$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: 6zve8yUOR+OwikQYip0QCsiRH0gL4uHPXip65jFzv48= Subject key identifier: 9B:85:BA:67:15:B2:F4:9E:CE:42:FC:08:4D:EA:05:5D:B9:0E:46:B2 Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 0611 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 060C Signing time: Sun 10 Aug 2025 22:54:54 +0000 Manifest this update: Sun 10 Aug 2025 22:54:52 +0000 Manifest next update: Sun 17 Aug 2025 22:54:52 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: CixoGtTdrZVlzhBpUtf0dhNvaLc9D4XbjmhWhyGdg3g=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: x6RJn5oQmyrZkTIL+jnIDh/DG4GNtduzvhq+KZOjCjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Aug 10 22:54:52 2025 GMT Not After : Aug 17 22:54:52 2025 GMT Subject: CN=6899233d-bc97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:97:29:04:87:2f:67:4b:8e:58:80:df:ba:97: 07:cf:7c:da:97:20:11:60:68:da:07:d2:f1:73:a9: 75:9a:bc:28:ab:e5:b1:c1:6c:42:18:93:5b:69:56: 96:9c:35:27:0a:49:4b:05:91:7f:70:ff:c4:ac:d4: c7:89:65:c0:ee:e8:95:bd:21:51:37:a5:3b:7a:0b: e5:2b:f2:17:3a:28:8f:52:e8:7f:b3:5e:03:d8:b4: 19:5e:f8:77:01:53:08:c8:98:6e:09:f1:03:77:e1: 10:dc:8f:5e:5d:f4:e1:ce:7c:d8:61:07:55:c9:4a: fd:2b:b7:d2:af:4c:14:67:30:0a:42:7b:da:bd:e5: 34:f7:61:e2:65:28:3c:5f:a0:e6:ce:18:64:fb:be: e2:d8:5a:23:6e:ec:b7:52:85:4e:45:70:bc:81:21: 06:4e:e6:30:39:4e:0b:82:2b:0c:2b:b7:12:2f:79: 33:38:95:88:88:8e:df:e2:e5:5b:2b:6a:0d:6f:35: e1:78:25:7c:74:2c:34:2f:f1:f7:3a:c4:a5:4d:7d: ff:49:b2:b6:82:4c:f9:17:88:8e:6f:0d:64:f1:c3: eb:0b:e9:ae:08:d9:dd:4c:a8:b8:64:73:79:34:8c: 4f:d6:1c:12:5d:b3:2a:97:94:77:1a:a6:4f:7b:2a: 33:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:85:BA:67:15:B2:F4:9E:CE:42:FC:08:4D:EA:05:5D:B9:0E:46:B2 X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:3b:ce:9d:de:8d:f8:12:08:22:6a:9c:27:9b:c3:13:1b:40: 88:58:c8:0e:c8:89:3c:ef:09:e2:ba:9d:83:82:fc:37:f6:e8: 3b:4f:c9:48:47:05:00:08:1d:89:a1:83:f8:4a:f9:0a:cc:70: 88:81:c4:98:d6:1f:2f:8f:6b:f1:ea:0e:55:14:8b:04:31:d1: 73:1e:b2:78:e6:f0:5f:d7:43:df:d9:67:06:15:0a:ce:68:0a: c2:7a:31:e1:aa:81:57:32:d3:a8:1a:23:23:87:95:84:2c:a8: a6:17:b0:b5:7b:c7:8b:15:45:ee:35:2e:12:21:a6:be:19:2b: 8f:ca:03:a0:52:ba:89:bb:4e:dc:e5:da:e9:37:33:5a:7d:28: 30:5b:10:80:f7:15:f4:66:2f:32:fd:16:79:52:fc:14:9b:16: b7:b1:26:9e:5a:55:89:75:a7:9b:44:7a:c6:d1:b0:fd:c7:6d: fc:da:ea:81:5d:bb:3d:b3:61:93:9e:00:09:82:1f:40:cf:01: 9f:9b:95:c4:54:c8:58:cb:9f:cb:95:d1:79:77:fa:aa:65:3d: 62:83:e3:b1:d3:3b:9f:87:b3:d9:e4:04:80:e3:f7:8a:db:f0: 54:1d:3e:d4:66:1c:32:c8:f4:9c:6f:95:8a:3b:5c:9f:2d:d7: 8a:79:11:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwODEwMjI1NDUyWhcNMjUwODE3MjI1NDUyWjAYMRYwFAYD VQQDEw02ODk5MjMzZC1iYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05cpBIcvZ0uOWIDfupcHz3zalyARYGjaB9Lxc6l1mrwoq+WxwWxCGJNbaVaW nDUnCklLBZF/cP/ErNTHiWXA7uiVvSFRN6U7egvlK/IXOiiPUuh/s14D2LQZXvh3 AVMIyJhuCfEDd+EQ3I9eXfThznzYYQdVyUr9K7fSr0wUZzAKQnvaveU092HiZSg8 X6Dmzhhk+77i2Fojbuy3UoVORXC8gSEGTuYwOU4LgisMK7cSL3kzOJWIiI7f4uVb K2oNbzXheCV8dCw0L/H3OsSlTX3/SbK2gkz5F4iObw1k8cPrC+muCNndTKi4ZHN5 NIxP1hwSXbMql5R3GqZPeyozYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuFumcV svSezkL8CE3qBV25DkayMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwO86d3o34Eggiapwnm8MTG0CIWMgOyIk87wniup2Dgvw39ug7T8lI RwUACB2JoYP4SvkKzHCIgcSY1h8vj2vx6g5VFIsEMdFzHrJ45vBf10Pf2WcGFQrO aArCejHhqoFXMtOoGiMjh5WELKimF7C1e8eLFUXuNS4SIaa+GSuPygOgUrqJu07c 5drpNzNafSgwWxCA9xX0Zi8y/RZ5UvwUmxa3sSaeWlWJdaebRHrG0bD9x2382uqB Xbs9s2GTngAJgh9AzwGfm5XEVMhYy5/LldF5d/qqZT1ig+Ox0zufh7PZ5ASA4/eK 2/BUHT7UZhwyyPScb5WKO1yfLdeKeRFs -----END CERTIFICATE-----Generated at Mon Aug 11 10:35:57 2025 by rpki-client