$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: 6ZjxmYUZWXuHdeYXA970wIMyqnlknG9er87ffwk5gqQ= Subject key identifier: C1:4C:9B:70:58:03:D2:C8:20:AE:CD:7B:2C:E8:F1:4E:8F:A5:93:4E Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 04C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 04B6 Signing time: Sat 23 Aug 2025 00:07:41 +0000 Manifest this update: Sat 23 Aug 2025 00:07:41 +0000 Manifest next update: Sat 30 Aug 2025 00:07:41 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: 1h3CQ78YP5ot633PRaKKLC6EESqh5m+2R0TEgfCu4Mc=) 2: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I=) 3: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Aug 23 00:07:41 2025 GMT Not After : Aug 30 00:07:41 2025 GMT Subject: CN=68a9064d-3a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9b:b6:3a:6e:50:83:3a:8c:c1:09:50:32:f5: 6c:3a:1d:af:f8:41:b4:d4:29:86:66:fa:f3:44:c5: 80:03:d7:18:07:6f:37:d3:73:b4:68:79:e4:66:98: c4:f8:a4:9c:20:42:2e:97:e2:e7:ff:7f:22:f1:fc: 3f:66:80:31:c4:1f:40:95:08:bd:73:fa:9b:8a:3c: fe:a9:f1:58:16:82:df:e0:52:44:a0:07:32:0f:8c: 1e:a2:8b:9c:24:02:f5:7b:0e:00:80:4c:51:3b:6e: 6c:37:91:f4:4f:0b:11:f6:20:dc:f9:33:8f:ee:e2: a2:b0:9d:1a:46:73:a5:f7:54:3c:ed:8c:46:e0:08: ec:c7:90:a7:e1:19:c5:88:65:e6:a4:7f:21:43:13: 73:a2:f4:5f:9c:a9:14:1f:3f:8e:2c:46:23:f7:61: 56:e0:24:41:fb:02:30:16:16:8a:49:17:22:94:5b: a7:44:37:af:6e:84:95:f8:93:61:0c:97:ba:7c:e0: 7c:e6:41:48:06:9a:e5:3c:24:73:9d:ea:29:b2:98: cb:2d:46:a7:8c:08:55:0f:98:05:20:7a:3f:ae:66: 15:ee:7a:44:92:a0:9a:f9:86:58:5e:c4:e1:be:8d: 2b:d9:1a:4f:f1:ba:6e:e5:36:31:9a:df:c4:6d:72: ca:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:4C:9B:70:58:03:D2:C8:20:AE:CD:7B:2C:E8:F1:4E:8F:A5:93:4E X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:88:53:ad:06:52:49:f0:94:7a:2d:23:2a:e1:3e:31:6f:6b: 34:99:13:1c:59:af:6c:c5:6d:d8:85:22:99:ef:5c:85:bb:f3: 75:60:35:70:22:2a:5e:27:06:ce:18:bf:cc:8a:b3:76:67:e5: 67:ef:c8:73:ce:e1:e2:1e:3f:10:11:a0:b0:f9:50:49:43:d9: 1c:d2:8a:22:51:7d:87:59:80:fc:30:fd:8a:ff:9a:9b:ad:ca: 56:88:4f:76:d9:21:cb:af:6b:f6:07:0c:c2:e8:66:77:94:8f: b6:f5:d2:41:b2:f3:7f:aa:08:2e:36:ef:2c:c8:7c:b8:ae:a1: f5:e3:37:19:ae:22:e3:cd:de:09:97:ea:de:1d:e0:a3:4d:ed: 9f:aa:5f:b2:8d:02:02:98:e6:f4:bd:7f:d2:85:02:9d:5b:01: fe:80:e4:84:67:92:25:e1:14:ae:83:14:f0:59:3d:46:b5:41: 40:8f:94:a6:fd:9f:57:7e:41:4e:27:60:b8:94:f5:f5:c8:93: 81:ff:52:d3:0c:96:5e:05:07:06:bb:b8:94:e1:b6:04:f3:07: d2:0a:65:4d:ae:38:ab:0a:73:ed:0c:86:a8:c6:3c:61:19:95: 49:9b:8f:c2:81:89:fd:bd:61:47:b1:6e:c6:c4:e0:03:bf:5b: 50:27:c1:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUwODIzMDAwNzQxWhcNMjUwODMwMDAwNzQxWjAYMRYwFAYD VQQDEw02OGE5MDY0ZC0zYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJu2Om5QgzqMwQlQMvVsOh2v+EG01CmGZvrzRMWAA9cYB28303O0aHnkZpjE +KScIEIul+Ln/38i8fw/ZoAxxB9AlQi9c/qbijz+qfFYFoLf4FJEoAcyD4weoouc JAL1ew4AgExRO25sN5H0TwsR9iDc+TOP7uKisJ0aRnOl91Q87YxG4Ajsx5Cn4RnF iGXmpH8hQxNzovRfnKkUHz+OLEYj92FW4CRB+wIwFhaKSRcilFunRDevboSV+JNh DJe6fOB85kFIBprlPCRzneopspjLLUanjAhVD5gFIHo/rmYV7npEkqCa+YZYXsTh vo0r2RpP8bpu5TYxmt/EbXLKQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFMm3BY A9LIIK7Neyzo8U6PpZNOMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5iFOtBlJJ8JR6LSMq4T4xb2s0mRMcWa9sxW3YhSKZ71yFu/N1YDVw IipeJwbOGL/MirN2Z+Vn78hzzuHiHj8QEaCw+VBJQ9kc0ooiUX2HWYD8MP2K/5qb rcpWiE922SHLr2v2BwzC6GZ3lI+29dJBsvN/qgguNu8syHy4rqH14zcZriLjzd4J l+reHeCjTe2fql+yjQICmOb0vX/ShQKdWwH+gOSEZ5Il4RSugxTwWT1GtUFAj5Sm /Z9XfkFOJ2C4lPX1yJOB/1LTDJZeBQcGu7iU4bYE8wfSCmVNrjirCnPtDIaoxjxh GZVJm4/CgYn9vWFHsW7GxOADv1tQJ8G5 -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:51 2025 by rpki-client