$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: vwpoA9tgOTOJAHErlek/jVurDhUw7IPVpsP1Td+zyk8= Subject key identifier: 95:67:D2:B8:D5:A1:B3:B1:26:40:39:FD:60:1F:17:BD:38:22:AB:9E Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 21E4 Signing time: Sat 14 Jun 2025 15:51:42 +0000 Manifest this update: Sat 14 Jun 2025 15:51:41 +0000 Manifest next update: Sat 21 Jun 2025 15:51:41 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: T40baugO2hl4pCP20o0swr0oG5UEhXE/RW8LrP+Erw8=) 2: 1DE1EBA25F0E11EF88D4A280C4F9AE02.roa (hash: CHZ8BUCP+ogBpGKfLieugzwCJ7wbfBVhmhSN5UggfIs=) 3: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: du5SamzGoud2VmU4jSD3B3FaKaAiMGpYcMTILdk3Bb0=) 4: 2694EA4C3A5011F0B1C5451DC4F9AE02.roa (hash: i+D6U66jYq0hRY2atk2pQpTs28w0MJcSmyVG8V2Aw6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8722 (0x2212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Jun 14 15:51:41 2025 GMT Not After : Jun 21 15:51:41 2025 GMT Subject: CN=684d9a8e-ca63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c0:ad:fc:a4:af:18:e5:81:f7:7f:bc:a0:a6: 18:71:d5:5c:e9:f9:af:fb:75:52:7e:a7:8b:91:44: 6e:9e:e9:a9:ae:86:48:ef:1a:a6:b8:b6:45:08:fe: d8:fe:03:c6:2a:de:95:4c:72:bd:1a:2a:75:9c:36: 1f:dd:8a:7c:e8:2d:85:02:66:93:59:bf:58:2c:95: fa:fb:91:33:04:06:c8:16:30:15:03:0b:3b:fe:bd: b4:ac:3e:ff:d5:1f:e6:81:4a:53:52:0e:7b:ca:60: 76:48:8b:4d:3f:61:26:a0:36:a8:68:5c:55:15:ba: c1:e9:08:e5:91:e4:39:ac:78:e8:40:65:e6:38:6f: a7:cb:96:01:2e:25:db:3e:7b:fb:ff:4c:1c:e4:03: 7e:2f:e0:2c:e7:59:55:dc:61:b6:e7:74:4e:06:cb: ba:6f:32:2f:18:b0:a8:9f:f3:7b:b9:8f:a4:6b:77: 06:b9:bf:56:ee:7e:53:c6:3e:b3:92:d7:ca:ec:bf: e7:00:85:0c:37:05:a6:55:36:ad:e7:da:e3:b9:d3: ce:14:22:38:68:d9:f4:63:47:8b:da:f6:dd:e4:78: e2:87:5d:bb:eb:75:9a:e7:e1:90:2a:09:ff:12:ae: 80:66:05:58:15:5e:87:0f:e9:bf:46:1b:22:fc:1f: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:67:D2:B8:D5:A1:B3:B1:26:40:39:FD:60:1F:17:BD:38:22:AB:9E X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:cc:54:8a:6a:21:d1:88:b0:37:cf:88:ac:d9:3c:16:75:6e: 63:fa:43:02:ad:4c:53:a4:0f:1d:f9:d9:30:10:30:50:0a:6b: 8f:55:3d:c4:35:f9:35:3a:83:a5:b0:14:4e:4c:b6:7b:cc:5a: 2f:c0:4b:49:4a:f9:0c:e8:3c:80:78:0d:0b:a8:5e:bd:34:b3: 0c:33:3e:87:f2:f2:bb:00:68:08:00:ce:9c:cb:01:24:c3:1d: 67:b6:60:55:86:e3:ba:13:c8:58:bf:75:a6:77:8b:8a:b3:6e: 4c:5b:62:2b:a9:d5:57:6d:1e:ec:b2:ac:f4:82:55:68:b9:40: cf:eb:27:b8:03:98:8e:82:49:e2:d9:76:57:bb:29:ae:d1:9d: cd:af:7f:9d:16:26:f6:52:90:12:6b:61:78:c8:f8:70:19:60: 75:ae:b0:95:db:67:a8:22:db:57:55:a3:f6:79:a4:cf:1b:2f: 18:2a:83:a0:d8:ec:c8:c6:56:2e:25:b7:22:e9:26:c0:51:13: ac:e2:df:ff:94:d3:ba:78:f1:fd:bd:6a:2b:53:4f:ff:af:92: 26:01:e1:87:d8:c4:00:8f:af:46:d5:98:31:80:8f:6b:39:f3: 95:3e:af:91:73:2f:e1:84:57:ba:7f:87:57:e7:05:29:da:da: f8:23:7c:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUwNjE0MTU1MTQxWhcNMjUwNjIxMTU1MTQxWjAYMRYwFAYD VQQDEw02ODRkOWE4ZS1jYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MCt/KSvGOWB93+8oKYYcdVc6fmv+3VSfqeLkURunumproZI7xqmuLZFCP7Y /gPGKt6VTHK9Gip1nDYf3Yp86C2FAmaTWb9YLJX6+5EzBAbIFjAVAws7/r20rD7/ 1R/mgUpTUg57ymB2SItNP2EmoDaoaFxVFbrB6QjlkeQ5rHjoQGXmOG+ny5YBLiXb Pnv7/0wc5AN+L+As51lV3GG253ROBsu6bzIvGLCon/N7uY+ka3cGub9W7n5Txj6z ktfK7L/nAIUMNwWmVTat59rjudPOFCI4aNn0Y0eL2vbd5Hjih12763Wa5+GQKgn/ Eq6AZgVYFV6HD+m/Rhsi/B+CowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVn0rjV obOxJkA5/WAfF704IqueMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBzFSKaiHRiLA3z4is2TwWdW5j+kMCrUxTpA8d+dkwEDBQCmuPVT3E Nfk1OoOlsBROTLZ7zFovwEtJSvkM6DyAeA0LqF69NLMMMz6H8vK7AGgIAM6cywEk wx1ntmBVhuO6E8hYv3Wmd4uKs25MW2IrqdVXbR7ssqz0glVouUDP6ye4A5iOgkni 2XZXuymu0Z3Nr3+dFib2UpASa2F4yPhwGWB1rrCV22eoIttXVaP2eaTPGy8YKoOg 2OzIxlYuJbci6SbAUROs4t//lNO6ePH9vWorU0//r5ImAeGH2MQAj69G1ZgxgI9r OfOVPq+Rcy/hhFe6f4dX5wUp2tr4I3xd -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:32 2025 by rpki-client