$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: rFpLWBSkB5jid8zWW68zCtK6ulvVRfsSQ1v7grOAmZU= Subject key identifier: A8:3C:CB:EF:CB:4D:3F:63:86:70:AF:0F:56:93:FC:98:BF:88:7F:70 Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: 52 Signing time: Wed 04 Jun 2025 22:54:54 +0000 Manifest this update: Wed 04 Jun 2025 22:54:54 +0000 Manifest next update: Wed 11 Jun 2025 22:54:54 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: MGsZf3234FJo8pFJqDnroC+XnPssSK8EiCAdbmbQzqs=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: eqsW8B/nzh24Js41J8yQQdlaY75NMXqpYi5U4uiBwdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 22:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Jun 4 22:54:54 2025 GMT Not After : Jun 11 22:54:54 2025 GMT Subject: CN=6840cebe-57f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:21:f9:a4:e6:91:8e:dd:99:83:f3:95:be:77: ee:d5:4d:93:08:b4:62:97:37:57:02:91:f8:70:9b: 34:6f:a6:82:e2:aa:e7:15:81:41:a4:c7:44:df:72: a0:38:08:cb:35:af:18:18:88:63:a9:b8:96:ab:92: 16:74:bf:28:73:67:ea:e0:2f:3f:a0:20:4f:b9:74: 33:9e:78:2f:35:a5:ff:33:6e:5b:f6:92:7c:bd:87: 58:c9:9b:5b:8a:a9:40:af:39:16:78:4b:d3:c0:0c: 56:d0:85:31:40:80:a8:f3:04:96:d7:e9:c7:7d:71: ac:dd:8f:3f:46:85:c5:01:1e:e7:d3:d9:fb:d9:89: b0:be:cb:52:9d:cc:f0:02:22:9f:84:e9:d3:9f:cb: fe:86:3b:8f:39:48:74:a7:5f:4e:6d:f4:4e:2d:05: 09:3e:3c:c2:f4:95:36:42:a5:69:12:7b:6e:52:87: 81:8f:fd:6a:70:59:b2:af:ac:ca:10:c8:f5:04:f0: e3:6d:a3:39:cf:73:4f:b8:96:ec:c6:34:8a:96:67: 25:d5:b9:d0:fb:bc:ba:c0:62:d6:9b:13:fd:53:8d: 3e:c7:8a:24:0d:f9:36:cc:2b:7d:44:ed:4a:15:dc: d4:7e:11:69:73:4d:cf:6a:87:0d:bb:00:50:13:2c: 8a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3C:CB:EF:CB:4D:3F:63:86:70:AF:0F:56:93:FC:98:BF:88:7F:70 X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:65:fe:a1:a2:a9:ea:52:36:8a:bc:13:ca:57:a3:5f:4a:1c: 09:11:ba:2d:73:05:34:8c:c8:40:f5:ae:11:0c:82:b4:dd:a2: 92:71:6d:71:56:0c:c6:e9:bb:17:4b:72:3e:55:24:2b:5d:66: ed:de:80:d2:ac:91:c9:40:e3:e6:09:0f:7c:2d:b7:c0:fb:3b: 6d:78:fd:bc:97:7f:2a:a1:74:ab:25:22:a0:68:9c:ab:e5:6c: e2:8b:05:d2:33:ab:4c:f2:ba:18:2c:21:25:64:64:b4:58:bd: 67:1d:fb:3f:b0:52:51:25:4e:04:a7:43:13:11:28:e5:97:1d: f1:92:b5:80:0d:00:0a:8c:18:88:be:da:d8:2b:bc:33:66:58: 70:54:ad:0c:84:bc:10:2d:ae:6f:4a:fa:1b:12:81:7d:2d:f1: c7:aa:08:6e:d9:c0:8c:aa:0a:f1:bc:70:30:05:0c:0c:c4:50: 2d:ef:1e:42:10:cb:36:79:f7:62:2a:47:4b:3c:4e:49:99:83: a2:1e:7d:78:d2:ee:aa:2e:d9:66:05:bf:d1:ca:73:24:68:4b: 5c:f3:7b:c3:5e:09:9a:2d:34:4e:fe:ba:5e:00:6d:9a:63:4e: 99:e6:01:99:25:4f:d1:f1:21:c9:aa:39:e6:d3:21:6d:07:e9: f4:85:97:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0E4MjExMC8GA1UEBRMoNjg0MTNENDFGNjAwNUUwMzE2RTBFMjU3NkYyMjZDMjE4 OEFBMTU2RjAeFw0yNTA2MDQyMjU0NTRaFw0yNTA2MTEyMjU0NTRaMBgxFjAUBgNV BAMTDTY4NDBjZWJlLTU3ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlIfmk5pGO3ZmD85W+d+7VTZMItGKXN1cCkfhwmzRvpoLiqucVgUGkx0TfcqA4 CMs1rxgYiGOpuJarkhZ0vyhzZ+rgLz+gIE+5dDOeeC81pf8zblv2kny9h1jJm1uK qUCvORZ4S9PADFbQhTFAgKjzBJbX6cd9cazdjz9GhcUBHufT2fvZibC+y1KdzPAC Ip+E6dOfy/6GO485SHSnX05t9E4tBQk+PML0lTZCpWkSe25Sh4GP/WpwWbKvrMoQ yPUE8ONtoznPc0+4luzGNIqWZyXVudD7vLrAYtabE/1TjT7HiiQN+TbMK31E7UoV 3NR+EWlzTc9qhw27AFATLIo5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqDzL78tN P2OGcK8PVpP8mL+If3AwHwYDVR0jBBgwFoAUaEE9QfYAXgMW4OJXbyJsIYiqFW8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQTgyL0Y2OTlFMzU0Q0Yx MjExRUY4RjFEMjA1QkM0RjlBRTAyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZX OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYUVFOVFmWUFYZ01XNE9KWGJ5SnNJWWlxRlc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QTgyL0Y2OTlFMzU0Q0YxMjExRUY4RjFEMjA1QkM0RjlBRTAyL2FFRTlRZllBWGdN VzRPSlhieUpzSVlpcUZXOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACxl/qGiqepSNoq8E8pXo19KHAkRui1zBTSMyED1rhEMgrTdopJxbXFW DMbpuxdLcj5VJCtdZu3egNKskclA4+YJD3wtt8D7O214/byXfyqhdKslIqBonKvl bOKLBdIzq0zyuhgsISVkZLRYvWcd+z+wUlElTgSnQxMRKOWXHfGStYANAAqMGIi+ 2tgrvDNmWHBUrQyEvBAtrm9K+hsSgX0t8ceqCG7ZwIyqCvG8cDAFDAzEUC3vHkIQ yzZ592IqR0s8TkmZg6IefXjS7qou2WYFv9HKcyRoS1zze8NeCZotNE7+ul4AbZpj TpnmAZklT9HxIcmqOebTIW0H6fSFlyw= -----END CERTIFICATE-----Generated at Thu Jun 5 19:49:14 2025 by rpki-client