$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: c497rWL5XcfaCWZf0ndIBBIc4eXjHyeP+bnVxiDdIiI= Subject key identifier: 32:D9:C3:75:04:2F:E6:83:41:3E:79:C6:E1:A6:D4:91:8F:4E:3E:18 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 0132 Signing time: Thu 03 Jul 2025 04:40:23 +0000 Manifest this update: Thu 03 Jul 2025 04:40:23 +0000 Manifest next update: Thu 10 Jul 2025 04:40:22 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: gm9hNdEmSwERYwoZryIUdhW5qEPp1DAk8m2Pv4WLZHE=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Jul 3 04:40:23 2025 GMT Not After : Jul 10 04:40:22 2025 GMT Subject: CN=686609b7-2ef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:57:a6:5a:d2:44:31:c6:e5:9b:eb:de:34:6a: 2c:1a:15:3b:92:d8:93:b8:20:36:d1:e2:ea:4a:36: 0e:10:04:62:a3:ba:cd:e6:9b:67:dd:d0:d4:e2:55: 97:a6:42:19:33:8a:09:b4:0d:43:2f:dc:a6:62:e7: 58:ec:57:4f:8b:6a:39:2b:ce:ca:c4:af:b9:f6:88: df:b8:6d:c4:06:48:aa:e6:d0:9c:88:9b:51:e9:51: 81:f0:8c:05:e2:03:76:9a:e5:e2:c1:af:3a:e8:ec: 69:fc:63:1c:40:03:2b:fe:33:5f:fd:b2:6a:46:50: 7a:ff:bb:48:4c:59:3c:86:a5:17:6c:43:1e:6c:e6: 68:cf:a0:00:82:8f:41:b3:67:b5:b5:73:6b:5f:06: a2:71:af:1a:c4:71:70:bd:04:ae:8a:95:65:38:da: 2c:23:44:77:7a:94:25:ac:78:8c:e1:6f:25:37:e2: 94:ad:72:9d:83:3b:31:05:ed:2c:dc:54:e8:d7:5c: c7:76:d9:55:17:63:5b:be:51:fd:45:d2:81:b9:22: 75:98:99:32:c6:4f:bd:2a:42:be:42:d6:22:ad:d3: 0a:85:46:12:0a:f2:ec:f8:20:c8:32:f2:e7:6e:78: 9f:6c:3e:a5:bc:e0:81:c8:32:bd:42:de:ed:f4:0f: 83:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D9:C3:75:04:2F:E6:83:41:3E:79:C6:E1:A6:D4:91:8F:4E:3E:18 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:0b:97:70:4e:e4:92:39:5b:51:5f:a8:cb:ee:10:00:b0:49: fc:63:c9:60:70:fd:44:ea:45:6c:5b:dd:90:47:30:b4:6e:08: c0:a3:39:5d:f5:e7:1f:72:7a:50:4a:b4:6e:9d:fa:2c:0e:69: 66:5c:2f:4a:ec:47:8a:ef:f0:be:50:2a:e9:13:43:ec:aa:94: 66:bc:a6:e2:4e:bd:f7:84:45:42:70:73:a0:82:71:a5:c9:f1: 61:ff:c6:f1:70:8b:cc:9c:45:dd:8e:0c:5c:e6:91:bc:ab:97: bc:53:d4:04:31:90:81:49:ba:b4:bf:bf:e7:65:bd:14:17:ee: ef:16:48:b8:a9:d9:55:18:37:cc:fe:b9:f5:ac:f2:e8:f8:0f: 5e:85:b8:1e:ee:db:10:8e:a6:59:63:9b:01:e7:6b:14:22:91: f5:9c:8e:de:31:97:e5:c0:b1:2e:e1:46:65:a4:de:d2:c6:68: 73:02:6d:57:f8:4b:5e:ca:9e:a4:72:66:ae:92:9b:44:7d:01: 30:96:ed:10:7c:aa:30:96:2f:79:10:0b:3e:59:be:0f:d1:8a: c4:43:f0:f5:c8:55:05:0d:08:e1:0f:ac:be:35:aa:99:36:a8: cb:4b:a2:b9:ab:46:eb:32:48:0c:68:3f:5e:a1:41:71:42:3c: f3:61:c4:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUwNzAzMDQ0MDIzWhcNMjUwNzEwMDQ0MDIyWjAYMRYwFAYD VQQDEw02ODY2MDliNy0yZWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVemWtJEMcblm+veNGosGhU7ktiTuCA20eLqSjYOEARio7rN5ptn3dDU4lWX pkIZM4oJtA1DL9ymYudY7FdPi2o5K87KxK+59ojfuG3EBkiq5tCciJtR6VGB8IwF 4gN2muXiwa866Oxp/GMcQAMr/jNf/bJqRlB6/7tITFk8hqUXbEMebOZoz6AAgo9B s2e1tXNrXwaica8axHFwvQSuipVlONosI0R3epQlrHiM4W8lN+KUrXKdgzsxBe0s 3FTo11zHdtlVF2NbvlH9RdKBuSJ1mJkyxk+9KkK+QtYirdMKhUYSCvLs+CDIMvLn bnifbD6lvOCByDK9Qt7t9A+D/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLZw3UE L+aDQT55xuGm1JGPTj4YMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOC5dwTuSSOVtRX6jL7hAAsEn8Y8lgcP1E6kVsW92QRzC0bgjAozld 9ecfcnpQSrRunfosDmlmXC9K7EeK7/C+UCrpE0PsqpRmvKbiTr33hEVCcHOggnGl yfFh/8bxcIvMnEXdjgxc5pG8q5e8U9QEMZCBSbq0v7/nZb0UF+7vFki4qdlVGDfM /rn1rPLo+A9ehbge7tsQjqZZY5sB52sUIpH1nI7eMZflwLEu4UZlpN7SxmhzAm1X +Eteyp6kcmaukptEfQEwlu0QfKowli95EAs+Wb4P0YrEQ/D1yFUFDQjhD6y+NaqZ NqjLS6K5q0brMkgMaD9eoUFxQjzzYcTr -----END CERTIFICATE-----Generated at Thu Jul 3 08:47:47 2025 by rpki-client