$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft File: aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft (raw, json) Hash identifier: wb8pmHRakM7igP99xXd/gYZGjXd7AssQ6xyiI0A4H/Q= Subject key identifier: F8:0E:1F:6F:DD:EE:A3:52:98:47:2E:5C:AB:72:A8:7B:53:9F:11:22 Authority key identifier: 69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 Certificate issuer: /CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft Manifest number: 061D Signing time: Fri 22 Aug 2025 22:58:06 +0000 Manifest this update: Fri 22 Aug 2025 22:58:05 +0000 Manifest next update: Fri 29 Aug 2025 22:58:05 +0000 Files and hashes: 1: aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl (hash: fjvjzH8qSoZdTtneS0CLNyTz7Z/5JDNyxccNjRvMswo=) 2: 4BB44892AE1111EBB4C2DA11C4F9AE02.roa (hash: JNSnvB3lv0/9vnQPkUAqkaUeoo68hc8fXSyVzWlD/Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC146, serialNumber=690C729F18390564D670B18F7774754E5D279951 Validity Not Before: Aug 22 22:58:05 2025 GMT Not After : Aug 29 22:58:05 2025 GMT Subject: CN=68a8f5fd-e3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:bf:a4:fc:46:1d:bf:1c:cf:75:b2:8a:1e: d2:7c:b8:61:bc:99:79:da:a3:dd:23:63:3e:b3:74: ff:e1:9d:18:ae:5b:a1:33:89:3d:e2:f2:7e:34:0b: b5:71:88:e4:f6:31:78:de:8f:cc:89:84:5a:dc:6b: ae:44:cc:25:5b:ba:72:09:30:f1:04:3c:8f:67:e3: 97:e0:7a:2c:d9:86:7e:b5:87:78:5d:c9:45:33:de: 73:d5:8b:eb:26:b5:22:5e:6c:ee:7f:86:17:59:12: df:b4:71:96:fe:48:74:3f:d3:2d:78:fe:11:e4:c8: db:7b:38:82:d1:4b:eb:7e:0b:54:c6:b5:21:25:7a: 02:d4:a2:87:d0:fd:5e:34:e2:11:25:c1:e0:a2:e2: 43:ad:77:73:0a:99:22:47:76:75:0a:f7:4d:e2:49: 0e:cc:ed:3f:0d:5d:80:45:8d:5d:79:ce:ca:02:cd: 20:e3:99:43:cb:2f:2b:52:51:63:24:0c:54:f8:c8: 3a:7a:e8:77:e4:eb:22:11:e0:9a:6f:0b:98:dc:30: 9d:ac:a6:d2:15:3d:01:26:20:eb:86:98:fd:9c:46: 54:4e:83:ab:bc:be:79:f3:df:98:84:17:43:97:03: 82:86:df:0b:83:5c:ba:a7:37:ca:79:29:9b:e7:02: fb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0E:1F:6F:DD:EE:A3:52:98:47:2E:5C:AB:72:A8:7B:53:9F:11:22 X509v3 Authority Key Identifier: keyid:69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:6f:59:3f:97:6b:3a:cd:8c:ac:d3:b5:52:6f:1c:53:bc:31: 60:a0:b2:18:3f:e3:21:e9:9d:a1:d2:50:57:b2:a2:fa:56:f2: c7:9a:13:8d:c9:d0:69:1c:25:c3:8a:21:12:ae:8e:39:88:fb: 6c:fe:8e:96:bb:0e:30:ce:e2:00:b6:b6:96:5a:01:85:dd:85: 9a:0c:b8:b8:ec:7f:75:4b:db:ac:c1:6b:ad:58:a3:7b:01:e4: 15:bf:bf:10:67:8f:6a:a2:a8:2d:73:7a:ef:6d:5e:bd:e6:81: 77:b1:64:b7:da:4b:3b:53:58:48:d6:4b:9c:56:ad:32:98:57: 05:77:92:7a:17:3c:74:08:cb:2c:08:19:95:4b:61:d4:f8:95: 7c:23:d0:90:53:26:6f:85:cb:79:9d:96:17:1c:4d:e3:f5:dd: c8:54:b8:c0:1c:76:24:dd:aa:02:4b:a3:e0:e2:7a:70:1f:52: 97:50:34:f5:a1:bf:ee:59:01:54:30:23:04:0c:13:3a:f2:42: 1a:06:7d:55:74:24:46:c2:59:0b:e0:96:cc:3d:98:b4:70:f3: 6c:48:48:6b:7e:99:a7:99:e6:66:d5:e2:2e:38:0b:cf:b7:96: b8:58:8d:ae:f0:27:c0:61:63:19:63:9e:90:00:45:b7:e8:92: 0b:9d:bb:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMxNDYxMTAvBgNVBAUTKDY5MEM3MjlGMTgzOTA1NjRENjcwQjE4Rjc3NzQ3NTRF NUQyNzk5NTEwHhcNMjUwODIyMjI1ODA1WhcNMjUwODI5MjI1ODA1WjAYMRYwFAYD VQQDEw02OGE4ZjVmZC1lM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnS/pPxGHb8cz3Wyih7SfLhhvJl52qPdI2M+s3T/4Z0YrluhM4k94vJ+NAu1 cYjk9jF43o/MiYRa3GuuRMwlW7pyCTDxBDyPZ+OX4Hos2YZ+tYd4XclFM95z1Yvr JrUiXmzuf4YXWRLftHGW/kh0P9MteP4R5MjbeziC0UvrfgtUxrUhJXoC1KKH0P1e NOIRJcHgouJDrXdzCpkiR3Z1CvdN4kkOzO0/DV2ARY1dec7KAs0g45lDyy8rUlFj JAxU+Mg6euh35OsiEeCabwuY3DCdrKbSFT0BJiDrhpj9nEZUToOrvL5589+YhBdD lwOCht8Lg1y6pzfKeSmb5wL7/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgOH2/d 7qNSmEcuXKtyqHtTnxEiMB8GA1UdIwQYMBaAFGkMcp8YOQVk1nCxj3d0dU5dJ5lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzE0Ni9EQUE3NjQ5MkFF MEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJXVFdjTEdQZDNSMVRsMG5t VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FReHlueGc1QldUV2NMR1BkM1IxVGwwbm1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzE0Ni9EQUE3NjQ5MkFFMEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJX VFdjTEdQZDNSMVRsMG5tVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsb1k/l2s6zYys07VSbxxTvDFgoLIYP+Mh6Z2h0lBXsqL6VvLHmhON ydBpHCXDiiESro45iPts/o6Wuw4wzuIAtraWWgGF3YWaDLi47H91S9uswWutWKN7 AeQVv78QZ49qoqgtc3rvbV695oF3sWS32ks7U1hI1kucVq0ymFcFd5J6Fzx0CMss CBmVS2HU+JV8I9CQUyZvhct5nZYXHE3j9d3IVLjAHHYk3aoCS6Pg4npwH1KXUDT1 ob/uWQFUMCMEDBM68kIaBn1VdCRGwlkL4JbMPZi0cPNsSEhrfpmnmeZm1eIuOAvP t5a4WI2u8CfAYWMZY56QAEW36JILnbvB -----END CERTIFICATE-----Generated at Sun Aug 24 00:14:05 2025 by rpki-client