$ rpki-client -vvf rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft File: aNpOhaeYSz_RCu80x9HQDxtGRTE.mft (raw, json) Hash identifier: E2OuHq7GbYfr4NvFydYl2V+IDr1uT41JW28xzmYJ99E= Subject key identifier: 37:B3:43:20:96:52:EA:4B:5C:FB:35:3F:C5:97:18:8E:AC:05:C2:0B Authority key identifier: 68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 Certificate issuer: /CN=A918D931/serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Certificate serial: 07C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft Manifest number: 07C3 Signing time: Fri 22 Aug 2025 21:20:13 +0000 Manifest this update: Fri 22 Aug 2025 21:20:12 +0000 Manifest next update: Fri 29 Aug 2025 21:20:12 +0000 Files and hashes: 1: aNpOhaeYSz_RCu80x9HQDxtGRTE.crl (hash: oqY2U0eUghJ3L9/pXUhrNZBlpX+jIew2sJ+ZC3bTDcU=) 2: F575D65A085A11EBA6864D71C4F9AE02.roa (hash: MoYCzKz4ghJi1D1zSWKy/H/ig794mxo8w546loZw0HA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1993 (0x7c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D931, serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Validity Not Before: Aug 22 21:20:12 2025 GMT Not After : Aug 29 21:20:12 2025 GMT Subject: CN=68a8df0c-05dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:72:72:0b:16:b4:bd:ca:6e:7a:5c:14:19:57: 5e:8a:a3:5f:19:84:57:b2:ab:8b:78:94:99:7f:24: 9c:18:a6:3e:db:98:5d:e0:12:78:fa:43:cd:2c:89: 2d:28:29:df:c7:19:59:4e:e5:52:d7:62:4a:7e:29: f5:69:83:ee:a9:c2:f3:a7:ea:61:47:db:e3:e8:41: 21:94:55:7a:b2:8e:70:a2:3e:d5:11:14:91:c3:9c: 13:85:ac:09:c0:d2:f5:b7:c5:86:85:c6:74:c4:f4: dc:66:7a:78:a8:7c:dc:df:3a:b8:d6:d5:68:bc:a0: 9d:89:82:9f:27:5c:3a:7b:3f:46:e4:ed:8c:a5:01: 4a:7b:db:cd:b2:3f:10:fe:03:76:ff:94:3a:b2:22: 45:9f:a0:d4:40:58:30:79:ac:f1:22:96:2e:b2:69: a9:96:ca:3d:12:6c:ed:35:07:11:79:40:7b:8d:58: 23:63:65:91:ab:3e:7a:9a:9a:30:3e:b5:a1:03:81: 45:3a:a7:16:2e:95:26:35:ec:0c:04:02:5d:87:2f: b7:50:8b:b1:c7:ee:3c:d5:7a:08:66:ab:1c:d2:11: 4f:80:9b:96:88:0c:19:59:be:44:e3:e0:c2:4e:e1: 74:f6:2e:0d:ae:81:07:fd:34:81:94:4c:86:3b:b6: cc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B3:43:20:96:52:EA:4B:5C:FB:35:3F:C5:97:18:8E:AC:05:C2:0B X509v3 Authority Key Identifier: keyid:68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:71:91:bd:da:fd:02:53:28:a9:0f:a0:9e:c2:37:ec:38:c0: 88:3c:fb:d4:8f:3b:7f:37:e0:f2:f2:21:11:b1:fe:02:f7:ee: 48:7d:c8:ea:d0:56:b2:d4:c7:08:34:7b:08:a5:4e:f7:e6:a6: 3d:c7:3c:7a:ab:68:5c:51:a0:fa:fb:2d:a2:d3:92:5e:bb:bb: 7d:9a:32:59:b8:08:04:f7:32:64:38:15:f0:f8:d5:f1:d9:c2: 7f:6e:5c:3e:e1:4a:ff:34:96:99:2e:8c:f1:b9:45:5e:13:1f: f5:f8:cd:63:d0:9e:9b:09:22:42:fd:31:e0:07:27:07:d5:6f: 29:7a:33:7b:bc:32:72:60:c7:e3:2d:7a:7b:ed:d7:ed:24:26: 1e:2b:5a:fd:7b:1a:8b:03:b0:75:00:0a:61:c4:33:b7:40:c9: b5:94:5d:ae:e0:e7:12:e7:aa:a7:ac:90:71:2f:a2:42:48:6c: 91:3b:de:31:79:5a:5c:aa:1e:7a:cd:f9:62:f7:e7:d9:75:b1: a1:de:02:60:f9:50:de:9f:d0:68:9e:f6:ef:81:71:99:3b:48: 96:bd:8b:59:f2:96:4a:5f:43:3a:77:d4:7f:2f:7c:af:0e:a8: ca:16:44:93:b3:07:db:b2:e3:8f:5e:7d:0f:76:92:20:2d:95: a5:12:2e:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5MzExMTAvBgNVBAUTKDY4REE0RTg1QTc5ODRCM0ZEMTBBRUYzNEM3RDFEMDBG MUI0NjQ1MzEwHhcNMjUwODIyMjEyMDEyWhcNMjUwODI5MjEyMDEyWjAYMRYwFAYD VQQDEw02OGE4ZGYwYy0wNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3JyCxa0vcpuelwUGVdeiqNfGYRXsquLeJSZfyScGKY+25hd4BJ4+kPNLIkt KCnfxxlZTuVS12JKfin1aYPuqcLzp+phR9vj6EEhlFV6so5woj7VERSRw5wThawJ wNL1t8WGhcZ0xPTcZnp4qHzc3zq41tVovKCdiYKfJ1w6ez9G5O2MpQFKe9vNsj8Q /gN2/5Q6siJFn6DUQFgweazxIpYusmmplso9EmztNQcReUB7jVgjY2WRqz56mpow PrWhA4FFOqcWLpUmNewMBAJdhy+3UIuxx+481XoIZqsc0hFPgJuWiAwZWb5E4+DC TuF09i4NroEH/TSBlEyGO7bMOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDezQyCW UupLXPs1P8WXGI6sBcILMB8GA1UdIwQYMBaAFGjaToWnmEs/0QrvNMfR0A8bRkUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDkzMS9GQjVBNTA4NDA4 NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6X1JDdTgweDlIUUR4dEdS VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FOcE9oYWVZU3pfUkN1ODB4OUhRRHh0R1JURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDkzMS9GQjVBNTA4NDA4NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6 X1JDdTgweDlIUUR4dEdSVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBucZG92v0CUyipD6CewjfsOMCIPPvUjzt/N+Dy8iERsf4C9+5Ifcjq 0Fay1McINHsIpU735qY9xzx6q2hcUaD6+y2i05Jeu7t9mjJZuAgE9zJkOBXw+NXx 2cJ/blw+4Ur/NJaZLozxuUVeEx/1+M1j0J6bCSJC/THgBycH1W8pejN7vDJyYMfj LXp77dftJCYeK1r9exqLA7B1AAphxDO3QMm1lF2u4OcS56qnrJBxL6JCSGyRO94x eVpcqh56zfli9+fZdbGh3gJg+VDen9BonvbvgXGZO0iWvYtZ8pZKX0M6d9R/L3yv DqjKFkSTswfbsuOPXn0PdpIgLZWlEi5R -----END CERTIFICATE-----Generated at Sat Aug 23 18:16:24 2025 by rpki-client