$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: HE70GXlKoLAgKJzEUHIHPxdf2biu5NdDQa1MtWOhvsc= Subject key identifier: 57:55:A1:56:0D:00:FF:22:40:CA:05:2D:2F:70:FB:D9:E2:CC:B9:58 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 30B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 30B5 Signing time: Sat 14 Jun 2025 15:25:21 +0000 Manifest this update: Sat 14 Jun 2025 15:25:20 +0000 Manifest next update: Sat 21 Jun 2025 15:25:20 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: azY1Oj8mFp7VsR8m9Je7abUidTcyuQNzLzof1FBYk9A=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: QijzfOAskdpqspHv2hl6DWJmVGpVIoUXprNfU2Pxi8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12473 (0x30b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Jun 14 15:25:20 2025 GMT Not After : Jun 21 15:25:20 2025 GMT Subject: CN=684d9461-94c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c6:88:71:e1:2b:2b:05:52:71:1e:4c:29:e8: 0f:f7:8e:60:4e:03:0f:a8:14:eb:a3:23:2c:51:d9: c2:cc:de:a8:14:f4:48:8a:c5:d7:ab:c8:1c:fb:30: 45:0f:c9:9f:de:a2:a0:25:ef:ce:82:38:af:7f:4b: 66:0c:2a:ed:d3:85:01:5d:f9:3f:67:74:a6:2d:c2: 5c:78:3f:2c:62:30:e9:1f:b5:c6:14:4d:00:20:f2: 7c:76:77:4d:1b:d7:e1:0a:27:45:d3:9a:8a:60:f4: 76:db:c0:51:3e:69:1e:7e:53:08:52:d1:d3:e8:b9: 7f:c8:42:4b:97:1c:9a:1d:30:94:fc:6d:89:6d:fc: 03:9b:02:11:a7:a2:79:29:6f:b6:34:c0:67:51:5f: 8f:d0:20:68:4f:7e:36:4d:5a:a0:89:b6:66:15:5c: 31:f2:51:d3:78:b5:50:88:e8:0d:47:a1:b6:04:d1: 03:2a:93:45:0f:fb:9e:43:70:ac:bb:27:6b:64:8d: 3c:77:8a:7b:c3:e1:f9:63:30:85:9b:12:b7:48:3c: 31:9c:a3:2d:08:fa:07:48:6b:ec:a3:45:18:f4:c0: 70:a3:1c:15:b3:16:79:96:94:41:e6:34:7a:3f:07: 84:84:0a:36:c3:47:58:1e:c0:9e:d8:fe:f8:76:08: e0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:55:A1:56:0D:00:FF:22:40:CA:05:2D:2F:70:FB:D9:E2:CC:B9:58 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:74:0c:f6:9e:f4:0b:a5:60:4e:7a:51:d2:9e:cb:bb:be:c1: d6:38:e6:9d:08:c4:1c:61:12:d0:8e:d4:d3:1b:73:b1:23:af: 93:6a:bd:2c:a0:5e:eb:be:f1:5b:19:c0:ad:ce:aa:58:7a:97: 21:04:d2:ff:e3:fd:48:3e:b0:c5:37:51:ee:28:da:ea:8d:11: 2f:e0:31:e0:28:c5:57:6c:af:ac:d5:ea:75:32:5a:40:65:66: e7:30:be:b1:4f:11:b8:c3:65:27:14:23:5a:c8:47:a8:1c:f9: 9e:70:b4:1b:2e:ef:98:79:42:5d:95:db:4d:d7:7f:a9:2f:7c: eb:2f:8c:29:a1:63:c4:06:e5:cc:b9:2d:63:83:0b:c0:91:18: 45:01:bd:0b:6c:09:dd:7c:63:82:d9:2d:71:cd:e3:8b:09:5c: 3d:1f:95:92:2f:10:82:21:d2:c7:0b:c4:57:a2:81:01:c2:54: 2c:48:a3:07:4b:cf:f3:21:ff:02:6d:f8:ea:3b:22:24:0c:f5: 4c:8f:be:8e:0a:cb:07:82:99:4e:b7:75:16:e7:8d:16:c2:a3: 0c:a0:cd:d8:f1:23:c2:7a:12:09:44:a3:20:54:23:43:12:9c: ed:7a:99:9e:36:7b:38:12:21:8d:14:b6:b3:cb:6e:46:c5:e6: 70:f6:1e:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUwNjE0MTUyNTIwWhcNMjUwNjIxMTUyNTIwWjAYMRYwFAYD VQQDEw02ODRkOTQ2MS05NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsaIceErKwVScR5MKegP945gTgMPqBTroyMsUdnCzN6oFPRIisXXq8gc+zBF D8mf3qKgJe/Ogjivf0tmDCrt04UBXfk/Z3SmLcJceD8sYjDpH7XGFE0AIPJ8dndN G9fhCidF05qKYPR228BRPmkeflMIUtHT6Ll/yEJLlxyaHTCU/G2JbfwDmwIRp6J5 KW+2NMBnUV+P0CBoT342TVqgibZmFVwx8lHTeLVQiOgNR6G2BNEDKpNFD/ueQ3Cs uydrZI08d4p7w+H5YzCFmxK3SDwxnKMtCPoHSGvso0UY9MBwoxwVsxZ5lpRB5jR6 PweEhAo2w0dYHsCe2P74dgjg3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdVoVYN AP8iQMoFLS9w+9nizLlYMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjdAz2nvQLpWBOelHSnsu7vsHWOOadCMQcYRLQjtTTG3OxI6+Tar0s oF7rvvFbGcCtzqpYepchBNL/4/1IPrDFN1HuKNrqjREv4DHgKMVXbK+s1ep1MlpA ZWbnML6xTxG4w2UnFCNayEeoHPmecLQbLu+YeUJdldtN13+pL3zrL4wpoWPEBuXM uS1jgwvAkRhFAb0LbAndfGOC2S1xzeOLCVw9H5WSLxCCIdLHC8RXooEBwlQsSKMH S8/zIf8CbfjqOyIkDPVMj76OCssHgplOt3UW540WwqMMoM3Y8SPCehIJRKMgVCND EpztepmeNns4EiGNFLazy25GxeZw9h7G -----END CERTIFICATE-----Generated at Sat Jun 14 17:34:48 2025 by rpki-client