$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: Gl3IpHHj8Z9JBk71H/9SQEv7s9i1DZwY3HTZuoGJzBU= Subject key identifier: AC:29:D9:58:A2:61:F2:6F:F5:9F:FF:23:7B:6C:51:E3:4B:90:79:FE Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 88 Signing time: Sun 29 Jun 2025 05:34:35 +0000 Manifest this update: Sun 29 Jun 2025 05:34:34 +0000 Manifest next update: Sun 06 Jul 2025 05:34:34 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: rWl1O2GgKCk1Jj94WBhsoJvaLTUBMkdZ22HdQpgF6VU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Jun 29 05:34:34 2025 GMT Not After : Jul 6 05:34:34 2025 GMT Subject: CN=6860d06a-743f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c8:91:6c:60:d7:9d:78:2e:93:33:fa:ef:19: 5f:ad:e7:37:43:f1:83:dd:8c:d8:dd:24:1a:19:e5: b7:20:1d:b1:e8:5b:7b:65:30:a9:0c:34:d0:1f:31: 87:57:35:8e:a7:19:d1:e6:37:d0:f5:b1:94:80:71: 36:af:c7:0a:38:b4:ee:f8:64:7c:ee:f0:9e:e4:d0: 7a:37:de:97:16:fd:22:02:e1:3e:e6:d7:cc:b4:df: b9:b8:11:ae:8a:d4:77:27:fe:3a:e5:15:3b:b4:37: 58:cb:f8:ad:91:32:39:f0:f6:62:c2:c5:18:e8:45: 61:92:9b:28:da:87:95:f1:28:39:12:f7:fa:59:8e: 51:de:0d:b2:c7:a4:e6:90:e3:3a:38:f8:7b:18:ec: 2c:d1:f9:a8:07:a3:2e:06:a1:52:08:fc:56:86:c7: d5:3e:f1:dd:9c:b0:5c:09:3d:24:6d:70:f4:38:ff: 12:55:5f:58:9a:69:fa:af:30:63:01:8a:9e:42:9a: b4:d4:b4:a8:99:28:8d:9f:3c:fe:27:8e:d2:cd:95: e0:60:11:8d:d3:68:23:79:8c:e9:21:76:95:fa:87: cb:3a:04:a5:91:79:a4:8d:44:03:68:2c:65:71:bb: 55:16:0b:dc:a4:2a:89:0d:01:90:a7:4c:69:22:9e: b1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:29:D9:58:A2:61:F2:6F:F5:9F:FF:23:7B:6C:51:E3:4B:90:79:FE X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:29:43:d0:8e:3e:82:70:c6:1c:06:1e:70:72:4a:c3:fc:e7: a4:30:30:93:57:c8:c0:24:42:e9:9f:89:74:11:96:84:62:9e: 95:f8:64:f0:8f:e0:dc:09:45:58:94:ce:cb:a6:d1:7f:1c:3f: 2f:4a:58:00:fc:ab:6d:e0:27:09:69:c9:f8:ae:56:92:1f:09: 1a:c3:d8:ab:26:19:12:56:8d:eb:4a:ff:b9:cf:19:db:08:79: f1:e2:fd:25:69:c1:0f:e1:70:c2:a0:0c:41:bf:66:41:00:86: 3a:1d:be:ec:ba:0c:cd:12:be:b6:3c:f8:4c:70:ac:82:25:d3: 91:b5:22:a3:94:5b:06:f3:b9:cd:ae:ce:fa:ee:dd:0f:91:d4: 15:52:9f:30:bd:27:0e:49:36:28:59:68:71:8b:4c:f2:99:be: 6c:2a:78:7d:0e:2e:a6:e9:a6:31:70:00:08:b9:f7:de:b1:3b: 47:95:90:ff:c2:6b:99:de:5b:bc:d0:ef:29:b5:7e:e8:4e:3b: 96:89:bc:f1:0a:20:83:c0:f6:d4:81:b4:80:7a:58:88:b9:c9: b6:e2:dd:64:67:6b:38:bb:c6:07:7e:a6:a0:22:87:b5:c6:ba: 98:01:4e:22:53:77:8c:80:75:11:a8:dc:d5:3c:4d:85:89:fa: 2b:56:e4:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUwNjI5MDUzNDM0WhcNMjUwNzA2MDUzNDM0WjAYMRYwFAYD VQQDEw02ODYwZDA2YS03NDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtciRbGDXnXgukzP67xlfrec3Q/GD3YzY3SQaGeW3IB2x6Ft7ZTCpDDTQHzGH VzWOpxnR5jfQ9bGUgHE2r8cKOLTu+GR87vCe5NB6N96XFv0iAuE+5tfMtN+5uBGu itR3J/465RU7tDdYy/itkTI58PZiwsUY6EVhkpso2oeV8Sg5Evf6WY5R3g2yx6Tm kOM6OPh7GOws0fmoB6MuBqFSCPxWhsfVPvHdnLBcCT0kbXD0OP8SVV9Ymmn6rzBj AYqeQpq01LSomSiNnzz+J47SzZXgYBGN02gjeYzpIXaV+ofLOgSlkXmkjUQDaCxl cbtVFgvcpCqJDQGQp0xpIp6xtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwp2Vii YfJv9Z//I3tsUeNLkHn+MB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9KUPQjj6CcMYcBh5wckrD/OekMDCTV8jAJELpn4l0EZaEYp6V+GTw j+DcCUVYlM7LptF/HD8vSlgA/Ktt4CcJacn4rlaSHwkaw9irJhkSVo3rSv+5zxnb CHnx4v0lacEP4XDCoAxBv2ZBAIY6Hb7sugzNEr62PPhMcKyCJdORtSKjlFsG87nN rs767t0PkdQVUp8wvScOSTYoWWhxi0zymb5sKnh9Di6m6aYxcAAIuffesTtHlZD/ wmuZ3lu80O8ptX7oTjuWibzxCiCDwPbUgbSAeliIucm24t1kZ2s4u8YHfqagIoe1 xrqYAU4iU3eMgHURqNzVPE2FiforVuRY -----END CERTIFICATE-----Generated at Sun Jun 29 19:10:42 2025 by rpki-client