$ rpki-client -vvf rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft File: ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft (raw, json) Hash identifier: N39+t4OKaWY5SYG23lba6KsdReJvBuz3NYItzluxV58= Subject key identifier: 09:A6:29:AD:DD:2C:D5:1B:68:8D:26:A4:62:48:A1:3C:E4:32:FF:0C Authority key identifier: 6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED Certificate issuer: /CN=A91944AB/serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Certificate serial: 05DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft Manifest number: 05D6 Signing time: Wed 02 Jul 2025 23:21:22 +0000 Manifest this update: Wed 02 Jul 2025 23:21:22 +0000 Manifest next update: Wed 09 Jul 2025 23:21:22 +0000 Files and hashes: 1: ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl (hash: IPV+/KDfCRDz8CVvkHji33Ebvq6xwoCmGFWWpPQJTEA=) 2: BB01CFB0723811EEA39E0042C4F9AE02.roa (hash: 1LEbeB2sOSy0yXmk2wIYI71rgNCCnZow4wFFO18wbUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944AB, serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Validity Not Before: Jul 2 23:21:22 2025 GMT Not After : Jul 9 23:21:22 2025 GMT Subject: CN=6865bef2-bb85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:77:fd:ee:c4:45:57:fe:86:00:b2:69:67:30: f2:8a:71:7f:da:e8:09:c3:37:ec:50:25:52:8e:cc: fb:a4:95:2e:53:90:6e:ed:6d:75:8b:89:d2:a0:a0: 71:90:5e:81:4c:05:f7:2e:5f:44:b7:16:b2:87:b4: da:8d:b2:d0:b3:9c:18:85:f4:e7:ea:24:d0:7a:1e: 42:44:78:73:fb:12:1a:af:59:ba:3c:46:cb:eb:b0: 15:4b:f3:b0:51:80:b4:e8:88:51:df:fa:99:8e:4e: 86:a1:ee:33:2f:53:2e:87:50:e4:2e:85:28:f5:c6: 7a:1f:bd:65:d6:64:82:fe:52:bc:5c:f5:0a:fb:e0: dc:d1:a2:52:24:a7:90:ad:81:87:c9:2a:52:48:12: b2:9a:42:db:26:06:5e:42:ed:41:bb:f7:52:31:cb: 76:2a:c9:7c:83:a7:23:32:8b:32:75:90:5d:f5:59: f7:a7:d5:3c:30:37:85:dc:91:68:3f:0f:33:af:c0: cd:3f:21:20:f5:da:72:9b:f8:b8:4f:01:dd:7c:e2: f5:e5:5f:df:04:5e:ce:4c:4b:b7:ad:a2:92:14:97: 60:e3:2a:e5:d7:53:69:3b:ac:e6:0f:e6:fa:e8:38: 22:e0:f1:d9:66:c3:a8:b7:6d:f8:ce:57:ba:99:5b: 0c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A6:29:AD:DD:2C:D5:1B:68:8D:26:A4:62:48:A1:3C:E4:32:FF:0C X509v3 Authority Key Identifier: keyid:6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:f2:50:cf:9a:c2:20:08:30:28:d6:25:58:c4:f9:7a:40:47: 01:bd:10:2d:d8:ed:57:b8:c2:d3:d8:d1:9e:5d:14:67:58:33: f8:36:53:7e:c7:d9:c6:4a:ed:90:6b:af:a4:e9:59:8f:93:f8: 0d:c9:4b:81:1f:b1:8a:ae:1f:eb:09:c4:e8:60:ad:88:cf:d5: 31:6f:36:f4:a9:d5:5e:ee:52:a4:ad:1e:60:6d:50:13:42:92: 35:85:95:d2:06:1f:be:8c:79:a1:62:8d:65:ea:10:4f:18:c9: f9:1a:fc:54:30:8b:11:32:b3:83:33:af:f4:5e:c8:af:9c:86: 49:61:e3:17:4d:8b:71:1d:00:35:78:c8:43:ac:cb:ae:8c:8f: 22:c9:8b:b8:5f:ed:96:73:e3:9d:68:ba:a0:81:4d:36:0b:b9: e4:91:e9:3f:50:62:43:48:98:e4:92:95:4e:8c:49:bb:09:ac: 75:0d:de:2d:82:2e:76:df:85:e8:47:37:d2:6e:95:ca:2d:bb: 08:07:b3:b6:68:60:b7:7f:d6:3a:cb:cb:3d:5a:35:18:d1:bf: 00:0c:e8:95:42:d3:47:cf:a8:99:0d:86:7f:42:de:a6:4a:4e: c8:b3:06:8c:a0:7f:52:37:2b:9b:ef:26:cf:2d:48:36:0e:88: da:f3:c2:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0QUIxMTAvBgNVBAUTKDZBMTIxOTcyNkQyMzlDODJGNUE0NDYwMTEyN0QxQUY4 NzI1Q0UwRUQwHhcNMjUwNzAyMjMyMTIyWhcNMjUwNzA5MjMyMTIyWjAYMRYwFAYD VQQDEw02ODY1YmVmMi1iYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynf97sRFV/6GALJpZzDyinF/2ugJwzfsUCVSjsz7pJUuU5Bu7W11i4nSoKBx kF6BTAX3Ll9Etxayh7TajbLQs5wYhfTn6iTQeh5CRHhz+xIar1m6PEbL67AVS/Ow UYC06IhR3/qZjk6Goe4zL1Muh1DkLoUo9cZ6H71l1mSC/lK8XPUK++Dc0aJSJKeQ rYGHySpSSBKymkLbJgZeQu1Bu/dSMct2Ksl8g6cjMosydZBd9Vn3p9U8MDeF3JFo Pw8zr8DNPyEg9dpym/i4TwHdfOL15V/fBF7OTEu3raKSFJdg4yrl11NpO6zmD+b6 6Dgi4PHZZsOot234zle6mVsMawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmmKa3d LNUbaI0mpGJIoTzkMv8MMB8GA1UdIwQYMBaAFGoSGXJtI5yC9aRGARJ9GvhyXODt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRBQi82RkUzMDZBNkMy QzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5JTDFwRVlCRW4wYS1ISmM0 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoSVpjbTBqbklMMXBFWUJFbjBhLUhKYzRPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRBQi82RkUzMDZBNkMyQzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5J TDFwRVlCRW4wYS1ISmM0TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ8lDPmsIgCDAo1iVYxPl6QEcBvRAt2O1XuMLT2NGeXRRnWDP4NlN+ x9nGSu2Qa6+k6VmPk/gNyUuBH7GKrh/rCcToYK2Iz9Uxbzb0qdVe7lKkrR5gbVAT QpI1hZXSBh++jHmhYo1l6hBPGMn5GvxUMIsRMrODM6/0XsivnIZJYeMXTYtxHQA1 eMhDrMuujI8iyYu4X+2Wc+OdaLqggU02C7nkkek/UGJDSJjkkpVOjEm7Cax1Dd4t gi5234XoRzfSbpXKLbsIB7O2aGC3f9Y6y8s9WjUY0b8ADOiVQtNHz6iZDYZ/Qt6m Sk7IswaMoH9SNyub7ybPLUg2Doja88Kp -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:25 2025 by rpki-client