$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: d73nXf8rHOV/ifLzYy9U3kygYwlcs+Fe9HixKs+5OLc= Subject key identifier: 7F:7E:0B:FD:66:F4:EE:82:9A:99:BE:EC:97:36:D6:E0:28:08:E4:08 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 081E Signing time: Mon 30 Jun 2025 21:00:15 +0000 Manifest this update: Mon 30 Jun 2025 21:00:14 +0000 Manifest next update: Mon 07 Jul 2025 21:00:14 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: rsWdf8esJutakKW2jxfTvGHzgKWtwmZqvY5VCC+ARjM=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: Uilk1jJBfDMGY2sckuokao9InqlSOEodf+Dfn/tc4QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Jun 30 21:00:14 2025 GMT Not After : Jul 7 21:00:14 2025 GMT Subject: CN=6862fadf-8e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:af:9f:76:7a:20:3e:56:6c:9b:ab:07:e1:0c: 2a:76:f9:de:46:6f:36:e7:a6:85:b8:a2:41:9c:5c: 79:df:06:8b:43:f5:22:1a:2e:5c:78:8f:0d:6b:b4: 66:8c:d3:7f:b8:7f:6e:d0:5d:93:27:4e:ee:68:62: 76:a2:9e:04:01:f9:69:bc:8d:e4:bf:3e:b1:8a:ce: da:1f:c1:11:ad:8f:9b:6a:17:4c:90:55:db:d6:2b: 30:78:15:46:01:4e:78:f5:0d:e3:e3:c0:53:3c:9c: ff:98:cd:a4:4a:69:30:39:61:88:08:b6:17:15:fa: e8:a6:ec:9a:af:ea:8c:d6:82:3c:77:27:7c:b2:b4: c8:51:12:e1:04:c7:ef:9e:f0:76:07:de:17:1a:82: 80:10:5d:56:42:17:61:b9:f4:08:ac:ce:15:72:08: 80:e6:f9:ef:b4:f9:17:24:47:b1:8f:2a:da:2f:f2: 8b:01:45:26:89:8b:b8:1f:7e:ce:08:80:87:8f:f0: 3f:77:aa:b1:41:ff:8a:a8:1a:11:78:ac:69:c6:9f: 61:1f:22:32:a9:8d:2e:a1:41:f0:e1:93:d0:06:2b: ba:ab:f0:04:cb:9b:b0:c7:b7:96:81:c2:17:72:cb: 69:b5:90:2d:4d:bb:45:d0:2f:cf:96:0b:db:6f:ca: fa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7E:0B:FD:66:F4:EE:82:9A:99:BE:EC:97:36:D6:E0:28:08:E4:08 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e8:45:23:2b:c9:a5:38:df:f8:1a:18:fa:90:c0:39:c3:ad: 1d:7f:b5:6a:2e:a0:41:25:f7:f0:1e:47:2a:f3:0e:52:db:97: d0:1d:54:b0:97:5a:fc:0e:d8:56:46:63:7c:32:28:fc:8d:9a: dc:0e:bd:9f:6d:c3:af:35:42:f6:16:55:6c:6f:c3:55:b4:a7: ce:da:91:11:7c:95:15:07:3f:07:0d:3e:1d:31:24:80:29:2d: 2e:0c:27:17:ee:b7:cc:f8:f4:71:3a:c5:c7:7e:a9:0a:75:a8: eb:6d:dc:10:2d:00:e5:fb:2a:dc:98:70:4b:b5:1a:8a:91:e4: 1f:fb:3d:d8:75:41:da:5e:08:5c:56:08:e4:39:5b:51:88:cf: f0:64:e8:84:08:33:e4:32:4a:2c:40:7c:99:28:e6:51:fc:16: 68:aa:5d:85:41:68:f4:2c:be:a0:66:d2:3d:0e:97:7a:07:7b: 08:2f:a8:c6:bc:7a:71:fb:8c:72:89:ec:c4:95:04:0c:4d:64: 8b:03:e4:3b:c5:64:0e:df:71:3d:88:b1:09:a7:cb:f2:de:7e: e1:82:54:b6:80:f9:99:e8:2e:9d:4e:4f:7c:a9:b8:6a:ab:74: dc:db:f2:04:e8:c9:e6:04:0e:df:ad:62:95:8d:35:5c:71:b6: 43:72:3f:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUwNjMwMjEwMDE0WhcNMjUwNzA3MjEwMDE0WjAYMRYwFAYD VQQDEw02ODYyZmFkZi04ZTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06+fdnogPlZsm6sH4QwqdvneRm8256aFuKJBnFx53waLQ/UiGi5ceI8Na7Rm jNN/uH9u0F2TJ07uaGJ2op4EAflpvI3kvz6xis7aH8ERrY+bahdMkFXb1isweBVG AU549Q3j48BTPJz/mM2kSmkwOWGICLYXFfropuyar+qM1oI8dyd8srTIURLhBMfv nvB2B94XGoKAEF1WQhdhufQIrM4VcgiA5vnvtPkXJEexjyraL/KLAUUmiYu4H37O CICHj/A/d6qxQf+KqBoReKxpxp9hHyIyqY0uoUHw4ZPQBiu6q/AEy5uwx7eWgcIX cstptZAtTbtF0C/Plgvbb8r6twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9+C/1m 9O6Cmpm+7Jc21uAoCOQIMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB46EUjK8mlON/4Ghj6kMA5w60df7VqLqBBJffwHkcq8w5S25fQHVSw l1r8DthWRmN8Mij8jZrcDr2fbcOvNUL2FlVsb8NVtKfO2pERfJUVBz8HDT4dMSSA KS0uDCcX7rfM+PRxOsXHfqkKdajrbdwQLQDl+yrcmHBLtRqKkeQf+z3YdUHaXghc VgjkOVtRiM/wZOiECDPkMkosQHyZKOZR/BZoql2FQWj0LL6gZtI9Dpd6B3sIL6jG vHpx+4xyiezElQQMTWSLA+Q7xWQO33E9iLEJp8vy3n7hglS2gPmZ6C6dTk98qbhq q3Tc2/IE6MnmBA7frWKVjTVccbZDcj8V -----END CERTIFICATE-----Generated at Wed Jul 2 20:15:11 2025 by rpki-client