$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: IixPZmXeCjwC+OQYxx8XFigzBOv304IQs1lEMAVtG6w= Subject key identifier: 36:D3:49:82:FD:97:58:3A:DD:5A:91:F0:BD:D1:2F:C6:BA:DD:8C:FF Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0AC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0ABE Signing time: Fri 30 May 2025 19:39:38 +0000 Manifest this update: Fri 30 May 2025 19:39:38 +0000 Manifest next update: Fri 06 Jun 2025 19:39:38 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: VjTJHFvhHOFuiEoBiDvcNQWp7wez3CwPuPCuW9X2wyk=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2757 (0xac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: May 30 19:39:38 2025 GMT Not After : Jun 6 19:39:38 2025 GMT Subject: CN=683a097a-4df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:64:a5:f6:73:66:ec:b3:77:7c:50:4f:bc:6b: af:88:bc:22:37:99:6e:a9:e3:14:90:cd:85:a1:92: a0:be:4c:82:b8:fa:3f:e1:86:87:b2:b9:77:49:3b: ba:f9:41:9c:43:a4:ff:df:56:09:44:30:ac:35:05: 64:16:65:ab:a5:db:c9:a1:61:b9:b0:88:eb:d0:66: e5:7c:61:ac:e8:eb:a7:06:4e:aa:f4:f4:da:91:fe: b0:dc:b0:92:08:f7:55:fc:3f:37:e0:80:19:99:2b: ea:ca:2e:93:11:ee:3c:1e:1b:52:3d:05:6f:02:28: 0d:dc:29:54:da:96:78:a9:ac:81:ef:8f:4b:86:39: b4:12:33:72:c6:02:80:76:9a:c1:a0:c6:97:e2:85: 64:7c:e0:32:55:ee:00:ef:d8:1c:1b:65:80:22:f6: 03:72:73:20:0f:f1:e6:d5:79:61:59:1e:76:0f:5e: be:86:18:cd:1d:be:a5:13:a7:e6:88:fd:1e:ca:d5: 5e:c3:8c:a0:6e:24:6a:d1:f2:90:6d:ff:5f:2a:33: 24:a6:f5:50:b6:c0:c4:5b:aa:b8:f4:a1:91:a7:21: 25:3c:ad:07:a1:cb:b8:bb:0f:e6:68:f1:f0:06:3f: 6b:89:d2:e9:e0:d4:fe:b9:70:e1:7d:c0:38:3f:59: 43:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D3:49:82:FD:97:58:3A:DD:5A:91:F0:BD:D1:2F:C6:BA:DD:8C:FF X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:f8:40:2f:40:9a:85:6f:7c:66:d5:a8:74:2d:65:41:44:9c: 6b:8f:50:4b:ba:e1:e8:13:c3:4a:15:d6:ac:20:0e:19:0a:7f: 23:2a:79:0f:bb:39:14:ce:3b:d5:bc:6e:df:06:33:71:12:e3: f3:e2:1d:ca:1d:01:69:4b:54:48:45:c3:84:f3:38:d7:80:06: cd:40:55:ae:23:d8:67:51:ff:b2:40:43:b2:31:69:ee:02:a0: dc:46:0d:4d:85:75:e0:e8:a7:dd:61:c8:6e:0f:9d:12:3c:89: 0a:c1:aa:49:95:d2:d3:a2:71:f6:b3:6e:76:23:f7:38:76:72: b7:38:de:54:ca:68:88:60:4c:62:4d:f9:5f:05:f9:21:f1:3a: 42:e0:e4:01:06:d9:de:bc:91:8b:be:02:31:f6:af:f3:f3:15: dc:eb:78:12:38:52:1e:61:d5:84:71:5e:33:21:69:19:69:35: 5f:c7:da:e3:5f:68:c6:50:3d:8b:26:2a:31:7f:cb:68:c2:fe: 4d:7b:3b:22:cb:3f:24:c3:97:62:63:61:20:a2:e0:96:f9:49: 17:54:23:8e:5c:b9:27:68:0c:75:50:80:ba:de:b3:83:a6:0f: 6c:2b:e4:6e:7a:46:13:aa:ed:80:16:4a:93:3d:a3:de:b8:6b: d2:6b:e9:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUwNTMwMTkzOTM4WhcNMjUwNjA2MTkzOTM4WjAYMRYwFAYD VQQDEw02ODNhMDk3YS00ZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2Sl9nNm7LN3fFBPvGuviLwiN5luqeMUkM2FoZKgvkyCuPo/4YaHsrl3STu6 +UGcQ6T/31YJRDCsNQVkFmWrpdvJoWG5sIjr0GblfGGs6OunBk6q9PTakf6w3LCS CPdV/D834IAZmSvqyi6TEe48HhtSPQVvAigN3ClU2pZ4qayB749Lhjm0EjNyxgKA dprBoMaX4oVkfOAyVe4A79gcG2WAIvYDcnMgD/Hm1XlhWR52D16+hhjNHb6lE6fm iP0eytVew4ygbiRq0fKQbf9fKjMkpvVQtsDEW6q49KGRpyElPK0Hocu4uw/maPHw Bj9ridLp4NT+uXDhfcA4P1lDZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbTSYL9 l1g63VqR8L3RL8a63Yz/MB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB+EAvQJqFb3xm1ah0LWVBRJxrj1BLuuHoE8NKFdasIA4ZCn8jKnkP uzkUzjvVvG7fBjNxEuPz4h3KHQFpS1RIRcOE8zjXgAbNQFWuI9hnUf+yQEOyMWnu AqDcRg1NhXXg6KfdYchuD50SPIkKwapJldLTonH2s252I/c4dnK3ON5UymiIYExi TflfBfkh8TpC4OQBBtnevJGLvgIx9q/z8xXc63gSOFIeYdWEcV4zIWkZaTVfx9rj X2jGUD2LJioxf8towv5Nezsiyz8kw5diY2EgouCW+UkXVCOOXLknaAx1UIC63rOD pg9sK+RuekYTqu2AFkqTPaPeuGvSa+n5 -----END CERTIFICATE-----Generated at Sat May 31 16:52:10 2025 by rpki-client