$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: gK9U3kg+0NgdNYlA4YbCvbbwT9pd84psxRDjdoPLewo= Subject key identifier: 79:DF:DD:73:4E:0A:B5:1D:A5:18:0C:73:5F:F2:1D:47:6B:08:C6:09 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05BF Signing time: Fri 22 Aug 2025 23:18:08 +0000 Manifest this update: Fri 22 Aug 2025 23:18:08 +0000 Manifest next update: Fri 29 Aug 2025 23:18:08 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: HJ33vm58YwjrKXMXSrtXLEf8EhgENkTWCFOXPUyzWU4=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:18:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1488 (0x5d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Aug 22 23:18:08 2025 GMT Not After : Aug 29 23:18:08 2025 GMT Subject: CN=68a8fab0-6725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:88:8f:a8:fe:82:80:fc:db:6f:0a:3e:c4:79: 7e:37:c4:12:43:b8:99:7e:63:b9:53:2a:df:e0:c2: 45:55:47:21:94:72:92:0c:bc:56:ef:25:43:48:cd: 65:47:d4:59:ad:37:b5:eb:20:14:d3:b1:b5:85:c9: f4:7e:98:4a:fc:d4:81:63:99:4f:5c:8a:5c:38:42: 5e:91:ad:d3:0e:de:5e:02:b5:41:da:73:89:53:05: 81:a5:9a:95:88:1d:29:fb:45:ee:32:9a:5f:79:dd: 54:37:fe:ef:34:d5:40:98:89:86:48:8d:f2:76:79: 09:3c:3d:4e:ae:51:d9:30:ee:93:fd:3c:59:24:e6: 6e:7a:75:2c:55:a5:8b:0d:78:f9:57:ff:d9:cd:29: 60:80:b4:25:fa:9d:ae:13:35:f5:9f:98:41:a7:5f: f4:07:8e:33:a2:26:4a:7c:d7:62:55:80:16:46:ce: c6:2c:a4:50:2f:c8:d9:c1:f7:85:9b:21:db:69:55: 14:f7:49:7e:17:d2:c7:07:21:d9:4a:f0:c5:e2:6e: 61:07:d0:b1:3a:97:8c:ef:2c:ff:5b:9b:89:30:4a: c6:e7:a5:50:69:b3:d3:7a:61:07:c1:0a:89:4e:fb: 7c:20:62:88:a4:19:78:ca:a8:a4:31:78:d6:cf:97: 9f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:DF:DD:73:4E:0A:B5:1D:A5:18:0C:73:5F:F2:1D:47:6B:08:C6:09 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:0f:11:4f:f0:47:f4:8b:29:85:31:e4:f7:0c:ea:9c:c8:70: 20:f9:50:78:72:ae:df:c7:f3:e1:89:67:66:04:28:dd:e3:03: 29:c9:a8:70:23:7c:5a:db:9d:dd:82:4c:e4:89:c5:95:5d:86: 79:72:88:98:7a:36:6b:53:9a:3e:9b:27:00:ce:1f:e7:b0:00: fc:20:7d:aa:93:57:47:f0:40:08:7b:f5:b4:58:03:39:8d:30: 98:11:8b:c3:80:82:1d:df:16:25:ef:a8:fb:fc:b7:08:a1:f3: ba:73:7f:77:63:35:9c:6a:d2:ec:47:01:1e:e0:2d:f5:19:3c: 6c:0a:b3:06:fc:25:57:2f:28:3d:e5:a9:cc:f6:f2:1e:27:06: 5f:bf:33:cc:4f:b9:3c:20:60:df:63:34:a8:c6:24:7f:ed:ff: e9:34:77:a7:69:ba:b0:9c:9e:82:1f:19:7e:a0:30:bc:36:c7: 88:d0:ee:bd:e7:c0:35:e5:d4:c5:6d:6d:16:f3:2e:ce:cd:3c: 89:a5:c6:1a:14:96:bc:b1:46:24:0b:34:89:d3:5d:a6:e0:e7: af:4f:63:d9:a9:e7:d4:2f:7a:3a:41:bb:86:c0:ed:dd:14:5a: 7d:43:03:cc:bd:0f:80:73:c3:eb:8c:0b:e7:98:40:00:f2:a8: 51:9a:52:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwODIyMjMxODA4WhcNMjUwODI5MjMxODA4WjAYMRYwFAYD VQQDEw02OGE4ZmFiMC02NzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYiPqP6CgPzbbwo+xHl+N8QSQ7iZfmO5Uyrf4MJFVUchlHKSDLxW7yVDSM1l R9RZrTe16yAU07G1hcn0fphK/NSBY5lPXIpcOEJeka3TDt5eArVB2nOJUwWBpZqV iB0p+0XuMppfed1UN/7vNNVAmImGSI3ydnkJPD1OrlHZMO6T/TxZJOZuenUsVaWL DXj5V//ZzSlggLQl+p2uEzX1n5hBp1/0B44zoiZKfNdiVYAWRs7GLKRQL8jZwfeF myHbaVUU90l+F9LHByHZSvDF4m5hB9CxOpeM7yz/W5uJMErG56VQabPTemEHwQqJ Tvt8IGKIpBl4yqikMXjWz5ef6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnf3XNO CrUdpRgMc1/yHUdrCMYJMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBDxFP8Ef0iymFMeT3DOqcyHAg+VB4cq7fx/PhiWdmBCjd4wMpyahw I3xa253dgkzkicWVXYZ5coiYejZrU5o+mycAzh/nsAD8IH2qk1dH8EAIe/W0WAM5 jTCYEYvDgIId3xYl76j7/LcIofO6c393YzWcatLsRwEe4C31GTxsCrMG/CVXLyg9 5anM9vIeJwZfvzPMT7k8IGDfYzSoxiR/7f/pNHenabqwnJ6CHxl+oDC8NseI0O69 58A15dTFbW0W8y7OzTyJpcYaFJa8sUYkCzSJ012m4OevT2PZqefUL3o6QbuGwO3d FFp9QwPMvQ+Ac8PrjAvnmEAA8qhRmlLX -----END CERTIFICATE-----Generated at Sat Aug 23 18:33:20 2025 by rpki-client