$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft File: aAYK77v8wH1z211yeLyPJJxX9RU.mft (raw, json) Hash identifier: BfxczAZhh7pWNW0/LojzrAhmLSgKg3tFL7f7LZE7MEs= Subject key identifier: 9A:7C:E8:93:EE:B2:88:CC:DF:50:BD:C6:7B:F2:E1:8E:60:32:F5:81 Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft Manifest number: 0397 Signing time: Sat 31 May 2025 00:59:08 +0000 Manifest this update: Sat 31 May 2025 00:59:07 +0000 Manifest next update: Sat 07 Jun 2025 00:59:07 +0000 Files and hashes: 1: aAYK77v8wH1z211yeLyPJJxX9RU.crl (hash: IkKxH7xJ/bY9P8OUBTLJer7Y45uzkml07xoxfb6/B78=) 2: 5B639C667CEB11EDA3D10364C4F9AE02.roa (hash: /k7UGLxYpMRjSXOkhilDp1PbyHK35jDBnjLpEab1SqY=) 3: ADBB651E043411ED9F02B325C4F9AE02.roa (hash: nXP2TkV2xaQf8NtZFSYlzBkdLiCf/hTO1Pti6MrwpUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A, serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Validity Not Before: May 31 00:59:07 2025 GMT Not After : Jun 7 00:59:07 2025 GMT Subject: CN=683a545b-9531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:74:04:7b:e2:b5:f7:4c:b7:c9:17:7c:c2:ce: 41:d2:14:87:9e:fb:7c:4a:44:53:7b:1e:7e:91:fd: 26:8f:66:7a:ac:d4:cd:bb:29:56:b0:15:d0:3c:50: c4:f2:6b:2c:ed:d6:45:91:d4:12:32:9e:72:7b:2f: c8:44:79:70:f1:be:79:3d:3c:d2:63:e2:79:81:5d: 9f:09:cd:5a:d9:eb:9c:3d:31:d0:ec:80:86:3d:d6: fe:41:3e:50:c4:89:4c:32:65:aa:8f:6e:e8:1e:ca: 27:b2:a3:47:4b:ce:82:a7:fe:d8:49:48:b9:b6:6b: 31:c3:38:48:0f:15:8a:b6:e4:cb:33:58:c4:ca:2e: f8:34:75:70:0c:36:e2:b2:91:76:6c:d9:4d:06:9c: 04:bb:c2:5a:40:58:f1:c1:be:15:70:66:7b:f0:87: 39:d3:27:28:0f:53:50:7a:86:18:6a:ef:55:63:e2: ce:71:c3:3a:68:8e:90:d5:5f:22:b4:f5:b0:a5:d4: 64:1f:25:2f:49:20:39:56:39:2a:01:9d:b7:ae:a7: 38:89:0e:14:90:6f:ea:2e:eb:27:c1:ce:ad:a9:6e: d6:5a:c1:da:a3:57:be:d1:ce:50:44:78:34:33:46: 65:ef:ea:20:0b:41:47:76:99:ff:75:27:53:10:17: a9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:7C:E8:93:EE:B2:88:CC:DF:50:BD:C6:7B:F2:E1:8E:60:32:F5:81 X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:df:4e:01:6d:d0:0c:51:50:ce:33:74:5e:ea:db:43:ba:2b: 38:2b:08:bf:70:ac:bb:6f:7b:12:91:a5:8c:e5:29:66:33:e4: ee:37:61:6c:8d:39:9f:05:6a:b4:86:a6:96:90:48:b9:1d:4b: 1e:6a:16:2f:09:5b:b8:c1:cd:27:0f:9a:10:5d:f7:a4:0f:fd: f2:91:97:a5:53:31:4d:93:09:8d:45:65:05:d9:cf:c4:c0:2f: 0e:f3:cc:9b:c1:7d:4c:c3:40:0a:b0:3b:e1:02:0f:42:d1:d2: 38:28:d7:7b:f8:de:db:1d:2c:a8:2c:84:74:34:6a:81:88:0c: 9a:b6:f4:0d:d8:2f:cb:13:a7:8d:ed:bd:a7:79:a7:b9:0a:71: a7:ef:76:de:de:8d:ab:9b:11:65:6f:2b:00:e3:a3:75:a5:20: c7:7d:8f:13:99:b4:a2:b4:73:51:64:8b:5f:91:99:14:01:df: 91:7e:4f:f5:09:da:23:1e:1f:3c:fb:fe:1a:f7:5c:a8:e7:3f: 18:de:28:e6:74:19:4c:f6:2d:ed:4e:66:9c:a3:0e:11:61:71: 4b:2b:32:05:b0:18:14:5d:91:e1:93:43:3b:32:52:bd:12:a0: bd:28:0d:7b:c3:7a:3e:b5:8c:8c:4a:3a:cb:a8:9a:f0:61:0e: 86:0e:ac:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjUwNTMxMDA1OTA3WhcNMjUwNjA3MDA1OTA3WjAYMRYwFAYD VQQDEw02ODNhNTQ1Yi05NTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXQEe+K190y3yRd8ws5B0hSHnvt8SkRTex5+kf0mj2Z6rNTNuylWsBXQPFDE 8mss7dZFkdQSMp5yey/IRHlw8b55PTzSY+J5gV2fCc1a2eucPTHQ7ICGPdb+QT5Q xIlMMmWqj27oHsonsqNHS86Cp/7YSUi5tmsxwzhIDxWKtuTLM1jEyi74NHVwDDbi spF2bNlNBpwEu8JaQFjxwb4VcGZ78Ic50ycoD1NQeoYYau9VY+LOccM6aI6Q1V8i tPWwpdRkHyUvSSA5VjkqAZ23rqc4iQ4UkG/qLusnwc6tqW7WWsHao1e+0c5QRHg0 M0Zl7+ogC0FHdpn/dSdTEBepxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJp86JPu sojM31C9xnvy4Y5gMvWBMB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU5QS9CQUNBQjdFQzlERkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdI MXoyMTF5ZUx5UEpKeFg5UlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDN304BbdAMUVDOM3Re6ttDuis4Kwi/cKy7b3sSkaWM5SlmM+TuN2Fs jTmfBWq0hqaWkEi5HUseahYvCVu4wc0nD5oQXfekD/3ykZelUzFNkwmNRWUF2c/E wC8O88ybwX1Mw0AKsDvhAg9C0dI4KNd7+N7bHSyoLIR0NGqBiAyatvQN2C/LE6eN 7b2neae5CnGn73be3o2rmxFlbysA46N1pSDHfY8TmbSitHNRZItfkZkUAd+Rfk/1 CdojHh88+/4a91yo5z8Y3ijmdBlM9i3tTmacow4RYXFLKzIFsBgUXZHhk0M7MlK9 EqC9KA17w3o+tYyMSjrLqJrwYQ6GDqz8 -----END CERTIFICATE-----Generated at Sat May 31 17:49:35 2025 by rpki-client