$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft File: aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft (raw, json) Hash identifier: WF+8QAwLEFRrn+gJtClaZNeAp4ZEApz5FMdidAlPxb0= Subject key identifier: 87:46:66:5F:05:EF:45:E2:5A:02:D0:96:AB:D9:04:B1:F4:15:64:37 Authority key identifier: 69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 Certificate issuer: /CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Certificate serial: 0608 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft Manifest number: 0603 Signing time: Wed 02 Jul 2025 23:10:42 +0000 Manifest this update: Wed 02 Jul 2025 23:10:42 +0000 Manifest next update: Wed 09 Jul 2025 23:10:42 +0000 Files and hashes: 1: aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl (hash: Kr2dG9KHyJoU7dSF9rGjHUaRC2ZJv2D4KUjxXJiVbqY=) 2: 4BB44892AE1111EBB4C2DA11C4F9AE02.roa (hash: JNSnvB3lv0/9vnQPkUAqkaUeoo68hc8fXSyVzWlD/Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC146, serialNumber=690C729F18390564D670B18F7774754E5D279951 Validity Not Before: Jul 2 23:10:42 2025 GMT Not After : Jul 9 23:10:42 2025 GMT Subject: CN=6865bc72-e75f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:74:88:35:d0:f2:08:7f:5a:87:cb:57:33:40: 10:f1:e5:53:07:50:26:09:0d:be:10:53:ef:1b:e1: f0:7d:e3:68:64:fc:05:7e:72:80:c1:53:1e:9c:96: 27:eb:43:81:8b:a9:70:80:b6:37:81:c8:f3:3f:f9: 66:b5:9e:ec:6f:f1:a7:dd:c3:14:75:a4:56:66:9c: f7:d7:7a:6d:91:ee:6d:dc:c9:14:8d:db:ef:33:b1: 91:ff:5c:e4:90:d7:48:6c:ff:3c:a4:18:03:d0:a6: d2:d6:11:ab:c0:e1:52:29:b1:72:a5:2b:26:82:90: f6:40:49:2d:b7:ea:48:0a:1c:f0:b6:23:ce:5d:7f: 6a:c8:74:6f:4d:54:ea:f4:f3:e2:67:fb:b0:99:11: ce:3e:03:66:27:cf:49:d0:46:89:63:59:c3:a6:a5: 9f:28:a4:07:51:4f:30:df:7f:60:68:81:9d:6e:48: b2:df:ad:b9:dd:d8:a4:13:ce:b3:90:47:af:78:40: d2:98:1c:3a:be:df:47:14:1d:c0:95:e9:2b:87:02: 19:51:25:2f:c9:4a:8b:ab:0c:01:74:4a:1e:1d:e7: 0d:10:4f:11:a6:75:b4:95:87:22:cf:13:84:e4:c2: 51:e4:f6:d6:ee:30:61:6f:2d:ae:9f:06:00:48:cb: 30:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:46:66:5F:05:EF:45:E2:5A:02:D0:96:AB:D9:04:B1:F4:15:64:37 X509v3 Authority Key Identifier: keyid:69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:19:3a:87:ef:7d:68:35:57:2a:47:b0:69:27:d3:32:89:98: 29:bc:45:04:9a:97:2b:f4:0c:47:0c:2c:95:1f:da:95:58:43: a3:3b:26:e3:42:b7:7a:f2:f2:f1:8a:82:b4:55:f1:86:a9:25: e8:6a:68:6c:7e:74:86:e2:a8:71:85:93:92:bb:4f:90:15:af: 66:04:85:45:c8:6e:63:53:87:c9:eb:d0:4d:73:3b:61:af:16: da:64:f1:51:21:3a:a5:5e:82:16:fe:6f:bf:45:98:9a:76:2d: 86:f7:1e:7b:91:67:f4:0e:ab:95:e4:8b:6f:1d:82:19:24:30: a4:c1:e6:2e:29:3f:2a:e0:d7:7d:8e:6f:ad:20:70:e3:c0:61: e8:2b:56:3b:95:6f:de:46:c4:70:c2:db:e1:8f:c3:a9:e7:79: de:d7:41:03:d8:21:d3:95:c3:4d:9a:58:a9:73:fd:df:6c:00: c9:eb:de:7b:8c:54:34:4f:be:ec:7c:6a:f5:1e:0b:bd:35:9d: cb:cf:ff:74:f5:fb:08:84:dd:2a:f6:ce:0e:6c:f9:ca:7c:d1: 7d:72:b6:17:6f:5f:06:96:9c:c1:0f:30:c6:4c:c2:13:a3:2d: 4d:cc:8d:d6:51:33:63:32:eb:83:a4:81:1b:39:3d:51:87:a3: 8a:d5:f5:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMxNDYxMTAvBgNVBAUTKDY5MEM3MjlGMTgzOTA1NjRENjcwQjE4Rjc3NzQ3NTRF NUQyNzk5NTEwHhcNMjUwNzAyMjMxMDQyWhcNMjUwNzA5MjMxMDQyWjAYMRYwFAYD VQQDEw02ODY1YmM3Mi1lNzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHSINdDyCH9ah8tXM0AQ8eVTB1AmCQ2+EFPvG+HwfeNoZPwFfnKAwVMenJYn 60OBi6lwgLY3gcjzP/lmtZ7sb/Gn3cMUdaRWZpz313ptke5t3MkUjdvvM7GR/1zk kNdIbP88pBgD0KbS1hGrwOFSKbFypSsmgpD2QEktt+pIChzwtiPOXX9qyHRvTVTq 9PPiZ/uwmRHOPgNmJ89J0EaJY1nDpqWfKKQHUU8w339gaIGdbkiy36253dikE86z kEeveEDSmBw6vt9HFB3AlekrhwIZUSUvyUqLqwwBdEoeHecNEE8RpnW0lYcizxOE 5MJR5PbW7jBhby2unwYASMswswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdGZl8F 70XiWgLQlqvZBLH0FWQ3MB8GA1UdIwQYMBaAFGkMcp8YOQVk1nCxj3d0dU5dJ5lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzE0Ni9EQUE3NjQ5MkFF MEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJXVFdjTEdQZDNSMVRsMG5t VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FReHlueGc1QldUV2NMR1BkM1IxVGwwbm1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzE0Ni9EQUE3NjQ5MkFFMEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJX VFdjTEdQZDNSMVRsMG5tVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrGTqH731oNVcqR7BpJ9MyiZgpvEUEmpcr9AxHDCyVH9qVWEOjOybj Qrd68vLxioK0VfGGqSXoamhsfnSG4qhxhZOSu0+QFa9mBIVFyG5jU4fJ69BNczth rxbaZPFRITqlXoIW/m+/RZiadi2G9x57kWf0DquV5ItvHYIZJDCkweYuKT8q4Nd9 jm+tIHDjwGHoK1Y7lW/eRsRwwtvhj8Op53ne10ED2CHTlcNNmlipc/3fbADJ6957 jFQ0T77sfGr1Hgu9NZ3Lz/909fsIhN0q9s4ObPnKfNF9crYXb18GlpzBDzDGTMIT oy1NzI3WUTNjMuuDpIEbOT1Rh6OK1fW0 -----END CERTIFICATE-----Generated at Thu Jul 3 10:20:28 2025 by rpki-client