$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: yh4wCF/Ta8ylzEBt0Jdmj76mJ+UJYuA49cGOwKOG7Gw= Subject key identifier: C6:AE:2F:6D:3C:62:01:4B:2F:F4:27:D7:C2:C4:29:9B:6F:28:15:89 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 020C Signing time: Fri 13 Jun 2025 01:29:36 +0000 Manifest this update: Fri 13 Jun 2025 01:29:36 +0000 Manifest next update: Fri 20 Jun 2025 01:29:36 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: pjbaCMt1Leqe9wEhNlqeDP8Y6/VZPYhSCXfFKyqHVSo=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: 8tU0+bWbTseOr25wJKvheZneGGhgRMUkg1uHcFDydtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Jun 13 01:29:36 2025 GMT Not After : Jun 20 01:29:36 2025 GMT Subject: CN=684b7f00-36e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:75:79:e5:71:bc:1f:5c:6a:1c:af:bb:bf:12: 20:f4:77:3c:ad:3d:82:85:49:b5:ff:1d:e4:c6:29: 59:96:85:b7:26:00:4e:98:3b:07:d8:a9:78:01:f3: 68:f0:80:87:f8:8f:70:06:b9:bb:cb:d1:2d:db:4f: 6c:1c:f0:e1:64:ed:a7:23:cb:55:4a:1b:bc:fa:dd: 8d:b7:4f:79:40:d4:18:b7:71:e6:9d:e7:75:14:28: 4c:7c:1d:be:a6:5e:e9:6d:af:b0:9a:28:fe:d7:df: 5a:d5:29:ef:87:bf:9d:5a:15:a5:cd:aa:f2:c4:74: ca:62:a6:1d:95:c1:fe:76:be:c7:10:ce:f4:51:fc: 9a:79:9e:eb:a2:1a:4c:c3:f7:70:c5:dd:25:a8:e5: bd:61:0f:29:69:ad:25:1c:d8:bd:ad:c4:b6:10:5f: b5:71:a2:0e:1e:4e:0e:67:7c:a5:d7:2e:ae:f9:aa: fe:12:e6:73:dc:91:8d:3c:56:d3:d0:7f:90:f0:b1: 36:95:68:d7:f8:f2:a6:02:8e:88:47:7d:4c:80:bb: fc:63:ed:d3:a1:b6:6f:51:dd:dc:6c:57:0b:55:30: 39:a2:42:4b:9b:47:99:f2:95:8d:87:cf:1c:51:7f: 20:8d:08:35:ba:73:50:62:1a:94:b9:d4:a6:4c:8a: 90:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:AE:2F:6D:3C:62:01:4B:2F:F4:27:D7:C2:C4:29:9B:6F:28:15:89 X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:17:89:d9:37:08:42:e1:ef:a1:bd:75:96:91:a0:6e:0d:73: 1b:f7:3c:ad:b3:88:36:09:72:3b:82:54:e3:7f:c5:99:82:6b: 05:14:16:e6:e3:c7:48:c8:68:1f:ce:b7:ed:35:8e:33:48:10: 83:1f:15:f7:98:72:b9:0e:a8:e1:f4:22:15:f0:4d:73:04:10: e5:23:d6:5a:72:84:1f:67:5a:97:be:b6:d2:5b:ec:17:ba:7b: 79:33:34:2c:74:55:d1:a5:81:e7:99:15:ef:01:45:a6:91:bc: 2f:c6:47:ad:76:21:31:30:c3:25:c7:99:0c:57:fa:a4:e9:cd: 65:eb:20:6a:b6:5a:f4:25:10:a1:01:fb:e1:ee:35:47:89:6b: d6:bc:a4:82:9b:4f:50:d3:ba:6c:25:1f:5b:a0:85:72:69:9a: 84:7d:c6:1a:93:b4:d4:39:97:ef:64:cf:b3:f7:60:e1:f5:b4: c8:63:e4:00:39:1d:71:8b:60:f0:aa:9f:b1:be:81:8c:d5:ef: 55:95:64:c8:ec:b6:b7:e7:34:68:09:5b:99:94:37:72:9b:86: d6:aa:ad:04:28:1c:9f:34:09:6b:ed:97:ff:fd:28:29:46:19: 9f:44:00:7b:c5:d9:72:ee:22:37:50:4d:42:77:99:eb:d7:fb: 60:c9:9f:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjUwNjEzMDEyOTM2WhcNMjUwNjIwMDEyOTM2WjAYMRYwFAYD VQQDEw02ODRiN2YwMC0zNmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33V55XG8H1xqHK+7vxIg9Hc8rT2ChUm1/x3kxilZloW3JgBOmDsH2Kl4AfNo 8ICH+I9wBrm7y9Et209sHPDhZO2nI8tVShu8+t2Nt095QNQYt3Hmned1FChMfB2+ pl7pba+wmij+199a1Snvh7+dWhWlzaryxHTKYqYdlcH+dr7HEM70UfyaeZ7rohpM w/dwxd0lqOW9YQ8paa0lHNi9rcS2EF+1caIOHk4OZ3yl1y6u+ar+EuZz3JGNPFbT 0H+Q8LE2lWjX+PKmAo6IR31MgLv8Y+3TobZvUd3cbFcLVTA5okJLm0eZ8pWNh88c UX8gjQg1unNQYhqUudSmTIqQGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMauL208 YgFLL/Qn18LEKZtvKBWJMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaF4nZNwhC4e+hvXWWkaBuDXMb9zyts4g2CXI7glTjf8WZgmsFFBbm 48dIyGgfzrftNY4zSBCDHxX3mHK5Dqjh9CIV8E1zBBDlI9ZacoQfZ1qXvrbSW+wX unt5MzQsdFXRpYHnmRXvAUWmkbwvxketdiExMMMlx5kMV/qk6c1l6yBqtlr0JRCh Afvh7jVHiWvWvKSCm09Q07psJR9boIVyaZqEfcYak7TUOZfvZM+z92Dh9bTIY+QA OR1xi2Dwqp+xvoGM1e9VlWTI7La35zRoCVuZlDdym4bWqq0EKByfNAlr7Zf//Sgp RhmfRAB7xdly7iI3UE1Cd5nr1/tgyZ/x -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:16 2025 by rpki-client