$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft File: awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft (raw, json) Hash identifier: jIFxEsV63wTMjzAFbz7FCUFuaNvbi6yxWQYzMdJy1hc= Subject key identifier: 1E:B4:CE:A9:45:00:8F:7F:D7:7A:93:B6:68:90:80:0C:57:87:5A:A3 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0C4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft Manifest number: 0C29 Signing time: Wed 02 Jul 2025 18:54:50 +0000 Manifest this update: Wed 02 Jul 2025 18:54:49 +0000 Manifest next update: Wed 09 Jul 2025 18:54:49 +0000 Files and hashes: 1: awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl (hash: uGhyvdMB82PKPglzpKPfQUWXnh5RrfaK6v9YoHOOK1M=) 2: 1ECA8050696211EC8A05D115C4F9AE02.roa (hash: TDJGQsW2NIk73+noi3yai+lnEcUS65iyjDduaFF8MsU=) 3: 7A0359125C0E11ECA36CBF0FC4F9AE02.roa (hash: o+CZ7fn0neERiRGT74H4pMCJhxb2efrn1ZqyAv5eZQ0=) 4: DF1E2FEA97D611EB8BEF8223C4F9AE02.roa (hash: +Z1f48sI1Kz7JI6qJ55JG0SRXt9VC0MvWpOU7eCKqS8=) 5: 884C5FB8E60411EFBF5A7957C4F9AE02.roa (hash: lJpIF/DoFI3JvxRyvCQySFIPNE83lEmMNZBRdgQLMfI=) 6: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (hash: lwAwrTafRErL3moVwMNPzUjYlQsMQhM9S9kLt9SAVBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3147 (0xc4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Jul 2 18:54:49 2025 GMT Not After : Jul 9 18:54:49 2025 GMT Subject: CN=6865807a-3cda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:17:fc:a8:82:3d:f1:6d:65:e5:6f:ea:37:e4: f6:29:be:fd:01:ed:7c:a3:c2:d4:2d:bb:38:a2:17: c8:57:4a:cc:22:54:01:1c:ba:e3:a1:2d:80:e8:b5: 8c:93:67:aa:e5:ec:ea:58:df:c8:c3:49:dc:87:d2: 79:83:b4:b8:1d:e7:a7:a1:11:98:03:c5:69:0e:c2: c9:13:58:46:08:5f:8b:27:89:91:4f:5b:63:35:84: fc:07:42:83:fe:ab:17:1c:50:d2:06:4b:d6:e9:80: 2b:9f:af:b1:53:64:87:04:68:97:d4:5a:6c:e3:2d: 2c:06:92:7c:89:8b:cd:7a:20:b3:9f:ae:49:5b:53: 6f:10:86:54:81:47:6a:cc:db:53:99:e7:2b:16:d9: 45:52:8d:24:8c:8b:3a:ea:29:b7:e2:3d:48:f7:cd: e2:7d:b3:08:7d:ec:1b:20:da:c4:9b:12:36:62:cc: 91:a4:8d:b1:a5:ae:60:7d:e4:07:ca:8b:76:b4:5d: b1:55:d0:06:78:1c:d2:e1:e3:dc:34:7a:27:b7:71: 92:9a:b8:bc:e9:b5:83:94:70:91:27:88:09:f5:83: ef:9f:65:56:69:7c:68:7c:0b:cb:7f:c6:73:10:67: 08:c9:77:70:aa:b9:01:df:6a:6d:48:9b:da:a8:f2: 7c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B4:CE:A9:45:00:8F:7F:D7:7A:93:B6:68:90:80:0C:57:87:5A:A3 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:9d:4f:ec:dd:bc:45:94:d7:21:40:24:6e:1e:a8:02:31:2b: 85:bb:17:a1:49:e1:e7:af:7c:c3:fd:c1:a2:2e:d5:bb:55:a0: 16:21:cb:7f:6b:5a:75:cc:72:d1:3b:6b:34:0f:3c:bd:9a:8c: 94:5f:ae:a9:12:2b:bc:0a:16:31:74:42:e8:89:24:29:8d:a6: 71:49:4a:90:a0:78:92:a9:e1:1c:6d:34:74:03:7b:d7:da:b1: 5a:06:40:08:52:c6:38:29:3d:0d:8f:91:af:4a:b3:db:ee:74: b3:7c:5c:93:6e:23:37:52:f6:da:55:31:24:62:c7:58:40:51: 2d:2c:c4:18:20:9f:00:a4:4d:fb:93:4b:b6:4a:16:86:01:e7: 93:f9:f8:eb:9f:a8:39:ac:57:fb:19:47:22:76:fe:dc:44:26: 07:0f:0a:50:e6:49:5b:5e:88:85:8c:c6:f8:9e:a9:fe:3b:52: 34:c6:9e:33:0e:8e:d8:75:79:d9:2c:19:2e:61:73:9d:c9:49: 41:78:11:11:e4:90:4e:ff:06:98:d5:03:41:b7:d3:40:f5:39: 92:f1:4d:ef:fe:da:be:e6:ac:2a:16:75:6d:9e:05:9e:96:8c: de:6c:ee:e2:27:5b:ea:22:1a:70:a9:cf:8b:a2:f3:a3:04:83: 0d:33:11:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUwNzAyMTg1NDQ5WhcNMjUwNzA5MTg1NDQ5WjAYMRYwFAYD VQQDEw02ODY1ODA3YS0zY2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRf8qII98W1l5W/qN+T2Kb79Ae18o8LULbs4ohfIV0rMIlQBHLrjoS2A6LWM k2eq5ezqWN/Iw0nch9J5g7S4HeenoRGYA8VpDsLJE1hGCF+LJ4mRT1tjNYT8B0KD /qsXHFDSBkvW6YArn6+xU2SHBGiX1Fps4y0sBpJ8iYvNeiCzn65JW1NvEIZUgUdq zNtTmecrFtlFUo0kjIs66im34j1I983ifbMIfewbINrEmxI2YsyRpI2xpa5gfeQH yot2tF2xVdAGeBzS4ePcNHont3GSmri86bWDlHCRJ4gJ9YPvn2VWaXxofAvLf8Zz EGcIyXdwqrkB32ptSJvaqPJ8YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB60zqlF AI9/13qTtmiQgAxXh1qjMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVFMC8yM0JGMkYyNjExM0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlW XzVRbW5YcWJ3Z0poY0UzT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFnU/s3bxFlNchQCRuHqgCMSuFuxehSeHnr3zD/cGiLtW7VaAWIct/ a1p1zHLRO2s0Dzy9moyUX66pEiu8ChYxdELoiSQpjaZxSUqQoHiSqeEcbTR0A3vX 2rFaBkAIUsY4KT0Nj5GvSrPb7nSzfFyTbiM3UvbaVTEkYsdYQFEtLMQYIJ8ApE37 k0u2ShaGAeeT+fjrn6g5rFf7GUcidv7cRCYHDwpQ5klbXoiFjMb4nqn+O1I0xp4z Do7YdXnZLBkuYXOdyUlBeBER5JBO/waY1QNBt9NA9TmS8U3v/tq+5qwqFnVtngWe lozebO7iJ1vqIhpwqc+LovOjBIMNMxGs -----END CERTIFICATE-----Generated at Fri Jul 4 19:21:08 2025 by rpki-client