$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: /NGld2rOgMhHh1QNlPwD+y6cwavoCofAwMGNGYiym8Y= Subject key identifier: C3:0B:C9:37:38:63:11:D9:65:A7:DF:0B:F2:8F:AB:33:FB:22:92:EC Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 05F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 05EC Signing time: Thu 12 Jun 2025 22:33:23 +0000 Manifest this update: Thu 12 Jun 2025 22:33:23 +0000 Manifest next update: Thu 19 Jun 2025 22:33:23 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: CYoEn1W3mb/aQ6UsAoQTaQTn+livnw1KJ2MKRag1HrI=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: 9tQnJbgHn9CXIDaZmtJ4XxjigORNQV18RL9rnYpJw1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Jun 12 22:33:23 2025 GMT Not After : Jun 19 22:33:23 2025 GMT Subject: CN=684b55b3-2b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:87:39:ce:d9:fa:ec:d6:4a:99:ee:d3:90: 2b:bd:47:3f:21:14:97:11:2a:a6:cb:f7:a8:b6:35: 2c:c7:cf:bf:ca:f4:af:17:e6:f2:22:7b:6e:7a:f1: 54:54:64:ff:99:7f:dd:b8:a6:4c:9a:82:4f:91:22: b6:56:84:aa:a8:0e:2e:3a:58:b5:0f:3e:28:dc:f8: 8d:e5:22:f4:a3:5d:32:70:3c:70:fd:9f:10:1c:6f: 0c:7c:2a:bf:90:44:31:22:00:53:72:5a:0a:c6:b3: 40:ad:bb:6b:84:49:b1:28:39:eb:5c:fd:f1:cb:62: 21:39:dc:3a:55:d5:17:86:fa:0e:0f:0d:94:a4:a6: a7:88:d1:86:b3:0c:e1:89:92:73:b3:1c:d7:b7:ab: c4:28:2c:4e:aa:c1:df:13:c6:69:8f:66:95:2b:62: f8:10:ae:d5:0e:63:6f:70:b1:c9:96:8b:45:60:ff: b5:45:96:7f:33:95:35:5e:62:0f:85:ae:ef:47:06: 78:29:e8:4e:31:c4:fc:98:d2:de:85:63:22:4d:39: 71:71:1a:dd:6b:46:f9:bc:32:f3:9f:bc:df:d6:74: 49:2e:1c:fd:99:da:3f:ec:90:42:6a:e3:5d:eb:0c: 7c:93:e4:1e:25:60:02:40:c8:06:7b:b6:7b:3f:ce: e4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0B:C9:37:38:63:11:D9:65:A7:DF:0B:F2:8F:AB:33:FB:22:92:EC X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:cf:6f:b1:67:ef:43:7f:d4:b9:85:42:1c:ce:02:0f:86:26: 52:75:48:3b:68:2e:b2:eb:21:21:a9:96:6f:0d:ee:b3:fe:52: 7d:48:91:6e:94:7f:61:87:fe:f9:9e:7e:7b:98:41:b0:a6:50: 01:71:0b:b2:a9:e7:dd:b0:d0:88:fc:93:f0:c8:de:95:c7:e9: 9e:4c:86:94:14:f9:93:09:9f:f1:69:7b:d1:a7:de:f2:99:99: 35:dd:01:8e:f8:f1:cd:cc:ed:a4:1a:41:64:07:4e:0d:c1:ce: dd:09:08:8e:ab:5d:bf:77:e8:3f:ce:07:a4:57:f3:f2:e3:da: 56:1d:6e:83:90:94:af:0d:f0:6d:52:e7:1c:e7:df:05:59:87: 08:e1:a7:79:90:02:ad:b5:ca:4c:78:a0:47:fc:f4:d1:8d:b8: c1:89:03:34:59:29:59:38:2e:11:cf:ac:22:cb:07:eb:9d:f6: 47:92:72:1e:4a:22:6b:9f:c1:89:60:62:49:1e:a6:00:90:b9: ff:f1:98:7e:16:ac:c6:48:25:22:a9:b2:08:38:e1:72:c7:9b: e5:2a:eb:5a:10:62:63:03:f5:f5:c7:17:9b:59:b8:37:e3:d5: c1:00:ed:a7:15:c1:4c:70:b2:89:73:37:14:a1:04:f8:4f:77: 4f:43:3e:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwNjEyMjIzMzIzWhcNMjUwNjE5MjIzMzIzWjAYMRYwFAYD VQQDEw02ODRiNTViMy0yYjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ2HOc7Z+uzWSpnu05ArvUc/IRSXESqmy/eotjUsx8+/yvSvF+byIntuevFU VGT/mX/duKZMmoJPkSK2VoSqqA4uOli1Dz4o3PiN5SL0o10ycDxw/Z8QHG8MfCq/ kEQxIgBTcloKxrNArbtrhEmxKDnrXP3xy2IhOdw6VdUXhvoODw2UpKaniNGGswzh iZJzsxzXt6vEKCxOqsHfE8Zpj2aVK2L4EK7VDmNvcLHJlotFYP+1RZZ/M5U1XmIP ha7vRwZ4KehOMcT8mNLehWMiTTlxcRrda0b5vDLzn7zf1nRJLhz9mdo/7JBCauNd 6wx8k+QeJWACQMgGe7Z7P87kawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMLyTc4 YxHZZaffC/KPqzP7IpLsMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJz2+xZ+9Df9S5hUIczgIPhiZSdUg7aC6y6yEhqZZvDe6z/lJ9SJFu lH9hh/75nn57mEGwplABcQuyqefdsNCI/JPwyN6Vx+meTIaUFPmTCZ/xaXvRp97y mZk13QGO+PHNzO2kGkFkB04Nwc7dCQiOq12/d+g/zgekV/Py49pWHW6DkJSvDfBt Uucc598FWYcI4ad5kAKttcpMeKBH/PTRjbjBiQM0WSlZOC4Rz6wiywfrnfZHknIe SiJrn8GJYGJJHqYAkLn/8Zh+FqzGSCUiqbIIOOFyx5vlKutaEGJjA/X1xxebWbg3 49XBAO2nFcFMcLKJczcUoQT4T3dPQz67 -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:22 2025 by rpki-client