$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft File: aMIYjATCDkkjq7YttIckmDVLSv0.mft (raw, json) Hash identifier: Jk5FiCAEFRWUB8dGMa+XCfqq9LpY7VkBs9NPCauJaFQ= Subject key identifier: 8B:F5:9B:98:C4:4F:55:CD:48:00:4A:86:E3:5D:59:96:5F:C5:B7:B2 Authority key identifier: 68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD Certificate issuer: /CN=A911750B/serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft Manifest number: 0C Signing time: Tue 01 Jul 2025 08:55:10 +0000 Manifest this update: Tue 01 Jul 2025 08:55:10 +0000 Manifest next update: Tue 08 Jul 2025 08:55:10 +0000 Files and hashes: 1: aMIYjATCDkkjq7YttIckmDVLSv0.crl (hash: XQ72Zb8vKpKBJB8uTwWgq6KEoS4VSakZpYRPguT+k6c=) 2: CC9D872A468D11F0A82C5E5EC4F9AE02.roa (hash: WRJujiiFl5+2lSEzqzn6bhm3g2H9MHSY7ug8yl3Oc8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:55:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Validity Not Before: Jul 1 08:55:10 2025 GMT Not After : Jul 8 08:55:10 2025 GMT Subject: CN=6863a26e-78fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:3a:c8:99:9e:ea:a3:81:d7:c8:14:65:97: e7:2f:e3:1c:97:f3:92:c8:73:62:ec:17:a1:8d:fd: 77:7f:2b:ad:78:15:40:34:70:ab:97:69:b6:aa:fb: a7:1a:2e:f6:48:06:8f:25:a0:82:e3:27:34:e2:07: 43:8c:d2:fb:ac:3a:4b:8a:e9:0f:27:2d:be:24:82: ab:a6:53:cc:fe:1f:5b:1c:95:e0:82:41:2e:42:11: 35:2f:d1:43:82:90:27:4c:dd:21:ee:1f:26:33:5c: 5c:bc:fb:6a:c8:5d:59:eb:40:31:f5:a3:55:4c:a7: 01:d2:ae:60:e1:94:f9:41:36:14:20:0d:d8:b7:33: 02:60:77:48:a4:b3:1b:e3:16:2a:d8:13:ff:0d:ce: cb:ea:10:08:45:5f:81:0b:a7:27:d0:96:44:d9:fb: cb:e2:ab:92:57:3c:e8:47:9c:1e:75:b7:78:1a:54: 13:28:42:83:71:cd:99:7c:de:24:5b:f4:0d:16:c9: 1c:15:0b:69:7e:b5:81:32:21:9e:d9:4d:37:d0:cf: 59:ac:68:b1:8c:0a:e8:49:80:de:91:92:0f:a6:0d: 13:50:f2:3a:47:ba:bf:5e:73:e1:67:90:2b:f2:f5: 60:18:fd:b9:4c:2d:24:4d:d2:0b:f6:d4:ae:f7:91: 82:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F5:9B:98:C4:4F:55:CD:48:00:4A:86:E3:5D:59:96:5F:C5:B7:B2 X509v3 Authority Key Identifier: keyid:68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:1e:e2:a8:26:00:82:45:0a:a6:78:ee:5e:6a:49:a2:b0:5a: 25:d3:d7:6a:20:96:f5:62:5f:d5:6d:e9:8a:bf:1c:76:b1:fe: a9:92:47:2e:56:7d:b0:45:cd:32:b7:a5:21:f4:ef:b4:3f:65: 18:53:07:e7:2b:64:62:f6:83:0a:2a:04:dc:0b:ff:2d:3e:d2: 64:6e:ec:a0:09:aa:85:a0:0e:a5:99:25:83:ed:6b:80:16:10: 8e:70:57:64:0f:ee:8a:1e:85:a1:07:85:12:dc:f8:89:e8:87: 99:e6:d0:e9:1c:04:1d:48:f7:dd:a8:72:1b:d9:a1:b1:b3:f2: da:33:09:0f:6c:80:51:f1:f8:31:94:86:70:4c:96:97:d4:24: 04:64:21:f6:03:84:8e:ab:4f:d2:83:fc:e3:ca:cc:63:cb:bf: 47:a6:95:4a:c5:73:59:ba:80:55:d7:70:ec:11:32:13:cc:d4: 4f:f8:fc:95:4f:c8:24:ab:0c:b9:db:39:c5:2d:30:8d:7f:4c: a2:27:4b:e1:3d:81:b0:ae:ee:52:d7:ef:b0:b2:eb:74:62:48: 9c:af:4e:5a:18:8c:bb:5a:41:55:0d:62:ba:55:15:1d:85:4f: 1f:0e:3d:d0:45:37:71:fa:c3:20:5d:94:32:f4:30:0c:93:66: d0:b4:8f:1c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoNjhDMjE4OEMwNEMyMEU0OTIzQUJCNjJEQjQ4NzI0OTgz NTRCNEFGRDAeFw0yNTA3MDEwODU1MTBaFw0yNTA3MDgwODU1MTBaMBgxFjAUBgNV BAMTDTY4NjNhMjZlLTc4ZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDAjrImZ7qo4HXyBRll+cv4xyX85LIc2LsF6GN/Xd/K614FUA0cKuXabaq+6ca LvZIBo8loILjJzTiB0OM0vusOkuK6Q8nLb4kgqumU8z+H1scleCCQS5CETUv0UOC kCdM3SHuHyYzXFy8+2rIXVnrQDH1o1VMpwHSrmDhlPlBNhQgDdi3MwJgd0iksxvj FirYE/8NzsvqEAhFX4ELpyfQlkTZ+8viq5JXPOhHnB51t3gaVBMoQoNxzZl83iRb 9A0WyRwVC2l+tYEyIZ7ZTTfQz1msaLGMCuhJgN6Rkg+mDRNQ8jpHur9ec+FnkCvy 9WAY/blMLSRN0gv21K73kYLhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi/WbmMRP Vc1IAEqG411Zll/Ft7IwHwYDVR0jBBgwFoAUaMIYjATCDkkjq7YttIckmDVLSv0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzVCMUMxRkFFNDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL2FNSVlqQVRDRGtranE3WXR0SWNrbURWTFN2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYU1JWWpBVENEa2tqcTdZdHRJY2ttRFZMU3YwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 NTBCLzVCMUMxRkFFNDY4QzExRjA4NEI2QTUzOUM0RjlBRTAyL2FNSVlqQVRDRGtr anE3WXR0SWNrbURWTFN2MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGge4qgmAIJFCqZ47l5qSaKwWiXT12oglvViX9Vt6Yq/HHax/qmSRy5W fbBFzTK3pSH077Q/ZRhTB+crZGL2gwoqBNwL/y0+0mRu7KAJqoWgDqWZJYPta4AW EI5wV2QP7ooehaEHhRLc+Inoh5nm0OkcBB1I992ochvZobGz8tozCQ9sgFHx+DGU hnBMlpfUJARkIfYDhI6rT9KD/OPKzGPLv0emlUrFc1m6gFXXcOwRMhPM1E/4/JVP yCSrDLnbOcUtMI1/TKInS+E9gbCu7lLX77Cy63RiSJyvTloYjLtaQVUNYrpVFR2F Tx8OPdBFN3H6wyBdlDL0MAyTZtC0jxw= -----END CERTIFICATE-----Generated at Wed Jul 2 15:38:25 2025 by rpki-client