$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: AYnqwY3eV3fs2Q9wJpe09mo1JCcNSKmzqdgfMRj4pyM= Subject key identifier: BD:77:35:33:B3:39:2D:60:75:EF:1A:03:23:00:51:9E:2F:D8:D0:C8 Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 6F Signing time: Sat 09 Aug 2025 07:25:43 +0000 Manifest this update: Sat 09 Aug 2025 07:25:42 +0000 Manifest next update: Sat 16 Aug 2025 07:25:42 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: tTdJml/caP834sIoHiY80NgMBqHB9bBCovHWNNr0Xxg=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: AKFJ0EmXDuIFiZbxj+tbIwUPsfALbR27GRMsJeNf4oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: Aug 9 07:25:42 2025 GMT Not After : Aug 16 07:25:42 2025 GMT Subject: CN=6896f7f6-10f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:16:33:df:66:28:15:5f:04:67:8e:8e:1f:fc: e4:bd:9d:bd:f0:04:90:a6:a5:c1:2c:33:64:22:65: 35:96:30:5f:3d:f1:34:6b:8e:ff:5c:fe:da:b2:26: 6a:cc:7b:d6:df:30:dc:fd:3a:ea:ed:1c:b5:62:4a: b3:e5:24:76:46:d3:ec:39:d6:cb:f5:8a:69:9c:ec: ca:df:f5:64:c8:17:e5:27:97:8e:48:05:bd:a3:a0: 55:db:ef:a2:a3:47:4d:b6:9e:1f:8e:35:e1:a4:a6: d9:ef:96:23:c0:bb:fe:71:68:19:33:93:12:5f:22: b0:88:76:41:0c:8f:ae:66:53:47:97:48:99:d8:fa: ba:6b:fa:bd:67:36:aa:6f:ea:1e:bb:04:ab:86:85: ae:d9:e0:a7:b5:4d:3f:d0:f8:cd:09:04:00:ca:81: 81:b2:d8:dd:19:58:b3:9c:24:a2:6e:72:2d:6e:e2: 68:2a:17:0f:23:aa:62:49:02:8b:8f:4d:3b:3d:48: fd:c2:df:43:9e:f4:74:82:02:fc:ca:f1:e3:99:88: 8b:cd:5a:fe:ad:76:43:cc:bd:c0:db:34:6e:e3:57: 9d:5c:e2:f6:38:d9:23:8d:90:44:ca:5d:13:7d:07: e9:3e:56:c2:37:92:5f:6f:d2:95:90:f3:65:39:1b: f5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:77:35:33:B3:39:2D:60:75:EF:1A:03:23:00:51:9E:2F:D8:D0:C8 X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:81:b1:c5:68:9c:3d:82:0f:41:f3:d8:b7:e1:3e:b4:b1:ed: 6a:81:1a:bf:7c:3c:40:f2:02:a1:c8:20:97:87:ae:16:af:1d: 8a:7d:35:08:a1:25:8b:ba:1c:d5:d4:95:0f:f1:81:81:26:55: e4:ab:e8:49:b0:cd:26:9f:d0:e7:14:66:c4:a0:3e:3b:55:25: bd:6c:84:39:6e:88:13:2a:82:c3:2b:6d:3f:a0:50:46:d6:9e: 5f:24:23:f1:2e:56:24:9c:56:09:65:b6:90:4f:4b:56:e7:53: 99:c1:51:dc:9d:48:1d:20:eb:2e:a8:62:4b:01:30:48:d0:b8: c1:31:a7:1b:bd:2f:86:a0:70:bc:bb:24:47:e5:70:b1:07:48: 9e:53:44:fc:de:a7:5d:d9:60:93:dd:1b:f9:d3:10:15:02:82: 18:4d:87:c2:68:05:12:d9:4c:cc:3e:2f:2f:b4:e4:37:6d:a6: aa:06:38:29:3d:3c:f2:eb:22:5a:3e:eb:5e:42:24:45:c8:f8: fe:ea:c7:88:e1:43:2f:92:2b:d5:eb:68:11:54:0e:8d:ab:f8: 15:75:8e:40:9e:96:6a:e2:e9:60:95:38:fc:a7:76:4a:64:68: de:8a:c6:22:74:53:31:20:dc:f1:47:b4:c5:0f:6f:60:19:e2: d8:01:b8:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoNjk0RjU2MUI2M0RBN0NDNTc3OTMxNjM2RDQ3ODhBRDJC MEI0QUUyMDAeFw0yNTA4MDkwNzI1NDJaFw0yNTA4MTYwNzI1NDJaMBgxFjAUBgNV BAMTDTY4OTZmN2Y2LTEwZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJFjPfZigVXwRnjo4f/OS9nb3wBJCmpcEsM2QiZTWWMF898TRrjv9c/tqyJmrM e9bfMNz9OurtHLViSrPlJHZG0+w51sv1immc7Mrf9WTIF+Unl45IBb2joFXb76Kj R022nh+ONeGkptnvliPAu/5xaBkzkxJfIrCIdkEMj65mU0eXSJnY+rpr+r1nNqpv 6h67BKuGha7Z4Ke1TT/Q+M0JBADKgYGy2N0ZWLOcJKJuci1u4mgqFw8jqmJJAouP TTs9SP3C30Oe9HSCAvzK8eOZiIvNWv6tdkPMvcDbNG7jV51c4vY42SONkETKXRN9 B+k+VsI3kl9v0pWQ82U5G/V/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvXc1M7M5 LWB17xoDIwBRni/Y0MgwHwYDVR0jBBgwFoAUaU9WG2PafMV3kxY21HiK0rC0riAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0M4NkNEODA2RDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVU5V0cyUGFmTVYza3hZMjFIaUswckMwcmlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MDgzL0M4NkNEODA2RDFCMDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1W M2t4WTIxSGlLMHJDMHJpQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFqBscVonD2CD0Hz2LfhPrSx7WqBGr98PEDyAqHIIJeHrhavHYp9NQih JYu6HNXUlQ/xgYEmVeSr6EmwzSaf0OcUZsSgPjtVJb1shDluiBMqgsMrbT+gUEbW nl8kI/EuViScVglltpBPS1bnU5nBUdydSB0g6y6oYksBMEjQuMExpxu9L4agcLy7 JEflcLEHSJ5TRPzep13ZYJPdG/nTEBUCghhNh8JoBRLZTMw+Ly+05DdtpqoGOCk9 PPLrIlo+615CJEXI+P7qx4jhQy+SK9XraBFUDo2r+BV1jkCelmri6WCVOPyndkpk aN6KxiJ0UzEg3PFHtMUPb2AZ4tgBuOM= -----END CERTIFICATE-----Generated at Sat Aug 9 23:20:30 2025 by rpki-client