$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: mzfjqZkiCRBVHLLQvL3aH4dCxUdTDR+lcq98EWi9/u8= Subject key identifier: CD:B3:3F:E0:94:A3:B5:5C:D3:89:9F:5D:EA:21:69:FE:B4:0A:C3:D1 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05A3 Signing time: Sat 28 Jun 2025 22:47:45 +0000 Manifest this update: Sat 28 Jun 2025 22:47:44 +0000 Manifest next update: Sat 05 Jul 2025 22:47:44 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: XxXlWM4J+WImb9Dz+oaBnCNaH4kQL/B3maeNY+WoRVg=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Jun 28 22:47:44 2025 GMT Not After : Jul 5 22:47:44 2025 GMT Subject: CN=68607110-3594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f4:e2:af:77:72:6d:77:8f:16:63:88:60:46: fd:c2:e3:35:07:99:7f:e8:55:96:ae:1b:3b:be:ea: 30:03:bd:9b:ac:ef:29:59:2e:5d:53:31:9d:32:23: b1:27:9a:35:fe:b1:aa:9d:f6:08:67:47:d7:ad:a6: 55:7f:60:53:dc:7b:ec:b4:75:3f:81:62:3d:16:96: d6:af:5b:ef:b6:23:de:05:2f:86:6f:fd:8b:c5:10: 4e:1f:95:1f:90:b7:0e:d6:a8:bd:95:8a:21:bd:92: d8:2d:8d:10:2d:b4:75:2a:b7:18:d0:5d:68:a8:53: 2c:7c:2d:00:f0:bc:fb:b4:db:a0:36:1c:fd:f9:54: 06:01:8d:f0:c0:9d:3f:53:2e:8f:18:dd:86:33:1e: 77:0c:8b:7b:ce:21:d0:10:fc:f6:13:13:f8:cc:86: 75:22:68:52:7b:f6:57:f9:bb:2a:ad:57:0f:a4:15: 65:7f:59:2c:1c:f8:ff:13:44:e6:eb:92:bb:91:f2: 92:c9:d2:7c:dc:7c:00:d9:37:30:73:19:36:7c:e7: 39:a1:b3:ee:99:36:c6:98:d1:85:03:63:bb:11:50: 70:6c:bb:e2:8e:15:d2:ef:e8:eb:19:a4:e7:c2:74: 76:2b:8d:d8:fa:65:61:69:79:91:56:cc:aa:77:e9: 82:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B3:3F:E0:94:A3:B5:5C:D3:89:9F:5D:EA:21:69:FE:B4:0A:C3:D1 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:d2:d3:e3:9b:4b:fb:26:8b:f9:88:58:c7:7c:ae:50:14:ca: 57:8b:20:14:7f:32:10:57:8f:55:7b:1c:81:bb:92:98:de:b7: 0a:9f:41:2f:ad:aa:3b:9b:32:06:1b:e4:24:f2:a4:71:34:96: 6a:70:2e:1c:21:ed:b5:e1:44:52:04:e8:a3:82:8a:26:10:8d: b5:91:bd:40:e4:08:59:a1:41:1f:65:14:32:d6:7b:75:e1:ed: 30:89:37:a3:cf:72:49:ca:92:47:2c:59:92:76:d1:cd:4d:93: 37:9f:21:96:7a:bd:68:e0:04:3e:3c:3b:27:06:c9:c2:d1:41: dd:73:99:87:21:78:fe:de:20:68:98:88:fc:56:6f:01:9c:6b: de:f9:6e:14:b6:57:69:2b:26:f5:75:2d:a9:c8:87:59:39:7c: 57:ea:58:06:6a:20:e8:a9:cf:f9:9b:40:76:80:cd:9a:21:4a: 2c:a2:dd:99:f5:a3:3e:7c:26:9c:ce:4a:d5:20:a1:84:1f:fa: 99:72:fa:a9:7f:dd:2b:6a:f3:bb:b2:36:98:34:7f:9d:95:9a: c0:7a:7b:2f:d9:ca:94:2c:30:ff:da:ba:b5:ea:a5:20:a9:eb: e3:f9:3a:cd:f4:f1:4f:9f:58:db:09:29:cc:6a:13:21:47:a6: eb:a8:81:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwNjI4MjI0NzQ0WhcNMjUwNzA1MjI0NzQ0WjAYMRYwFAYD VQQDEw02ODYwNzExMC0zNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fTir3dybXePFmOIYEb9wuM1B5l/6FWWrhs7vuowA72brO8pWS5dUzGdMiOx J5o1/rGqnfYIZ0fXraZVf2BT3HvstHU/gWI9FpbWr1vvtiPeBS+Gb/2LxRBOH5Uf kLcO1qi9lYohvZLYLY0QLbR1KrcY0F1oqFMsfC0A8Lz7tNugNhz9+VQGAY3wwJ0/ Uy6PGN2GMx53DIt7ziHQEPz2ExP4zIZ1ImhSe/ZX+bsqrVcPpBVlf1ksHPj/E0Tm 65K7kfKSydJ83HwA2Tcwcxk2fOc5obPumTbGmNGFA2O7EVBwbLvijhXS7+jrGaTn wnR2K43Y+mVhaXmRVsyqd+mCzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2zP+CU o7Vc04mfXeohaf60CsPRMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA0tPjm0v7Jov5iFjHfK5QFMpXiyAUfzIQV49VexyBu5KY3rcKn0Ev rao7mzIGG+Qk8qRxNJZqcC4cIe214URSBOijgoomEI21kb1A5AhZoUEfZRQy1nt1 4e0wiTejz3JJypJHLFmSdtHNTZM3nyGWer1o4AQ+PDsnBsnC0UHdc5mHIXj+3iBo mIj8Vm8BnGve+W4UtldpKyb1dS2pyIdZOXxX6lgGaiDoqc/5m0B2gM2aIUosot2Z 9aM+fCaczkrVIKGEH/qZcvqpf90ravO7sjaYNH+dlZrAensv2cqULDD/2rq16qUg qevj+TrN9PFPn1jbCSnMahMhR6brqIFL -----END CERTIFICATE-----Generated at Mon Jun 30 13:19:23 2025 by rpki-client