$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: 1zYxCrAMoqv7ZcVsyWf+qv+0CDQeZDGucQIJCUwt9Lk= Subject key identifier: C7:45:60:1A:88:DB:E6:55:0A:72:F9:39:BA:43:48:62:DB:C0:CF:1E Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0688 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 067A Signing time: Wed 06 Aug 2025 22:48:36 +0000 Manifest this update: Wed 06 Aug 2025 22:48:36 +0000 Manifest next update: Wed 13 Aug 2025 22:48:36 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: lvoITPo2isw8vW3BAdCP8yaL+GrHBX0jY+HvMTupu44=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Aug 6 22:48:36 2025 GMT Not After : Aug 13 22:48:36 2025 GMT Subject: CN=6893dbc4-d0fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2d:1c:35:03:52:bd:5a:98:fa:e3:c6:40:30: d4:8d:2b:0d:f4:a5:e8:a0:c7:ef:18:55:2a:2e:54: c3:01:21:23:2f:0d:b1:03:ab:25:8c:a7:64:a6:01: 69:3d:d4:de:ab:9b:26:30:dd:f9:33:9c:6f:e0:88: 60:43:fb:b5:17:8a:bc:01:c1:4d:a2:0d:4d:8f:d0: 82:dd:50:b6:8d:9a:01:f3:70:14:33:9c:e0:87:7f: 87:62:22:12:88:19:4b:69:40:28:13:71:b8:30:90: c0:02:93:4a:1c:f2:07:37:16:53:90:fa:53:68:9f: 3d:c1:81:90:74:89:ed:c2:13:24:c7:42:a1:5b:58: 82:19:5a:b1:6a:b5:15:92:9c:ab:4c:b5:f9:60:dd: 9c:13:65:36:6c:a0:30:12:b2:af:4a:30:de:9d:95: 68:eb:cf:e8:4e:46:15:fe:a2:63:4c:64:7f:71:9d: 25:e0:5c:4f:9d:25:78:f6:3f:24:35:d4:a6:4c:28: 23:c2:d1:03:d9:94:a1:5c:4f:80:f5:0f:7f:96:e4: 84:36:b4:8d:91:af:c7:1e:a9:a5:75:d4:85:51:a7: 83:08:05:ce:5e:7b:3d:94:31:36:04:1e:0e:38:e9: bc:55:44:89:f0:86:5d:52:2c:e2:7f:b3:33:2a:f4: db:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:45:60:1A:88:DB:E6:55:0A:72:F9:39:BA:43:48:62:DB:C0:CF:1E X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:2c:ca:37:cf:7c:4a:9f:ac:6e:6a:cf:4a:1b:2a:76:33:03: ac:af:5f:97:6b:97:8c:f0:37:5c:43:86:be:89:50:20:5f:ac: d0:fa:55:8f:23:e1:b8:38:52:dc:38:b3:ba:2e:b0:cd:60:45: 13:be:af:69:84:dd:76:f3:1e:af:c5:40:64:d7:21:f3:87:07: 28:f5:05:4b:ef:f2:36:33:a6:77:55:60:f7:68:83:9c:85:84: 68:21:f1:f1:7f:d6:6d:d6:d2:ad:86:c9:7a:42:69:e1:b4:32: ac:4f:e1:d9:39:e5:27:24:35:a8:75:2b:e4:f0:46:c8:27:c9: f5:0b:1b:ed:1b:2c:12:b8:7c:d3:ec:b4:06:e8:f7:37:61:9d: 04:09:81:e0:65:a8:1e:62:79:3d:8e:b7:ea:95:eb:16:97:ad: ea:72:35:d8:bd:1a:0a:55:14:ec:8b:7b:5e:bc:9b:da:15:77: 1a:9e:20:24:a0:0c:10:40:0a:db:43:fb:57:fc:1a:b5:d0:97: fc:7a:c8:91:fa:05:f1:6d:6f:a5:9b:6c:c2:d6:c3:e2:c1:4d: 87:f2:b5:89:dc:7e:78:54:f9:36:96:6e:99:77:06:d7:36:00: cd:ad:fa:15:1c:24:36:73:79:10:15:01:62:45:53:dd:9a:ad: fe:0d:41:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUwODA2MjI0ODM2WhcNMjUwODEzMjI0ODM2WjAYMRYwFAYD VQQDEw02ODkzZGJjNC1kMGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3C0cNQNSvVqY+uPGQDDUjSsN9KXooMfvGFUqLlTDASEjLw2xA6sljKdkpgFp PdTeq5smMN35M5xv4IhgQ/u1F4q8AcFNog1Nj9CC3VC2jZoB83AUM5zgh3+HYiIS iBlLaUAoE3G4MJDAApNKHPIHNxZTkPpTaJ89wYGQdIntwhMkx0KhW1iCGVqxarUV kpyrTLX5YN2cE2U2bKAwErKvSjDenZVo68/oTkYV/qJjTGR/cZ0l4FxPnSV49j8k NdSmTCgjwtED2ZShXE+A9Q9/luSENrSNka/HHqmlddSFUaeDCAXOXns9lDE2BB4O OOm8VUSJ8IZdUizif7MzKvTb0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdFYBqI 2+ZVCnL5ObpDSGLbwM8eMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRLMo3z3xKn6xuas9KGyp2MwOsr1+Xa5eM8DdcQ4a+iVAgX6zQ+lWP I+G4OFLcOLO6LrDNYEUTvq9phN128x6vxUBk1yHzhwco9QVL7/I2M6Z3VWD3aIOc hYRoIfHxf9Zt1tKthsl6QmnhtDKsT+HZOeUnJDWodSvk8EbIJ8n1CxvtGywSuHzT 7LQG6Pc3YZ0ECYHgZageYnk9jrfqlesWl63qcjXYvRoKVRTsi3tevJvaFXcaniAk oAwQQArbQ/tX/Bq10Jf8esiR+gXxbW+lm2zC1sPiwU2H8rWJ3H54VPk2lm6ZdwbX NgDNrfoVHCQ2c3kQFQFiRVPdmq3+DUEa -----END CERTIFICATE-----Generated at Thu Aug 7 04:24:15 2025 by rpki-client