$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: 6zodNg+QKb2qCGknpedAHDfuKQBZCNr9snMROCq3X7w= Subject key identifier: 14:3A:30:C0:FE:B7:1F:0E:D1:D9:8F:A5:3D:F5:86:58:B7:98:60:EF Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: 6A Signing time: Fri 13 Jun 2025 05:51:36 +0000 Manifest this update: Fri 13 Jun 2025 05:51:36 +0000 Manifest next update: Fri 20 Jun 2025 05:51:35 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: +g5mA03wyT1ooEywpVXcj4n7YZfag8Mh4Y5Lbzxmkl4=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Validity Not Before: Jun 13 05:51:36 2025 GMT Not After : Jun 20 05:51:35 2025 GMT Subject: CN=684bbc68-1e46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c0:2b:b9:b3:49:d6:a8:d9:0d:4f:0d:ab:f1: d8:48:f1:bf:dc:0a:fd:88:92:41:c1:44:a0:69:21: 29:71:ed:75:fb:5d:e4:91:c6:06:17:08:8d:50:50: 1b:45:c0:c9:12:44:38:ec:fa:b2:77:83:cd:05:53: fd:38:75:b3:97:18:52:a8:76:f5:aa:81:61:16:5a: a8:cf:a3:4b:ab:25:5c:15:d4:3c:41:68:6f:7c:37: 8b:c2:a1:42:a8:27:d4:32:eb:69:1b:ba:13:e4:f1: 80:81:e7:11:d3:05:ab:0b:99:7e:f0:f9:20:f1:bd: e9:87:43:93:a8:b3:48:2e:89:79:56:3c:e8:48:ac: 8f:13:0e:3f:d0:ef:b2:e7:14:70:7c:ed:84:4f:bc: 5b:b2:1e:56:5c:57:fd:73:13:18:e0:08:12:9e:d2: 80:75:fa:4c:8c:1a:67:69:64:e4:60:ff:7b:43:82: d0:5f:42:f1:c1:35:f1:56:28:63:7e:9a:92:39:4d: ef:c5:14:a3:87:60:fa:b7:e3:ed:c2:96:19:47:c5: 3a:f1:54:0f:08:09:f5:ca:e5:74:f0:ad:05:14:b6: 2b:36:7e:02:8a:b9:07:34:73:a4:93:e4:1a:e3:fa: 0d:4b:44:e8:bc:7e:d3:30:be:70:af:79:20:12:95: 20:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3A:30:C0:FE:B7:1F:0E:D1:D9:8F:A5:3D:F5:86:58:B7:98:60:EF X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:2e:00:87:50:8d:6e:aa:62:62:06:91:de:26:c9:7b:9d:61: d8:a9:db:37:94:99:53:b1:d2:9b:c8:4b:d6:c5:02:48:f8:c8: 07:69:49:ec:dd:75:35:d7:bd:69:ee:09:d2:98:6f:45:25:d9: 98:8c:b5:91:80:4f:a2:e0:21:01:d1:4e:5f:d8:be:a4:c5:29: 14:62:21:a7:09:5d:d9:2f:3b:4d:6d:c2:c0:0b:40:8c:9d:51: 26:fa:ed:80:14:5d:84:36:f6:7f:3d:41:f1:d4:79:56:9d:2a: 6a:09:fd:fb:dd:1c:3d:af:ea:c2:ce:6d:93:7b:4b:1e:c5:2c: 45:c6:1b:05:c7:00:51:47:11:ad:de:d9:dd:a3:45:c2:d2:fe: 76:7b:29:f5:02:b6:59:6d:9f:d8:15:bb:53:ac:2f:ce:1a:9c: 70:95:88:21:ee:42:c2:dd:8c:91:32:56:fe:63:1d:7c:5d:50: d8:b8:ff:c4:12:d2:6c:a4:9d:99:e4:b8:c0:a8:81:bd:2a:4b: be:4b:5a:8c:dd:7e:90:c7:3e:da:58:7c:86:6f:10:08:95:f7: d9:3e:7e:60:b5:e0:a6:0c:61:c6:ed:57:16:18:5c:bb:4c:e1: dd:f7:ea:c1:3d:28:88:d3:56:23:88:32:31:61:ba:29:31:bf: de:cc:92:34 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MDlCQzExMC8GA1UEBRMoMDFGMDVDN0VBNUYyQTJFREZDMTgzODk3RjU4MzU5ODJC MkNGMDNCRjAeFw0yNTA2MTMwNTUxMzZaFw0yNTA2MjAwNTUxMzVaMBgxFjAUBgNV BAMTDTY4NGJiYzY4LTFlNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUwCu5s0nWqNkNTw2r8dhI8b/cCv2IkkHBRKBpISlx7XX7XeSRxgYXCI1QUBtF wMkSRDjs+rJ3g80FU/04dbOXGFKodvWqgWEWWqjPo0urJVwV1DxBaG98N4vCoUKo J9Qy62kbuhPk8YCB5xHTBasLmX7w+SDxvemHQ5Oos0guiXlWPOhIrI8TDj/Q77Ln FHB87YRPvFuyHlZcV/1zExjgCBKe0oB1+kyMGmdpZORg/3tDgtBfQvHBNfFWKGN+ mpI5Te/FFKOHYPq34+3ClhlHxTrxVA8ICfXK5XTwrQUUtis2fgKKuQc0c6ST5Brj +g1LROi8ftMwvnCveSASlSDbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFDowwP63 Hw7R2Y+lPfWGWLeYYO8wHwYDVR0jBBgwFoAUAfBcfqXyou38GDiX9YNZgrLPA78w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwOUJDL0QzNUIwODJFQTcw NzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWZCY2ZxWHlvdTM4R0RpWDlZTlpnckxQQTc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw OUJDL0QzNUIwODJFQTcwNzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3Uz OEdEaVg5WU5aZ3JMUEE3OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIkuAIdQjW6qYmIGkd4myXudYdip2zeUmVOx0pvIS9bFAkj4yAdpSezd dTXXvWnuCdKYb0Ul2ZiMtZGAT6LgIQHRTl/YvqTFKRRiIacJXdkvO01twsALQIyd USb67YAUXYQ29n89QfHUeVadKmoJ/fvdHD2v6sLObZN7Sx7FLEXGGwXHAFFHEa3e 2d2jRcLS/nZ7KfUCtlltn9gVu1OsL84anHCViCHuQsLdjJEyVv5jHXxdUNi4/8QS 0myknZnkuMCogb0qS75LWozdfpDHPtpYfIZvEAiV99k+fmC14KYMYcbtVxYYXLtM 4d336sE9KIjTViOIMjFhuikxv97MkjQ= -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:38 2025 by rpki-client