$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: gErAGpcrptIPzHp2gWCRwFQCJlVfD4vp6oj9SIQGUEg= Subject key identifier: D5:77:7F:6F:95:52:F8:1E:27:0E:12:FD:AB:B9:5E:3B:D2:61:9D:40 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 239E Signing time: Sat 14 Jun 2025 15:47:38 +0000 Manifest this update: Sat 14 Jun 2025 15:47:37 +0000 Manifest next update: Sat 21 Jun 2025 15:47:37 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: 109cqBcb50yaIRYlrbW1yZ6ds38VeBzVIF5KPpo80TQ=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9165 (0x23cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Jun 14 15:47:37 2025 GMT Not After : Jun 21 15:47:37 2025 GMT Subject: CN=684d999a-b4c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:05:d7:a0:f4:4a:80:c9:08:42:06:2d:9e:d4: 0e:ce:3c:29:bc:03:5b:49:d1:c1:a4:df:54:6e:57: af:11:4f:9c:95:ec:fa:58:2c:ca:f8:8d:70:f7:d3: 2e:69:4e:79:62:23:91:fc:be:f0:c3:e9:f7:41:06: 16:5c:53:59:1c:73:fd:f4:e0:28:cd:ed:57:7d:3e: 43:82:99:b0:8d:c8:21:b6:52:e3:17:e5:35:f8:02: 48:6c:3b:c9:d5:cd:98:34:e9:bf:77:8c:d6:a9:4a: 41:c5:e7:74:91:c6:cc:72:d2:07:d9:9a:e1:ba:45: 10:f9:f1:49:b1:1f:5e:c7:d3:23:dc:9d:7b:49:18: 88:2c:90:3a:96:07:02:b3:56:32:8f:77:ff:ba:3f: eb:01:74:21:6d:4f:63:1f:79:bb:d2:92:8d:29:1a: a5:b0:7a:37:4f:44:db:7a:70:fd:db:f1:f9:b3:52: 76:2c:91:d0:7a:b8:65:19:a9:51:9d:7a:0d:60:70: 9e:d5:d6:28:d3:06:c7:d6:f1:96:69:aa:b3:7b:41: ae:ad:bc:f2:bc:e4:91:98:ff:34:07:95:5b:7c:29: 78:54:54:88:40:f4:e9:10:8c:2a:4e:2d:a1:fa:9e: e3:5d:1e:42:90:8c:de:65:88:bf:28:26:21:fe:3b: 88:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:77:7F:6F:95:52:F8:1E:27:0E:12:FD:AB:B9:5E:3B:D2:61:9D:40 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:12:f2:1a:f2:84:e1:f6:03:84:72:a7:a2:18:e6:67:37:c4: 48:9c:13:87:00:7a:56:81:ad:d9:17:16:27:ae:d2:25:a7:71: c4:45:e1:52:fd:16:42:fc:b3:23:0a:7a:d0:e7:35:2f:8b:88: dd:e7:d5:b7:93:10:76:6b:34:7a:97:3e:54:81:b5:6c:81:87: 23:54:34:01:94:87:f1:81:71:0a:18:2f:96:b7:0e:8e:55:33: 0f:50:d8:98:44:86:62:87:64:1d:28:9d:3a:3e:ac:e4:55:f8: b7:ea:26:ff:55:d1:8c:02:22:0d:bc:14:97:75:15:e4:dc:08: 26:4b:73:5a:41:d4:79:b1:65:cc:0d:33:9c:62:b1:3c:b4:88: 44:f1:e9:56:6d:ce:ac:fa:53:87:a8:b2:c1:bf:d7:89:83:e3: 01:5e:43:d7:d8:0e:89:d6:39:64:12:c8:0b:d8:d1:eb:1f:42: bb:27:09:88:ad:95:fc:2c:ba:0d:73:ce:bf:12:0b:89:da:10: ee:34:6e:d8:81:1f:44:aa:b3:cd:c5:01:da:05:22:be:d3:e8: 95:45:ec:35:25:6d:27:7d:80:af:19:e9:a2:62:c2:18:fc:32: 27:21:93:2e:dd:35:39:f1:74:7c:e1:db:fb:ed:bc:84:01:16: 6f:f1:38:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNjE0MTU0NzM3WhcNMjUwNjIxMTU0NzM3WjAYMRYwFAYD VQQDEw02ODRkOTk5YS1iNGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugXXoPRKgMkIQgYtntQOzjwpvANbSdHBpN9UblevEU+clez6WCzK+I1w99Mu aU55YiOR/L7ww+n3QQYWXFNZHHP99OAoze1XfT5DgpmwjcghtlLjF+U1+AJIbDvJ 1c2YNOm/d4zWqUpBxed0kcbMctIH2ZrhukUQ+fFJsR9ex9Mj3J17SRiILJA6lgcC s1Yyj3f/uj/rAXQhbU9jH3m70pKNKRqlsHo3T0TbenD92/H5s1J2LJHQerhlGalR nXoNYHCe1dYo0wbH1vGWaaqze0GurbzyvOSRmP80B5VbfCl4VFSIQPTpEIwqTi2h +p7jXR5CkIzeZYi/KCYh/juIWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNV3f2+V UvgeJw4S/au5XjvSYZ1AMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoEvIa8oTh9gOEcqeiGOZnN8RInBOHAHpWga3ZFxYnrtIlp3HEReFS /RZC/LMjCnrQ5zUvi4jd59W3kxB2azR6lz5UgbVsgYcjVDQBlIfxgXEKGC+Wtw6O VTMPUNiYRIZih2QdKJ06PqzkVfi36ib/VdGMAiINvBSXdRXk3AgmS3NaQdR5sWXM DTOcYrE8tIhE8elWbc6s+lOHqLLBv9eJg+MBXkPX2A6J1jlkEsgL2NHrH0K7JwmI rZX8LLoNc86/EguJ2hDuNG7YgR9EqrPNxQHaBSK+0+iVRew1JW0nfYCvGemiYsIY /DInIZMu3TU58XR84dv77byEARZv8TgI -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:27 2025 by rpki-client