$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: gxEVMPW/zBRYr1otC+oSL63fPZ/1J9d+qOciV/LEDGg= Subject key identifier: D9:C9:12:18:EF:8D:7B:DA:7C:19:39:22:D4:31:3D:CD:77:C0:35:62 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: 66 Signing time: Sat 09 Aug 2025 07:34:33 +0000 Manifest this update: Sat 09 Aug 2025 07:34:32 +0000 Manifest next update: Sat 16 Aug 2025 07:34:32 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: a/r0+eV5nmueNonw7zEcyV5D6HQ4RTfplKSTK3dmAlY=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Aug 9 07:34:32 2025 GMT Not After : Aug 16 07:34:32 2025 GMT Subject: CN=6896fa09-5faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:fa:28:5a:d4:68:c7:22:a8:45:14:a2:9b: 1e:28:f8:f1:fc:2c:e9:09:82:34:19:7d:a8:82:6f: 7c:f3:d8:e4:0f:57:89:7f:4d:4c:e2:cd:17:d0:a1: 7c:82:31:9c:72:83:1e:bb:a8:96:fa:91:1b:6b:99: b4:d1:b2:5d:ff:68:ef:16:5e:ac:09:dc:ca:80:94: ee:ac:d7:c1:0e:d3:30:86:14:45:f7:f6:aa:03:c8: c7:11:bb:f3:c8:09:15:77:69:32:2e:92:f7:fd:99: 87:14:39:15:e7:91:fc:b7:7c:c2:e1:5a:e1:b2:de: c2:b6:82:ed:92:85:0a:9d:cf:51:73:94:b1:64:25: 97:79:cf:4c:7b:82:d8:55:99:b8:4c:47:08:ed:c0: 5c:98:73:63:ec:ea:b0:79:2b:e2:29:bb:ee:f3:ea: 52:fa:b5:ed:6c:5a:60:4a:42:37:bd:76:e3:f6:f9: 94:39:78:6f:09:2f:6c:b0:b1:80:66:a5:90:e6:cc: d6:b1:ca:20:9b:4e:26:f1:99:51:75:61:ff:8a:71: 5c:b9:d6:d5:54:6d:53:5c:e0:df:76:61:a1:da:ad: 52:94:87:97:ca:7a:20:fb:9d:75:15:66:ae:53:19: 1f:07:89:99:af:06:86:48:2e:56:97:20:5b:b1:76: c8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C9:12:18:EF:8D:7B:DA:7C:19:39:22:D4:31:3D:CD:77:C0:35:62 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:24:c7:f9:d8:ae:7c:e8:4c:5b:1c:c8:3f:86:dc:73:93:a6: 84:0c:9d:c8:9d:fd:7f:6b:d8:9a:e0:28:a4:35:17:64:a3:98: 36:c6:13:ca:70:a4:44:62:73:6e:cf:7c:7f:6d:6e:48:c3:62: fe:a2:d5:d2:14:e7:b9:70:e5:6d:87:01:b4:cc:dc:88:3d:17: 1d:b5:ea:96:4c:ff:07:3d:f7:4a:09:20:56:75:4a:a9:d4:4e: 8c:e2:81:5a:df:e2:e1:c3:39:3d:8a:4c:9b:b9:f8:0b:7a:d3: a5:22:08:39:90:6f:c0:01:b7:66:7e:6a:32:cf:f8:14:c0:23: 8f:30:46:0f:73:2d:6a:34:a9:6a:a9:10:84:16:fd:11:5d:a6: cf:3d:e3:81:24:ed:3a:7a:ca:3d:94:84:87:32:56:fe:a4:90: 9f:e9:e2:3a:89:9b:89:b3:ac:14:ba:43:c8:85:17:a0:ba:29: 5a:eb:9b:f9:c1:a5:45:7c:67:a8:8f:e2:a9:e6:98:7b:18:74: f8:7e:1e:c8:df:b0:8d:9c:86:00:eb:1b:39:08:aa:55:14:48: b1:e6:2b:cd:0e:97:a2:0f:b5:44:55:df:36:e3:8d:37:c2:83: 44:66:bd:86:46:95:5d:39:5a:af:f7:23:90:85:69:5f:7d:b4: bd:f0:06:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTA4MDkwNzM0MzJaFw0yNTA4MTYwNzM0MzJaMBgxFjAUBgNV BAMTDTY4OTZmYTA5LTVmYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC85PooWtRoxyKoRRSimx4o+PH8LOkJgjQZfaiCb3zz2OQPV4l/TUzizRfQoXyC MZxygx67qJb6kRtrmbTRsl3/aO8WXqwJ3MqAlO6s18EO0zCGFEX39qoDyMcRu/PI CRV3aTIukvf9mYcUORXnkfy3fMLhWuGy3sK2gu2ShQqdz1FzlLFkJZd5z0x7gthV mbhMRwjtwFyYc2Ps6rB5K+Ipu+7z6lL6te1sWmBKQje9duP2+ZQ5eG8JL2ywsYBm pZDmzNaxyiCbTibxmVF1Yf+KcVy51tVUbVNc4N92YaHarVKUh5fKeiD7nXUVZq5T GR8HiZmvBoZILlaXIFuxdsjDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2ckSGO+N e9p8GTki1DE9zXfANWIwHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjA4LzlFMjg1NTdFRTRFRTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4 WnhrN3ZRSlR1QzdXSEh0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALckx/nYrnzoTFscyD+G3HOTpoQMncid/X9r2JrgKKQ1F2SjmDbGE8pw pERic27PfH9tbkjDYv6i1dIU57lw5W2HAbTM3Ig9Fx216pZM/wc990oJIFZ1SqnU TozigVrf4uHDOT2KTJu5+At606UiCDmQb8ABt2Z+ajLP+BTAI48wRg9zLWo0qWqp EIQW/RFdps8944Ek7Tp6yj2UhIcyVv6kkJ/p4jqJm4mzrBS6Q8iFF6C6KVrrm/nB pUV8Z6iP4qnmmHsYdPh+HsjfsI2chgDrGzkIqlUUSLHmK80Ol6IPtURV3zbjjTfC g0RmvYZGlV05Wq/3I5CFaV99tL3wBvM= -----END CERTIFICATE-----Generated at Sun Aug 10 16:05:47 2025 by rpki-client