$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: eHkLjSsUw9FBeYHK+Dvo1UxGJHESmM5owbbKaIn6Nzg= Subject key identifier: AD:C2:73:3A:34:D0:FC:BE:DA:98:FF:F9:59:09:7E:42:94:62:F6:FF Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 07BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 07BA Signing time: Sat 14 Jun 2025 20:56:36 +0000 Manifest this update: Sat 14 Jun 2025 20:56:35 +0000 Manifest next update: Sat 21 Jun 2025 20:56:35 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: 3aQn+MjoLLGo23Mc8AxsGLR6XqjakteuDxWoC6EP3D8=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: IA44NsOrK26vTiCAA24OiQTy1Evi9ojQ75K61lOkBEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Jun 14 20:56:35 2025 GMT Not After : Jun 21 20:56:35 2025 GMT Subject: CN=684de204-6d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:1e:a2:20:4b:a6:61:0b:dc:5e:8b:d9:56: 7e:9f:5f:bd:af:76:f2:e2:ed:0a:85:e8:66:ac:f4: 2c:ee:04:19:f6:9b:45:3e:a1:9a:69:1c:06:4e:c3: b6:9b:ed:9d:a1:51:8f:00:7b:81:43:5b:40:14:13: c3:c1:0a:af:3b:77:8d:e3:99:d7:13:93:08:e3:5b: 09:a3:0f:6e:1c:87:70:69:c6:7b:cb:b0:fb:12:06: 01:69:08:7d:c0:3b:a9:2e:11:24:de:d4:a6:4d:7c: 7f:8d:41:31:49:51:0c:a6:26:33:3f:4e:f0:a5:58: 9c:e6:2c:e6:0a:5c:5f:aa:30:38:13:45:7d:00:6f: 2e:cb:22:c3:9d:18:5e:ea:f0:90:6d:8f:3e:1f:50: e7:fa:f1:57:d3:26:db:64:7e:b7:70:2b:2a:d9:3e: 54:d7:8b:0f:20:8e:1d:40:37:8c:3a:e3:dc:75:69: 00:d5:4f:69:2a:00:84:87:54:08:1b:54:2e:7a:16: 03:8a:9a:e1:82:22:8c:9a:21:90:b5:46:8d:f5:d7: d2:a4:84:6a:d2:47:9a:ef:7a:22:5c:90:f3:51:87: 8c:84:8a:40:f2:57:47:61:36:a6:38:49:07:c1:55: 06:d4:52:81:61:ee:ef:f5:3b:9e:a2:0c:7e:6f:04: bd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C2:73:3A:34:D0:FC:BE:DA:98:FF:F9:59:09:7E:42:94:62:F6:FF X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ad:66:6e:f8:b3:b2:d6:8c:97:ee:f2:01:6b:31:66:99:31: c0:80:3b:fb:8f:5a:33:0b:35:1b:94:f0:e8:ec:50:6b:75:16: 22:27:bc:47:a5:fa:e0:e7:8c:9e:fa:fb:2f:f3:b3:64:44:2a: 3f:6c:5e:13:a8:e7:00:94:c6:d6:4f:f6:f4:28:7d:0f:da:c3: 80:3f:e9:85:3e:bf:01:10:de:0c:f0:b7:af:b5:6f:5b:46:cd: fe:0e:d4:48:64:f4:46:bb:5c:a0:71:ef:78:a0:06:d8:15:4b: b3:17:e3:8d:07:83:d0:6a:b3:79:3e:5f:57:1e:a1:02:74:6a: 60:87:67:19:88:ca:b8:54:02:6f:fe:a9:cc:02:76:48:04:50: 57:4a:9b:3f:69:01:06:0e:18:74:0b:3a:4f:9c:89:fe:f3:f5: 0b:a4:3c:78:b0:30:82:a9:d9:7b:e8:04:cc:6b:93:28:86:2d: c8:1b:81:3f:f4:f9:d3:38:93:e8:ae:60:44:72:1a:8a:c6:99: a6:79:ea:8b:50:49:5d:65:e9:47:f2:bb:03:36:c9:b8:ba:3c: 2f:af:2a:71:e5:01:40:ee:8a:2a:06:8f:7e:6a:1c:92:46:6b: 39:00:35:99:36:9b:50:9f:d4:dc:1e:90:ff:fa:58:37:f5:a7: b7:c7:35:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUwNjE0MjA1NjM1WhcNMjUwNjIxMjA1NjM1WjAYMRYwFAYD VQQDEw02ODRkZTIwNC02ZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOweoiBLpmEL3F6L2VZ+n1+9r3by4u0KhehmrPQs7gQZ9ptFPqGaaRwGTsO2 m+2doVGPAHuBQ1tAFBPDwQqvO3eN45nXE5MI41sJow9uHIdwacZ7y7D7EgYBaQh9 wDupLhEk3tSmTXx/jUExSVEMpiYzP07wpVic5izmClxfqjA4E0V9AG8uyyLDnRhe 6vCQbY8+H1Dn+vFX0ybbZH63cCsq2T5U14sPII4dQDeMOuPcdWkA1U9pKgCEh1QI G1QuehYDiprhgiKMmiGQtUaN9dfSpIRq0kea73oiXJDzUYeMhIpA8ldHYTamOEkH wVUG1FKBYe7v9Tueogx+bwS99QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3Cczo0 0Py+2pj/+VkJfkKUYvb/MB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCurWZu+LOy1oyX7vIBazFmmTHAgDv7j1ozCzUblPDo7FBrdRYiJ7xH pfrg54ye+vsv87NkRCo/bF4TqOcAlMbWT/b0KH0P2sOAP+mFPr8BEN4M8LevtW9b Rs3+DtRIZPRGu1ygce94oAbYFUuzF+ONB4PQarN5Pl9XHqECdGpgh2cZiMq4VAJv /qnMAnZIBFBXSps/aQEGDhh0CzpPnIn+8/ULpDx4sDCCqdl76ATMa5Mohi3IG4E/ 9PnTOJPormBEchqKxpmmeeqLUEldZelH8rsDNsm4ujwvrypx5QFA7ooqBo9+ahyS Rms5ADWZNptQn9TcHpD/+lg39ae3xzVk -----END CERTIFICATE-----Generated at Sun Jun 15 07:22:35 2025 by rpki-client