$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: jAD/sexGZZ0FDK3itQJOhpZmOK4MUVS7jF3hdSXiWGA= Subject key identifier: 1E:FF:78:D9:F7:8A:50:D1:26:E5:84:78:BD:8E:92:F1:DE:04:58:2A Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 06DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 06D2 Signing time: Thu 24 Apr 2025 21:50:33 +0000 Manifest this update: Thu 24 Apr 2025 21:50:33 +0000 Manifest next update: Thu 01 May 2025 21:50:33 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: IQNs6/rlFGPvFsmjOKYey4Tp+qwhtKiXSXl+6MaE59s=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Apr 24 21:50:33 2025 GMT Not After : May 1 21:50:33 2025 GMT Subject: CN=680ab229-281b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dd:09:bc:3e:b0:cc:0f:c1:4a:8a:c8:0b:07: a6:ad:60:92:f3:74:a8:59:7e:5a:d7:67:38:ee:f1: 25:c3:db:31:60:a7:1d:c3:37:53:d5:37:fd:7b:fd: cf:84:f3:e5:86:b7:f5:32:06:81:ee:e8:a0:df:1a: c0:26:c2:32:46:da:26:a2:b3:b5:b2:ae:73:7d:74: c6:60:27:c9:ca:d7:39:cb:c1:fb:e7:12:19:9d:52: 3b:33:d4:9a:64:52:e9:09:5c:7f:de:87:1a:db:55: bb:8a:1f:d7:dd:31:bf:4b:56:50:19:27:2f:75:bb: ec:4f:ee:9d:70:cc:71:d2:be:01:d6:ba:68:03:2d: d4:70:9c:86:05:00:64:ac:60:a3:a8:6d:56:1c:0a: 9c:5f:2a:11:26:2b:7a:24:ad:67:ed:b5:6a:41:40: 60:e9:b5:48:a8:a8:70:39:90:11:4d:62:ae:7b:93: 0c:c3:01:2f:e0:85:e4:4e:00:61:eb:26:53:4c:65: 21:15:eb:ed:43:cb:39:8a:3e:98:07:77:d6:71:9c: 4f:c5:02:81:3e:18:82:a6:4a:9f:6b:4d:22:9d:a9: 4a:5b:ff:08:57:c8:77:2f:0e:d4:43:2a:cb:f6:c6: 23:e4:dc:be:e6:3f:a4:b3:3f:76:c2:f6:e0:35:a2: 45:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FF:78:D9:F7:8A:50:D1:26:E5:84:78:BD:8E:92:F1:DE:04:58:2A X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:24:5c:b2:e5:36:0b:7c:10:a3:0a:09:47:0b:6c:98:b1:44: 97:7c:12:77:f7:a6:8e:4e:4f:86:21:39:80:ac:4d:91:02:e0: 45:27:4a:78:ee:73:d3:a6:4e:bd:7c:19:08:16:de:21:71:40: ac:ff:13:63:9d:27:b2:5f:72:9a:94:e9:45:20:24:f2:b9:b8: 39:08:de:57:e7:70:c5:61:a0:41:da:69:d9:de:01:9e:57:9c: 76:76:8e:5b:7d:91:6c:9c:fd:94:c6:76:76:14:9d:9f:00:06: 6f:9a:c3:39:2d:16:40:24:d0:b0:70:38:e2:c6:0f:d3:be:24: c3:c3:c3:98:43:60:5f:45:6c:b2:9c:26:7d:d2:e5:de:0a:ac: b3:16:7f:4a:fa:4a:5c:5f:54:66:e0:a4:60:ba:79:16:26:9f: 6a:d9:25:fe:e7:be:3c:67:8c:51:66:64:be:3f:d9:fa:62:94: 9e:b5:8f:9e:26:33:38:9c:b7:9c:80:5c:77:0d:28:53:c3:21: 5c:54:5a:77:91:48:66:a4:53:d1:91:2b:11:81:7b:fa:2b:10: e7:27:5d:71:e8:d1:fa:90:cc:cf:86:63:57:1c:c2:e3:d7:75: 5b:52:19:ac:3e:a1:64:78:4c:15:32:8e:74:43:b3:a7:aa:83: 87:4f:b2:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjUwNDI0MjE1MDMzWhcNMjUwNTAxMjE1MDMzWjAYMRYwFAYD VQQDEw02ODBhYjIyOS0yODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0t0JvD6wzA/BSorICwemrWCS83SoWX5a12c47vElw9sxYKcdwzdT1Tf9e/3P hPPlhrf1MgaB7uig3xrAJsIyRtomorO1sq5zfXTGYCfJytc5y8H75xIZnVI7M9Sa ZFLpCVx/3oca21W7ih/X3TG/S1ZQGScvdbvsT+6dcMxx0r4B1rpoAy3UcJyGBQBk rGCjqG1WHAqcXyoRJit6JK1n7bVqQUBg6bVIqKhwOZARTWKue5MMwwEv4IXkTgBh 6yZTTGUhFevtQ8s5ij6YB3fWcZxPxQKBPhiCpkqfa00inalKW/8IV8h3Lw7UQyrL 9sYj5Ny+5j+ksz92wvbgNaJFQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7/eNn3 ilDRJuWEeL2OkvHeBFgqMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAJFyy5TYLfBCjCglHC2yYsUSXfBJ396aOTk+GITmArE2RAuBFJ0p4 7nPTpk69fBkIFt4hcUCs/xNjnSeyX3KalOlFICTyubg5CN5X53DFYaBB2mnZ3gGe V5x2do5bfZFsnP2UxnZ2FJ2fAAZvmsM5LRZAJNCwcDjixg/TviTDw8OYQ2BfRWyy nCZ90uXeCqyzFn9K+kpcX1Rm4KRgunkWJp9q2SX+5748Z4xRZmS+P9n6YpSetY+e JjM4nLecgFx3DShTwyFcVFp3kUhmpFPRkSsRgXv6KxDnJ11x6NH6kMzPhmNXHMLj 13VbUhmsPqFkeEwVMo50Q7OnqoOHT7Ke -----END CERTIFICATE-----Generated at Sat Apr 26 15:09:06 2025 by rpki-client