$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: FK0DZ1MpA9FjHKo2zh8qTJu6dhCAFZdd0+sA0BPn2Ew= Subject key identifier: 4F:03:46:13:D6:52:22:93:BC:9C:F1:12:0C:63:B1:66:ED:5B:D9:B9 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 223A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 2207 Signing time: Fri 08 Aug 2025 15:58:12 +0000 Manifest this update: Fri 08 Aug 2025 15:58:12 +0000 Manifest next update: Fri 15 Aug 2025 15:58:12 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: nIqbmONj2fFn2PJFLYfHjzWLY/Ocdvf+fCM6MeitfBA=) 2: 1272CD8E65DB11F0A01C3E60C4F9AE02.roa (hash: K8rvLMzrsjXflWhtraH9xHgiGfEo1rwZkk7rAqJ5AVY=) 3: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: SkqOP3HGJvJNACUcXS+nN5Zr4p2eXR8/AXO6wYAFnB4=) 4: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: du5SamzGoud2VmU4jSD3B3FaKaAiMGpYcMTILdk3Bb0=) 5: 12D8333665DB11F0A01C3E60C4F9AE02.roa (hash: xLfK5TOVzBnbYDaBShBmp+Z9IX2Z+r7DlwDQygz4DDI=) 6: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: ErUpQfksEEfKD74XB+FFiaOlKOxRk0KEFfC9SCixKUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8762 (0x223a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Aug 8 15:58:12 2025 GMT Not After : Aug 15 15:58:12 2025 GMT Subject: CN=68961e94-34f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:3c:29:24:06:15:9f:bd:00:fb:d4:a1:5c: f4:ad:2d:21:12:13:56:11:3a:e3:1b:5a:41:49:75: 89:67:32:a7:70:d6:4b:b1:60:2d:fb:7c:c8:7e:a2: fa:3e:ce:c0:6c:42:7d:c5:d9:b9:81:ed:78:89:37: 84:7d:30:20:14:88:42:8e:89:aa:b4:f6:b6:29:6f: ec:42:f2:70:83:93:2c:c7:44:33:58:42:7d:96:d3: 4f:68:61:e4:57:6e:1f:5d:ac:b6:3e:e9:ee:f4:02: da:b7:cb:e1:4d:1a:78:88:9e:21:06:1d:95:62:0a: e1:74:6a:a7:c6:a5:42:66:fa:60:6a:f8:e5:3b:41: 73:1e:1c:52:d5:f9:3c:c5:fa:11:fe:5a:fc:15:fd: dd:ee:f3:6e:19:a8:34:33:75:a2:93:84:c2:bb:9a: ad:44:e4:89:59:12:c0:19:cc:42:6e:11:f7:d4:93: c1:81:ba:d9:1d:00:58:5a:03:49:c9:1c:98:cb:79: fa:ae:51:a4:72:69:97:1c:ef:58:0c:99:b4:c5:67: 15:04:93:7d:6c:29:80:12:38:39:4a:7d:81:b8:f6: 92:0f:cc:6b:41:56:fd:97:41:74:08:e1:9f:86:c6: 10:cd:06:ea:5b:bd:94:4f:85:09:4d:d4:c2:ed:6d: 4e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:03:46:13:D6:52:22:93:BC:9C:F1:12:0C:63:B1:66:ED:5B:D9:B9 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:70:5c:ab:76:b2:12:ca:4e:aa:f2:9b:bc:4d:fd:35:35:26: 4e:46:20:dc:1e:27:97:12:60:18:1b:08:6e:2a:f0:2c:62:bf: 6f:33:35:7c:04:2f:9d:de:7f:14:9d:1c:dd:ef:a5:e0:2a:e7: 95:c4:14:20:f5:1c:01:a3:e6:80:e1:70:c9:e0:af:90:93:0c: 26:5d:ce:c2:e6:90:54:4d:59:59:93:5e:6b:87:db:6e:d1:7c: 22:d3:28:0f:29:b3:4f:52:6c:4a:53:81:91:d9:25:d1:3c:97: 97:47:ac:f5:7f:a7:80:c9:32:86:f2:3b:74:99:3a:8d:32:b4: 87:bc:db:51:d8:ce:13:f2:1a:3f:3d:e7:fd:65:e8:20:62:3f: bc:0a:42:78:ad:df:f6:38:ce:fd:74:4e:c3:05:86:1d:f2:d4: f1:f5:06:c1:df:2c:35:f8:3d:c2:bc:ca:50:e8:8d:b3:85:35: d6:84:71:21:6d:57:1d:a8:ab:f3:e9:d3:94:cf:6b:0c:fb:70: 6f:a9:63:ca:07:33:1d:04:00:95:7d:71:74:54:55:b2:3b:d1: e3:17:be:3b:22:b4:1d:7d:8d:8a:a5:01:0f:63:b9:88:9a:fd: 2f:96:20:b1:71:93:16:aa:9f:52:58:17:10:82:c5:af:4d:b3: eb:18:12:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUwODA4MTU1ODEyWhcNMjUwODE1MTU1ODEyWjAYMRYwFAYD VQQDEw02ODk2MWU5NC0zNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveA8KSQGFZ+9APvUoVz0rS0hEhNWETrjG1pBSXWJZzKncNZLsWAt+3zIfqL6 Ps7AbEJ9xdm5ge14iTeEfTAgFIhCjomqtPa2KW/sQvJwg5Msx0QzWEJ9ltNPaGHk V24fXay2Punu9ALat8vhTRp4iJ4hBh2VYgrhdGqnxqVCZvpgavjlO0FzHhxS1fk8 xfoR/lr8Ff3d7vNuGag0M3Wik4TCu5qtROSJWRLAGcxCbhH31JPBgbrZHQBYWgNJ yRyYy3n6rlGkcmmXHO9YDJm0xWcVBJN9bCmAEjg5Sn2BuPaSD8xrQVb9l0F0COGf hsYQzQbqW72UT4UJTdTC7W1OAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8DRhPW UiKTvJzxEgxjsWbtW9m5MB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADcFyrdrISyk6q8pu8Tf01NSZORiDcHieXEmAYGwhuKvAsYr9vMzV8 BC+d3n8UnRzd76XgKueVxBQg9RwBo+aA4XDJ4K+QkwwmXc7C5pBUTVlZk15rh9tu 0Xwi0ygPKbNPUmxKU4GR2SXRPJeXR6z1f6eAyTKG8jt0mTqNMrSHvNtR2M4T8ho/ Pef9ZeggYj+8CkJ4rd/2OM79dE7DBYYd8tTx9QbB3yw1+D3CvMpQ6I2zhTXWhHEh bVcdqKvz6dOUz2sM+3BvqWPKBzMdBACVfXF0VFWyO9HjF747IrQdfY2KpQEPY7mI mv0vliCxcZMWqp9SWBcQgsWvTbPrGBJX -----END CERTIFICATE-----Generated at Sun Aug 10 10:44:27 2025 by rpki-client