$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: rhuRLMq7J5YB1LzwSfyBBaAkwU5E5RH/+7tzzuyzTUc= Subject key identifier: 8A:71:70:FF:E4:FB:A9:E5:C8:4F:5B:86:14:52:F1:73:C7:7F:2F:42 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 059C Signing time: Sat 14 Jun 2025 22:57:34 +0000 Manifest this update: Sat 14 Jun 2025 22:57:33 +0000 Manifest next update: Sat 21 Jun 2025 22:57:33 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: Q2EkjSNsFd8qBnWTvsGW8SK9qKvAQ57WQ5/Ert7cxj4=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Jun 14 22:57:33 2025 GMT Not After : Jun 21 22:57:33 2025 GMT Subject: CN=684dfe5d-df85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e0:3f:b5:16:97:aa:f2:05:67:cc:71:5c:dc: d2:5c:53:67:e1:33:ed:cb:5a:2c:b8:c0:82:c8:81: f5:b8:0f:9c:a4:f8:33:fa:48:8f:48:4f:ef:71:16: 0a:9f:23:1f:29:00:db:90:22:0a:85:87:2d:9d:7b: c3:e7:06:88:c0:a5:d0:94:f7:d5:cf:da:b7:fb:c6: 99:34:8b:3b:0b:c2:df:b1:3e:f0:9d:0f:28:21:b1: 51:4c:0c:f7:08:56:cb:e2:24:6c:54:2e:b2:c6:b8: 54:3b:98:f1:28:b4:c6:ae:a2:0c:44:fb:eb:52:d7: ac:87:58:91:4f:74:ec:a9:24:a1:03:21:45:ca:02: 66:4b:40:4e:cd:fa:e1:b0:f5:8f:51:5f:8e:8e:89: 3c:3b:5c:b5:cc:51:3e:48:a3:d7:b7:10:f1:04:ff: 4f:83:d3:48:ef:cd:93:19:13:00:ed:f7:29:7a:c2: c2:06:80:a4:2b:17:5e:c1:c7:10:69:6f:77:7d:24: 90:d9:c2:b0:4d:0d:58:da:e6:a3:3c:f1:62:57:3d: 7a:ca:93:da:67:be:8e:da:53:27:ff:00:79:d4:a5: 9c:aa:d6:8a:4c:54:48:f1:04:a1:d5:b7:42:89:2d: 25:36:e8:b1:68:31:7b:ce:84:be:f3:45:31:5d:6d: d5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:71:70:FF:E4:FB:A9:E5:C8:4F:5B:86:14:52:F1:73:C7:7F:2F:42 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:75:62:74:64:7c:be:9d:52:43:05:53:f3:ae:b4:78:d9:14: 0e:f2:06:47:7b:f1:5a:a5:76:bc:18:08:f7:77:6e:f6:c8:5d: a7:4d:a4:e5:c3:2f:e0:10:cb:10:6d:dd:da:7e:2f:86:ea:ec: e0:79:a4:70:49:b7:2e:ee:2c:71:07:59:a7:72:b6:c8:d2:3c: 2c:f4:36:a9:79:8e:5e:9a:00:a5:8a:e9:6b:8a:67:50:d1:0d: c5:9d:98:3c:ba:31:97:52:44:71:a7:19:d9:ec:f6:ef:8d:9e: fe:45:11:53:ec:b6:6f:de:6e:52:7a:b0:c6:37:fe:92:c0:e9: 1d:ec:6d:69:80:73:07:89:c1:24:56:ba:d2:77:98:30:a6:0b: 9a:92:59:dc:b7:4a:e3:05:45:0b:06:ad:21:70:18:ed:f0:a4: 96:24:13:a7:ed:ae:1d:a3:d2:9d:d3:e9:46:a6:78:d7:7e:d2: d0:b3:6f:1f:93:4c:85:ec:26:ff:1b:f6:c6:d1:70:9f:7d:22: 0f:cf:51:69:4c:e1:d2:a3:aa:24:b5:b5:f2:54:8d:2a:f6:1e: 92:85:a1:2d:bf:a7:a4:7d:8c:24:67:02:ff:11:cc:d9:87:70: 0e:ad:ee:ec:10:27:4d:15:c1:c2:64:b3:fa:1f:64:53:2e:29: dd:3d:83:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwNjE0MjI1NzMzWhcNMjUwNjIxMjI1NzMzWjAYMRYwFAYD VQQDEw02ODRkZmU1ZC1kZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OA/tRaXqvIFZ8xxXNzSXFNn4TPty1osuMCCyIH1uA+cpPgz+kiPSE/vcRYK nyMfKQDbkCIKhYctnXvD5waIwKXQlPfVz9q3+8aZNIs7C8LfsT7wnQ8oIbFRTAz3 CFbL4iRsVC6yxrhUO5jxKLTGrqIMRPvrUtesh1iRT3TsqSShAyFFygJmS0BOzfrh sPWPUV+Ojok8O1y1zFE+SKPXtxDxBP9Pg9NI782TGRMA7fcpesLCBoCkKxdewccQ aW93fSSQ2cKwTQ1Y2uajPPFiVz16ypPaZ76O2lMn/wB51KWcqtaKTFRI8QSh1bdC iS0lNuixaDF7zoS+80UxXW3VlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpxcP/k +6nlyE9bhhRS8XPHfy9CMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChdWJ0ZHy+nVJDBVPzrrR42RQO8gZHe/FapXa8GAj3d272yF2nTaTl wy/gEMsQbd3afi+G6uzgeaRwSbcu7ixxB1mncrbI0jws9DapeY5emgCliulrimdQ 0Q3FnZg8ujGXUkRxpxnZ7PbvjZ7+RRFT7LZv3m5SerDGN/6SwOkd7G1pgHMHicEk VrrSd5gwpguaklnct0rjBUULBq0hcBjt8KSWJBOn7a4do9Kd0+lGpnjXftLQs28f k0yF7Cb/G/bG0XCffSIPz1FpTOHSo6oktbXyVI0q9h6ShaEtv6ekfYwkZwL/EczZ h3AOre7sECdNFcHCZLP6H2RTLindPYN/ -----END CERTIFICATE-----Generated at Mon Jun 16 17:43:15 2025 by rpki-client