$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: oG8l8Nrp7oRgqqi1jdTawwbk+bPDFU2mHqLpVT7U3n0= Subject key identifier: 25:45:B2:E0:5E:10:BA:1E:99:C0:3B:C3:DA:42:FF:0A:80:96:F8:BB Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 0655 Signing time: Fri 30 May 2025 22:44:38 +0000 Manifest this update: Fri 30 May 2025 22:44:37 +0000 Manifest next update: Fri 06 Jun 2025 22:44:37 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: SaWyjhavfPGGVojNn2SZ9qtA7cxZ74GANBZE14Wg/kY=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: H4rCHNTwrLDXBPWNh+1x9w51oi/Ty9c8TNS+dkVYHKE=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: OAOhBdws2Og/Ca7gVwngPo7rjcHZWaqTFgTJSHrV1uM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: May 30 22:44:37 2025 GMT Not After : Jun 6 22:44:37 2025 GMT Subject: CN=683a34d6-6ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:22:cd:27:7a:31:fb:d8:15:84:da:fd:2c:c2: 6b:14:7a:e3:2f:d6:8d:e4:87:82:75:52:bb:c9:ca: c7:4a:33:f4:84:10:00:44:3a:86:ae:24:73:aa:63: 0f:6c:81:cd:48:9f:21:7e:ca:4c:b5:19:25:f7:85: f5:c4:02:6b:9c:a2:6e:f4:30:6b:04:f4:19:52:f3: bd:e7:de:54:c7:f0:7b:bc:d8:fb:12:a9:5f:93:9f: 46:2b:18:46:84:f5:ad:f2:50:30:ab:4f:53:a6:f5: 94:a6:ca:b6:fd:36:ee:96:f8:b1:79:42:0e:e5:2f: f6:88:22:61:f6:43:c5:a6:9c:46:ce:81:b0:c1:60: ea:cf:0d:2e:48:b5:17:cc:fc:1a:a1:d1:4e:1a:c5: 06:3a:7b:59:18:20:3e:c4:8e:89:36:35:b1:1e:c8: d3:a6:74:61:45:7d:87:cb:f4:f7:2d:41:de:df:50: be:d5:bc:c1:0d:ec:c2:1c:7e:af:1c:5e:1d:da:c0: a7:ae:8c:52:c1:f2:bd:9b:39:d3:25:b5:2e:ee:fb: 7e:f7:4e:12:78:e9:2b:52:b1:60:a8:2a:d9:f4:66: da:da:85:26:95:08:78:02:b0:0a:cd:7a:85:e5:21: 04:77:52:f2:0e:37:0e:e4:c0:44:08:94:24:c1:33: 60:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:45:B2:E0:5E:10:BA:1E:99:C0:3B:C3:DA:42:FF:0A:80:96:F8:BB X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:c0:fe:8b:e0:73:15:60:d0:04:34:e7:e8:a2:b2:fb:b6:73: 8d:fa:9f:e8:7d:bf:29:1c:80:e3:05:22:db:37:6b:d1:c9:c5: b1:3b:35:b4:37:cd:7f:18:fa:5a:6b:5c:5f:a3:33:e2:39:a6: c2:2c:b2:0b:70:5c:f2:6c:cd:a3:38:a2:e4:15:7a:88:30:1b: 93:53:13:97:48:69:d9:cc:03:c5:d8:c6:80:59:24:23:60:95: 13:07:94:f6:bf:3c:78:89:73:e4:6a:54:b1:a3:21:bd:dd:01: 02:19:40:e6:97:62:80:22:7c:a0:08:cf:f5:3d:11:1b:4a:66: 7a:ed:57:6f:88:22:40:30:d2:c9:e1:be:a3:6d:04:8f:dd:72: 98:49:2f:b8:ee:4b:59:7f:85:39:4b:b1:ff:0f:40:27:1b:02: 80:c8:55:2a:7b:c5:f8:b2:de:56:29:49:45:5c:00:04:3e:18: a0:44:48:17:3c:6b:7a:7c:4d:a0:c4:d3:22:4c:04:0b:cc:4c: 57:4a:91:15:20:e9:97:38:a0:dd:ac:2e:43:c4:07:d4:ed:5e: c2:30:4f:b9:cb:cf:ac:73:5d:f8:02:fa:29:5a:6a:00:81:71: 03:34:62:7f:32:00:b2:f9:9c:9c:75:67:fe:e1:91:3b:a7:e1: 56:40:83:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUwNTMwMjI0NDM3WhcNMjUwNjA2MjI0NDM3WjAYMRYwFAYD VQQDEw02ODNhMzRkNi02ZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriLNJ3ox+9gVhNr9LMJrFHrjL9aN5IeCdVK7ycrHSjP0hBAARDqGriRzqmMP bIHNSJ8hfspMtRkl94X1xAJrnKJu9DBrBPQZUvO9595Ux/B7vNj7Eqlfk59GKxhG hPWt8lAwq09TpvWUpsq2/TbulvixeUIO5S/2iCJh9kPFppxGzoGwwWDqzw0uSLUX zPwaodFOGsUGOntZGCA+xI6JNjWxHsjTpnRhRX2Hy/T3LUHe31C+1bzBDezCHH6v HF4d2sCnroxSwfK9mznTJbUu7vt+904SeOkrUrFgqCrZ9Gba2oUmlQh4ArAKzXqF 5SEEd1LyDjcO5MBECJQkwTNgkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVFsuBe ELoemcA7w9pC/wqAlvi7MB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkwP6L4HMVYNAENOfoorL7tnON+p/ofb8pHIDjBSLbN2vRycWxOzW0 N81/GPpaa1xfozPiOabCLLILcFzybM2jOKLkFXqIMBuTUxOXSGnZzAPF2MaAWSQj YJUTB5T2vzx4iXPkalSxoyG93QECGUDml2KAInygCM/1PREbSmZ67VdviCJAMNLJ 4b6jbQSP3XKYSS+47ktZf4U5S7H/D0AnGwKAyFUqe8X4st5WKUlFXAAEPhigREgX PGt6fE2gxNMiTAQLzExXSpEVIOmXOKDdrC5DxAfU7V7CME+5y8+sc134AvopWmoA gXEDNGJ/MgCy+ZycdWf+4ZE7p+FWQIMe -----END CERTIFICATE-----Generated at Sat May 31 16:29:41 2025 by rpki-client