$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: 8WEddX9K48/c2MeFCvURt4HYTB73O7U1/1HagSrB9bc= Subject key identifier: 01:86:6D:F9:47:15:E1:05:0B:BF:39:68:10:52:46:8F:F5:6F:BD:73 Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 014F Signing time: Fri 13 Jun 2025 03:08:35 +0000 Manifest this update: Fri 13 Jun 2025 03:08:35 +0000 Manifest next update: Fri 20 Jun 2025 03:08:35 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: rEPNkBzGC7oakrS9Y9JZuljlaaBjQX3i1d9g7tY8b1E=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Jun 13 03:08:35 2025 GMT Not After : Jun 20 03:08:35 2025 GMT Subject: CN=684b9633-edbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bf:4e:cf:9c:8a:a2:93:f1:7c:e2:d9:24:37: 40:af:63:69:c8:f8:bd:12:9e:d2:bf:f2:aa:0e:86: b0:9e:a9:17:3a:79:35:f9:a2:20:45:cd:2c:7b:69: 22:8f:78:88:e9:cf:0e:ff:0d:44:5c:b1:6d:ff:43: 82:b9:5a:d8:8b:c5:af:ee:99:a3:11:fd:2f:56:82: 7c:8f:52:dd:ad:75:76:53:f5:9d:e3:af:ef:ba:74: b0:73:34:4a:b0:08:f9:99:d5:c2:b8:b2:d5:92:a4: 80:78:3b:b0:9b:69:78:78:5e:0e:9f:84:9a:f1:13: 57:c5:c7:52:d7:99:3b:38:0c:e0:1e:ad:71:79:59: dd:8d:d3:20:bf:70:f9:44:90:6f:20:b2:dc:75:15: 40:76:49:c2:eb:e5:43:10:74:64:e5:91:1b:07:f4: d5:b3:f2:ad:fe:b1:26:fa:2c:e0:51:63:ff:60:f1: 91:71:9d:5e:e0:25:ef:e6:86:44:b8:fe:d5:fb:1a: 10:db:42:c5:06:37:d0:57:1f:4e:ae:30:fb:ed:31: be:fc:ee:64:25:3c:a5:4a:a2:9f:77:9a:a9:1d:d6: 08:e2:b4:f1:8d:21:fb:a3:7a:da:41:7d:98:c4:f5: 2c:43:db:81:9d:bc:f0:38:b7:f7:f6:0c:95:a8:92: 45:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:86:6D:F9:47:15:E1:05:0B:BF:39:68:10:52:46:8F:F5:6F:BD:73 X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:80:6a:6a:30:3d:75:22:3d:78:45:cd:19:57:52:37:96:ed: 53:09:33:cb:ef:e9:ac:03:75:71:36:a0:a6:43:af:01:be:a5: 8d:2f:03:00:65:ea:8a:ee:38:52:67:32:8c:37:0c:57:37:ca: 41:81:9e:9b:65:ce:b7:35:18:58:78:bf:5d:2e:8c:02:4b:d2: e7:2b:74:41:89:fc:3c:4b:86:e2:36:c4:94:4c:01:37:c2:fb: 46:ea:a5:1c:d9:15:dc:e7:c8:26:91:c4:c3:ea:b9:fd:b1:21: 3b:c5:50:e8:65:ef:f0:20:c4:eb:d5:96:4f:ff:99:51:e7:2a: 1e:21:6e:22:7f:7d:fc:8c:f6:22:a9:98:dc:d0:eb:2e:70:c8: b5:20:f0:5f:f9:43:30:28:55:da:d1:b3:61:c9:95:2d:01:eb: 6d:8b:0c:c1:99:c1:e6:65:b6:45:6e:5f:b8:c9:e5:fd:a3:03: 76:49:8c:c4:71:a4:04:5a:32:2b:02:e2:0d:67:cc:ef:8d:ea: 2f:6c:07:ba:f9:98:22:fe:72:fe:68:b6:d7:c8:fd:81:0d:c2: ee:05:b0:26:77:32:81:8b:a4:c5:54:fc:f8:75:d4:e7:f2:cf: f2:88:f8:95:dd:fb:1e:15:ef:10:88:26:06:ca:bb:07:d3:73: e9:17:c6:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUwNjEzMDMwODM1WhcNMjUwNjIwMDMwODM1WjAYMRYwFAYD VQQDEw02ODRiOTYzMy1lZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL9Oz5yKopPxfOLZJDdAr2NpyPi9Ep7Sv/KqDoawnqkXOnk1+aIgRc0se2ki j3iI6c8O/w1EXLFt/0OCuVrYi8Wv7pmjEf0vVoJ8j1LdrXV2U/Wd46/vunSwczRK sAj5mdXCuLLVkqSAeDuwm2l4eF4On4Sa8RNXxcdS15k7OAzgHq1xeVndjdMgv3D5 RJBvILLcdRVAdknC6+VDEHRk5ZEbB/TVs/Kt/rEm+izgUWP/YPGRcZ1e4CXv5oZE uP7V+xoQ20LFBjfQVx9OrjD77TG+/O5kJTylSqKfd5qpHdYI4rTxjSH7o3raQX2Y xPUsQ9uBnbzwOLf39gyVqJJFvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGGbflH FeEFC785aBBSRo/1b71zMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFgGpqMD11Ij14Rc0ZV1I3lu1TCTPL7+msA3VxNqCmQ68BvqWNLwMA ZeqK7jhSZzKMNwxXN8pBgZ6bZc63NRhYeL9dLowCS9LnK3RBifw8S4biNsSUTAE3 wvtG6qUc2RXc58gmkcTD6rn9sSE7xVDoZe/wIMTr1ZZP/5lR5yoeIW4if338jPYi qZjc0OsucMi1IPBf+UMwKFXa0bNhyZUtAettiwzBmcHmZbZFbl+4yeX9owN2SYzE caQEWjIrAuINZ8zvjeovbAe6+Zgi/nL+aLbXyP2BDcLuBbAmdzKBi6TFVPz4ddTn 8s/yiPiV3fseFe8QiCYGyrsH03PpF8ap -----END CERTIFICATE-----Generated at Sat Jun 14 17:27:28 2025 by rpki-client