$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: lbAOOdAUxcX5DNpmKhbGmHVhSGRx3LHfY4syjnH/qng= Subject key identifier: 68:07:2E:EB:C4:CC:09:12:5D:A8:4D:D1:7A:CE:85:BD:2B:6A:72:64 Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 0762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 075C Signing time: Fri 22 Aug 2025 21:48:12 +0000 Manifest this update: Fri 22 Aug 2025 21:48:11 +0000 Manifest next update: Fri 29 Aug 2025 21:48:11 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: vf8CaVvyf6E3p8WAqKpl2DM1/Q1ldL7bsFcfR/9CLNs=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: Tkzl81mL9jCkezlpTqealMA+SaYDCxv0/vXNUScGesg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4, serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: Aug 22 21:48:11 2025 GMT Not After : Aug 29 21:48:11 2025 GMT Subject: CN=68a8e59b-7d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:33:b8:31:8b:0c:b4:6e:32:47:9f:27:4e:62: 9e:46:a6:66:de:77:e6:f6:5c:2a:56:8f:27:07:ac: a9:a8:c5:2e:bd:7a:8b:25:a6:76:27:18:a1:6f:ac: 0e:89:18:81:f4:63:33:0c:5c:cc:17:a5:aa:84:2c: 65:ed:44:76:73:5d:ae:31:09:30:93:f0:95:59:48: a0:62:46:7f:0e:63:be:76:bf:cf:a0:e9:6b:63:a1: 0e:d7:8d:c6:14:59:0f:8a:1c:be:f5:e9:dc:c5:7c: 8b:90:f7:83:5c:69:57:a0:21:b8:51:cf:28:37:f1: a2:d0:25:6f:e4:85:2a:68:63:7b:ec:59:5a:7c:9a: e8:7d:48:39:31:63:81:69:59:67:3e:dc:26:81:a8: 1e:e6:bd:cf:dd:cd:6f:29:5d:73:8e:66:e3:50:eb: c2:92:58:25:43:28:4f:22:d2:0e:4e:0f:b1:18:03: e6:9d:78:d9:5e:c1:4e:75:fa:1f:f7:6f:f1:be:9c: 28:58:27:e0:33:73:2c:58:da:15:e0:bd:f2:04:a8: 27:2b:d4:76:bf:c7:5c:8c:8f:01:ad:0e:6e:3f:de: a9:85:6a:3e:8b:f2:bd:0d:60:a2:e3:4d:2e:2d:8d: be:54:15:63:a0:3a:79:0b:66:4a:c0:3c:b8:8a:2b: 5b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:07:2E:EB:C4:CC:09:12:5D:A8:4D:D1:7A:CE:85:BD:2B:6A:72:64 X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:b7:24:b8:31:26:1c:56:ae:97:b9:47:9c:97:3e:57:8a:2f: 03:da:06:00:eb:d1:4a:69:aa:18:d8:47:9e:66:fd:9b:ae:cd: 1a:c8:7e:77:31:a2:37:26:65:68:65:10:dc:2d:65:63:e2:a2: e9:e9:21:6f:fa:55:a1:19:1c:94:fa:ab:0d:be:c0:2d:e2:13: 5c:14:47:5b:42:6c:9f:83:0b:6f:51:20:c2:25:1a:9b:ae:a0: ec:86:89:82:4e:7f:6a:df:50:cf:ef:16:7a:19:dc:ca:a7:3b: 8e:70:87:44:b2:14:3a:93:2c:54:46:f6:79:95:14:a4:98:69: 7c:b9:1f:fd:99:ec:5b:84:92:c9:85:14:90:58:7b:72:79:fd: 74:84:91:97:49:0c:15:97:e6:34:e8:36:b6:9e:46:ca:6f:ae: 93:8c:41:2e:fb:26:4a:ec:37:77:7d:36:9f:df:61:1e:07:90: 1d:e4:a4:9c:de:35:ab:fe:9d:be:5e:2d:f7:ca:f2:ae:5e:2c: 45:09:c6:a3:cb:af:4c:95:e8:cd:d7:e5:7a:e6:6a:1b:db:a3: e4:b4:12:3f:f6:08:7b:a5:f7:b6:8f:46:10:5d:71:87:dd:cb: b2:fb:61:73:d6:e2:e3:4e:4b:cb:73:03:0b:fa:ee:70:b4:66: 6d:1e:34:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjUwODIyMjE0ODExWhcNMjUwODI5MjE0ODExWjAYMRYwFAYD VQQDEw02OGE4ZTU5Yi03ZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzO4MYsMtG4yR58nTmKeRqZm3nfm9lwqVo8nB6ypqMUuvXqLJaZ2Jxihb6wO iRiB9GMzDFzMF6WqhCxl7UR2c12uMQkwk/CVWUigYkZ/DmO+dr/PoOlrY6EO143G FFkPihy+9encxXyLkPeDXGlXoCG4Uc8oN/Gi0CVv5IUqaGN77FlafJrofUg5MWOB aVlnPtwmgage5r3P3c1vKV1zjmbjUOvCklglQyhPItIOTg+xGAPmnXjZXsFOdfof 92/xvpwoWCfgM3MsWNoV4L3yBKgnK9R2v8dcjI8BrQ5uP96phWo+i/K9DWCi400u LY2+VBVjoDp5C2ZKwDy4iitbFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgHLuvE zAkSXahN0XrOhb0ranJkMB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCStyS4MSYcVq6XuUeclz5Xii8D2gYA69FKaaoY2EeeZv2brs0ayH53 MaI3JmVoZRDcLWVj4qLp6SFv+lWhGRyU+qsNvsAt4hNcFEdbQmyfgwtvUSDCJRqb rqDshomCTn9q31DP7xZ6GdzKpzuOcIdEshQ6kyxURvZ5lRSkmGl8uR/9mexbhJLJ hRSQWHtyef10hJGXSQwVl+Y06Da2nkbKb66TjEEu+yZK7Dd3fTaf32EeB5Ad5KSc 3jWr/p2+Xi33yvKuXixFCcajy69MlejN1+V65mob26PktBI/9gh7pfe2j0YQXXGH 3cuy+2Fz1uLjTkvLcwML+u5wtGZtHjTN -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:09 2025 by rpki-client