$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: MzWTH+/ymuPu79b8LjzUgXc5FBSH5AmAzmIRp8NT/vA= Subject key identifier: D8:A3:31:D2:75:99:A7:88:47:F5:7D:28:47:CB:A0:9D:3E:B3:38:D9 Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 06D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 06CE Signing time: Wed 16 Apr 2025 21:44:26 +0000 Manifest this update: Wed 16 Apr 2025 21:44:26 +0000 Manifest next update: Wed 23 Apr 2025 21:44:26 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: aDw1sBck/NSzoONpor/Z05m4qp+xBnVxu+VXFK6iGNE=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 21:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Apr 16 21:44:26 2025 GMT Not After : Apr 23 21:44:26 2025 GMT Subject: CN=680024ba-c497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:36:ea:f8:38:2e:85:bf:e6:a9:35:0c:07:58: 41:5e:4a:41:fe:31:1c:f3:9c:17:d3:a5:b2:c7:ce: 3f:20:0f:a3:a3:fd:46:54:1c:22:c2:10:98:a2:4a: 0f:03:c1:ee:62:15:ad:61:8c:06:65:37:d1:4b:21: 81:69:17:60:a5:05:c4:a3:6d:7a:72:07:6b:06:0a: 1d:3d:b8:29:aa:25:f0:ed:61:6f:51:36:13:ef:19: 16:1b:0c:6b:eb:07:d0:6b:d2:5a:9f:1b:18:f3:13: 7e:d0:e1:45:8a:7b:70:2a:36:00:3b:83:1f:67:00: a9:a1:dd:9d:10:68:8e:ee:f0:44:23:f4:75:fe:89: 22:55:d4:b9:45:2b:0b:65:69:f8:af:b7:a0:b4:36: 2f:bc:f8:4a:e6:51:c6:b7:c6:75:39:10:05:c5:06: 63:99:80:15:ee:a9:c1:ff:2d:47:03:4b:fc:19:a1: 4a:05:a7:9b:6e:05:82:46:ec:c7:e5:ac:71:3a:4d: 76:39:62:40:e4:bf:d9:89:ee:66:83:37:82:95:9a: fd:77:bb:c1:88:dc:43:9b:97:a8:13:bf:e3:74:50: ef:b9:09:19:26:24:6e:d7:e5:10:30:e9:31:21:66: 1a:40:21:e1:27:23:a0:32:a4:c5:3b:26:bb:68:79: fd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A3:31:D2:75:99:A7:88:47:F5:7D:28:47:CB:A0:9D:3E:B3:38:D9 X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:98:3e:76:dc:70:c9:42:ba:d7:91:37:46:87:19:b6:a5:c8: 7e:47:77:a3:a1:dd:ac:43:bb:c6:c3:52:57:e9:5e:11:0e:73: d9:eb:92:a4:b7:06:79:11:61:8d:a0:6c:52:db:c9:f5:b3:4b: 57:23:41:a6:f1:31:8a:83:b7:f0:17:8f:95:b8:e8:41:65:f5: 68:f8:50:9e:d1:89:dd:6f:e9:94:64:82:9c:4c:02:b9:8d:a5: ff:6c:b4:a1:e9:39:a4:32:e6:28:7c:05:08:cb:95:40:e4:1e: 14:d9:ac:60:cf:8b:76:85:b4:d8:f8:9f:44:66:2e:35:e6:db: 0b:44:d1:d4:cc:78:13:c0:a6:2a:74:96:5c:6a:07:d0:c4:14: 2b:ff:93:84:ca:40:00:fa:61:80:ee:2d:47:af:8c:60:fc:90: 5d:f5:1f:c4:42:43:a0:7b:0b:a4:ec:b1:82:1d:99:9f:d9:d5: 67:4c:55:aa:c3:61:12:13:5c:3c:c1:57:4b:48:a9:19:5a:ae: 06:8e:db:fb:55:3e:8c:35:49:78:ff:11:53:56:da:1b:c7:d3: f9:d8:6d:62:01:c8:65:8d:ba:b8:46:f2:8a:3a:26:02:18:87: 93:fa:d0:1c:58:a5:1d:d1:18:c1:ce:8f:12:8c:4e:c9:62:09: fd:20:94:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjUwNDE2MjE0NDI2WhcNMjUwNDIzMjE0NDI2WjAYMRYwFAYD VQQDEw02ODAwMjRiYS1jNDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Tbq+Dguhb/mqTUMB1hBXkpB/jEc85wX06Wyx84/IA+jo/1GVBwiwhCYokoP A8HuYhWtYYwGZTfRSyGBaRdgpQXEo216cgdrBgodPbgpqiXw7WFvUTYT7xkWGwxr 6wfQa9JanxsY8xN+0OFFintwKjYAO4MfZwCpod2dEGiO7vBEI/R1/okiVdS5RSsL ZWn4r7egtDYvvPhK5lHGt8Z1ORAFxQZjmYAV7qnB/y1HA0v8GaFKBaebbgWCRuzH 5axxOk12OWJA5L/Zie5mgzeClZr9d7vBiNxDm5eoE7/jdFDvuQkZJiRu1+UQMOkx IWYaQCHhJyOgMqTFOya7aHn9lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNijMdJ1 maeIR/V9KEfLoJ0+szjZMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVmD523HDJQrrXkTdGhxm2pch+R3ejod2sQ7vGw1JX6V4RDnPZ65Kk twZ5EWGNoGxS28n1s0tXI0Gm8TGKg7fwF4+VuOhBZfVo+FCe0Yndb+mUZIKcTAK5 jaX/bLSh6TmkMuYofAUIy5VA5B4U2axgz4t2hbTY+J9EZi415tsLRNHUzHgTwKYq dJZcagfQxBQr/5OEykAA+mGA7i1Hr4xg/JBd9R/EQkOgewuk7LGCHZmf2dVnTFWq w2ESE1w8wVdLSKkZWq4Gjtv7VT6MNUl4/xFTVtobx9P52G1iAchljbq4RvKKOiYC GIeT+tAcWKUd0RjBzo8SjE7JYgn9IJTq -----END CERTIFICATE-----Generated at Fri Apr 18 17:42:49 2025 by rpki-client