$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft File: aZoPjRWjT1mVbLSADGxEBNwOvV0.mft (raw, json) Hash identifier: ra4hHSbm//AycqA0+UTu2smzj7KYn2klU04Dq9O83fU= Subject key identifier: FC:1D:B9:06:B1:CC:7D:23:0D:C7:E4:17:43:81:80:BE:D0:D5:50:C9 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft Manifest number: 3499 Signing time: Sat 14 Jun 2025 15:17:08 +0000 Manifest this update: Sat 14 Jun 2025 15:17:07 +0000 Manifest next update: Sat 21 Jun 2025 15:17:07 +0000 Files and hashes: 1: aZoPjRWjT1mVbLSADGxEBNwOvV0.crl (hash: 2asvf2qca8LgFMBlltZrJILT2h6Tsoh3zYxIyZG6R6s=) 2: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (hash: H9fsyURTb8qh5DVJOvXZinGpj/nUZcubrPdBUX+wonM=) 3: 6A9E6940B10511E591A3E484C4F9AE02.roa (hash: jaRSKEufT55PHq8OPoLG/qgSfjEXVPXjl00275Oa/lI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE, serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Jun 14 15:17:07 2025 GMT Not After : Jun 21 15:17:07 2025 GMT Subject: CN=684d9273-78df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:36:e3:f8:3b:9f:d6:c4:8e:59:5f:da:88:a9: 8b:6c:a6:ea:8b:79:a3:b4:50:b3:34:c0:f3:1c:13: a5:25:16:84:06:ed:99:24:e2:c5:14:5f:db:10:87: ee:7a:01:27:d9:8e:b2:20:87:ef:ad:90:3f:d3:b1: af:d7:73:26:af:74:0d:dc:02:79:cd:59:44:76:11: dd:03:16:6e:a2:73:fc:40:0a:86:af:54:c0:25:8d: fe:0a:1d:f0:ff:dc:5f:f3:f0:1a:c8:a7:55:ea:88: 59:36:64:cc:fc:84:f7:2e:bf:28:1c:09:ae:13:b1: 59:0a:32:74:e9:a6:1c:2d:b0:59:af:94:ad:9b:95: d0:f9:eb:fc:6c:15:a2:8f:9b:e9:d1:3a:3a:57:8f: 1f:e5:59:22:72:9c:44:47:fb:14:97:0c:43:c4:25: ff:f4:79:9c:27:f6:9e:9e:9a:d7:aa:f5:f9:f5:d9: 3e:7e:30:13:f5:22:73:e9:68:9b:95:b1:a6:a1:49: 4a:4e:2e:f7:4e:c5:29:b6:42:4f:97:0f:a4:02:86: 7f:71:c8:c0:5f:7a:ed:8a:46:8e:dc:50:87:93:db: c9:19:fe:cd:82:ee:70:09:b5:05:be:3d:bd:71:9e: 9f:74:2e:f2:43:4b:bf:8f:27:0a:99:53:86:b1:d5: ec:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1D:B9:06:B1:CC:7D:23:0D:C7:E4:17:43:81:80:BE:D0:D5:50:C9 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:dd:ae:d2:f6:ab:d1:03:6c:69:36:2b:66:fc:e5:2a:25:6d: 25:ca:72:e8:d7:c1:2d:98:94:e3:48:31:f6:bf:8c:9f:e3:97: 1a:e1:dd:7f:c0:d5:f6:ab:f6:50:e1:43:24:27:1e:fb:8c:a5: 9c:10:15:92:8b:e3:80:bf:e5:04:ab:e9:92:9c:19:eb:88:bc: c0:1f:60:19:31:dc:58:b8:8c:83:70:bc:18:cc:b5:8e:f9:6a: 3d:16:bd:75:e7:b4:23:3c:88:16:75:c3:a4:7b:e0:d4:e6:93: a9:4c:b2:7f:31:1e:50:f6:d1:31:78:f3:2c:3a:31:22:99:a7: 64:6e:e6:72:87:d9:eb:ec:77:97:bb:1a:80:ac:f2:64:8b:bb: c8:61:6b:4b:3c:1f:59:bc:f9:f1:4a:76:3b:5e:7a:e6:60:2d: 7c:db:85:12:ca:2a:82:4b:99:72:66:3c:bf:e0:a6:d5:ed:23: ac:fc:f4:ab:dd:f4:1e:37:5a:90:82:41:bf:7c:ec:a8:ff:0d: 1a:aa:7e:37:03:6b:c3:b2:9c:be:8f:e9:a3:e8:fd:d1:79:c7: e3:f2:f4:77:2b:ac:8e:a2:0a:f8:02:14:e5:14:cd:51:d0:8a: 10:48:96:30:3f:22:f8:c6:b1:d1:03:e4:25:fc:f2:1b:09:5e: 0f:ea:95:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjUwNjE0MTUxNzA3WhcNMjUwNjIxMTUxNzA3WjAYMRYwFAYD VQQDEw02ODRkOTI3My03OGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTbj+Duf1sSOWV/aiKmLbKbqi3mjtFCzNMDzHBOlJRaEBu2ZJOLFFF/bEIfu egEn2Y6yIIfvrZA/07Gv13Mmr3QN3AJ5zVlEdhHdAxZuonP8QAqGr1TAJY3+Ch3w /9xf8/AayKdV6ohZNmTM/IT3Lr8oHAmuE7FZCjJ06aYcLbBZr5Stm5XQ+ev8bBWi j5vp0To6V48f5VkicpxER/sUlwxDxCX/9HmcJ/aenprXqvX59dk+fjAT9SJz6Wib lbGmoUlKTi73TsUptkJPlw+kAoZ/ccjAX3rtikaO3FCHk9vJGf7Ngu5wCbUFvj29 cZ6fdC7yQ0u/jycKmVOGsdXs+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwduQax zH0jDcfkF0OBgL7Q1VDJMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFGRS9EMTE4QUFCQTFEQUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQx bVZiTFNBREd4RUJOd092VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX3a7S9qvRA2xpNitm/OUqJW0lynLo18EtmJTjSDH2v4yf45ca4d1/ wNX2q/ZQ4UMkJx77jKWcEBWSi+OAv+UEq+mSnBnriLzAH2AZMdxYuIyDcLwYzLWO +Wo9Fr1157QjPIgWdcOke+DU5pOpTLJ/MR5Q9tExePMsOjEimadkbuZyh9nr7HeX uxqArPJki7vIYWtLPB9ZvPnxSnY7XnrmYC1824USyiqCS5lyZjy/4KbV7SOs/PSr 3fQeN1qQgkG/fOyo/w0aqn43A2vDspy+j+mj6P3Recfj8vR3K6yOogr4AhTlFM1R 0IoQSJYwPyL4xrHRA+Ql/PIbCV4P6pW7 -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:40 2025 by rpki-client