$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft File: aamToYghmKytXxzqNQZrr0nn1dA.mft (raw, json) Hash identifier: aIrKsnYbrO5umSutASzYJo8KWKMOVtio6xTo/xzs8Z4= Subject key identifier: 1A:16:99:38:2C:3D:37:39:13:8A:18:D5:9A:DE:62:37:4A:61:0A:72 Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft Manifest number: C4 Signing time: Sat 29 Mar 2025 05:12:24 +0000 Manifest this update: Sat 29 Mar 2025 05:12:24 +0000 Manifest next update: Sat 05 Apr 2025 05:12:24 +0000 Files and hashes: 1: aamToYghmKytXxzqNQZrr0nn1dA.crl (hash: x5OLAfp8Wz32GIznsWOfRblGmDvRNk6uVO3iUt+5byw=) 2: 78585C5EB6E011EFBB3E2A0DC4F9AE02.roa (hash: eMhCb8Y7hz6TbBI3GN4y5RWtGaIS6jYSPRe2ESsv3M0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F Validity Not Before: Mar 29 05:12:24 2025 GMT Not After : Apr 5 05:12:24 2025 GMT Subject: CN=67e78138-fa23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:eb:5f:66:d7:a7:81:10:5d:25:68:2f:d3:87: df:02:60:d8:6b:3b:c4:d9:f4:a7:dd:fb:03:9d:40: 72:da:47:62:24:d0:cc:99:63:2b:2e:8e:62:a4:93: 0c:19:4f:54:1c:8d:59:a9:30:a1:3e:60:4e:44:74: 8e:eb:4a:19:37:06:09:d8:54:04:71:6f:84:65:b9: 9a:c6:36:e1:c5:8e:03:91:8f:c2:0a:39:72:bd:04: ec:3f:b1:37:6f:86:db:50:14:ff:3f:ca:03:25:89: 7d:11:bd:03:b0:95:09:0e:34:20:3a:c1:e1:e7:48: 71:80:4e:19:90:d6:e9:58:a8:69:02:e1:f8:11:40: 28:06:c4:ea:1c:78:bb:09:96:08:97:1e:03:db:8f: f1:08:4a:19:71:be:64:96:40:b7:20:d7:03:5e:81: f6:b9:05:de:73:c4:14:28:9f:87:19:85:0c:32:95: 76:e3:83:36:52:6d:c6:cf:c0:82:90:d9:ff:df:d2: 2a:dd:7d:e7:40:28:86:d6:ac:aa:9f:8a:4a:04:ad: a3:c2:7e:fb:f5:ee:c8:05:6e:2f:ed:fe:67:a8:c2: cc:8e:4a:4a:42:d7:ee:3b:57:3e:86:d8:60:2f:ff: 27:26:8f:16:af:36:a5:ac:4f:f8:c6:d1:30:3c:41: e4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:16:99:38:2C:3D:37:39:13:8A:18:D5:9A:DE:62:37:4A:61:0A:72 X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:80:c3:7e:1e:90:da:27:2c:0b:58:60:fc:83:13:7a:12:91: d0:87:fb:6e:4c:ec:1f:4b:0c:a8:cc:07:45:0b:40:77:ed:d3: b1:55:fe:c1:e5:bf:71:0e:b5:40:22:ad:37:cf:88:4b:be:15: 69:dc:c3:91:ac:d8:18:64:9c:20:d2:c6:f9:50:d2:53:5e:59: 7f:11:d1:f8:ba:01:cf:11:33:cb:75:81:22:41:71:5d:dc:ed: 40:97:e2:42:ee:74:6f:2f:b4:b8:bf:ea:6e:ba:23:e5:c5:79: b9:b3:8c:16:02:e1:38:3d:6d:77:a7:55:62:d3:55:18:07:89: 1a:d2:4d:36:fc:1f:cb:ee:81:85:91:5c:db:dd:1b:e5:64:3b: 0d:d5:d0:9d:c1:f9:1b:fa:1c:94:ab:51:ae:d9:74:20:d8:c8: 90:bc:a8:cb:fd:89:8f:71:d2:8b:4d:f3:d0:ee:bf:d6:e1:56: 72:b6:f4:02:e9:4d:7b:07:65:b3:42:ae:29:82:07:ca:1d:3c: 46:7c:cd:42:a6:a7:ad:ca:9a:75:95:59:5b:d9:f1:cc:e9:93: b9:39:a9:ae:92:22:99:36:8a:45:5c:98:85:e8:9c:cd:c3:da: 26:44:6f:99:a1:77:a4:e6:b3:90:15:95:b9:d3:ff:87:36:73: 03:a4:8b:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyM0YxMTAvBgNVBAUTKDY5QTk5M0ExODgyMTk4QUNBRDVGMUNFQTM1MDY2QkFG NDlFN0Q1RDAwHhcNMjUwMzI5MDUxMjI0WhcNMjUwNDA1MDUxMjI0WjAYMRYwFAYD VQQDEw02N2U3ODEzOC1mYTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqetfZtengRBdJWgv04ffAmDYazvE2fSn3fsDnUBy2kdiJNDMmWMrLo5ipJMM GU9UHI1ZqTChPmBORHSO60oZNwYJ2FQEcW+EZbmaxjbhxY4DkY/CCjlyvQTsP7E3 b4bbUBT/P8oDJYl9Eb0DsJUJDjQgOsHh50hxgE4ZkNbpWKhpAuH4EUAoBsTqHHi7 CZYIlx4D24/xCEoZcb5klkC3INcDXoH2uQXec8QUKJ+HGYUMMpV244M2Um3Gz8CC kNn/39Iq3X3nQCiG1qyqn4pKBK2jwn779e7IBW4v7f5nqMLMjkpKQtfuO1c+hthg L/8nJo8WrzalrE/4xtEwPEHkkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoWmTgs PTc5E4oY1ZreYjdKYQpyMB8GA1UdIwQYMBaAFGmpk6GIIZisrV8c6jUGa69J59XQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjIzRi82NzBDMkYyQ0Uy OUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1LeXRYeHpxTlFacnIwbm4x ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjIzRi82NzBDMkYyQ0UyOUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1L eXRYeHpxTlFacnIwbm4xZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOgMN+HpDaJywLWGD8gxN6EpHQh/tuTOwfSwyozAdFC0B37dOxVf7B 5b9xDrVAIq03z4hLvhVp3MORrNgYZJwg0sb5UNJTXll/EdH4ugHPETPLdYEiQXFd 3O1Al+JC7nRvL7S4v+puuiPlxXm5s4wWAuE4PW13p1Vi01UYB4ka0k02/B/L7oGF kVzb3RvlZDsN1dCdwfkb+hyUq1Gu2XQg2MiQvKjL/YmPcdKLTfPQ7r/W4VZytvQC 6U17B2WzQq4pggfKHTxGfM1Cpqetypp1lVlb2fHM6ZO5OamukiKZNopFXJiF6JzN w9omRG+ZoXek5rOQFZW50/+HNnMDpIsB -----END CERTIFICATE-----Generated at Fri Apr 4 18:30:05 2025 by rpki-client