$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft File: ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json) Hash identifier: zXhOv4Y4JyfHKZ7a30blDfGX9UvfyS9goprh+5EKTDo= Subject key identifier: 2C:90:A6:A0:A3:DA:37:0A:00:12:24:A1:D6:44:F5:71:67:87:35:7C Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 07F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft Manifest number: 07EE Signing time: Fri 30 May 2025 21:13:31 +0000 Manifest this update: Fri 30 May 2025 21:13:31 +0000 Manifest next update: Fri 06 Jun 2025 21:13:31 +0000 Files and hashes: 1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: 3RCbUqbHAqS5YrPvOipTCQj/kKc8p8jE+e9XF5KvTXw=) 2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: yiF95qxdVC02mMlRMuSXuOtx8PRvp7gaxII4qCM32AQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2036 (0x7f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812, serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: May 30 21:13:31 2025 GMT Not After : Jun 6 21:13:31 2025 GMT Subject: CN=683a1f7b-07ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2c:fe:84:c3:28:9a:d5:5a:36:37:91:7c:bc: 19:a0:4a:61:67:1f:f5:cd:4d:a3:73:45:da:20:92: 0e:7b:11:1f:2f:31:c8:95:73:8c:e9:a6:c8:b1:35: c7:f8:e2:bc:c7:e3:41:9c:ed:30:2e:0b:ed:c6:42: 13:5c:42:9a:d1:08:23:77:3b:72:d7:7c:95:aa:16: 4e:7c:36:cb:54:af:cf:d4:7e:ab:ef:a6:eb:9f:f7: 6e:5d:a9:22:ca:80:0a:bd:8b:c9:0c:9a:5a:ce:8b: eb:d9:c8:61:85:97:63:2d:c0:b9:01:0a:3d:c3:37: d1:80:90:98:54:45:60:6c:b2:1d:cc:53:dc:d3:1a: b6:7b:7a:40:9f:8e:24:f3:40:1c:25:b5:df:e9:2f: f9:6e:46:12:ec:7c:c0:a7:5d:09:69:64:81:03:f1: c4:10:36:09:96:e1:73:f4:9a:a8:88:af:9b:ce:5c: 3e:1b:f1:03:83:64:1f:dc:e4:c6:bf:59:9a:9f:3f: 9c:96:b8:53:1f:eb:65:f7:b2:92:78:14:fb:29:8b: 9c:8f:68:49:39:00:e9:0f:4e:a5:3f:45:c4:6d:49: 4c:d5:67:aa:56:42:b6:6f:ef:fd:f3:43:7f:7e:f6: 86:d5:68:03:7b:3b:a3:01:c2:54:9d:1a:94:04:df: 56:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:90:A6:A0:A3:DA:37:0A:00:12:24:A1:D6:44:F5:71:67:87:35:7C X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:68:ba:29:49:85:db:8e:55:e2:eb:a9:31:9d:84:61:98:d1: 5e:a2:bc:43:52:2d:6f:0d:d7:fb:0a:45:2c:ef:3f:d2:4b:ef: 7f:20:62:97:2e:56:5f:46:87:b8:9a:fe:45:d7:d8:7a:45:6f: 3d:fb:01:e5:36:ba:75:38:4f:a8:a8:32:0b:1b:27:53:54:47: 33:67:9f:2f:12:39:3e:be:5e:de:90:b2:e6:06:fb:43:a9:78: 0f:5a:29:1d:5f:45:97:dd:a7:59:00:0d:90:98:68:4b:70:f0: 01:90:e2:a4:84:da:cd:12:6f:5a:95:d8:28:cf:9f:1c:57:ea: 3d:25:b3:6d:7a:ca:5f:8b:bc:3c:41:3e:3d:cb:79:71:52:a2: d1:99:53:c9:df:72:34:91:da:e1:6d:46:1f:77:df:83:cd:42: 1e:7b:a9:22:66:0c:51:c7:e4:d9:18:2d:f5:a3:35:0d:dd:d5: bc:86:a9:a9:42:af:14:6d:f7:5a:af:f9:a1:76:ac:cb:d0:5d: c6:90:b1:de:2d:d9:13:77:fd:33:78:0a:57:f6:d2:3d:b6:ef: c6:d1:db:74:a8:08:3f:16:59:98:a2:d8:61:75:74:f8:a2:4a: e5:5f:e6:08:2f:cf:94:50:8f:c2:83:2a:51:b8:d7:e7:5c:78: ba:41:cc:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjUwNTMwMjExMzMxWhcNMjUwNjA2MjExMzMxWjAYMRYwFAYD VQQDEw02ODNhMWY3Yi0wN2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCz+hMMomtVaNjeRfLwZoEphZx/1zU2jc0XaIJIOexEfLzHIlXOM6abIsTXH +OK8x+NBnO0wLgvtxkITXEKa0Qgjdzty13yVqhZOfDbLVK/P1H6r76brn/duXaki yoAKvYvJDJpazovr2chhhZdjLcC5AQo9wzfRgJCYVEVgbLIdzFPc0xq2e3pAn44k 80AcJbXf6S/5bkYS7HzAp10JaWSBA/HEEDYJluFz9JqoiK+bzlw+G/EDg2Qf3OTG v1manz+clrhTH+tl97KSeBT7KYucj2hJOQDpD06lP0XEbUlM1WeqVkK2b+/980N/ fvaG1WgDezujAcJUnRqUBN9W6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyQpqCj 2jcKABIkodZE9XFnhzV8MB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi9CMjVFRjk5MEU5MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQt OGJYQVVyNDI3WW10SVNjTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPaLopSYXbjlXi66kxnYRhmNFeorxDUi1vDdf7CkUs7z/SS+9/IGKX LlZfRoe4mv5F19h6RW89+wHlNrp1OE+oqDILGydTVEczZ58vEjk+vl7ekLLmBvtD qXgPWikdX0WX3adZAA2QmGhLcPABkOKkhNrNEm9aldgoz58cV+o9JbNtespfi7w8 QT49y3lxUqLRmVPJ33I0kdrhbUYfd9+DzUIee6kiZgxRx+TZGC31ozUN3dW8hqmp Qq8Ubfdar/mhdqzL0F3GkLHeLdkTd/0zeApX9tI9tu/G0dt0qAg/FlmYothhdXT4 okrlX+YIL8+UUI/CgypRuNfnXHi6QczT -----END CERTIFICATE-----Generated at Sat May 31 17:00:19 2025 by rpki-client