$ rpki-client -vvf rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft File: ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft (raw, json) Hash identifier: tsn9Yik3/8Ss6iJhg+wvPM2K/p9bqVpM+D7gDtUYxOQ= Subject key identifier: 37:6C:80:F8:2B:8B:8D:8D:E0:1F:B1:C9:95:7D:D3:20:EC:A4:40:A1 Authority key identifier: 6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED Certificate issuer: /CN=A91944AB/serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Certificate serial: 05F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft Manifest number: 05F0 Signing time: Fri 22 Aug 2025 23:09:15 +0000 Manifest this update: Fri 22 Aug 2025 23:09:14 +0000 Manifest next update: Fri 29 Aug 2025 23:09:14 +0000 Files and hashes: 1: ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl (hash: CdKIc+XqnZ2hWykC/FKPm2vpLYnzEeEH/PEEUrRGL8c=) 2: BB01CFB0723811EEA39E0042C4F9AE02.roa (hash: 1LEbeB2sOSy0yXmk2wIYI71rgNCCnZow4wFFO18wbUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1527 (0x5f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944AB, serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Validity Not Before: Aug 22 23:09:14 2025 GMT Not After : Aug 29 23:09:14 2025 GMT Subject: CN=68a8f89b-1963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:82:67:68:6b:e1:45:c5:88:b3:1a:c5:fd:15: 3a:15:95:8e:00:a7:ad:cc:5f:c9:65:70:40:33:b6: e9:d6:24:65:85:21:19:4d:18:88:83:37:0b:02:f5: 75:21:7a:c1:0a:3a:83:ae:32:5f:c1:40:b5:73:ff: bf:80:8c:6f:40:9e:c5:41:0e:b8:8a:1f:79:8e:5c: 17:0e:69:c2:40:b9:4c:87:20:91:4b:3f:04:19:da: 4b:19:a0:03:71:8c:46:84:fe:17:7c:9a:af:29:bb: 3b:2b:27:62:22:41:48:bc:76:3f:c3:40:75:73:6e: 80:f0:15:74:8d:61:8a:8a:0a:43:12:7f:32:ef:f0: 5f:27:69:0b:a4:e3:58:fb:3e:c3:13:ed:cd:20:fa: b3:1e:c0:e5:41:1b:2f:0a:b9:dc:7d:2d:8d:61:f6: d9:0a:d5:74:7a:7f:f9:00:a2:28:37:94:79:ff:2c: da:53:2e:41:0e:bd:d3:48:3d:9e:e0:b4:11:13:75: e2:f0:80:f5:fb:29:3c:0a:77:0c:f2:93:f7:db:1a: 41:d9:ea:26:9e:3e:5c:65:c6:54:35:a0:4f:2a:a0: ae:ab:8b:90:b1:ba:e4:6a:92:4c:2d:f5:bd:26:bd: cb:52:86:ad:58:b9:38:b2:a4:8b:03:0e:a9:66:32: 99:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6C:80:F8:2B:8B:8D:8D:E0:1F:B1:C9:95:7D:D3:20:EC:A4:40:A1 X509v3 Authority Key Identifier: keyid:6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:cf:14:d1:b4:de:34:b7:db:6b:b1:a5:90:8a:dc:26:f6:d9: e8:e2:c2:25:1a:aa:6c:5c:67:0d:dd:b9:1c:2e:a3:03:3a:03: b9:81:a7:57:0c:36:ad:8c:6d:b0:8c:91:14:d6:6e:fa:31:68: c3:04:07:25:3b:f4:a6:50:e4:b4:2c:c0:af:ec:7f:af:12:ef: 6b:98:08:88:3b:43:04:5e:40:e1:88:15:07:cc:58:13:79:83: 42:ed:9e:f3:4f:7a:01:e7:f3:f1:98:69:60:0b:99:f6:c0:3d: c1:a8:97:d6:4e:42:e2:0e:54:38:3a:a4:40:60:3a:7c:53:c5: 39:a9:ec:98:60:6b:c5:3e:e6:8e:54:60:48:2b:16:99:18:b6: 14:4d:03:0e:55:3d:57:88:04:43:c7:f4:2c:fe:09:b7:20:c5: 47:ec:38:09:50:0a:5e:83:23:48:f2:04:b8:83:b5:a9:08:45: bd:4c:b8:86:72:ab:c4:46:5d:fd:c9:5d:c7:5a:bd:7c:92:ee: 00:51:c8:ef:74:25:43:07:7d:ce:c2:3d:86:6f:c6:6e:ae:0f: 28:72:68:c4:d7:2d:e1:21:3d:19:36:fc:34:9b:28:89:58:d4: 89:38:51:74:93:d1:1a:78:1c:8d:53:5e:49:59:4d:ea:ca:79: 3a:ae:75:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0QUIxMTAvBgNVBAUTKDZBMTIxOTcyNkQyMzlDODJGNUE0NDYwMTEyN0QxQUY4 NzI1Q0UwRUQwHhcNMjUwODIyMjMwOTE0WhcNMjUwODI5MjMwOTE0WjAYMRYwFAYD VQQDEw02OGE4Zjg5Yi0xOTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IJnaGvhRcWIsxrF/RU6FZWOAKetzF/JZXBAM7bp1iRlhSEZTRiIgzcLAvV1 IXrBCjqDrjJfwUC1c/+/gIxvQJ7FQQ64ih95jlwXDmnCQLlMhyCRSz8EGdpLGaAD cYxGhP4XfJqvKbs7KydiIkFIvHY/w0B1c26A8BV0jWGKigpDEn8y7/BfJ2kLpONY +z7DE+3NIPqzHsDlQRsvCrncfS2NYfbZCtV0en/5AKIoN5R5/yzaUy5BDr3TSD2e 4LQRE3Xi8ID1+yk8CncM8pP32xpB2eomnj5cZcZUNaBPKqCuq4uQsbrkapJMLfW9 Jr3LUoatWLk4sqSLAw6pZjKZ6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdsgPgr i42N4B+xyZV90yDspEChMB8GA1UdIwQYMBaAFGoSGXJtI5yC9aRGARJ9GvhyXODt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRBQi82RkUzMDZBNkMy QzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5JTDFwRVlCRW4wYS1ISmM0 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoSVpjbTBqbklMMXBFWUJFbjBhLUhKYzRPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRBQi82RkUzMDZBNkMyQzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5J TDFwRVlCRW4wYS1ISmM0TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdzxTRtN40t9trsaWQitwm9tno4sIlGqpsXGcN3bkcLqMDOgO5gadX DDatjG2wjJEU1m76MWjDBAclO/SmUOS0LMCv7H+vEu9rmAiIO0MEXkDhiBUHzFgT eYNC7Z7zT3oB5/PxmGlgC5n2wD3BqJfWTkLiDlQ4OqRAYDp8U8U5qeyYYGvFPuaO VGBIKxaZGLYUTQMOVT1XiARDx/Qs/gm3IMVH7DgJUApegyNI8gS4g7WpCEW9TLiG cqvERl39yV3HWr18ku4AUcjvdCVDB33Owj2Gb8Zurg8ocmjE1y3hIT0ZNvw0myiJ WNSJOFF0k9EaeByNU15JWU3qynk6rnWA -----END CERTIFICATE-----Generated at Sun Aug 24 07:14:40 2025 by rpki-client