$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: N7YoeM3fMmcjGK1s/6y24HXJileDNRn395uN4B9bvZY= Subject key identifier: 53:95:CF:76:A2:F2:BE:E7:C9:ED:14:90:84:1C:6B:02:5E:7F:61:16 Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 0748 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 0742 Signing time: Wed 02 Jul 2025 22:00:37 +0000 Manifest this update: Wed 02 Jul 2025 22:00:37 +0000 Manifest next update: Wed 09 Jul 2025 22:00:37 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: aQ6hrCwUClcveTqhFGuyWsB8Cg18pnYo5nBrTnS76tQ=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: Tkzl81mL9jCkezlpTqealMA+SaYDCxv0/vXNUScGesg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1864 (0x748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4, serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: Jul 2 22:00:37 2025 GMT Not After : Jul 9 22:00:37 2025 GMT Subject: CN=6865ac05-83b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1f:fb:23:86:ba:eb:b8:7b:6f:da:ff:73:1b: 90:55:d4:e3:89:a6:c6:6d:ac:dc:8f:2e:9a:52:5e: eb:03:51:f3:73:3c:ba:e2:89:c1:bf:94:33:a8:45: 7b:8d:f1:1a:e7:9d:a7:25:f2:a3:67:02:fb:01:0e: 03:71:8e:42:c2:ba:9a:8d:2f:72:1f:10:ca:66:38: 04:e2:42:f6:64:42:9a:59:ec:80:cd:d2:4f:73:f2: 93:a4:1f:b0:c7:6c:80:b6:04:63:1e:ae:95:e2:d6: 64:49:57:0f:50:9e:cd:51:66:e3:69:a5:b8:10:a6: f9:22:20:e9:6e:23:11:5d:43:d6:a1:d8:42:50:12: 2b:e8:05:49:42:2b:dd:85:a9:a9:79:01:4f:d6:dd: 57:5b:db:a9:a7:e9:88:2a:90:59:d5:b7:b3:16:97: 36:70:4a:97:b9:0a:75:f0:2a:62:9b:be:c2:fc:3a: c7:24:ca:c7:a6:8f:95:2c:99:66:cf:17:76:f2:fa: 4c:8b:cb:c1:1c:75:34:ac:8e:e8:7a:7a:84:cc:1b: 21:5d:5d:3f:76:73:59:de:96:9d:49:32:f4:9e:d2: 95:f8:bf:f7:74:4c:6b:62:b3:ec:aa:16:36:8b:a6: c9:a0:ba:71:1e:17:38:1e:25:8a:f1:3e:93:1d:ae: 05:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:95:CF:76:A2:F2:BE:E7:C9:ED:14:90:84:1C:6B:02:5E:7F:61:16 X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:ff:fc:09:95:fb:25:14:d1:a9:8b:87:8c:06:10:64:e9:b3: af:4c:34:d8:38:4f:c8:e7:bf:41:ac:12:5c:66:61:6a:95:cd: 22:e8:f0:03:5f:50:4d:a8:c0:a3:c5:d9:82:6b:31:dd:98:5d: a1:6c:90:9f:fa:ea:c1:e2:c2:d4:55:37:8e:17:f8:59:5a:a0: 5e:8c:5b:67:e3:76:4a:70:c2:39:ee:21:52:7c:20:a6:00:77: b2:64:97:ab:4e:27:c6:f9:fa:03:84:80:2e:df:b9:cf:9c:24: fc:2b:0a:58:d3:7c:5b:6b:89:8f:43:c3:fc:c7:83:65:6d:5b: 77:d2:db:80:ec:2f:a6:1d:ed:c0:df:d3:3c:62:45:ae:0f:78: e8:b6:00:29:26:38:f7:4f:8d:90:89:13:14:e8:9b:e7:c5:8d: e0:c9:e8:f9:a9:bf:fd:30:bf:44:63:fc:1c:27:e7:ce:d5:63: bc:aa:84:05:8a:a0:15:9a:c5:cb:c8:cf:12:07:8e:63:b8:bb: 30:1d:fd:cb:35:31:7d:71:b0:ec:62:fb:4c:15:9e:30:b4:11: 6b:4b:a3:e4:a1:01:b8:32:da:cd:b0:b6:a0:ba:98:38:ac:cb: c4:4f:4b:b4:e5:11:ac:21:ee:25:3a:8e:81:7e:f8:2e:7b:fc: f5:d5:ab:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjUwNzAyMjIwMDM3WhcNMjUwNzA5MjIwMDM3WjAYMRYwFAYD VQQDEw02ODY1YWMwNS04M2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2x/7I4a667h7b9r/cxuQVdTjiabGbazcjy6aUl7rA1Hzczy64onBv5QzqEV7 jfEa552nJfKjZwL7AQ4DcY5CwrqajS9yHxDKZjgE4kL2ZEKaWeyAzdJPc/KTpB+w x2yAtgRjHq6V4tZkSVcPUJ7NUWbjaaW4EKb5IiDpbiMRXUPWodhCUBIr6AVJQivd hampeQFP1t1XW9upp+mIKpBZ1bezFpc2cEqXuQp18Cpim77C/DrHJMrHpo+VLJlm zxd28vpMi8vBHHU0rI7oenqEzBshXV0/dnNZ3padSTL0ntKV+L/3dExrYrPsqhY2 i6bJoLpxHhc4HiWK8T6THa4FhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOVz3ai 8r7nye0UkIQcawJef2EWMB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV//wJlfslFNGpi4eMBhBk6bOvTDTYOE/I579BrBJcZmFqlc0i6PAD X1BNqMCjxdmCazHdmF2hbJCf+urB4sLUVTeOF/hZWqBejFtn43ZKcMI57iFSfCCm AHeyZJerTifG+foDhIAu37nPnCT8KwpY03xba4mPQ8P8x4NlbVt30tuA7C+mHe3A 39M8YkWuD3jotgApJjj3T42QiRMU6JvnxY3gyej5qb/9ML9EY/wcJ+fO1WO8qoQF iqAVmsXLyM8SB45juLswHf3LNTF9cbDsYvtMFZ4wtBFrS6PkoQG4MtrNsLagupg4 rMvET0u05RGsIe4lOo6Bfvgue/z11atb -----END CERTIFICATE-----Generated at Fri Jul 4 14:23:50 2025 by rpki-client