJfh7H0tQToxJbzegC5p t4duuNo3+Jiy59AWRyIeyDYGW0flTB+uTzJx0CyRqL24ZZv9TjflgkhXBIYASHII QZnBgV7aa68XmMfyJx7vn+bxGmTyVaqO -----END CERTIFICATE-----Generated at Sat Aug 23 17:58:57 2025 by rpki-client