$ rpki-client -vvf rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft File: aecBsfM0KSOA56u5AcNCYzLGqlo.mft (raw, json) Hash identifier: z/hMttv3ujR4g+7xbBYbmzSEhm1meeMszqO8OSmEW9o= Subject key identifier: C7:E1:FB:A7:C2:42:0D:47:81:1E:46:F5:4F:8D:C7:7E:D4:B1:96:7A Authority key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A Certificate issuer: /CN=A91F44EA/serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Certificate serial: 15D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft Manifest number: 15C6 Signing time: Sat 14 Jun 2025 16:43:42 +0000 Manifest this update: Sat 14 Jun 2025 16:43:42 +0000 Manifest next update: Sat 21 Jun 2025 16:43:42 +0000 Files and hashes: 1: aecBsfM0KSOA56u5AcNCYzLGqlo.crl (hash: it8SCzolRNbNbvvIF2GuuaQjewYVFIHuPGBvivqxxxY=) 2: F6CE4EEC56F911E997D5B40AC4F9AE02.roa (hash: jy3Wft/F/5UxXAXx08sOlZkwBarb1srk+Xi5m/F+Ac0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5588 (0x15d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F44EA, serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Validity Not Before: Jun 14 16:43:42 2025 GMT Not After : Jun 21 16:43:42 2025 GMT Subject: CN=684da6be-4c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:48:ec:da:6a:d8:64:a7:fe:5f:40:22:09:a6: af:eb:5b:53:e3:91:f1:da:50:b6:a5:2e:5f:0a:cb: ea:92:2d:ea:e8:eb:a1:a6:32:4d:86:6d:36:c8:f1: bd:99:6f:fc:69:57:2f:56:43:df:ff:1e:6f:54:88: 1b:79:9b:df:3e:da:66:48:e7:88:e3:37:eb:52:ab: 5a:12:ed:15:0d:9e:54:81:23:ab:a3:f9:27:80:a0: 92:19:4d:ba:a2:6f:66:72:2d:fc:15:24:82:fd:7f: 25:e6:55:4c:b5:ed:96:a9:ea:b1:2f:16:c5:99:97: 7c:62:6a:b3:de:bb:ae:8c:45:67:8b:62:f3:1a:5e: 03:12:e1:f0:92:b6:22:fd:e0:f6:b5:9f:6a:7b:4c: 9e:b7:9d:47:5a:b0:ea:e5:13:7d:55:2b:0f:1c:42: ef:8b:1c:92:18:f4:ae:9b:79:7a:1f:42:49:15:bd: 48:56:11:ac:74:75:33:71:b9:15:cd:cf:ca:cf:40: ec:63:21:79:4b:80:56:fb:85:bc:82:aa:a4:00:36: 5a:57:97:3e:d8:f5:7d:08:5f:d6:d7:52:45:64:05: 6d:aa:76:fe:73:af:0e:6b:be:6e:0c:54:b9:70:6c: e4:88:73:c9:30:7a:85:32:2b:97:0f:b0:6e:74:8a: d4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E1:FB:A7:C2:42:0D:47:81:1E:46:F5:4F:8D:C7:7E:D4:B1:96:7A X509v3 Authority Key Identifier: keyid:69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:25:8e:b6:23:1f:84:c2:b0:aa:f9:10:4b:df:46:76:9d:35: 81:69:b5:e5:60:d3:e9:5b:8a:1c:f6:79:93:d7:2f:51:87:b9: 36:b9:e5:cb:9b:8d:56:d1:41:92:df:b7:ae:5a:12:81:22:40: d2:93:05:47:5e:69:f3:19:28:0e:82:d8:61:6a:88:c2:b5:fa: cc:cf:ff:d6:a3:4c:3e:8b:c6:25:81:0d:7a:2f:ee:25:63:9d: 37:61:3d:5f:55:73:e7:1d:56:11:59:46:92:68:5f:73:ba:70: 52:b0:ec:1c:a8:78:5a:e3:8a:37:64:14:b0:a6:6e:1e:15:be: 35:ec:aa:a5:16:25:9c:66:02:19:fd:fe:a5:76:90:a2:fa:93: 37:7b:10:c8:17:75:a7:2d:83:a9:45:f2:dd:81:c4:7d:15:1e: 88:7d:ae:4f:36:f4:6c:3b:f8:e1:f3:fd:ed:36:89:b3:7d:c8: 15:34:76:22:1a:50:a2:4c:2d:a2:f4:51:27:ea:70:08:57:b5: f3:93:9a:d4:43:04:7f:f3:64:21:76:dc:bf:cf:e5:81:83:c1: ef:1c:48:47:00:fe:0f:63:fc:36:82:8a:57:52:37:bd:a5:34: 76:9a:ff:20:94:1e:0d:f5:ca:2c:c8:ad:26:32:a2:dd:82:74: 5a:e1:1b:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ0RUExMTAvBgNVBAUTKDY5RTcwMUIxRjMzNDI5MjM4MEU3QUJCOTAxQzM0MjYz MzJDNkFBNUEwHhcNMjUwNjE0MTY0MzQyWhcNMjUwNjIxMTY0MzQyWjAYMRYwFAYD VQQDEw02ODRkYTZiZS00YzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA70js2mrYZKf+X0AiCaav61tT45Hx2lC2pS5fCsvqki3q6OuhpjJNhm02yPG9 mW/8aVcvVkPf/x5vVIgbeZvfPtpmSOeI4zfrUqtaEu0VDZ5UgSOro/kngKCSGU26 om9mci38FSSC/X8l5lVMte2WqeqxLxbFmZd8Ymqz3ruujEVni2LzGl4DEuHwkrYi /eD2tZ9qe0yet51HWrDq5RN9VSsPHELvixySGPSum3l6H0JJFb1IVhGsdHUzcbkV zc/Kz0DsYyF5S4BW+4W8gqqkADZaV5c+2PV9CF/W11JFZAVtqnb+c68Oa75uDFS5 cGzkiHPJMHqFMiuXD7BudIrUiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfh+6fC Qg1HgR5G9U+Nx37UsZZ6MB8GA1UdIwQYMBaAFGnnAbHzNCkjgOeruQHDQmMyxqpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDRFQS82ODkwMzM5NjJC NDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtTT0E1NnU1QWNOQ1l6TEdx bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlY0JzZk0wS1NPQTU2dTVBY05DWXpMR3Fsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDRFQS82ODkwMzM5NjJCNDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtT T0E1NnU1QWNOQ1l6TEdxbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8JY62Ix+EwrCq+RBL30Z2nTWBabXlYNPpW4oc9nmT1y9Rh7k2ueXL m41W0UGS37euWhKBIkDSkwVHXmnzGSgOgthhaojCtfrMz//Wo0w+i8YlgQ16L+4l Y503YT1fVXPnHVYRWUaSaF9zunBSsOwcqHha44o3ZBSwpm4eFb417KqlFiWcZgIZ /f6ldpCi+pM3exDIF3WnLYOpRfLdgcR9FR6Ifa5PNvRsO/jh8/3tNomzfcgVNHYi GlCiTC2i9FEn6nAIV7Xzk5rUQwR/82Qhdty/z+WBg8HvHEhHAP4PY/w2gopXUje9 pTR2mv8glB4N9cosyK0mMqLdgnRa4Rsu -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:15 2025 by rpki-client