$ rpki-client -vvf rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft File: Aonh4IK22hq6VVKEDAyrAsKjt04.mft (raw, json) Hash identifier: /c9+r7K0npd+UZHh10JSEWj/cN7Cgw6F4v7WAZFCD+g= Subject key identifier: 91:B6:1C:43:2A:21:51:E4:4A:22:E3:B9:C2:A8:C2:D2:7F:3F:02:C8 Authority key identifier: 02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E Certificate issuer: /CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft Manifest number: 03E4 Signing time: Sat 31 May 2025 01:06:52 +0000 Manifest this update: Sat 31 May 2025 01:06:52 +0000 Manifest next update: Sat 07 Jun 2025 01:06:52 +0000 Files and hashes: 1: Aonh4IK22hq6VVKEDAyrAsKjt04.crl (hash: PrwFVX6u8XCCed/qSA69yTCHT3cdjfTl+L+9rfWNw8E=) 2: F23B6474DCCB11EFA04C156DC4F9AE02.roa (hash: 8CP+soQ8V1MqPicKDXfIlfLOoa+kVRyCORkx4Rr2qj4=) 3: B250F522DCCB11EFB54CD16CC4F9AE02.roa (hash: rwa7KCX9itOMHcH4U2EV1YtaU4sGAP6iXjp2VE332xU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144C70, serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Validity Not Before: May 31 01:06:52 2025 GMT Not After : Jun 7 01:06:52 2025 GMT Subject: CN=683a562c-8b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:08:0b:bc:0a:b8:86:d8:64:09:c9:23:ac:ca: af:24:70:21:cc:61:0c:24:51:3f:01:b5:23:40:81: 1d:ef:a5:7e:75:46:80:1e:c5:4b:a9:eb:52:8c:58: 97:0d:1f:1f:96:58:34:64:c9:80:e5:c3:8d:d4:09: ea:92:51:a0:9a:ea:2b:37:8c:5a:fa:36:4a:0c:e9: 0c:72:34:39:bf:64:93:8f:c2:5c:88:31:5d:f3:87: a6:db:a9:25:0f:c9:29:5d:35:8a:49:0d:72:77:27: 34:9b:fd:94:55:4d:54:ab:77:9c:ed:ed:3e:e5:a8: 81:1f:29:85:78:ce:f6:b7:6c:d3:c9:08:41:8a:1d: 5a:25:25:74:e9:eb:a1:39:10:dc:81:b5:25:94:e6: 1d:fd:fe:d8:54:92:b0:20:f8:4b:63:b2:69:d5:b2: 90:49:55:62:e2:1d:bc:cb:7c:d2:28:57:90:8e:ec: a4:81:6a:de:19:27:2a:02:3c:66:63:84:9a:e4:0a: 8d:c7:0d:27:6c:b2:bf:13:0f:df:bb:03:8c:5a:98: 40:53:0e:89:41:ba:e6:d1:d5:d2:3f:6f:b4:eb:cc: d0:dc:aa:d3:c7:a5:8c:77:42:17:7b:aa:2d:2a:2a: 30:dc:2a:71:f2:e0:92:65:94:74:9b:5b:2c:4e:4f: ae:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B6:1C:43:2A:21:51:E4:4A:22:E3:B9:C2:A8:C2:D2:7F:3F:02:C8 X509v3 Authority Key Identifier: keyid:02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:7a:fc:bd:05:dd:25:35:3e:4e:c2:ea:01:83:e6:47:71:f4: 94:d3:0f:31:29:28:09:1d:b0:b3:d8:5c:8b:0a:6c:57:8a:6f: