$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: eAc/YokvUsxtHhT5Z7geyMkpiLIgwNLoVG6aZLnZQvE= Subject key identifier: B9:E4:5B:00:D7:C9:78:CF:D6:5D:21:28:9E:33:E6:B2:DD:34:CF:CB Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0DEF Signing time: Sat 14 Jun 2025 17:46:47 +0000 Manifest this update: Sat 14 Jun 2025 17:46:47 +0000 Manifest next update: Sat 21 Jun 2025 17:46:47 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: Ek6aDxWmSokzH7+e0wPMw0cs6LF9iAquYynf+wOBqS8=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: QoxSmZFkmxLXEXsdlg7AEo5bS3bmundbYECPlf6m84c=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: Hd+fGLIKcj2CGWAhoQMpGvllKlGgq3bRAKOqU9WwZus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3589 (0xe05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Jun 14 17:46:47 2025 GMT Not After : Jun 21 17:46:47 2025 GMT Subject: CN=684db587-bed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6e:8f:ab:f0:6c:78:7d:5d:b8:b6:8b:7f:8e: 0c:5d:cb:f0:8d:6d:f4:8a:71:1d:38:e9:b0:14:22: 4c:e7:5a:b8:8b:24:bb:28:34:b6:51:fe:94:26:93: 1d:04:0d:19:b3:d6:62:99:8c:32:8e:d9:5f:46:1e: ad:46:14:28:e6:f3:51:c2:96:bb:89:e1:ea:71:55: 37:72:45:07:1a:26:f7:24:71:ed:94:09:ec:df:1d: 3f:68:6a:9b:c1:c7:0b:03:fb:6c:b0:9e:4b:e5:2e: 50:26:48:03:6f:fe:d7:72:2b:2b:ad:cc:2a:69:c1: 60:14:84:68:f0:fb:0b:e8:47:61:19:c9:b1:14:5a: ea:59:fa:84:91:08:34:f1:ec:12:17:1b:79:36:0d: d3:3d:5c:ba:cf:01:51:12:6d:4a:a9:37:b7:f6:31: 8a:e2:b4:c1:77:d8:d2:df:e9:21:af:dd:05:42:05: a7:be:48:9e:45:db:83:25:bc:48:23:33:39:0e:a5: 6d:b8:8b:18:64:c0:58:17:56:f4:b9:2b:9e:db:69: e8:cf:30:2f:00:22:ce:ed:65:66:96:6a:ef:91:a0: 7d:fe:3b:b4:15:8e:b1:32:f1:83:6d:da:5b:31:37: 6a:ea:ec:27:f2:6f:cb:4a:09:20:27:33:28:a3:f4: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E4:5B:00:D7:C9:78:CF:D6:5D:21:28:9E:33:E6:B2:DD:34:CF:CB X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e6:6c:39:44:ea:49:e4:8b:31:1a:34:34:96:d7:61:94:51: f5:9b:8d:32:a7:d5:ad:f2:b3:e9:4a:9f:cc:ad:09:0f:13:d7: b8:a3:80:4d:6d:7a:e0:46:7c:27:b9:95:aa:fe:85:84:e7:8d: 31:61:81:36:04:fe:dc:1e:0b:2c:6b:f2:0a:db:72:c8:c4:67: 4e:18:7f:18:27:97:d4:de:77:d0:26:5f:a6:fc:92:19:a6:d9: 64:14:60:f5:cf:c0:bb:f2:68:f4:66:6b:6e:55:87:6b:b3:8f: 84:fc:a4:8b:d1:73:34:e3:1d:2d:ec:e1:40:24:a6:1d:eb:2c: 41:24:0b:1f:59:7a:e1:77:1b:9f:f5:30:b8:3d:08:f3:7e:4e: 4d:79:36:e6:c2:fc:1a:59:65:e3:f5:7d:f6:f0:32:2d:f7:40: 36:03:94:aa:d7:16:87:01:f6:b5:4f:19:b5:7c:fa:cd:5e:0f: 35:df:d4:2c:33:b9:6f:44:2a:78:9b:9a:6c:a4:08:6a:57:6e: b2:f6:41:80:54:13:8b:5b:6a:66:82:d0:47:dc:38:68:14:c7: 51:19:f0:c1:d3:1f:83:3b:6c:47:96:26:e4:2f:fd:20:ac:49: b1:b1:e2:0a:30:84:bd:aa:ab:de:e1:df:ab:7c:29:32:af:26: 25:7b:e4:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwNjE0MTc0NjQ3WhcNMjUwNjIxMTc0NjQ3WjAYMRYwFAYD VQQDEw02ODRkYjU4Ny1iZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr26Pq/BseH1duLaLf44MXcvwjW30inEdOOmwFCJM51q4iyS7KDS2Uf6UJpMd BA0Zs9ZimYwyjtlfRh6tRhQo5vNRwpa7ieHqcVU3ckUHGib3JHHtlAns3x0/aGqb wccLA/tssJ5L5S5QJkgDb/7XcisrrcwqacFgFIRo8PsL6EdhGcmxFFrqWfqEkQg0 8ewSFxt5Ng3TPVy6zwFREm1KqTe39jGK4rTBd9jS3+khr90FQgWnvkieRduDJbxI IzM5DqVtuIsYZMBYF1b0uSue22nozzAvACLO7WVmlmrvkaB9/ju0FY6xMvGDbdpb MTdq6uwn8m/LSgkgJzMoo/Qo/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnkWwDX yXjP1l0hKJ4z5rLdNM/LMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu5mw5ROpJ5IsxGjQ0ltdhlFH1m40yp9Wt8rPpSp/MrQkPE9e4o4BN bXrgRnwnuZWq/oWE540xYYE2BP7cHgssa/IK23LIxGdOGH8YJ5fU3nfQJl+m/JIZ ptlkFGD1z8C78mj0ZmtuVYdrs4+E/KSL0XM04x0t7OFAJKYd6yxBJAsfWXrhdxuf 9TC4PQjzfk5NeTbmwvwaWWXj9X328DIt90A2A5Sq1xaHAfa1Txm1fPrNXg8139Qs M7lvRCp4m5pspAhqV26y9kGAVBOLW2pmgtBH3DhoFMdRGfDB0x+DO2xHlibkL/0g rEmxseIKMIS9qqve4d+rfCkyryYle+Sj -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:01 2025 by rpki-client