$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: 1v+pysUO0z8LiaHVDgV2MnQGZCFshLOL8h6j+0yu0RU= Subject key identifier: 71:9D:47:DC:B8:04:8C:D2:60:FB:7A:37:B8:D0:4F:8E:95:68:BA:29 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 0820 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 0819 Signing time: Fri 20 Jun 2025 20:41:15 +0000 Manifest this update: Fri 20 Jun 2025 20:41:14 +0000 Manifest next update: Fri 27 Jun 2025 20:41:14 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: MJwto7/T81pX3/mWmSIOEyb8Vto3dDtPFrsPYuqb3XY=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: Uilk1jJBfDMGY2sckuokao9InqlSOEodf+Dfn/tc4QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 20:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Jun 20 20:41:14 2025 GMT Not After : Jun 27 20:41:14 2025 GMT Subject: CN=6855c76a-d481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:30:56:1f:7c:f2:80:18:46:c2:00:8d:13:e8: 3a:a3:a3:9e:b2:c2:d8:0e:0e:03:f3:7e:0e:43:99: e4:d2:bd:ce:68:36:55:f5:15:45:3d:44:50:35:59: 3a:d3:bf:85:23:35:0b:8b:3d:e6:39:09:67:1d:36: 01:94:21:25:91:41:98:11:85:7a:a2:9d:b5:c7:36: 15:12:6d:af:96:ef:66:86:d4:21:60:56:c5:fa:2c: 0f:bc:59:51:96:91:56:b8:fd:ad:14:a0:4f:4e:e9: 7b:a4:c6:da:88:0d:fa:9b:ca:4e:45:53:0b:24:9d: a0:fd:48:5b:52:96:d5:21:6e:3e:57:7b:31:da:64: 47:84:05:b3:58:70:2a:31:6e:13:47:0e:89:ed:17: ef:5a:ae:fb:04:61:c8:98:0a:e3:29:16:dd:cd:b2: 76:64:04:a6:e2:15:38:4e:ca:81:c8:aa:0c:01:ae: a9:ea:c8:68:ed:e1:48:11:31:f3:bd:a2:0d:55:c2: 67:f0:66:12:26:2b:54:21:46:b8:e9:89:45:3d:a7: 0b:52:50:82:1a:78:dd:97:63:e1:46:49:2e:6e:94: ef:77:df:ab:1f:c6:1e:08:23:38:2d:15:bf:e9:60: ff:b2:35:49:c1:fa:9d:6b:6d:d1:7b:00:66:f2:eb: 27:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:9D:47:DC:B8:04:8C:D2:60:FB:7A:37:B8:D0:4F:8E:95:68:BA:29 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:78:1e:1b:30:cd:5d:79:3e:3d:c9:72:ab:81:c7:91:e7:e1: 3e:b2:6f:cf:aa:1f:ec:ba:6e:f5:dd:16:e4:83:36:12:f6:3d: 64:be:88:63:eb:34:ec:d1:60:58:ee:9f:67:8d:f9:1e:b9:5c: f4:08:93:ac:de:31:5c:4e:67:99:ba:54:93:0c:28:4b:3b:22: b7:75:72:40:11:53:ef:a1:d2:3c:02:81:ce:a0:d2:a7:ce:df: 56:0e:8f:8b:a0:3a:d7:45:82:9f:92:c3:99:50:d3:1f:8e:3c: 87:ae:5f:c7:89:65:be:79:a1:7f:f5:4a:a8:99:11:6b:89:f9: f0:16:26:c0:51:41:b1:a6:05:a8:cc:45:8d:5b:67:c6:05:94: 48:45:00:3d:64:1f:42:64:c1:ce:50:e0:c7:cc:c8:7d:09:9b: 32:8d:51:b8:f0:07:5f:50:5e:95:f9:2a:9f:60:a2:1e:1e:43: 07:1f:74:d3:1f:ac:d2:1f:da:a9:31:98:6c:57:98:9f:a7:5d: 33:6f:30:fd:e0:fe:b8:e4:0a:ff:81:85:c4:03:e1:ee:21:c9: 4e:bc:72:77:28:94:f6:b1:f1:b3:63:91:e7:6d:bc:21:7c:e1: 4d:fc:7e:96:23:7f:aa:a3:05:f4:e8:14:a6:f0:8d:5f:24:73: 23:04:11:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUwNjIwMjA0MTE0WhcNMjUwNjI3MjA0MTE0WjAYMRYwFAYD VQQDEw02ODU1Yzc2YS1kNDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozBWH3zygBhGwgCNE+g6o6OessLYDg4D834OQ5nk0r3OaDZV9RVFPURQNVk6 07+FIzULiz3mOQlnHTYBlCElkUGYEYV6op21xzYVEm2vlu9mhtQhYFbF+iwPvFlR lpFWuP2tFKBPTul7pMbaiA36m8pORVMLJJ2g/UhbUpbVIW4+V3sx2mRHhAWzWHAq MW4TRw6J7RfvWq77BGHImArjKRbdzbJ2ZASm4hU4TsqByKoMAa6p6sho7eFIETHz vaINVcJn8GYSJitUIUa46YlFPacLUlCCGnjdl2PhRkkubpTvd9+rH8YeCCM4LRW/ 6WD/sjVJwfqda23RewBm8usn2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGdR9y4 BIzSYPt6N7jQT46VaLopMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCleB4bMM1deT49yXKrgceR5+E+sm/Pqh/sum713RbkgzYS9j1kvohj 6zTs0WBY7p9njfkeuVz0CJOs3jFcTmeZulSTDChLOyK3dXJAEVPvodI8AoHOoNKn zt9WDo+LoDrXRYKfksOZUNMfjjyHrl/HiWW+eaF/9UqomRFrifnwFibAUUGxpgWo zEWNW2fGBZRIRQA9ZB9CZMHOUODHzMh9CZsyjVG48AdfUF6V+SqfYKIeHkMHH3TT H6zSH9qpMZhsV5ifp10zbzD94P645Ar/gYXEA+HuIclOvHJ3KJT2sfGzY5Hnbbwh fOFN/H6WI3+qowX06BSm8I1fJHMjBBG8 -----END CERTIFICATE-----Generated at Sun Jun 22 15:54:47 2025 by rpki-client