$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: OHxrsllOfyJNRotLJcluU+PG1PtIOKufoIFHoQ04ZvI= Subject key identifier: AC:D6:3A:A3:09:16:61:60:EF:EE:E1:5E:34:87:32:DF:E7:0F:4E:F0 Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0A6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0A57 Signing time: Fri 22 Aug 2025 19:49:32 +0000 Manifest this update: Fri 22 Aug 2025 19:49:31 +0000 Manifest next update: Fri 29 Aug 2025 19:49:31 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: 3hlwzh9bJhU0C5Nb4+FGKIwRUZRRitAd5Vkk5k4gSrQ=) 2: 57C25DB2E42811EA881AB667C4F9AE02.roa (hash: E9181+VVT+rwNNkc7uINFuNWW6wPgms9gTqr7A850dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2668 (0xa6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: Aug 22 19:49:31 2025 GMT Not After : Aug 29 19:49:31 2025 GMT Subject: CN=68a8c9cb-b2e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:26:bd:e7:f6:96:b0:10:e9:c8:dc:ed:0d:7c: 60:cd:60:b0:f3:8d:8e:5c:f5:f6:9d:36:bd:ce:dc: 23:04:66:d8:b7:0c:b9:f9:f1:aa:9b:da:c1:bd:61: cc:d5:17:f7:0c:f3:12:d4:3e:b5:67:b5:87:de:aa: da:e4:89:db:2b:74:31:0f:be:58:95:d0:3a:c5:1f: 97:2c:a0:a8:c3:0b:db:25:6b:1b:e6:d3:58:10:f8: 82:51:5f:1b:6c:7b:b3:16:aa:19:84:f9:40:db:98: 72:66:c1:4c:15:30:c1:3b:86:89:e6:86:01:11:eb: f0:fc:86:0b:71:ed:a2:3f:21:06:f4:ed:4b:ac:1d: ce:d0:f1:eb:64:05:d3:9c:43:33:54:73:2a:12:07: 32:15:62:ac:13:fe:51:09:0f:05:76:7b:41:8d:d6: 1c:30:4a:de:38:08:9c:69:cb:5b:6a:bf:a8:bd:6b: 78:9d:44:55:79:13:f5:fe:24:96:ef:64:1d:a3:36: 10:1c:f2:60:4a:9d:02:8a:56:14:08:18:0b:6f:2e: 2a:c8:59:cd:87:f4:52:57:72:32:df:c4:a4:d7:83: 41:7a:9c:44:39:36:f9:2c:ba:02:9f:94:9b:5f:86: 81:a8:93:76:a9:55:80:8b:46:c5:34:b5:fb:2b:6b: 8b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D6:3A:A3:09:16:61:60:EF:EE:E1:5E:34:87:32:DF:E7:0F:4E:F0 X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:7e:fd:a1:e4:75:04:f9:c6:6a:9b:c7:e9:f0:33:14:e9:91: 82:61:c5:48:20:ff:b6:eb:f1:51:1b:2a:0b:ff:40:18:23:b5: 30:7a:39:f6:a2:a7:1b:22:50:3c:03:c8:66:77:99:9e:91:62: 6d:da:c7:2a:65:2e:7f:44:e0:98:ea:9f:3c:c1:56:34:f7:ca: 62:3b:6c:51:a2:8a:f8:16:bd:d2:24:42:af:fb:8c:42:9a:ba: 86:3d:5e:17:d1:9f:0a:d6:f6:04:62:97:25:9b:1f:f4:8e:ed: 13:d9:68:63:aa:22:04:70:2f:90:f5:8e:76:fc:3f:6a:5c:83: d6:67:00:e4:2e:0b:a2:bc:66:8a:58:6b:09:31:b2:23:e6:63: 85:bf:24:f1:6d:a8:b3:3e:2b:fd:d3:1a:32:3b:2e:07:f9:9a: cf:4f:24:8c:4a:99:52:76:9a:2f:f9:60:37:f0:41:43:c3:3d: 09:54:0f:fd:ab:04:5e:bb:c5:3f:8f:c9:71:8f:68:2c:dc:da: d8:33:57:35:e1:60:68:6e:2b:11:36:80:a5:e7:55:10:82:e1: df:6a:3b:4d:5d:c3:a8:82:0a:00:01:3c:12:bd:ff:26:de:89: 3a:16:00:99:23:39:2f:23:87:bb:15:31:b5:90:f6:30:a3:06: d3:66:8b:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjUwODIyMTk0OTMxWhcNMjUwODI5MTk0OTMxWjAYMRYwFAYD VQQDEw02OGE4YzljYi1iMmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtya95/aWsBDpyNztDXxgzWCw842OXPX2nTa9ztwjBGbYtwy5+fGqm9rBvWHM 1Rf3DPMS1D61Z7WH3qra5InbK3QxD75YldA6xR+XLKCowwvbJWsb5tNYEPiCUV8b bHuzFqoZhPlA25hyZsFMFTDBO4aJ5oYBEevw/IYLce2iPyEG9O1LrB3O0PHrZAXT nEMzVHMqEgcyFWKsE/5RCQ8FdntBjdYcMEreOAicactbar+ovWt4nURVeRP1/iSW 72QdozYQHPJgSp0CilYUCBgLby4qyFnNh/RSV3Iy38Sk14NBepxEOTb5LLoCn5Sb X4aBqJN2qVWAi0bFNLX7K2uL+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzWOqMJ FmFg7+7hXjSHMt/nD07wMB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEfv2h5HUE+cZqm8fp8DMU6ZGCYcVIIP+26/FRGyoL/0AYI7Uwejn2 oqcbIlA8A8hmd5mekWJt2scqZS5/ROCY6p88wVY098piO2xRoor4Fr3SJEKv+4xC mrqGPV4X0Z8K1vYEYpclmx/0ju0T2WhjqiIEcC+Q9Y52/D9qXIPWZwDkLguivGaK WGsJMbIj5mOFvyTxbaizPiv90xoyOy4H+ZrPTySMSplSdpov+WA38EFDwz0JVA/9 qwReu8U/j8lxj2gs3NrYM1c14WBobisRNoCl51UQguHfajtNXcOoggoAATwSvf8m 3ok6FgCZIzkvI4e7FTG1kPYwowbTZosE -----END CERTIFICATE-----Generated at Sat Aug 23 14:33:22 2025 by rpki-client