$ rpki-client -vvf rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft File: aecBsfM0KSOA56u5AcNCYzLGqlo.mft (raw, json) Hash identifier: B+t58OsiCmBdNGLWi+FUbIB2zDfKEA2byRqWO3i38vA= Subject key identifier: E6:6F:DA:F8:97:AA:87:43:AC:81:7C:A2:0A:A7:CA:ED:58:45:FB:A8 Authority key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A Certificate issuer: /CN=A91F44EA/serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Certificate serial: 15F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft Manifest number: 15E3 Signing time: Sun 10 Aug 2025 16:44:50 +0000 Manifest this update: Sun 10 Aug 2025 16:44:49 +0000 Manifest next update: Sun 17 Aug 2025 16:44:49 +0000 Files and hashes: 1: aecBsfM0KSOA56u5AcNCYzLGqlo.crl (hash: U2JbyfNV4OgyFDT5lkZEnyBhL45A5ljdp9RGGXeJbTY=) 2: F6CE4EEC56F911E997D5B40AC4F9AE02.roa (hash: jy3Wft/F/5UxXAXx08sOlZkwBarb1srk+Xi5m/F+Ac0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5617 (0x15f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F44EA, serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Validity Not Before: Aug 10 16:44:49 2025 GMT Not After : Aug 17 16:44:49 2025 GMT Subject: CN=6898cc82-67fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1a:25:21:dc:aa:96:94:22:5f:31:d1:a4:ad: 13:59:5c:16:9b:47:c2:ef:a2:83:e7:ad:a6:f9:ea: 50:58:a2:9a:a1:05:fc:5c:86:4c:11:dd:d5:97:a3: 04:07:07:5c:40:3e:96:96:41:9e:64:9d:da:d8:ca: 16:6d:ba:f9:f6:70:79:65:67:3c:97:9d:17:92:2d: 40:22:86:4e:4a:6e:c4:50:96:7b:22:86:1b:25:47: 0d:00:48:c4:14:1e:26:23:63:00:9a:48:83:2c:cc: 32:28:52:fb:51:e4:0f:44:e4:86:12:6c:47:47:c3: 3a:95:4c:f1:b1:00:2f:5c:f9:35:06:af:9a:e6:81: fb:3b:86:25:df:38:be:55:c1:90:1b:61:0c:85:18: ea:a3:01:41:44:74:c7:64:b7:89:64:01:6c:b5:23: 81:5c:f1:3b:f0:12:a7:ba:0e:0c:84:15:1b:7b:5c: 8f:c7:29:73:95:76:9c:97:26:b5:3c:c4:49:cd:26: 8d:98:77:77:ea:82:db:5c:e6:cb:dc:bf:fc:e2:0e: ec:0c:cc:75:16:cb:c0:c2:8b:e9:91:8b:8f:fd:06: f5:c8:a4:44:09:aa:d2:18:5c:c1:26:70:fc:d8:78: 80:e7:42:fb:87:f2:20:6a:50:91:4f:29:42:45:fb: a2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6F:DA:F8:97:AA:87:43:AC:81:7C:A2:0A:A7:CA:ED:58:45:FB:A8 X509v3 Authority Key Identifier: keyid:69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:42:f5:14:36:e9:21:b5:6d:b8:ed:c0:f1:04:45:3b:48:ae: 70:1d:45:07:8a:d3:47:b9:be:98:32:44:c1:d2:50:90:e3:a3: 0f:dc:4c:f9:bc:cd:87:f3:e1:b4:02:ed:94:e2:1d:9d:81:82: 7e:4e:82:8b:c1:0a:ff:fb:31:1b:ca:17:2a:f5:07:5a:bf:8a: 05:1e:80:9c:bd:df:4e:ee:7d:e4:05:a4:48:a6:bc:f4:ec:28: 53:f3:f0:9a:e4:6c:64:f1:8e:31:e6:75:d8:15:bf:19:3d:35: bf:06:9c:6c:da:33:ac:9c:d3:00:2e:04:58:01:57:ec:fd:5b: 10:85:27:81:fb:c8:f2:55:39:45:fe:d6:1f:0c:bd:72:c2:9b: f0:3c:43:ca:58:7a:02:42:02:49:9e:18:9c:e7:da:b8:79:07: 57:d7:e7:9d:ad:94:58:c5:a6:40:43:3e:25:55:dc:8c:20:9d: 97:2d:be:82:13:2d:da:1a:2c:98:93:ff:02:e1:13:6a:35:c8: 13:f4:f4:02:2d:65:f5:9a:98:38:0b:b5:79:27:49:bf:a4:f9: 94:ae:da:06:c4:fb:bf:e6:52:ad:fd:81:a6:af:47:9a:e3:f9: cc:a3:39:c2:1b:e8:a8:6e:94:f1:3b:26:c2:e2:ff:f5:ec:51: d9:25:1e:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ0RUExMTAvBgNVBAUTKDY5RTcwMUIxRjMzNDI5MjM4MEU3QUJCOTAxQzM0MjYz MzJDNkFBNUEwHhcNMjUwODEwMTY0NDQ5WhcNMjUwODE3MTY0NDQ5WjAYMRYwFAYD VQQDEw02ODk4Y2M4Mi02N2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRolIdyqlpQiXzHRpK0TWVwWm0fC76KD562m+epQWKKaoQX8XIZMEd3Vl6ME BwdcQD6WlkGeZJ3a2MoWbbr59nB5ZWc8l50Xki1AIoZOSm7EUJZ7IoYbJUcNAEjE FB4mI2MAmkiDLMwyKFL7UeQPROSGEmxHR8M6lUzxsQAvXPk1Bq+a5oH7O4Yl3zi+ VcGQG2EMhRjqowFBRHTHZLeJZAFstSOBXPE78BKnug4MhBUbe1yPxylzlXaclya1 PMRJzSaNmHd36oLbXObL3L/84g7sDMx1FsvAwovpkYuP/Qb1yKRECarSGFzBJnD8 2HiA50L7h/IgalCRTylCRfuinQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZv2viX qodDrIF8ogqnyu1YRfuoMB8GA1UdIwQYMBaAFGnnAbHzNCkjgOeruQHDQmMyxqpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDRFQS82ODkwMzM5NjJC NDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtTT0E1NnU1QWNOQ1l6TEdx bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlY0JzZk0wS1NPQTU2dTVBY05DWXpMR3Fsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDRFQS82ODkwMzM5NjJCNDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtT T0E1NnU1QWNOQ1l6TEdxbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJQvUUNukhtW247cDxBEU7SK5wHUUHitNHub6YMkTB0lCQ46MP3Ez5 vM2H8+G0Au2U4h2dgYJ+ToKLwQr/+zEbyhcq9Qdav4oFHoCcvd9O7n3kBaRIprz0 7ChT8/Ca5Gxk8Y4x5nXYFb8ZPTW/Bpxs2jOsnNMALgRYAVfs/VsQhSeB+8jyVTlF /tYfDL1ywpvwPEPKWHoCQgJJnhic59q4eQdX1+edrZRYxaZAQz4lVdyMIJ2XLb6C Ey3aGiyYk/8C4RNqNcgT9PQCLWX1mpg4C7V5J0m/pPmUrtoGxPu/5lKt/YGmr0ea 4/nMoznCG+iobpTxOybC4v/17FHZJR7O -----END CERTIFICATE-----Generated at Sun Aug 10 21:16:46 2025 by rpki-client