$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft File: aTyLTLomsG0s-roPm-TTffDd_z0.mft (raw, json) Hash identifier: n9KWyOrHdOTSoI5ZxwKrkxoY7VWkxLaBx++qrUcteuU= Subject key identifier: 56:46:1F:8C:42:D7:B2:58:2F:3A:55:52:BA:5A:0B:8E:5F:1F:D8:8A Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft Manifest number: 17E0 Signing time: Thu 12 Jun 2025 17:30:48 +0000 Manifest this update: Thu 12 Jun 2025 17:30:47 +0000 Manifest next update: Thu 19 Jun 2025 17:30:47 +0000 Files and hashes: 1: aTyLTLomsG0s-roPm-TTffDd_z0.crl (hash: prVcHYGCdvhtmntD18RBeb9zBEUcu/hX1bMlDSCbm3w=) 2: 9A6F15D6624311EFA06D813FC4F9AE02.roa (hash: RLnPHbg0LTWQkZx9moxgJVtKPJEDGEwMkih73Wp0pkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:30:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Jun 12 17:30:47 2025 GMT Not After : Jun 19 17:30:47 2025 GMT Subject: CN=684b0ec7-9725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:e1:d4:ec:f7:1e:03:86:4c:89:e7:da:bb: 80:43:8a:3f:ec:03:46:12:5f:d7:c1:af:c5:e5:21: ec:6b:c7:e7:1e:d5:65:00:77:24:cb:6a:2d:50:a9: fb:cc:2a:62:4f:7c:53:08:1b:4d:2c:4e:f5:30:1c: a9:06:98:32:5a:f9:3f:45:3f:85:23:9a:f4:c4:ad: 3c:17:45:4a:8f:f4:c4:56:e0:58:1a:b0:70:21:ed: ae:1c:17:81:24:84:91:5c:90:9a:98:f5:05:7a:07: 98:3d:a4:a9:09:ea:74:77:ad:37:85:33:14:69:3f: d6:40:02:6e:70:cf:22:bc:e1:6d:a7:d9:2a:bd:83: f1:03:9d:2d:0e:92:d1:b9:87:17:5b:be:4c:29:ba: fc:09:18:27:6a:46:dd:8f:12:b5:9e:8f:17:2e:f3: 54:2d:6d:c4:bb:0f:7d:9d:05:c6:49:95:3b:bb:0b: 6a:49:8f:7d:53:92:3f:0c:ad:08:26:ef:3c:a3:a3: 8e:f8:2f:5f:1c:18:b7:71:e2:6e:5d:05:10:6c:ff: 09:fd:07:d1:f5:d9:3f:17:2c:8a:80:01:cb:37:f9: e3:52:6c:a6:65:a3:96:1c:d5:b2:4e:26:6f:61:f4: 70:75:0e:33:1d:39:b8:36:8f:65:ef:78:9d:96:89: e0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:46:1F:8C:42:D7:B2:58:2F:3A:55:52:BA:5A:0B:8E:5F:1F:D8:8A X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e7:63:f6:18:91:51:cf:16:ae:c2:65:fb:e9:15:0f:d0:d2:2d: 44:e9:03:c1:20:8d:20:40:92:d8:d3:d9:c7:05:32:c3:59:8a: 71:5c:a9:d4:03:a8:99:be:c9:08:13:64:c0:03:92:f6:1a:e9: ca:00:3e:5f:21:1c:8e:8e:fb:cb:00:06:76:b6:df:80:58:e5: 2c:d1:92:bb:4a:18:08:71:b6:71:2b:6b:36:bf:8a:92:b7:a5: a6:a5:63:85:24:0a:de:60:6a:cc:20:1b:57:2e:73:14:2c:60: 5a:a6:ff:20:ea:59:c6:13:83:ee:6b:d9:b3:b9:3d:6f:09:52: 66:0e:7a:6c:30:4d:a4:2b:21:ed:ab:5f:30:54:6d:79:3c:19: 38:2c:53:56:c6:0b:a5:f8:ea:d9:03:a7:95:ee:48:25:d7:12: 80:4c:60:a1:69:4e:49:26:41:7b:a9:2a:36:55:98:70:ca:ca: f5:19:f9:8f:36:84:52:ae:27:30:f1:67:31:4f:55:8b:74:81: 0a:b2:43:69:71:a4:60:24:25:7a:9a:71:6c:f3:2c:ee:58:1e: 39:78:8c:dd:49:d0:2d:d3:62:92:9f:62:27:d5:5d:bb:9e:3e: 43:ea:cc:01:b5:7f:0c:19:6f:09:d7:71:07:39:37:00:f5:c1: 65:c8:5c:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjUwNjEyMTczMDQ3WhcNMjUwNjE5MTczMDQ3WjAYMRYwFAYD VQQDEw02ODRiMGVjNy05NzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHXh1Oz3HgOGTInn2ruAQ4o/7ANGEl/Xwa/F5SHsa8fnHtVlAHcky2otUKn7 zCpiT3xTCBtNLE71MBypBpgyWvk/RT+FI5r0xK08F0VKj/TEVuBYGrBwIe2uHBeB JISRXJCamPUFegeYPaSpCep0d603hTMUaT/WQAJucM8ivOFtp9kqvYPxA50tDpLR uYcXW75MKbr8CRgnakbdjxK1no8XLvNULW3Euw99nQXGSZU7uwtqSY99U5I/DK0I Ju88o6OO+C9fHBi3ceJuXQUQbP8J/QfR9dk/FyyKgAHLN/njUmymZaOWHNWyTiZv YfRwdQ4zHTm4No9l73idlong7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZGH4xC 17JYLzpVUrpaC45fH9iKMB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJGNC9FQTg3MTg1QzcyMUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNH MHMtcm9QbS1UVGZmRGRfejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDnY/YYkVHPFq7CZfvpFQ/Q0i1E6QPBII0gQJLY09nHBTLDWYpxXKnU A6iZvskIE2TAA5L2GunKAD5fIRyOjvvLAAZ2tt+AWOUs0ZK7ShgIcbZxK2s2v4qS t6WmpWOFJAreYGrMIBtXLnMULGBapv8g6lnGE4Pua9mzuT1vCVJmDnpsME2kKyHt q18wVG15PBk4LFNWxgul+OrZA6eV7kgl1xKATGChaU5JJkF7qSo2VZhwysr1GfmP NoRSricw8WcxT1WLdIEKskNpcaRgJCV6mnFs8yzuWB45eIzdSdAt02KSn2In1V27 nj5D6swBtX8MGW8J13EHOTcA9cFlyFxS -----END CERTIFICATE-----Generated at Sat Jun 14 18:10:21 2025 by rpki-client