$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: fZrefFLqGrhkk07Faxleyk/xv4NlgersQrrQsRutZiU= Subject key identifier: 10:2B:49:A0:F7:46:22:81:76:B6:6B:E3:D2:64:30:C9:F6:3D:64:2A Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 99 Signing time: Thu 07 Aug 2025 06:58:19 +0000 Manifest this update: Thu 07 Aug 2025 06:58:19 +0000 Manifest next update: Thu 14 Aug 2025 06:58:19 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: IdN75C1t4Snr8Qs+BKcf4P029OMuw/p1R0ATcqTSzyw=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EDXTUfDV5y3+rKMOJtb6JOA7sYGQ4kz4K9vrUd4nHN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Aug 7 06:58:19 2025 GMT Not After : Aug 14 06:58:19 2025 GMT Subject: CN=68944e8b-809e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2c:26:7a:e6:d4:bd:d4:a0:3f:bc:45:fc:52: 05:66:7c:9f:8f:77:b9:ee:81:48:18:43:7a:06:d7: 4b:5a:2c:f8:fa:db:3c:6b:a2:0d:79:9c:d5:f4:2f: 22:e4:93:85:b0:f4:48:a9:33:03:d6:29:3e:7e:a7: 28:d1:3f:d8:d4:ee:8e:bd:56:67:c3:a0:62:e4:9f: 9c:aa:dd:0f:16:69:8a:72:55:4f:32:7c:49:24:64: 3e:95:7f:4a:c8:27:36:32:63:99:9a:f8:ef:e9:d8: a0:f6:a7:0d:81:03:a1:ab:9e:93:aa:e4:07:42:d9: bc:5a:b4:1b:ae:ec:b3:a3:9f:52:b0:f1:69:bc:52: b1:28:a8:6c:9c:8b:c7:a2:5a:56:e8:92:75:9a:a8: ff:ad:dd:59:49:5c:1d:65:de:b3:69:76:d7:61:32: a7:07:89:34:8c:55:f7:3f:2e:92:a3:83:6a:be:09: da:c5:c4:f0:18:c8:85:b1:f7:70:ed:54:78:d6:31: 02:df:b1:2c:9f:b9:9f:8e:aa:40:25:42:72:06:a2: e7:7a:32:fa:0e:13:40:d2:3f:e6:d3:aa:3e:a4:d1: 2b:db:0f:59:14:01:07:fa:c0:9e:cd:12:51:f9:22: 2e:c2:23:3a:96:f5:ca:9c:62:d7:f0:1d:e3:72:e5: 49:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2B:49:A0:F7:46:22:81:76:B6:6B:E3:D2:64:30:C9:F6:3D:64:2A X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:16:b2:5f:63:8c:f2:b1:34:89:26:84:b4:9c:c1:0a:c3:d0: 44:53:ab:fa:fa:f3:e6:e1:8b:95:1a:95:9d:d5:63:0a:fd:25: 1a:3e:8e:a3:7c:a8:97:dd:e3:39:43:24:d5:fb:ec:97:46:f1: 93:d8:61:89:0e:ab:e9:e4:ec:15:10:8c:00:dc:f7:83:bb:a4: 87:84:3e:5f:4a:32:62:0c:56:b6:81:62:b7:a4:29:7f:2a:70: 7a:f2:fd:40:8e:3d:a5:60:3f:ab:97:a7:99:4c:a5:53:5d:83: 63:40:b2:92:39:10:3d:57:9a:b0:32:05:90:5e:8a:70:65:f9: 1a:9e:ef:e9:b9:aa:37:10:e9:0f:cf:fd:43:8e:92:8e:7b:0c: 65:11:95:32:d3:86:06:40:94:79:c9:6a:c2:55:6f:62:b9:b7: 1b:0c:77:5b:6b:c7:11:6b:12:30:de:6d:16:74:14:56:3f:14: d1:ea:0b:a5:97:62:ae:44:3c:2f:6d:f3:6c:87:68:89:1e:e4: 87:48:be:48:7d:90:02:01:57:6e:3e:a7:6e:5b:24:4b:9d:46: a2:55:7a:d5:a2:2d:a5:f6:75:50:d5:63:cf:a1:96:32:fb:7f: b8:d5:11:d0:c2:44:91:d8:35:90:1d:56:6d:b4:a6:5f:09:55: 02:51:73:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjUwODA3MDY1ODE5WhcNMjUwODE0MDY1ODE5WjAYMRYwFAYD VQQDEw02ODk0NGU4Yi04MDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSwmeubUvdSgP7xF/FIFZnyfj3e57oFIGEN6BtdLWiz4+ts8a6INeZzV9C8i 5JOFsPRIqTMD1ik+fqco0T/Y1O6OvVZnw6Bi5J+cqt0PFmmKclVPMnxJJGQ+lX9K yCc2MmOZmvjv6dig9qcNgQOhq56TquQHQtm8WrQbruyzo59SsPFpvFKxKKhsnIvH olpW6JJ1mqj/rd1ZSVwdZd6zaXbXYTKnB4k0jFX3Py6So4NqvgnaxcTwGMiFsfdw 7VR41jEC37Esn7mfjqpAJUJyBqLnejL6DhNA0j/m06o+pNEr2w9ZFAEH+sCezRJR +SIuwiM6lvXKnGLX8B3jcuVJUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBArSaD3 RiKBdrZr49JkMMn2PWQqMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvFrJfY4zysTSJJoS0nMEKw9BEU6v6+vPm4YuVGpWd1WMK/SUaPo6j fKiX3eM5QyTV++yXRvGT2GGJDqvp5OwVEIwA3PeDu6SHhD5fSjJiDFa2gWK3pCl/ KnB68v1Ajj2lYD+rl6eZTKVTXYNjQLKSORA9V5qwMgWQXopwZfkanu/puao3EOkP z/1DjpKOewxlEZUy04YGQJR5yWrCVW9iubcbDHdba8cRaxIw3m0WdBRWPxTR6gul l2KuRDwvbfNsh2iJHuSHSL5IfZACAVduPqduWyRLnUaiVXrVoi2l9nVQ1WPPoZYy +3+41RHQwkSR2DWQHVZttKZfCVUCUXOB -----END CERTIFICATE-----Generated at Sat Aug 9 01:16:46 2025 by rpki-client