$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft File: AQgOJC5FBGBlb__55qpDLh1A4lw.mft (raw, json) Hash identifier: 3RiaJ8SoLNvbc/trFbxgQ0aLLfkGMvg9RxANml4Adq4= Subject key identifier: C1:F7:91:78:12:E7:B7:24:3F:E9:13:7E:82:FA:5A:8C:78:5C:17:6B Authority key identifier: 01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C Certificate issuer: /CN=A91A45C3/serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Certificate serial: 0576 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft Manifest number: 056B Signing time: Tue 12 Aug 2025 23:47:01 +0000 Manifest this update: Tue 12 Aug 2025 23:47:01 +0000 Manifest next update: Tue 19 Aug 2025 23:47:01 +0000 Files and hashes: 1: AQgOJC5FBGBlb__55qpDLh1A4lw.crl (hash: FkoWV1DqAmHFVx+Xdsy5G4T3vBP/TeIyYbHTQznkvR8=) 2: 278EE7F0F4FD11EB975E376BC4F9AE02.roa (hash: nnEDrBs5N1TINTxavJXzYMTFVmRpWUpTfX0eoMA2f+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:47:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1398 (0x576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45C3, serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Validity Not Before: Aug 12 23:47:01 2025 GMT Not After : Aug 19 23:47:01 2025 GMT Subject: CN=689bd275-b1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:db:56:10:d5:fa:6e:c5:74:fe:c3:2b:a8:93: f2:c1:37:0b:05:e1:43:77:53:96:e2:e4:55:9d:cf: 13:4b:63:5b:99:af:1e:44:83:45:f3:79:51:93:ef: 8e:62:d2:f4:6b:83:a3:3c:48:c7:5f:3b:63:50:82: 60:fa:71:e8:78:74:11:e0:5e:55:9c:f8:d5:10:ab: a9:be:ab:a1:97:76:ed:cb:b6:05:6a:6c:93:59:ce: 20:bd:c2:42:3a:c3:b8:d9:9e:55:1d:84:b3:78:82: 2c:ca:96:80:9a:6e:56:3d:fe:2f:8d:84:57:63:ba: 40:53:15:4c:e2:95:cf:30:6b:66:3e:71:5b:8d:f2: cb:1b:8f:57:78:26:ca:48:3b:6e:c1:55:7e:54:a5: 15:5e:74:bd:5d:70:40:c7:d4:a4:96:40:99:64:5e: dc:2c:56:15:d4:75:a1:65:68:69:3f:f5:48:df:39: b8:fa:40:06:23:d1:99:c6:ff:b8:b5:34:74:45:cc: de:de:7c:be:28:2d:2b:39:f2:b4:5a:a8:1c:7d:e2: a8:75:cd:03:dd:6d:df:4d:0a:d0:2a:a2:18:00:45: 31:a5:25:09:99:cf:59:14:79:5d:c5:da:00:43:ae: 9c:47:b4:30:d5:6a:de:10:1c:62:de:2a:01:08:01: dd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F7:91:78:12:E7:B7:24:3F:E9:13:7E:82:FA:5A:8C:78:5C:17:6B X509v3 Authority Key Identifier: keyid:01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:97:8b:bd:04:0c:12:1a:e7:e8:45:4a:8f:51:0c:78:28:4a: 15:60:a8:7f:55:d4:81:d2:90:ba:f8:0e:4a:15:d9:bb:4b:90: ad:b1:fc:2f:50:dd:4e:81:b9:44:d2:2c:1f:9b:ac:ff:27:af: 72:34:19:19:c3:43:7a:e5:bd:0b:2c:ce:5d:33:38:9a:63:af: 1a:6a:81:f3:b8:b6:0b:d0:99:de:37:98:50:f5:8d:a0:20:cb: 22:0d:da:4d:c1:b6:28:c8:da:be:15:0d:3f:1a:27:8c:d3:ed: 75:b5:2c:e9:ab:e3:38:06:95:d2:cc:17:28:99:ea:f2:81:ff: 1f:ed:bf:b9:a4:cb:ab:44:40:42:1f:35:c3:c2:2e:5d:fa:52: 7b:3d:89:96:bf:20:36:8e:22:cd:ce:f3:81:fa:78:4e:cd:f8: 9e:03:81:1d:7b:6e:b9:5c:37:7b:0b:df:fe:35:fa:b5:c6:b9: b7:ac:cb:ff:69:be:ae:64:c0:c7:a6:24:e6:b3:b8:e2:d2:78: c6:56:7a:ae:33:8e:f2:9f:0e:0d:e8:d1:9f:d3:22:6e:2b:37: 4b:34:c7:40:0c:b6:d3:9f:d9:b3:92:50:4c:db:5f:98:d9:0d: f7:4f:37:96:2e:c5:e0:40:81:9b:2a:57:c4:70:3a:16:6c:07: 15:b5:01:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QzMxMTAvBgNVBAUTKDAxMDgwRTI0MkU0NTA0NjA2NTZGRkZGOUU2QUE0MzJF MUQ0MEUyNUMwHhcNMjUwODEyMjM0NzAxWhcNMjUwODE5MjM0NzAxWjAYMRYwFAYD VQQDEw02ODliZDI3NS1iMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNtWENX6bsV0/sMrqJPywTcLBeFDd1OW4uRVnc8TS2Nbma8eRINF83lRk++O YtL0a4OjPEjHXztjUIJg+nHoeHQR4F5VnPjVEKupvquhl3bty7YFamyTWc4gvcJC OsO42Z5VHYSzeIIsypaAmm5WPf4vjYRXY7pAUxVM4pXPMGtmPnFbjfLLG49XeCbK SDtuwVV+VKUVXnS9XXBAx9SklkCZZF7cLFYV1HWhZWhpP/VI3zm4+kAGI9GZxv+4 tTR0Rcze3ny+KC0rOfK0WqgcfeKodc0D3W3fTQrQKqIYAEUxpSUJmc9ZFHldxdoA Q66cR7Qw1WreEBxi3ioBCAHdaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMH3kXgS 57ckP+kTfoL6Wox4XBdrMB8GA1UdIwQYMBaAFAEIDiQuRQRgZW//+eaqQy4dQOJc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVDMy84QTMzRDcyMEY0 RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJHQmxiX181NXFwRExoMUE0 bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRZ09KQzVGQkdCbGJfXzU1cXBETGgxQTRsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVDMy84QTMzRDcyMEY0RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJH QmxiX181NXFwRExoMUE0bHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCql4u9BAwSGufoRUqPUQx4KEoVYKh/VdSB0pC6+A5KFdm7S5Ctsfwv UN1OgblE0iwfm6z/J69yNBkZw0N65b0LLM5dMziaY68aaoHzuLYL0JneN5hQ9Y2g IMsiDdpNwbYoyNq+FQ0/GieM0+11tSzpq+M4BpXSzBcomerygf8f7b+5pMurREBC HzXDwi5d+lJ7PYmWvyA2jiLNzvOB+nhOzfieA4Ede265XDd7C9/+Nfq1xrm3rMv/ ab6uZMDHpiTms7ji0njGVnquM47ynw4N6NGf0yJuKzdLNMdADLbTn9mzklBM21+Y 2Q33TzeWLsXgQIGbKlfEcDoWbAcVtQEc -----END CERTIFICATE-----Generated at Wed Aug 13 07:39:59 2025 by rpki-client