$ rpki-client -vvf rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft File: AZgxEf1vCyfiQEY7aKehmEXHuwo.mft (raw, json) Hash identifier: q2bT2NQvC+jtKIqZDWF9E4nvUswPWMPeoAjRbV+9ub8= Subject key identifier: 10:91:90:31:BA:8B:62:EC:06:70:79:81:4E:0F:20:F6:F8:4F:31:4C Authority key identifier: 01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A Certificate issuer: /CN=A91513B0/serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Certificate serial: 052A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft Manifest number: 051C Signing time: Tue 05 Aug 2025 00:03:29 +0000 Manifest this update: Tue 05 Aug 2025 00:03:29 +0000 Manifest next update: Tue 12 Aug 2025 00:03:29 +0000 Files and hashes: 1: AZgxEf1vCyfiQEY7aKehmEXHuwo.crl (hash: qldFcCuB0jmJtTrJiIxpIIPamcDchxEueykaOLwwJ04=) 2: 4FE459C8B97211EFA7B7E47DC4F9AE02.roa (hash: m7WV1VKI7ClZpgbpWthM6Ip2WNf7bXuqABVjburQENc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1322 (0x52a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91513B0, serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Validity Not Before: Aug 5 00:03:29 2025 GMT Not After : Aug 12 00:03:29 2025 GMT Subject: CN=68914a51-913b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:11:05:76:c5:06:f8:fe:d9:da:6b:3f:bc:96: fe:84:fd:42:a6:8e:d4:9c:95:c1:0d:16:4c:e2:ab: 0d:e3:91:87:84:09:03:83:ac:f1:e5:3f:28:8e:b7: 62:49:fb:2d:da:8d:b3:08:49:4d:e8:88:8b:b3:e5: 48:4a:4b:04:17:a7:73:20:49:22:4e:d5:e3:89:d5: ba:83:ec:c3:42:09:6f:0f:1a:a5:5f:5f:3e:54:a1: e8:d4:16:4a:fa:ac:ad:58:6f:f2:7f:b7:c0:d9:88: 93:65:da:d5:e0:be:28:3e:7f:ef:b4:03:a3:0a:40: 17:b4:41:bb:a7:62:ba:f7:e7:4d:71:da:81:39:34: 5c:f8:84:9a:13:40:85:70:ad:6b:6a:66:5e:c9:41: 1e:70:17:ad:e3:d0:ba:64:84:7a:85:03:75:23:0e: da:5a:da:3c:c5:39:6b:35:a4:90:59:bb:e2:7f:8d: 02:4e:dc:a4:36:9a:a4:fe:b8:47:a2:a1:bb:f8:41: 5d:68:a9:85:6c:d2:89:04:19:35:d5:37:4a:f6:ef: 60:09:63:32:fb:f4:0b:29:99:35:55:2a:34:b7:6b: 37:3f:2a:2c:10:1b:76:79:f3:00:19:fd:0e:5c:3d: 51:37:4a:50:92:a7:43:1f:9c:41:ba:e8:a6:13:74: 79:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:91:90:31:BA:8B:62:EC:06:70:79:81:4E:0F:20:F6:F8:4F:31:4C X509v3 Authority Key Identifier: keyid:01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:34:b6:15:35:eb:10:0e:6f:3b:7e:00:58:db:e2:00:b7:2a: aa:4f:d0:da:5b:51:f5:4a:50:b3:c5:28:cc:32:88:d3:5a:0e: dc:26:92:7f:64:8d:09:d8:8f:be:ad:25:bc:0b:fa:ee:ab:84: 9a:bd:17:12:de:68:5c:72:8a:f9:6c:ba:af:e8:fe:55:7c:d7: bc:15:c6:65:dd:15:c2:b3:00:18:8b:5b:d9:fb:1b:ec:b7:68: 8c:67:48:6f:ab:9e:5c:64:70:c7:ea:72:26:85:6e:e1:24:71: 52:24:c9:32:f5:0a:5e:56:1b:f1:99:f3:59:ec:47:a6:79:46: d3:ad:2b:37:41:24:67:24:9b:9a:8f:7e:81:f5:55:b2:8b:5a: 2b:4b:76:25:4d:bd:c2:aa:c4:e1:0f:1c:a5:06:56:69:8e:c1: bb:a0:f3:8f:79:a6:ce:5b:d4:aa:30:c8:c4:cb:58:72:66:a7: 42:ed:90:16:fa:24:d8:e5:18:2c:fc:ec:cb:4a:f6:8c:94:42: 05:28:db:cb:77:34:b3:f6:b1:a5:d7:8a:eb:f0:ae:17:8e:e9: e4:a9:b1:94:9b:82:f5:27:c9:02:50:c1:9e:eb:3c:c8:17:97: d1:14:f2:50:bd:aa:b2:91:d2:d4:45:40:4c:ad:26:00:4b:ab: 35:5e:92:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEzQjAxMTAvBgNVBAUTKDAxOTgzMTExRkQ2RjBCMjdFMjQwNDYzQjY4QTdBMTk4 NDVDN0JCMEEwHhcNMjUwODA1MDAwMzI5WhcNMjUwODEyMDAwMzI5WjAYMRYwFAYD VQQDEw02ODkxNGE1MS05MTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xEFdsUG+P7Z2ms/vJb+hP1Cpo7UnJXBDRZM4qsN45GHhAkDg6zx5T8ojrdi Sfst2o2zCElN6IiLs+VISksEF6dzIEkiTtXjidW6g+zDQglvDxqlX18+VKHo1BZK +qytWG/yf7fA2YiTZdrV4L4oPn/vtAOjCkAXtEG7p2K69+dNcdqBOTRc+ISaE0CF cK1ramZeyUEecBet49C6ZIR6hQN1Iw7aWto8xTlrNaSQWbvif40CTtykNpqk/rhH oqG7+EFdaKmFbNKJBBk11TdK9u9gCWMy+/QLKZk1VSo0t2s3PyosEBt2efMAGf0O XD1RN0pQkqdDH5xBuuimE3R5xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCRkDG6 i2LsBnB5gU4PIPb4TzFMMB8GA1UdIwQYMBaAFAGYMRH9bwsn4kBGO2inoZhFx7sK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTNCMC8xMzhFMTQzMDE0 NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5ZmlRRVk3YUtlaG1FWEh1 d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaZ3hFZjF2Q3lmaVFFWTdhS2VobUVYSHV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTNCMC8xMzhFMTQzMDE0NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5 ZmlRRVk3YUtlaG1FWEh1d28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRNLYVNesQDm87fgBY2+IAtyqqT9DaW1H1SlCzxSjMMojTWg7cJpJ/ ZI0J2I++rSW8C/ruq4SavRcS3mhccor5bLqv6P5VfNe8FcZl3RXCswAYi1vZ+xvs t2iMZ0hvq55cZHDH6nImhW7hJHFSJMky9QpeVhvxmfNZ7EemeUbTrSs3QSRnJJua j36B9VWyi1orS3YlTb3CqsThDxylBlZpjsG7oPOPeabOW9SqMMjEy1hyZqdC7ZAW +iTY5Rgs/OzLSvaMlEIFKNvLdzSz9rGl14rr8K4XjunkqbGUm4L1J8kCUMGe6zzI F5fRFPJQvaqykdLURUBMrSYAS6s1XpI0 -----END CERTIFICATE-----Generated at Wed Aug 6 10:09:03 2025 by rpki-client