$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: AYQ1IzloK4/c8oH9qmPKFBoJl8qFhO2MeTfxsd3I5HI= Subject key identifier: 45:52:DC:71:28:42:0E:7E:80:99:62:24:F8:5C:79:7F:C1:E2:EF:FA Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 0711 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 0709 Signing time: Tue 12 Aug 2025 22:13:24 +0000 Manifest this update: Tue 12 Aug 2025 22:13:23 +0000 Manifest next update: Tue 19 Aug 2025 22:13:23 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: 6e9lxedO1Nzp+YO2MNZ5X06+b1eY0B657n568JwA30I=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Aug 12 22:13:23 2025 GMT Not After : Aug 19 22:13:23 2025 GMT Subject: CN=689bbc84-eaa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:6d:ca:60:4f:28:fd:2b:b2:e0:e0:89:2f:03: 24:94:cb:be:f4:f1:d9:79:8f:30:7e:f3:e4:54:4c: 03:72:7e:7e:d6:9c:40:a8:6a:cf:a6:0a:63:6c:3e: a3:fc:a6:b1:9c:78:1d:e6:3a:8a:84:c9:0c:73:f5: b7:72:f3:ca:cc:f6:c3:07:cb:1d:a0:d2:11:ad:f3: 4d:35:d8:a5:9e:db:b8:9f:d7:5f:78:43:cb:cf:67: d5:89:5c:9f:90:d0:bf:ec:79:df:5f:c7:ad:d3:8d: 8c:19:a8:5d:f1:17:9f:54:61:f3:97:32:d0:2e:89: 2a:88:30:24:57:55:2f:ed:df:70:02:1d:d2:8f:e9: 03:00:bf:64:30:b0:15:1a:9f:e1:40:48:39:00:78: 92:d8:b5:f5:32:8a:03:a3:4e:1a:44:f6:b4:ca:f4: 76:45:79:64:ab:52:1d:04:c5:5c:77:af:76:f8:49: 34:d5:cb:8f:cf:d8:57:b5:1e:0c:c2:c5:d8:00:a0: 23:a2:79:51:b3:72:b2:26:4b:d8:c2:63:67:3c:86: d1:51:58:4d:ca:a6:de:77:4d:06:41:f4:ce:29:3e: 1a:55:bf:28:7d:49:59:51:ec:42:ee:da:4c:61:ff: c8:5e:aa:30:51:ad:d7:b0:0f:f0:af:e0:dc:64:9f: 59:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:52:DC:71:28:42:0E:7E:80:99:62:24:F8:5C:79:7F:C1:E2:EF:FA X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:8d:9d:c7:8e:98:2a:6b:10:1a:88:86:12:20:bc:aa:e3:60: 39:99:ec:c8:22:b2:7c:89:b8:2d:b0:da:d3:90:1a:9a:c9:25: 8e:97:98:5c:90:da:24:de:2d:b2:62:0f:ae:1b:31:6a:d3:33: da:26:48:8a:8d:5f:26:68:7e:94:ea:fa:57:9d:90:fb:48:33: 5e:3b:da:8b:4d:f9:8c:38:7b:c6:96:94:ae:6b:1a:79:5f:a2: 47:18:16:a1:8a:9b:25:c8:f4:a9:2a:8b:7f:22:0a:2a:d5:77: 6f:3a:4d:22:77:42:82:49:f5:a4:17:db:25:7f:68:fa:6d:cf: 6f:5e:97:32:09:49:c0:d6:8e:36:e1:0f:7c:5b:9e:d8:a3:ca: 10:3c:c5:23:ab:91:c6:9b:71:db:27:90:3a:bf:57:c4:8a:c9: c9:26:3c:08:40:ff:f0:79:fe:e4:d0:71:2a:ca:4d:a5:f5:99: 85:e6:da:f6:0d:3d:a5:12:28:3a:94:b7:06:52:53:d7:64:f8: f2:02:f6:62:67:07:f2:31:21:7a:b5:1c:f0:fe:8b:6d:1f:d9: 32:6f:65:c0:a3:b4:7f:b0:70:e3:33:89:2d:98:61:58:ae:0b: 02:a1:9d:a2:e9:08:b4:5c:76:11:53:6a:13:30:38:de:f8:c1: fe:95:72:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjUwODEyMjIxMzIzWhcNMjUwODE5MjIxMzIzWjAYMRYwFAYD VQQDEw02ODliYmM4NC1lYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+W3KYE8o/Suy4OCJLwMklMu+9PHZeY8wfvPkVEwDcn5+1pxAqGrPpgpjbD6j /KaxnHgd5jqKhMkMc/W3cvPKzPbDB8sdoNIRrfNNNdilntu4n9dfeEPLz2fViVyf kNC/7HnfX8et042MGahd8RefVGHzlzLQLokqiDAkV1Uv7d9wAh3Sj+kDAL9kMLAV Gp/hQEg5AHiS2LX1MooDo04aRPa0yvR2RXlkq1IdBMVcd692+Ek01cuPz9hXtR4M wsXYAKAjonlRs3KyJkvYwmNnPIbRUVhNyqbed00GQfTOKT4aVb8ofUlZUexC7tpM Yf/IXqowUa3XsA/wr+DcZJ9Z9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVS3HEo Qg5+gJliJPhceX/B4u/6MB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpjZ3HjpgqaxAaiIYSILyq42A5mezIIrJ8ibgtsNrTkBqaySWOl5hc kNok3i2yYg+uGzFq0zPaJkiKjV8maH6U6vpXnZD7SDNeO9qLTfmMOHvGlpSuaxp5 X6JHGBahipslyPSpKot/Igoq1XdvOk0id0KCSfWkF9slf2j6bc9vXpcyCUnA1o42 4Q98W57Yo8oQPMUjq5HGm3HbJ5A6v1fEisnJJjwIQP/wef7k0HEqyk2l9ZmF5tr2 DT2lEig6lLcGUlPXZPjyAvZiZwfyMSF6tRzw/ottH9kyb2XAo7R/sHDjM4ktmGFY rgsCoZ2i6Qi0XHYRU2oTMDje+MH+lXLq -----END CERTIFICATE-----Generated at Wed Aug 13 02:49:04 2025 by rpki-client