$ rpki-client -vvf rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft File: AZgxEf1vCyfiQEY7aKehmEXHuwo.mft (raw, json) Hash identifier: /db/EuSWkUd2kLCBy6lOoB6Y52IT2JH/q40ztHYsM7c= Subject key identifier: 98:11:48:52:0F:FE:F8:0C:CA:09:08:C3:13:BF:C3:98:19:96:53:BB Authority key identifier: 01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A Certificate issuer: /CN=A91513B0/serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Certificate serial: 0510 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft Manifest number: 0502 Signing time: Sat 14 Jun 2025 23:24:46 +0000 Manifest this update: Sat 14 Jun 2025 23:24:46 +0000 Manifest next update: Sat 21 Jun 2025 23:24:46 +0000 Files and hashes: 1: AZgxEf1vCyfiQEY7aKehmEXHuwo.crl (hash: GJBNtaEWxJsguODzIVy5RtO5cLllrOq1y/nbwTeyofg=) 2: 4FE459C8B97211EFA7B7E47DC4F9AE02.roa (hash: m7WV1VKI7ClZpgbpWthM6Ip2WNf7bXuqABVjburQENc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1296 (0x510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91513B0, serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Validity Not Before: Jun 14 23:24:46 2025 GMT Not After : Jun 21 23:24:46 2025 GMT Subject: CN=684e04be-8d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:93:b1:27:97:76:24:ae:e9:04:f1:25:49:db: 1e:b9:f1:26:53:45:56:66:12:e3:c3:01:16:a3:06: 4c:bb:e8:76:fa:fc:0e:54:1d:fa:f6:46:c4:5a:e4: 60:98:16:ef:55:60:ac:0b:07:fb:73:19:f8:d7:4e: 3a:12:2c:ce:6a:ce:3b:e1:2a:1b:e6:15:88:a4:00: 78:59:d5:5c:bd:af:74:fe:d7:b8:e6:c4:63:14:8f: 76:d7:3e:ca:db:3d:3f:b5:1b:2e:0b:b4:bf:8e:06: d7:92:9c:14:6d:24:8e:d0:a1:b3:94:bc:7c:87:64: 53:96:14:c2:0a:c8:2d:de:9f:1b:33:0b:d8:36:5f: 0a:f1:6b:e2:b1:6d:19:ac:4a:64:0f:e2:0b:06:b8: d0:02:dc:ba:e4:de:ed:96:5a:b1:47:0c:5b:41:a7: c9:e6:b0:38:c3:23:52:db:a5:28:3e:d8:57:1a:7e: b1:e0:ae:2d:d5:d9:50:2f:51:eb:dd:f8:af:72:d1: 4d:73:92:6c:81:13:5c:24:4c:38:2a:c7:f3:64:8f: 8c:e4:67:3d:1b:b5:d8:a0:0d:79:29:b7:9b:48:17: db:85:3c:b1:8a:b3:0e:c5:81:5d:8f:a6:ec:f7:8b: f5:55:fb:a4:b9:35:34:0f:84:c7:17:1a:52:9b:0e: 94:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:11:48:52:0F:FE:F8:0C:CA:09:08:C3:13:BF:C3:98:19:96:53:BB X509v3 Authority Key Identifier: keyid:01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:9c:bd:c6:63:32:9d:72:5e:b4:46:82:70:ac:1c:92:e0:dc: 3b:03:d3:8e:d8:7d:9b:56:35:e9:ab:0a:09:cc:61:32:06:1d: f9:1a:bd:12:0b:be:d4:34:24:9f:77:90:ad:6e:64:bf:1c:ba: 69:ef:48:4a:c9:d6:72:39:32:82:e4:95:e2:bb:31:06:1d:bc: d4:af:e5:eb:f1:c2:ce:8c:f6:66:91:1c:17:ad:8c:25:4f:f8: 98:1e:cd:1a:c3:b9:63:ba:4e:65:69:25:3a:71:37:7d:d1:b9: 4b:4e:8f:16:1e:31:b1:e0:ff:06:53:9c:8e:64:75:76:25:9b: 23:c0:80:e8:1f:60:d3:77:d3:89:6b:79:77:c6:b1:9e:60:c0: 62:7c:91:d4:fa:ad:d8:d7:0b:2c:27:a8:df:ed:f7:e1:f6:e1: bc:a5:f9:d6:89:37:a8:8a:47:8b:58:b6:fb:d2:b0:4f:b1:0f: 56:0f:2d:e6:78:d6:55:a7:5f:a4:c1:9f:81:29:2f:c7:11:84: 6d:15:34:4c:38:a5:96:f9:29:23:b2:70:ba:63:f6:84:ac:96: 32:15:91:37:14:57:8d:d7:fd:8b:f8:9b:4c:39:d3:33:2a:a2: e1:1a:7e:a0:75:c1:1e:c8:34:44:a9:4d:59:ae:35:52:4d:b0: 70:e9:3b:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEzQjAxMTAvBgNVBAUTKDAxOTgzMTExRkQ2RjBCMjdFMjQwNDYzQjY4QTdBMTk4 NDVDN0JCMEEwHhcNMjUwNjE0MjMyNDQ2WhcNMjUwNjIxMjMyNDQ2WjAYMRYwFAYD VQQDEw02ODRlMDRiZS04ZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlJOxJ5d2JK7pBPElSdseufEmU0VWZhLjwwEWowZMu+h2+vwOVB369kbEWuRg mBbvVWCsCwf7cxn41046EizOas474Sob5hWIpAB4WdVcva90/te45sRjFI921z7K 2z0/tRsuC7S/jgbXkpwUbSSO0KGzlLx8h2RTlhTCCsgt3p8bMwvYNl8K8WvisW0Z rEpkD+ILBrjQAty65N7tllqxRwxbQafJ5rA4wyNS26UoPthXGn6x4K4t1dlQL1Hr 3fivctFNc5JsgRNcJEw4KsfzZI+M5Gc9G7XYoA15KbebSBfbhTyxirMOxYFdj6bs 94v1VfukuTU0D4THFxpSmw6UtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgRSFIP /vgMygkIwxO/w5gZllO7MB8GA1UdIwQYMBaAFAGYMRH9bwsn4kBGO2inoZhFx7sK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTNCMC8xMzhFMTQzMDE0 NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5ZmlRRVk3YUtlaG1FWEh1 d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaZ3hFZjF2Q3lmaVFFWTdhS2VobUVYSHV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTNCMC8xMzhFMTQzMDE0NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5 ZmlRRVk3YUtlaG1FWEh1d28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAInL3GYzKdcl60RoJwrByS4Nw7A9OO2H2bVjXpqwoJzGEyBh35Gr0S C77UNCSfd5CtbmS/HLpp70hKydZyOTKC5JXiuzEGHbzUr+Xr8cLOjPZmkRwXrYwl T/iYHs0aw7ljuk5laSU6cTd90blLTo8WHjGx4P8GU5yOZHV2JZsjwIDoH2DTd9OJ a3l3xrGeYMBifJHU+q3Y1wssJ6jf7ffh9uG8pfnWiTeoikeLWLb70rBPsQ9WDy3m eNZVp1+kwZ+BKS/HEYRtFTRMOKWW+SkjsnC6Y/aErJYyFZE3FFeN1/2L+JtMOdMz KqLhGn6gdcEeyDREqU1ZrjVSTbBw6Tv8 -----END CERTIFICATE-----Generated at Sun Jun 15 18:04:06 2025 by rpki-client