$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft File: 24aQ9k5_gyrPw6am6EIdQXfIlPY.mft (raw, json) Hash identifier: S7T1JNyrPysJwpSTQV+OK1NOEA4YWoCzF7jAzzKoCNU= Subject key identifier: FC:6C:0F:3A:01:21:56:B9:9D:2C:13:4B:39:A3:7F:F8:03:25:C6:7A Authority key identifier: DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 Certificate issuer: /CN=A91F0FAA/serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft Manifest number: 01A8 Signing time: Sat 23 Aug 2025 03:20:55 +0000 Manifest this update: Sat 23 Aug 2025 03:20:54 +0000 Manifest next update: Sat 30 Aug 2025 03:20:54 +0000 Files and hashes: 1: 24aQ9k5_gyrPw6am6EIdQXfIlPY.crl (hash: apf17AdigQ2ZYsPP3gAyqP4qDG2BjtjZ+/mUBbknvL0=) 2: 6B5723D8F89F11ED8F29921CC4F9AE02.roa (hash: SdXEUbD7bDMQhTYpbl9h+rsPxGL65X2f3Ma+s3etM2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FAA, serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Validity Not Before: Aug 23 03:20:54 2025 GMT Not After : Aug 30 03:20:54 2025 GMT Subject: CN=68a93397-3995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:46:f0:93:f8:ec:6e:3c:8a:ae:a7:8c:c3:49: cc:26:18:fc:16:e7:bc:0e:d8:31:cb:eb:27:6b:70: 2b:fe:f1:8a:33:26:e9:e7:3f:4c:6a:f5:31:87:b6: 39:4b:ad:d7:02:65:ad:fe:4b:a3:13:a3:b7:53:61: ca:4b:47:73:84:ac:8f:c7:99:8e:5e:9d:fc:d2:a7: 76:87:a8:0d:df:71:4e:7a:b1:99:ab:d3:ff:37:6a: e3:ff:b6:5b:e5:f9:e7:e6:1a:b0:01:fc:f9:85:c8: fb:dc:0b:87:13:97:5c:12:f6:41:e2:fc:0b:43:90: 5d:bc:b3:e0:e0:42:aa:6a:62:39:59:bf:38:57:eb: 41:cb:3e:e5:ef:d9:d5:8f:cd:6f:c7:79:68:ca:b1: 89:00:e7:d4:2d:d2:d9:31:c8:25:f0:75:54:10:b4: 63:7c:49:c1:f5:2c:d9:a1:c4:04:ed:77:b5:65:04: 2a:62:7e:a0:01:26:34:0a:7d:a3:24:e2:e4:02:7d: b3:77:9a:e1:3f:25:72:f0:bf:69:fc:26:60:f1:fe: 2d:4f:40:4a:da:31:d5:95:83:b7:c1:da:7b:f4:8d: d8:b8:e3:86:36:a3:de:ae:41:54:c6:d2:2f:5c:cf: 73:d0:ba:99:fe:d5:26:d9:9a:b9:de:bd:61:e3:22: 70:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6C:0F:3A:01:21:56:B9:9D:2C:13:4B:39:A3:7F:F8:03:25:C6:7A X509v3 Authority Key Identifier: keyid:DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:0c:53:4d:22:36:82:e7:e5:a6:f6:08:24:e9:4a:35:df:81: 37:a4:cc:22:3f:ca:fb:12:65:66:b8:01:c3:dd:af:98:0b:79: 36:4a:54:41:06:ff:d4:1d:33:d3:20:73:58:33:84:92:2f:17: 6a:d2:d5:fd:ea:d9:3d:5c:62:f0:26:5f:59:bb:84:e2:29:50: d4:4d:8b:ea:75:46:cf:61:33:68:84:11:0f:9b:6f:ef:6e:76: eb:16:e3:17:4b:43:63:0c:e7:d2:f0:23:a8:17:fe:00:75:75: 4e:e9:d1:f5:e4:a7:e1:68:1f:9e:39:49:b8:69:10:c3:e9:43: ba:48:7a:eb:97:8c:ba:ac:de:19:62:4a:6a:80:6f:68:42:4c: b0:96:34:3b:87:1e:be:bb:1a:d7:25:56:48:b8:db:4f:91:57: ea:f0:0a:01:dd:e7:8f:eb:a0:e2:73:e4:9e:c9:86:6b:d1:a4: 11:12:3b:78:1d:2d:a2:20:29:94:57:7c:27:ab:07:54:51:8e: 55:82:fe:1b:99:59:8f:b9:ba:a0:c1:86:d8:d8:d8:15:d6:6b: 08:2e:8e:53:ff:7e:85:9c:5b:11:82:5e:ad:51:c5:44:88:46: c1:75:a6:98:a2:e2:93:85:af:c0:bd:8e:6e:54:24:2b:11:6e: 13:54:5f:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQUExMTAvBgNVBAUTKERCODY5MEY2NEU3RjgzMkFDRkMzQTZBNkU4NDIxRDQx NzdDODk0RjYwHhcNMjUwODIzMDMyMDU0WhcNMjUwODMwMDMyMDU0WjAYMRYwFAYD VQQDEw02OGE5MzM5Ny0zOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0bwk/jsbjyKrqeMw0nMJhj8Fue8Dtgxy+sna3Ar/vGKMybp5z9MavUxh7Y5 S63XAmWt/kujE6O3U2HKS0dzhKyPx5mOXp380qd2h6gN33FOerGZq9P/N2rj/7Zb 5fnn5hqwAfz5hcj73AuHE5dcEvZB4vwLQ5BdvLPg4EKqamI5Wb84V+tByz7l79nV j81vx3loyrGJAOfULdLZMcgl8HVUELRjfEnB9SzZocQE7Xe1ZQQqYn6gASY0Cn2j JOLkAn2zd5rhPyVy8L9p/CZg8f4tT0BK2jHVlYO3wdp79I3YuOOGNqPerkFUxtIv XM9z0LqZ/tUm2Zq53r1h4yJw+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxsDzoB IVa5nSwTSzmjf/gDJcZ6MB8GA1UdIwQYMBaAFNuGkPZOf4Mqz8OmpuhCHUF3yJT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZBQS9GRTEwMUNDQ0Y4 OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5clB3NmFtNkVJZFFYZkls UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI0YVE5azVfZ3lyUHc2YW02RUlkUVhmSWxQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZBQS9GRTEwMUNDQ0Y4OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5 clB3NmFtNkVJZFFYZklsUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXDFNNIjaC5+Wm9ggk6Uo134E3pMwiP8r7EmVmuAHD3a+YC3k2SlRB Bv/UHTPTIHNYM4SSLxdq0tX96tk9XGLwJl9Zu4TiKVDUTYvqdUbPYTNohBEPm2/v bnbrFuMXS0NjDOfS8COoF/4AdXVO6dH15KfhaB+eOUm4aRDD6UO6SHrrl4y6rN4Z YkpqgG9oQkywljQ7hx6+uxrXJVZIuNtPkVfq8AoB3eeP66Dic+SeyYZr0aQREjt4 HS2iICmUV3wnqwdUUY5Vgv4bmVmPubqgwYbY2NgV1msILo5T/36FnFsRgl6tUcVE iEbBdaaYouKTha/AvY5uVCQrEW4TVF/Z -----END CERTIFICATE-----Generated at Sat Aug 23 22:36:46 2025 by rpki-client