$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: 9BFfv1bC92iMXmGMXM1lF9AwaUE+fDKdiTyxRwqMbAE= Subject key identifier: 14:1D:BE:44:65:29:3E:0C:94:C1:BE:64:F2:45:11:AF:5E:70:90:19 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05B5 Signing time: Sat 02 Aug 2025 23:34:10 +0000 Manifest this update: Sat 02 Aug 2025 23:34:09 +0000 Manifest next update: Sat 09 Aug 2025 23:34:09 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: +L6WCTOvSNVFbFwynt722LSgG5ZddLRNeghn6nFNZ5s=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 23:34:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Aug 2 23:34:09 2025 GMT Not After : Aug 9 23:34:09 2025 GMT Subject: CN=688ea071-d69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fd:4c:50:4b:42:d5:fc:e5:4b:7d:95:07:13: 69:1c:aa:bd:58:13:70:98:e6:ca:ac:79:ac:54:fc: d8:06:fe:90:e9:ca:ca:4f:c1:72:ed:ac:9b:3f:f0: d2:a0:d5:68:64:58:ec:13:47:0a:79:81:49:2a:6f: 34:2f:60:06:dd:6b:2a:d3:42:68:c4:f6:a5:2e:63: a6:c1:f5:73:c3:4d:a8:3a:ec:ef:57:4b:8d:59:d7: 5d:49:22:5c:a6:30:92:9e:c8:1e:2a:55:98:46:7e: a5:90:8d:41:05:23:d7:ac:76:35:5b:4a:4d:81:ef: 05:19:7f:56:df:4d:85:25:2e:62:75:a8:f3:9e:fd: 77:e9:9f:17:1f:e7:ab:58:b3:f5:ba:de:65:61:b8: fb:7f:21:a5:53:be:ca:11:e6:bb:a8:29:97:6c:7f: ef:3a:e1:b2:fa:e9:dc:ef:3b:38:05:85:97:e6:1c: 35:bf:21:cd:1f:8a:bf:fd:ae:17:2b:a5:7b:b6:0c: 0c:63:f0:50:cb:79:9c:31:23:c8:13:9e:e3:74:88: ca:78:51:66:ea:71:84:8a:70:2f:7e:cb:b3:95:a3: cb:a8:be:d5:26:9a:85:ec:8f:5b:d6:a1:2a:ff:d4: 94:fa:7c:1e:26:1e:90:b4:8c:16:26:d8:95:b8:91: 4a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1D:BE:44:65:29:3E:0C:94:C1:BE:64:F2:45:11:AF:5E:70:90:19 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:76:dc:cc:01:82:f6:09:a2:53:a6:05:9f:c2:fd:fc:ca:a8: 5f:a5:cf:a4:9a:1b:45:fa:ef:68:c9:79:f3:77:a1:85:c4:c4: 67:75:fb:9a:32:4a:c3:46:1b:1e:b8:da:3d:8f:80:a7:c2:00: f4:52:50:70:de:bf:ac:e6:f3:40:e7:a0:2e:ec:6d:d0:07:9d: d0:9c:23:21:94:a4:94:2d:6e:46:2b:10:90:0f:ba:b0:23:f7: ca:e1:a8:d3:9d:81:3a:73:05:39:d0:71:e4:b8:42:b7:df:2f: 90:bb:da:be:25:96:51:70:8e:9f:3c:9f:b2:32:e0:45:fc:ce: 17:92:8d:9d:fc:c4:82:64:52:24:66:d3:76:da:33:1d:a2:a0: 59:3a:93:9c:1f:9a:1f:81:55:23:2e:95:98:42:a2:93:45:4d: d6:6f:a6:73:59:3d:25:2d:ca:82:7e:17:6b:97:1b:2c:a2:6d: 6d:8e:10:e7:56:23:09:87:4f:99:f7:70:0c:09:a4:e1:ae:c1: 13:e3:43:35:ad:5f:24:04:12:1e:9a:ea:35:e6:47:13:21:19: c3:d3:7f:2a:ab:3c:22:e2:01:a4:11:06:de:ce:7f:c0:9c:fa: 44:46:83:94:46:41:3c:a4:1e:86:32:23:2d:b9:c5:77:58:ff: 8a:9b:b5:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwODAyMjMzNDA5WhcNMjUwODA5MjMzNDA5WjAYMRYwFAYD VQQDEw02ODhlYTA3MS1kNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApf1MUEtC1fzlS32VBxNpHKq9WBNwmObKrHmsVPzYBv6Q6crKT8Fy7aybP/DS oNVoZFjsE0cKeYFJKm80L2AG3Wsq00JoxPalLmOmwfVzw02oOuzvV0uNWdddSSJc pjCSnsgeKlWYRn6lkI1BBSPXrHY1W0pNge8FGX9W302FJS5idajznv136Z8XH+er WLP1ut5lYbj7fyGlU77KEea7qCmXbH/vOuGy+unc7zs4BYWX5hw1vyHNH4q//a4X K6V7tgwMY/BQy3mcMSPIE57jdIjKeFFm6nGEinAvfsuzlaPLqL7VJpqF7I9b1qEq /9SU+nweJh6QtIwWJtiVuJFKjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQdvkRl KT4MlMG+ZPJFEa9ecJAZMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHdtzMAYL2CaJTpgWfwv38yqhfpc+kmhtF+u9oyXnzd6GFxMRndfua MkrDRhseuNo9j4CnwgD0UlBw3r+s5vNA56Au7G3QB53QnCMhlKSULW5GKxCQD7qw I/fK4ajTnYE6cwU50HHkuEK33y+Qu9q+JZZRcI6fPJ+yMuBF/M4Xko2d/MSCZFIk ZtN22jMdoqBZOpOcH5ofgVUjLpWYQqKTRU3Wb6ZzWT0lLcqCfhdrlxssom1tjhDn ViMJh0+Z93AMCaThrsET40M1rV8kBBIemuo15kcTIRnD038qqzwi4gGkEQbezn/A nPpERoOURkE8pB6GMiMtucV3WP+Km7UL -----END CERTIFICATE-----Generated at Mon Aug 4 11:20:36 2025 by rpki-client