f6:b0:56:67:ce:58:c1:07:14:74:c9:c8:11:af:bd:7c:eb:5c: 2b:0a:50:02:40:35:a1:20:86:ae:e2:88:bd:ce:83:19:4f:3f: 7a:4b:92:90:ca:80:16:ff:c7:b1:69:a3:a4:f6:9b:e9:48:61: f3:f8:cf:df:c8:02:91:e4:5f:64:e5:e0:57:aa:6b:2f:50:77: 6b:29:42:0e:cf:95:18:d4:a5:a3:ad:ca:82:38:4e:4f:0c:84: ac:bc:33:ce:d9:44:41:44:75:5a:ce:eb:d9:78:4c:f3:9d:52: b9:f2:24:c3:8d:90:e9:3d:94:52:b8:ff:6b:94:a2:7f:31:fb: dd:10:a0:75:e7:27:f9:be:54:5f:d9:42:24:2e:57:f3:8d:31: ba:98:88:80:e6:d9:7c:29:45:e1:40:74:a0:f8:f3:09:04:4a: 45:76:5d:74:20:63:61:a2:ba:57:64:11:16:ee:b1:2a:e0:fa: 1b:66:97:38:d2:f0:fe:d8:a7:9a:9e:98:ed:d4:32:83:b1:7d: 3a:79:30:d7:ec:88:f6:e2:52:1e:4e:bb:ea:d1:99:cc:32:c9: 70:38:bd:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEM3MDExMC8GA1UEBRMoMDI4OUUxRTA4MkI2REExQUJBNTU1Mjg0MEMwQ0FCMDJD MkEzQjc0RTAeFw0yNTA1MzEwMTA2NTJaFw0yNTA2MDcwMTA2NTJaMBgxFjAUBgNV BAMTDTY4M2E1NjJjLThiMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJCAu8CriG2GQJySOsyq8kcCHMYQwkUT8BtSNAgR3vpX51RoAexUup61KMWJcN Hx+WWDRkyYDlw43UCeqSUaCa6is3jFr6NkoM6QxyNDm/ZJOPwlyIMV3zh6bbqSUP ySldNYpJDXJ3JzSb/ZRVTVSrd5zt7T7lqIEfKYV4zva3bNPJCEGKHVolJXTp66E5 ENyBtSWU5h39/thUkrAg+EtjsmnVspBJVWLiHbzLfNIoV5CO7KSBat4ZJyoCPGZj hJrkCo3HDSdssr8TD9+7A4xamEBTDolBuubR1dI/b7TrzNDcqtPHpYx3Qhd7qi0q KjDcKnHy4JJllHSbWyxOT66PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkbYcQyoh UeRKIuO5wqjC0n8/AsgwHwYDVR0jBBgwFoAUAonh4IK22hq6VVKEDAyrAsKjt04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0QzcwLzgyQkM4NEVFQUM2 NzExRUNCNzVDREEyNEM0RjlBRTAyL0Fvbmg0SUsyMmhxNlZWS0VEQXlyQXNLanQw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQW9uaDRJSzIyaHE2VlZLRURBeXJBc0tqdDA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 QzcwLzgyQkM4NEVFQUM2NzExRUNCNzVDREEyNEM0RjlBRTAyL0Fvbmg0SUsyMmhx NlZWS0VEQXlyQXNLanQwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZ6/L0F3SU1Pk7C6gGD5kdx9JTTDzEpKAkdsLPYXIsKbFeKb/awVmfO WMEHFHTJyBGvvXzrXCsKUAJANaEghq7iiL3OgxlPP3pLkpDKgBb/x7Fpo6T2m+lI YfP4z9/IApHkX2Tl4Feqay9Qd2spQg7PlRjUpaOtyoI4Tk8MhKy8M87ZREFEdVrO 69l4TPOdUrnyJMONkOk9lFK4/2uUon8x+90QoHXnJ/m+VF/ZQiQuV/ONMbqYiIDm 2XwpReFAdKD48wkESkV2XXQgY2GiuldkERbusSrg+htmlzjS8P7Yp5qemO3UMoOx fTp5MNfsiPbiUh5Ou+rRmcwyyXA4vRQ= -----END CERTIFICATE-----Generated at Sat May 31 17:14:42 2025 by rpki-client