$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: r1Rp1c/SJJnljQuRMbDrN2Q4/uecH22KBt65zmpB8MY= Subject key identifier: A2:A6:1E:D2:7E:BA:00:DF:3E:10:46:3A:2B:C2:91:1A:E6:8B:C8:B5 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 7D Signing time: Fri 13 Jun 2025 05:38:59 +0000 Manifest this update: Fri 13 Jun 2025 05:38:58 +0000 Manifest next update: Fri 20 Jun 2025 05:38:58 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: 8Q3qUOTxpLGI9yICI3bfzVILv32eQHQBwZYZ6jPlB4w=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EDXTUfDV5y3+rKMOJtb6JOA7sYGQ4kz4K9vrUd4nHN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Jun 13 05:38:58 2025 GMT Not After : Jun 20 05:38:58 2025 GMT Subject: CN=684bb973-8f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:dd:3f:9d:61:6d:cf:e9:4b:79:ca:4a:59:41: 20:1e:21:41:bc:d7:29:49:b1:d1:ca:67:1a:b9:e3: e8:1d:3d:89:7e:f4:fa:17:26:84:b2:c2:49:14:fe: e6:dc:cd:12:41:ad:cd:92:ed:45:e1:ec:37:c7:0e: 2f:4b:c6:36:9d:67:e1:95:38:b8:a3:77:71:1b:ae: 77:d5:7f:77:d0:32:26:8e:f8:23:9b:4d:06:91:61: 6b:91:79:37:9c:73:ca:77:25:9f:45:01:82:90:ed: 5f:07:f6:13:7c:d9:3c:3d:05:fd:59:30:1d:63:93: 2a:c2:70:be:b7:5b:08:2c:00:85:0f:51:a1:4b:e2: f0:18:b1:ad:86:31:35:06:a1:27:8b:c2:99:7f:da: 72:3a:ee:5d:15:7d:84:0d:a2:81:e5:d9:43:6a:0b: 94:c3:84:88:81:8a:af:9f:28:ca:df:65:bb:98:54: f6:45:c9:43:d6:ac:88:71:8e:07:f6:04:33:49:43: 61:e9:db:76:f0:1b:c4:bc:17:da:e8:ee:b1:27:3e: 6e:1d:8d:d3:46:c8:88:ad:87:4a:2c:bc:42:bb:30: b8:d5:e1:4f:1a:f2:1d:f0:d1:07:fd:b3:c3:83:3b: 07:bb:d3:08:1d:e8:95:ae:4a:35:ee:28:c6:18:7d: 88:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:A6:1E:D2:7E:BA:00:DF:3E:10:46:3A:2B:C2:91:1A:E6:8B:C8:B5 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:61:c4:77:90:11:00:54:c4:e2:90:ff:62:18:54:51:b6:cb: 0f:22:bc:40:25:4c:2a:b4:a6:4a:5d:7b:28:bf:39:34:ff:1f: 67:72:41:d3:bb:58:56:45:d4:f1:a3:7d:56:d5:24:ff:20:9f: 44:f1:e6:7f:cc:b5:d8:cf:a8:45:23:ff:a8:e2:e0:4d:25:9a: 4e:14:63:46:b7:05:a6:67:f0:43:50:b2:64:62:ec:92:05:21: 07:01:cc:ba:2c:65:d4:fb:8b:88:22:f2:ff:89:56:bc:30:d6: ce:be:6a:3a:a8:a2:8f:bf:1e:c0:cf:99:fc:b4:f5:f1:fc:04: b1:c2:d1:da:2b:5a:06:81:7b:b0:bc:1b:dc:cb:43:44:ac:68: 33:64:56:1a:23:bc:a3:93:29:19:31:50:ee:53:2e:cb:95:62: 45:fb:76:b8:b6:07:38:0b:a7:35:0e:82:de:2d:96:8f:33:05: 84:5b:06:5a:b1:3d:6f:70:e4:95:9e:7f:57:3a:2e:68:a9:16: 0d:fc:de:23:a2:e2:37:50:67:92:bc:9b:7f:ea:d8:28:a4:19: c9:d5:d0:e2:0b:40:e7:e0:6c:ba:9f:80:e4:0d:4d:2b:23:92: a7:42:a5:da:36:07:9e:f5:16:16:12:e8:49:46:4b:d5:e9:1f: 1c:0e:8e:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QURBRjExMC8GA1UEBRMoNjhDMkI1ODhEMTY4NUE1ODc0MkQ4QTJFMTg4ODY1REIz MTEwM0NGNzAeFw0yNTA2MTMwNTM4NThaFw0yNTA2MjAwNTM4NThaMBgxFjAUBgNV BAMTDTY4NGJiOTczLThmMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDk3T+dYW3P6Ut5ykpZQSAeIUG81ylJsdHKZxq54+gdPYl+9PoXJoSywkkU/ubc zRJBrc2S7UXh7DfHDi9LxjadZ+GVOLijd3EbrnfVf3fQMiaO+CObTQaRYWuReTec c8p3JZ9FAYKQ7V8H9hN82Tw9Bf1ZMB1jkyrCcL63WwgsAIUPUaFL4vAYsa2GMTUG oSeLwpl/2nI67l0VfYQNooHl2UNqC5TDhIiBiq+fKMrfZbuYVPZFyUPWrIhxjgf2 BDNJQ2Hp23bwG8S8F9ro7rEnPm4djdNGyIith0osvEK7MLjV4U8a8h3w0Qf9s8OD Owe70wgd6JWuSjXuKMYYfYg/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoqYe0n66 AN8+EEY6K8KRGuaLyLUwHwYDVR0jBBgwFoAUaMK1iNFoWlh0LYouGIhl2zEQPPcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBREFGLzg3MTU5Qzk2OENG MzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU1LMWlORm9XbGgwTFlvdUdJaGwyekVRUFBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB REFGLzg3MTU5Qzk2OENGMzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xo MExZb3VHSWhsMnpFUVBQYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALxhxHeQEQBUxOKQ/2IYVFG2yw8ivEAlTCq0pkpdeyi/OTT/H2dyQdO7 WFZF1PGjfVbVJP8gn0Tx5n/MtdjPqEUj/6ji4E0lmk4UY0a3BaZn8ENQsmRi7JIF IQcBzLosZdT7i4gi8v+JVrww1s6+ajqooo+/HsDPmfy09fH8BLHC0dorWgaBe7C8 G9zLQ0SsaDNkVhojvKOTKRkxUO5TLsuVYkX7dri2BzgLpzUOgt4tlo8zBYRbBlqx PW9w5JWef1c6LmipFg383iOi4jdQZ5K8m3/q2CikGcnV0OILQOfgbLqfgOQNTSsj kqdCpdo2B571FhYS6ElGS9XpHxwOjls= -----END CERTIFICATE-----Generated at Sat Jun 14 19:00:30 2025 by rpki-client