$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: FuAs6m/gspGEc80MZMyGR7wRnhR0+6qS/EaBLsv3O1M= Subject key identifier: 0E:43:96:F4:F4:D1:F1:40:10:DD:13:2D:2D:01:92:F1:29:F1:30:6C Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 07E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 07DF Signing time: Fri 22 Aug 2025 21:12:26 +0000 Manifest this update: Fri 22 Aug 2025 21:12:26 +0000 Manifest next update: Fri 29 Aug 2025 21:12:26 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: 0AKqhVEtbfrmwyf0x2xfKgSiPCuJouynQXtJWtoxB1o=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: 1JW5KMonI+myYbgnoGZrN58lfkI/ChrhCIGbsfRSUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Aug 22 21:12:26 2025 GMT Not After : Aug 29 21:12:26 2025 GMT Subject: CN=68a8dd3a-4cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:82:64:b7:bf:c9:50:5c:3c:d8:15:11:80:66: 0b:7f:4f:06:9e:e8:a4:ab:92:ee:d6:0f:7d:30:a5: 50:56:a8:57:4c:cb:81:ab:b3:0e:4d:51:66:95:63: 0f:8e:6c:ff:1e:fd:72:77:43:33:0a:e7:f3:c9:04: ab:20:66:6c:b5:35:ef:ea:20:21:07:20:13:6c:a4: e2:2c:c7:8d:ab:45:e5:fd:71:84:98:98:ea:e0:cc: 68:c3:91:18:05:93:74:29:ac:e4:f0:78:7a:7d:52: b1:e9:bf:39:f3:4f:00:22:fa:df:40:c0:4b:12:04: 30:ba:e1:6b:27:25:7e:ad:e9:99:25:56:1e:06:f4: 2e:1c:21:f1:7b:5f:dc:c9:d9:d6:33:ec:f2:66:fa: 68:40:9a:b4:cc:cc:fa:65:0e:18:00:d9:3a:ba:7f: 37:50:7c:1e:34:f1:fd:78:dd:9c:af:7e:0d:73:a6: eb:11:ec:cd:c0:37:9c:fe:c8:f6:c4:ba:29:8c:7e: b2:fe:65:b0:db:c2:f6:40:e9:db:c8:b3:d7:c0:9d: 2d:a5:07:6e:5b:12:7c:49:dc:54:2f:f7:6f:6d:ff: f6:5a:47:d2:42:bd:64:5d:c0:68:b9:28:ee:43:13: 31:c4:a2:8d:59:35:5b:5a:5d:a2:4b:f9:36:bf:3b: 28:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:43:96:F4:F4:D1:F1:40:10:DD:13:2D:2D:01:92:F1:29:F1:30:6C X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:6a:35:2f:76:a7:2c:64:7b:ca:f1:cd:9a:81:dd:c5:7b:21: 03:6a:65:8d:9d:22:1f:62:44:fd:4a:25:58:d4:e0:17:d5:3b: 23:91:95:9f:7a:41:6f:07:f5:ce:b8:c7:06:96:28:9c:3c:5d: 09:a9:b0:d7:d4:e1:2f:93:54:9d:e8:51:82:15:44:93:e5:52: 67:d4:94:d4:35:96:d3:6f:42:56:65:c1:a9:b7:b3:1e:4b:28: 4b:04:34:7e:22:a5:a4:cf:c1:64:0d:b4:e4:83:3e:8e:ea:40: c1:bd:c1:44:9f:aa:5d:57:9c:5b:14:57:e2:42:a0:e1:80:f4: bd:b5:61:46:de:dc:bb:3b:ae:18:af:1d:ed:e1:c7:bb:68:09: cc:bb:fd:f2:76:0e:2a:b0:8f:e7:58:1c:01:6b:19:7a:4c:80: 1b:70:ba:88:03:96:3c:fd:0a:47:02:94:24:4b:f8:d1:5f:e8: ce:ad:c9:30:ff:2f:f0:0e:5d:d2:94:ed:04:ae:d1:18:90:56: 10:cc:8d:26:04:25:42:b0:de:b8:15:5b:d0:83:54:8b:8e:fb: dd:4b:de:7b:84:46:da:5d:2a:b6:d2:92:0b:f1:50:9c:9b:74: 29:c7:df:f8:9d:5d:15:eb:28:5a:3c:3a:04:85:cb:21:70:d0: b4:19:e6:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUwODIyMjExMjI2WhcNMjUwODI5MjExMjI2WjAYMRYwFAYD VQQDEw02OGE4ZGQzYS00Y2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IJkt7/JUFw82BURgGYLf08Gnuikq5Lu1g99MKVQVqhXTMuBq7MOTVFmlWMP jmz/Hv1yd0MzCufzyQSrIGZstTXv6iAhByATbKTiLMeNq0Xl/XGEmJjq4Mxow5EY BZN0Kazk8Hh6fVKx6b85808AIvrfQMBLEgQwuuFrJyV+remZJVYeBvQuHCHxe1/c ydnWM+zyZvpoQJq0zMz6ZQ4YANk6un83UHweNPH9eN2cr34Nc6brEezNwDec/sj2 xLopjH6y/mWw28L2QOnbyLPXwJ0tpQduWxJ8SdxUL/dvbf/2WkfSQr1kXcBouSju QxMxxKKNWTVbWl2iS/k2vzsobwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5DlvT0 0fFAEN0TLS0BkvEp8TBsMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1ajUvdqcsZHvK8c2agd3FeyEDamWNnSIfYkT9SiVY1OAX1TsjkZWf ekFvB/XOuMcGliicPF0JqbDX1OEvk1Sd6FGCFUST5VJn1JTUNZbTb0JWZcGpt7Me SyhLBDR+IqWkz8FkDbTkgz6O6kDBvcFEn6pdV5xbFFfiQqDhgPS9tWFG3ty7O64Y rx3t4ce7aAnMu/3ydg4qsI/nWBwBaxl6TIAbcLqIA5Y8/QpHApQkS/jRX+jOrckw /y/wDl3SlO0ErtEYkFYQzI0mBCVCsN64FVvQg1SLjvvdS957hEbaXSq20pIL8VCc m3Qpx9/4nV0V6yhaPDoEhcshcNC0Gebt -----END CERTIFICATE-----Generated at Sat Aug 23 21:24:32 2025 by rpki-client