$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft File: awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft (raw, json) Hash identifier: aqtTQ8O5p5FUJEn+rmhr+M/4YV2DHfwFeZSehoaTuZ4= Subject key identifier: E7:FC:E7:A5:A5:7B:B5:5E:F6:68:B0:DC:49:D0:28:AD:D7:A8:A4:08 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0C65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft Manifest number: 0C43 Signing time: Fri 22 Aug 2025 18:45:59 +0000 Manifest this update: Fri 22 Aug 2025 18:45:58 +0000 Manifest next update: Fri 29 Aug 2025 18:45:58 +0000 Files and hashes: 1: awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl (hash: mSplkIi2tDfQGG5kLk8EdHyxxvoIlKzvKxnQ5TG6RMM=) 2: 1ECA8050696211EC8A05D115C4F9AE02.roa (hash: TDJGQsW2NIk73+noi3yai+lnEcUS65iyjDduaFF8MsU=) 3: 7A0359125C0E11ECA36CBF0FC4F9AE02.roa (hash: o+CZ7fn0neERiRGT74H4pMCJhxb2efrn1ZqyAv5eZQ0=) 4: DF1E2FEA97D611EB8BEF8223C4F9AE02.roa (hash: +Z1f48sI1Kz7JI6qJ55JG0SRXt9VC0MvWpOU7eCKqS8=) 5: 884C5FB8E60411EFBF5A7957C4F9AE02.roa (hash: lJpIF/DoFI3JvxRyvCQySFIPNE83lEmMNZBRdgQLMfI=) 6: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (hash: lwAwrTafRErL3moVwMNPzUjYlQsMQhM9S9kLt9SAVBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Aug 22 18:45:58 2025 GMT Not After : Aug 29 18:45:58 2025 GMT Subject: CN=68a8bae6-df13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:4e:2a:c8:75:9c:6a:ae:b9:e5:ef:07:74: c7:a5:80:76:e1:d8:01:91:fc:9a:8f:7e:9f:b6:a9: 6a:f9:de:b9:89:f3:62:44:04:7b:7d:4e:25:d0:ee: b8:d5:4f:5b:9c:0a:d6:68:25:3a:9f:27:80:2b:69: 68:f7:79:50:5f:34:40:1d:61:5e:19:ee:f4:7d:dd: 94:fc:70:8e:a8:48:5e:61:b5:60:4a:01:03:61:a5: 91:97:28:5b:8d:46:d8:53:fb:3d:ae:11:1f:45:3c: 7f:41:dc:a9:c9:b2:0e:f8:e0:8f:05:55:79:62:aa: 74:d7:6b:51:46:a0:f0:30:b4:66:b2:bd:93:00:25: e7:bd:52:71:14:5e:4e:b5:47:c3:82:d0:46:7d:a1: d8:0f:37:f0:98:93:28:14:59:8d:78:a3:f6:b1:ca: e2:95:d8:49:58:bb:09:67:cb:39:ca:3a:51:33:9d: 7e:70:a2:d9:c6:1f:f1:83:69:30:8e:c1:2d:f2:95: 8b:53:75:41:20:0d:11:98:5d:e8:4c:0a:8f:03:5a: fd:7d:21:7e:59:4e:63:5c:f1:49:d1:9c:4e:d3:b6: 31:e8:c2:a7:64:06:35:4a:82:d2:33:b1:b9:a5:84: 1f:90:ad:3b:c6:6b:13:6a:d9:99:ce:d7:cb:f1:3e: 6b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FC:E7:A5:A5:7B:B5:5E:F6:68:B0:DC:49:D0:28:AD:D7:A8:A4:08 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d5:6d:90:df:21:1f:b2:16:24:43:c7:03:2c:14:2d:d9:69: b6:40:e1:5f:2b:1a:2d:3f:6d:66:1b:56:6c:c2:3c:14:b4:72: a2:d0:87:1a:a2:78:a8:a5:86:52:14:3d:be:20:f7:d6:31:30: 74:30:47:05:65:80:96:41:1c:ba:21:5d:49:46:7c:bd:75:74: 2f:79:4b:6b:97:4f:87:d9:05:a3:da:f1:8a:04:d5:76:1c:7c: 3a:c2:67:43:a6:74:2e:f0:29:b7:fb:26:1a:4f:31:0f:e3:78: a4:97:0b:3b:aa:fe:ff:f3:48:1e:50:84:f9:88:75:64:e2:3b: 92:d0:74:50:97:bc:2c:a0:41:ef:69:70:6e:ba:1e:f9:65:2f: 8f:0c:3a:d7:68:e1:8b:10:89:5a:d3:3b:26:c8:fb:3c:67:74: ce:1e:69:02:25:ca:79:9a:49:6f:c0:43:82:d0:5f:68:11:c9: 52:91:d1:6b:6c:5c:6f:66:16:1e:67:62:66:7a:8c:7f:9b:ba: 3b:ba:ba:e3:31:4a:50:99:00:ba:5e:f5:20:ab:6e:6c:4a:90: fe:05:68:00:94:25:0d:62:bb:84:18:da:8e:aa:6b:87:27:17: 92:a6:e8:39:f0:be:a4:e5:8e:ec:f6:3e:91:45:d6:52:c0:ce: d8:8b:4a:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUwODIyMTg0NTU4WhcNMjUwODI5MTg0NTU4WjAYMRYwFAYD VQQDEw02OGE4YmFlNi1kZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWpOKsh1nGquueXvB3THpYB24dgBkfyaj36ftqlq+d65ifNiRAR7fU4l0O64 1U9bnArWaCU6nyeAK2lo93lQXzRAHWFeGe70fd2U/HCOqEheYbVgSgEDYaWRlyhb jUbYU/s9rhEfRTx/QdypybIO+OCPBVV5Yqp012tRRqDwMLRmsr2TACXnvVJxFF5O tUfDgtBGfaHYDzfwmJMoFFmNeKP2scrildhJWLsJZ8s5yjpRM51+cKLZxh/xg2kw jsEt8pWLU3VBIA0RmF3oTAqPA1r9fSF+WU5jXPFJ0ZxO07Yx6MKnZAY1SoLSM7G5 pYQfkK07xmsTatmZztfL8T5rbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOf856Wl e7Ve9miw3EnQKK3XqKQIMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVFMC8yM0JGMkYyNjExM0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlW XzVRbW5YcWJ3Z0poY0UzT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY1W2Q3yEfshYkQ8cDLBQt2Wm2QOFfKxotP21mG1ZswjwUtHKi0Ica oniopYZSFD2+IPfWMTB0MEcFZYCWQRy6IV1JRny9dXQveUtrl0+H2QWj2vGKBNV2 HHw6wmdDpnQu8Cm3+yYaTzEP43iklws7qv7/80geUIT5iHVk4juS0HRQl7wsoEHv aXBuuh75ZS+PDDrXaOGLEIla0zsmyPs8Z3TOHmkCJcp5mklvwEOC0F9oEclSkdFr bFxvZhYeZ2Jmeox/m7o7urrjMUpQmQC6XvUgq25sSpD+BWgAlCUNYruEGNqOqmuH JxeSpug58L6k5Y7s9j6RRdZSwM7Yi0pg -----END CERTIFICATE-----Generated at Sun Aug 24 00:53:30 2025 by rpki-client