$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft File: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft (raw, json) Hash identifier: +BwREvf4NCIsSMmfvbQr61kq/0w4rAz4R6Y3c+iUKEk= Subject key identifier: A6:57:6F:E0:7B:7A:FB:9D:0E:4B:05:1C:A0:BF:5B:04:9D:D9:2D:64 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 07AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft Manifest number: 07A2 Signing time: Wed 06 Aug 2025 21:42:29 +0000 Manifest this update: Wed 06 Aug 2025 21:42:28 +0000 Manifest next update: Wed 13 Aug 2025 21:42:28 +0000 Files and hashes: 1: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl (hash: 9rglgo1XF7V+5Mms0OkqmJpz+oHkXWm0HK+BeHrFEVY=) 2: 67F4BD64519811F092842D60C4F9AE02.roa (hash: 88Jh5coMAVPJSUCnQAmSwbUiu0xU/3P6Y2QChRKwELo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 21:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF, serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Aug 6 21:42:28 2025 GMT Not After : Aug 13 21:42:28 2025 GMT Subject: CN=6893cc45-5236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:ad:e3:1b:87:4c:11:37:18:59:8a:d0:e5: f3:42:41:3c:f5:5c:37:98:96:be:d3:af:2f:2a:9e: d0:4b:ce:6d:c6:04:9a:c2:ed:b4:bb:a1:01:2a:cf: 25:8c:53:cd:f4:25:3e:ee:e0:b0:1b:41:d8:cb:e2: a1:cd:af:46:16:0a:cc:5b:1c:4e:6d:cf:f3:d5:9c: 8c:ae:5b:17:4c:fe:7b:77:c1:f1:8c:40:38:a1:16: 4c:f7:82:bf:a3:4f:e4:e8:10:2d:66:12:b9:d2:4f: b3:49:e0:88:35:37:c0:78:a8:01:19:86:7c:cd:88: e5:03:f0:09:52:88:1a:73:95:20:5e:f7:62:9d:06: 10:86:2b:ba:84:a0:df:b4:13:06:92:b5:ce:9f:cf: 28:ad:33:f6:d3:72:cb:2a:fd:38:6c:60:b4:a9:b8: ce:96:cc:ea:91:dd:aa:29:41:9a:86:ec:e5:56:b1: b2:24:89:b2:01:88:d2:26:2f:a2:d0:e9:e3:cb:14: 03:81:3b:05:a0:14:51:ab:57:bf:0e:0f:40:6f:9c: 3f:4c:b1:bd:f9:89:2c:d5:6d:7f:8f:44:d0:82:20: 40:ae:b4:b9:8b:7f:11:78:90:84:71:b9:29:ef:88: d4:5d:ab:10:c0:1b:f3:32:57:5f:74:1d:3e:eb:73: 33:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:57:6F:E0:7B:7A:FB:9D:0E:4B:05:1C:A0:BF:5B:04:9D:D9:2D:64 X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:2b:f9:6d:9d:02:b2:72:da:1f:62:a8:80:48:3a:91:02:dd: 4c:54:cf:a1:89:58:0e:63:80:a7:0a:6d:1f:c0:97:97:f7:9e: df:58:73:fa:c3:57:23:fb:c8:1a:5e:90:fb:92:44:e2:c1:2e: d2:ff:9e:47:91:1f:97:d5:73:8a:0d:46:82:12:71:ba:03:ae: e1:7b:b2:33:cc:b0:e1:6a:24:6d:b7:58:9d:9d:ed:62:1f:16: 0a:7a:2c:28:f7:31:52:0f:7d:65:ae:79:09:20:d2:14:e5:39: 4a:1a:d3:5c:91:66:da:53:57:2b:bc:e9:b5:3e:ba:53:ea:5f: 32:7e:39:07:01:7a:5f:d4:59:b4:d6:ee:ca:b2:7a:25:45:9a: d8:ae:55:48:1e:90:2c:3d:f3:7b:7d:d9:5a:e5:88:5d:ba:73: 18:24:8e:c7:a8:be:ad:48:f0:57:df:91:45:92:cf:bd:c0:7c: 26:0b:52:5e:d9:82:a2:df:40:bd:c0:c8:1b:0a:15:21:4e:8b: 85:87:89:b5:4a:e3:9d:18:41:4c:b3:69:a4:81:80:56:45:51: fe:43:78:e2:12:1d:af:34:f9:b2:1c:30:02:66:88:a7:fb:08: ba:c0:b7:69:c2:b9:52:fd:eb:3f:8d:b3:19:f2:9a:ba:ee:a2: 84:8a:9f:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjUwODA2MjE0MjI4WhcNMjUwODEzMjE0MjI4WjAYMRYwFAYD VQQDEw02ODkzY2M0NS01MjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaqt4xuHTBE3GFmK0OXzQkE89Vw3mJa+068vKp7QS85txgSawu20u6EBKs8l jFPN9CU+7uCwG0HYy+Khza9GFgrMWxxObc/z1ZyMrlsXTP57d8HxjEA4oRZM94K/ o0/k6BAtZhK50k+zSeCINTfAeKgBGYZ8zYjlA/AJUogac5UgXvdinQYQhiu6hKDf tBMGkrXOn88orTP203LLKv04bGC0qbjOlszqkd2qKUGahuzlVrGyJImyAYjSJi+i 0OnjyxQDgTsFoBRRq1e/Dg9Ab5w/TLG9+Yks1W1/j0TQgiBArrS5i38ReJCEcbkp 74jUXasQwBvzMldfdB0+63MzyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZXb+B7 evudDksFHKC/WwSd2S1kMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVCRi9GMTMzQkRBQzEzRjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1v RzNhT2lSQ0ZNVVRmSHVWVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSK/ltnQKyctofYqiASDqRAt1MVM+hiVgOY4CnCm0fwJeX957fWHP6 w1cj+8gaXpD7kkTiwS7S/55HkR+X1XOKDUaCEnG6A67he7IzzLDhaiRtt1idne1i HxYKeiwo9zFSD31lrnkJINIU5TlKGtNckWbaU1crvOm1PrpT6l8yfjkHAXpf1Fm0 1u7KsnolRZrYrlVIHpAsPfN7fdla5YhdunMYJI7HqL6tSPBX35FFks+9wHwmC1Je 2YKi30C9wMgbChUhTouFh4m1SuOdGEFMs2mkgYBWRVH+Q3jiEh2vNPmyHDACZoin +wi6wLdpwrlS/es/jbMZ8pq67qKEip9y -----END CERTIFICATE-----Generated at Fri Aug 8 19:39:53 2025 by rpki-client