$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: zO6Gcfzpg39m8A0CD8oJfTp3r4E5jzIy2iZHt2GSUfQ= Subject key identifier: 8A:06:6B:20:42:93:BE:49:D5:7B:67:42:2D:B1:67:79:41:A5:FC:5B Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 03CE Signing time: Fri 13 Jun 2025 00:12:11 +0000 Manifest this update: Fri 13 Jun 2025 00:12:10 +0000 Manifest next update: Fri 20 Jun 2025 00:12:10 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: QN0Wi7V+SrRrCaYxuM0ogmiY7vsc4Y/0qBp+95bmlm0=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: 3IMIlDIIJ2OW6DDbM2+fc2GlxtLv0j04UxGtHanf/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Jun 13 00:12:10 2025 GMT Not After : Jun 20 00:12:10 2025 GMT Subject: CN=684b6cdb-98b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:28:0a:14:a8:87:49:a8:cd:2a:98:20:4c:f7: d8:ed:d6:d5:9c:88:25:4e:01:07:99:62:82:6f:58: 64:3c:55:3e:be:e1:80:d1:01:3d:da:e2:dc:7c:91: 69:b5:6d:4e:88:81:b7:0a:22:89:d6:e0:1f:e2:8d: 1b:89:2c:5e:04:b8:5e:df:8c:e0:89:28:30:6f:3e: d8:5a:59:8f:e7:96:76:86:8a:1b:8a:db:9d:b7:0d: 26:b0:8e:ac:65:22:4b:b0:48:95:fe:38:20:05:4f: 6e:14:bf:f6:76:52:60:30:55:84:7c:07:f5:b6:ed: 50:a3:70:d6:68:0a:5f:8f:f4:9d:54:d0:55:7c:ab: 78:d9:20:33:4f:4a:69:76:c1:96:c9:ca:b7:26:38: 59:f4:93:4e:bb:80:66:ee:bf:c6:1f:9c:dc:c3:19: 02:36:b6:c1:99:af:66:61:04:b4:00:b6:42:a1:cb: 5d:7f:34:64:28:3b:19:20:01:32:41:1c:2f:f4:bc: 1a:48:4e:2d:63:dd:6b:e4:1d:04:c5:14:f6:66:0e: cd:57:dc:98:e2:52:95:33:04:17:9f:29:d5:20:57: 9b:98:89:0a:eb:d1:62:e7:7a:38:93:84:7a:67:1f: 0b:99:2f:e3:3a:87:63:73:c5:4c:2a:8a:1c:e7:31: 2d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:06:6B:20:42:93:BE:49:D5:7B:67:42:2D:B1:67:79:41:A5:FC:5B X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:8c:a3:c4:d2:53:5b:63:d5:8d:64:dc:f7:a2:06:bc:a6:70: cf:21:c8:86:b3:66:03:a7:1c:e8:a0:f2:7e:0d:7e:29:41:63: 33:71:45:f1:e0:d7:0f:d1:16:c0:6d:87:7c:4b:9b:fc:35:a8: f6:a0:eb:ef:d3:b2:94:0b:5b:7d:d7:3f:70:44:16:72:5b:3f: 80:17:65:cf:35:60:d2:51:b5:fc:67:25:40:6a:b8:13:c7:2a: d8:53:63:7d:f1:64:64:81:12:db:c5:93:59:36:1c:e3:8f:09: 51:36:9e:91:ee:9b:2c:0d:a5:94:6f:e1:69:5a:eb:ca:8e:5c: d2:1d:23:24:e2:f5:e3:c0:f3:6d:45:2d:3d:b9:43:fe:b8:1a: 85:94:bf:61:62:ac:fd:ab:0f:b6:d4:aa:00:5a:f7:36:dc:18: 81:40:f2:e1:37:60:d2:56:cc:e8:9b:61:79:56:86:b0:0f:fb: d9:47:ff:89:cd:e2:cb:94:09:7f:4f:eb:fa:08:a9:91:c0:b6: c4:36:05:69:f3:c0:e4:36:6d:e0:5f:a3:3b:fd:6a:dd:ee:94: a3:72:29:44:a6:df:ce:63:95:f2:cc:32:70:59:1b:4a:6b:49: 7a:0a:f4:c0:b0:2d:d4:80:65:d3:eb:d6:46:97:32:fa:1d:48: df:ab:9e:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjUwNjEzMDAxMjEwWhcNMjUwNjIwMDAxMjEwWjAYMRYwFAYD VQQDEw02ODRiNmNkYi05OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ygKFKiHSajNKpggTPfY7dbVnIglTgEHmWKCb1hkPFU+vuGA0QE92uLcfJFp tW1OiIG3CiKJ1uAf4o0biSxeBLhe34zgiSgwbz7YWlmP55Z2hoobitudtw0msI6s ZSJLsEiV/jggBU9uFL/2dlJgMFWEfAf1tu1Qo3DWaApfj/SdVNBVfKt42SAzT0pp dsGWycq3JjhZ9JNOu4Bm7r/GH5zcwxkCNrbBma9mYQS0ALZCoctdfzRkKDsZIAEy QRwv9LwaSE4tY91r5B0ExRT2Zg7NV9yY4lKVMwQXnynVIFebmIkK69Fi53o4k4R6 Zx8LmS/jOodjc8VMKooc5zEtGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoGayBC k75J1XtnQi2xZ3lBpfxbMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgjKPE0lNbY9WNZNz3oga8pnDPIciGs2YDpxzooPJ+DX4pQWMzcUXx 4NcP0RbAbYd8S5v8Naj2oOvv07KUC1t91z9wRBZyWz+AF2XPNWDSUbX8ZyVAargT xyrYU2N98WRkgRLbxZNZNhzjjwlRNp6R7pssDaWUb+FpWuvKjlzSHSMk4vXjwPNt RS09uUP+uBqFlL9hYqz9qw+21KoAWvc23BiBQPLhN2DSVszom2F5VoawD/vZR/+J zeLLlAl/T+v6CKmRwLbENgVp88DkNm3gX6M7/Wrd7pSjcilEpt/OY5XyzDJwWRtK a0l6CvTAsC3UgGXT69ZGlzL6HUjfq546 -----END CERTIFICATE-----Generated at Sat Jun 14 17:23:24 2025 by rpki-client