$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft File: AQgOJC5FBGBlb__55qpDLh1A4lw.mft (raw, json) Hash identifier: 9JYQ2JnMw8TUvNfKK8zi8uiTlEv3OF61S8AB2i9XR2w= Subject key identifier: 70:9D:9D:9C:42:3F:7C:B8:7F:03:8F:3D:DD:93:6E:FE:9A:DE:67:AC Authority key identifier: 01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C Certificate issuer: /CN=A91A45C3/serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft Manifest number: 054D Signing time: Sat 14 Jun 2025 23:09:48 +0000 Manifest this update: Sat 14 Jun 2025 23:09:48 +0000 Manifest next update: Sat 21 Jun 2025 23:09:48 +0000 Files and hashes: 1: AQgOJC5FBGBlb__55qpDLh1A4lw.crl (hash: fEpDBEoN4JiZVPU6IGQPU6OTQH9GM+0eI1tImAr1i/M=) 2: 278EE7F0F4FD11EB975E376BC4F9AE02.roa (hash: nnEDrBs5N1TINTxavJXzYMTFVmRpWUpTfX0eoMA2f+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45C3, serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Validity Not Before: Jun 14 23:09:48 2025 GMT Not After : Jun 21 23:09:48 2025 GMT Subject: CN=684e013c-5f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:47:38:f1:34:bc:b4:2f:d4:50:eb:34:c7:6f: 15:df:39:3f:25:61:d9:aa:2f:cf:c1:d1:7a:ce:e1: 82:d5:df:6a:c2:89:0e:41:dc:82:49:54:63:1e:f6: 72:d1:d6:51:58:77:06:5a:04:25:66:45:78:96:b4: a3:b4:8f:ad:f1:6f:eb:72:41:cf:19:2c:ef:ed:78: 97:40:7c:12:11:b5:0b:24:b9:1e:0b:10:11:74:2d: ff:e5:31:06:5b:ae:57:63:26:56:e4:a4:d9:ee:4a: 6b:02:ae:9c:5f:a5:d6:e9:62:e8:a2:fd:14:6b:ea: 65:19:6a:99:e2:7f:9b:a0:6c:b3:f4:9b:5c:40:77: ad:65:28:71:2f:05:2c:06:57:f5:f3:e3:32:e2:5e: 3c:4d:fb:c7:b4:ab:b1:75:42:f5:4c:10:a2:45:c6: 65:34:ea:4e:0c:4a:a0:44:f1:8e:aa:84:91:44:d6: 03:0e:87:0b:ef:a8:37:49:85:78:68:02:68:7f:50: d7:f7:ab:fd:25:f8:f2:39:f0:64:85:f9:fa:cc:d4: 54:ef:57:f7:ac:7a:56:8e:a3:bb:4b:a7:88:e6:49: d8:ba:ff:a1:0b:94:5f:fa:a4:4a:68:f7:7b:fb:b8: 17:35:53:02:c0:87:ab:3e:88:ec:dd:d6:08:6e:cd: 46:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9D:9D:9C:42:3F:7C:B8:7F:03:8F:3D:DD:93:6E:FE:9A:DE:67:AC X509v3 Authority Key Identifier: keyid:01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:c8:bf:6f:3d:da:03:a1:dd:70:48:fc:05:af:f4:c8:3c:c7: 4a:9b:6c:e5:8e:5a:cd:f5:2f:15:4c:3a:15:2c:21:67:f2:35: 61:a5:0a:4d:9f:cb:69:2c:28:aa:b2:6b:31:d0:87:d3:0a:cb: 4a:47:ae:f7:3c:b1:5e:86:d1:3b:0b:7c:3c:00:5d:f2:8f:d2: 89:18:9a:d5:31:e6:01:8d:f3:c6:16:11:7b:57:5e:c1:91:68: e0:64:12:87:b2:e3:25:0d:44:78:0c:f3:c0:8a:1f:26:ec:f3: 7d:19:8a:02:a9:ad:5b:83:cc:c0:6c:58:69:b5:9a:18:f6:17: ad:a1:55:5d:d6:6e:df:f3:fa:4b:02:04:d4:d6:e1:24:75:92: 32:dc:74:f8:f4:29:13:69:00:4c:ed:83:01:7b:4b:07:1d:19: 50:43:03:d1:25:15:4e:5e:4a:8e:41:0a:ef:17:16:9e:52:fc: 04:e2:3a:2a:10:a6:5a:56:16:b6:69:10:8d:e8:64:86:76:e6: d7:64:64:53:62:d6:e7:8a:45:db:9a:97:5d:3d:e2:f4:e5:b7: ec:39:20:86:dc:15:35:df:5e:12:e3:26:cd:be:1f:b9:37:9e: a0:08:ff:83:d1:58:89:cc:99:a8:db:2f:24:38:72:0d:61:f5: 2a:fc:90:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QzMxMTAvBgNVBAUTKDAxMDgwRTI0MkU0NTA0NjA2NTZGRkZGOUU2QUE0MzJF MUQ0MEUyNUMwHhcNMjUwNjE0MjMwOTQ4WhcNMjUwNjIxMjMwOTQ4WjAYMRYwFAYD VQQDEw02ODRlMDEzYy01ZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0c48TS8tC/UUOs0x28V3zk/JWHZqi/PwdF6zuGC1d9qwokOQdyCSVRjHvZy 0dZRWHcGWgQlZkV4lrSjtI+t8W/rckHPGSzv7XiXQHwSEbULJLkeCxARdC3/5TEG W65XYyZW5KTZ7kprAq6cX6XW6WLoov0Ua+plGWqZ4n+boGyz9JtcQHetZShxLwUs Blf18+My4l48TfvHtKuxdUL1TBCiRcZlNOpODEqgRPGOqoSRRNYDDocL76g3SYV4 aAJof1DX96v9JfjyOfBkhfn6zNRU71f3rHpWjqO7S6eI5knYuv+hC5Rf+qRKaPd7 +7gXNVMCwIerPojs3dYIbs1GAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCdnZxC P3y4fwOPPd2Tbv6a3mesMB8GA1UdIwQYMBaAFAEIDiQuRQRgZW//+eaqQy4dQOJc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVDMy84QTMzRDcyMEY0 RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJHQmxiX181NXFwRExoMUE0 bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRZ09KQzVGQkdCbGJfXzU1cXBETGgxQTRsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVDMy84QTMzRDcyMEY0RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJH QmxiX181NXFwRExoMUE0bHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjyL9vPdoDod1wSPwFr/TIPMdKm2zljlrN9S8VTDoVLCFn8jVhpQpN n8tpLCiqsmsx0IfTCstKR673PLFehtE7C3w8AF3yj9KJGJrVMeYBjfPGFhF7V17B kWjgZBKHsuMlDUR4DPPAih8m7PN9GYoCqa1bg8zAbFhptZoY9hetoVVd1m7f8/pL AgTU1uEkdZIy3HT49CkTaQBM7YMBe0sHHRlQQwPRJRVOXkqOQQrvFxaeUvwE4joq EKZaVha2aRCN6GSGdubXZGRTYtbnikXbmpddPeL05bfsOSCG3BU1314S4ybNvh+5 N56gCP+D0ViJzJmo2y8kOHINYfUq/JBQ -----END CERTIFICATE-----Generated at Sun Jun 15 09:50:57 2025 by rpki-client