$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: kOGd9AuhzGQ1KrnOtDPfeIM61Y0/dLdQnfnznRoXo5I= Subject key identifier: 21:64:D0:58:97:DA:20:E0:A0:CB:4A:E3:BE:16:77:04:50:70:83:D1 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 083C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 0835 Signing time: Thu 14 Aug 2025 21:12:28 +0000 Manifest this update: Thu 14 Aug 2025 21:12:27 +0000 Manifest next update: Thu 21 Aug 2025 21:12:27 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: IbbqzLK74fpu/2WWe8thLWObkYl+G3XWcPvF7L0EtKQ=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: Uilk1jJBfDMGY2sckuokao9InqlSOEodf+Dfn/tc4QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 Aug 2025 21:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Aug 14 21:12:27 2025 GMT Not After : Aug 21 21:12:27 2025 GMT Subject: CN=689e513b-37ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a9:b2:86:5d:ad:60:d1:e3:ca:f8:56:83:eb: e6:64:2f:cc:d8:09:f9:61:54:ab:c8:89:5a:df:13: 00:ec:4c:a8:c1:67:95:d2:5f:6e:e7:8b:b0:41:72: af:66:69:f3:2f:cd:89:1d:a1:40:c3:67:3b:ca:bb: 80:44:ba:33:93:14:7e:ed:1f:48:10:be:96:d2:00: 34:6d:1d:d0:aa:67:7a:e2:d6:6e:f5:65:9c:a7:33: 69:92:de:15:28:07:11:fc:b8:bf:5f:0e:1c:ad:0b: 83:17:2b:04:87:3d:f9:ef:05:12:34:39:dc:b2:db: 63:5d:21:5b:8f:64:06:f1:53:62:d7:3e:b3:5e:69: cb:32:44:1d:30:3f:c7:31:0c:0a:5c:15:55:1f:29: 8b:25:7b:39:fb:81:dd:b6:6e:ae:89:fd:6c:51:d9: c5:d2:6c:88:bd:d4:35:c3:4b:88:28:8f:d4:f4:41: 4a:c7:c3:84:25:39:99:0c:57:fd:d2:91:11:ed:27: 24:56:c6:f4:d7:ff:9b:43:95:de:75:a8:86:82:09: b5:5c:65:3c:8a:9d:b6:e2:68:07:aa:44:d7:6c:32: e2:e4:90:47:63:01:79:db:54:54:ac:f8:a9:56:62: 1f:4d:3b:bf:60:85:e0:5b:d6:c1:9a:4e:13:0f:9f: 8c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:64:D0:58:97:DA:20:E0:A0:CB:4A:E3:BE:16:77:04:50:70:83:D1 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:f9:2b:aa:c7:1f:23:05:a9:72:19:d3:e8:48:c6:10:ea:82: 98:4b:35:4b:14:99:ae:f9:d8:90:4d:23:df:b6:f0:a3:b0:fa: a0:66:93:ba:f6:fe:9b:b1:cf:c4:8f:0e:3a:7d:31:55:2f:f4: 5b:05:6f:84:2d:77:1a:2c:67:3e:01:c5:47:dc:73:c3:7f:82: 6f:8d:0c:fb:ca:1b:47:4c:eb:e4:fa:e4:30:23:1d:a3:d3:b5: 70:4c:70:84:61:ce:81:74:3e:21:f6:0e:b9:8d:a7:e3:e7:42: b6:32:58:4c:5a:4d:5b:31:df:e8:61:8b:61:1d:6e:1b:6a:86: 73:49:63:35:7d:89:60:53:df:f2:01:e4:ad:fa:bd:4d:fd:70: e4:92:9d:1b:20:e1:3f:9e:20:c9:c8:b2:3c:90:ba:68:bc:95: 67:5c:99:13:12:40:49:c6:e1:ae:ac:70:7a:7c:b9:f0:36:77: e3:51:7c:27:47:3f:e7:34:4a:7a:58:fc:40:d0:7b:29:a4:13: a1:68:24:15:1b:de:26:ba:9f:8e:7d:27:87:22:af:2b:b8:2f: c8:b0:ce:82:b2:51:a3:6d:36:af:e4:99:94:39:db:2e:97:21: 7d:db:99:35:b3:ea:4d:0a:38:e7:f5:51:51:50:4f:9e:da:57: 18:60:db:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUwODE0MjExMjI3WhcNMjUwODIxMjExMjI3WjAYMRYwFAYD VQQDEw02ODllNTEzYi0zN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKmyhl2tYNHjyvhWg+vmZC/M2An5YVSryIla3xMA7EyowWeV0l9u54uwQXKv ZmnzL82JHaFAw2c7yruARLozkxR+7R9IEL6W0gA0bR3Qqmd64tZu9WWcpzNpkt4V KAcR/Li/Xw4crQuDFysEhz357wUSNDncsttjXSFbj2QG8VNi1z6zXmnLMkQdMD/H MQwKXBVVHymLJXs5+4Hdtm6uif1sUdnF0myIvdQ1w0uIKI/U9EFKx8OEJTmZDFf9 0pER7SckVsb01/+bQ5XedaiGggm1XGU8ip224mgHqkTXbDLi5JBHYwF521RUrPip VmIfTTu/YIXgW9bBmk4TD5+MwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFk0FiX 2iDgoMtK474WdwRQcIPRMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz+Suqxx8jBalyGdPoSMYQ6oKYSzVLFJmu+diQTSPftvCjsPqgZpO6 9v6bsc/Ejw46fTFVL/RbBW+ELXcaLGc+AcVH3HPDf4JvjQz7yhtHTOvk+uQwIx2j 07VwTHCEYc6BdD4h9g65jafj50K2MlhMWk1bMd/oYYthHW4baoZzSWM1fYlgU9/y AeSt+r1N/XDkkp0bIOE/niDJyLI8kLpovJVnXJkTEkBJxuGurHB6fLnwNnfjUXwn Rz/nNEp6WPxA0HsppBOhaCQVG94mup+OfSeHIq8ruC/IsM6CslGjbTav5JmUOdsu lyF925k1s+pNCjjn9VFRUE+e2lcYYNtL -----END CERTIFICATE-----Generated at Fri Aug 15 15:48:54 2025 by rpki-client