$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: /CMUe4hDMU1PRAMNMWM/B2Bkc7oXDLr7X8Q3+0e4/Z4= Subject key identifier: 8A:C7:31:E6:4C:E2:8C:40:D5:CD:5E:65:8D:1C:10:D0:F0:9B:4F:BA Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 0174 Signing time: Mon 09 Jun 2025 02:51:29 +0000 Manifest this update: Mon 09 Jun 2025 02:51:29 +0000 Manifest next update: Mon 16 Jun 2025 02:51:29 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: hMriGS+6H1XBA2vUkPVKK3ed5wGrQWxo+Uf+6lKgsUs=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 02:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Jun 9 02:51:29 2025 GMT Not After : Jun 16 02:51:29 2025 GMT Subject: CN=68464c31-1834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:af:9c:16:aa:4b:00:1d:2b:25:c5:1d:9d: 7e:47:b2:57:f9:19:53:7b:b8:29:c3:bd:ea:9c:7e: c2:ea:6e:6c:52:51:e4:5d:87:20:1d:d3:6f:14:c3: 77:08:e6:fb:0d:de:4d:dd:30:dd:9b:b2:89:8c:03: ea:d1:6d:58:b6:ea:82:c1:b7:b6:31:18:7a:d5:ab: 04:a8:fb:fa:91:04:c1:bd:11:ef:29:85:0c:aa:6e: ce:7e:86:87:c1:46:d5:46:49:72:15:16:52:78:6d: 8e:b6:80:d8:c1:40:1e:51:d4:20:f4:82:36:ba:c1: 4c:53:7b:ce:87:06:31:13:6e:6e:32:e6:54:40:cb: 6a:c0:da:12:3d:ac:d3:8e:42:05:de:dd:2b:53:6f: e0:a0:a7:ca:15:af:c8:7b:87:80:a1:81:ed:d6:da: 9f:f8:99:c2:80:83:7d:d6:a8:be:5d:e0:5b:c1:7b: a6:78:d2:83:d4:d6:fb:20:4f:cb:ad:11:72:9b:d0: 1e:ea:f9:11:3d:16:7d:0e:e3:1b:23:4c:6b:72:86: a4:45:1b:01:4e:a2:4f:89:f1:27:1f:16:77:24:2a: 5d:d4:e7:1d:87:99:5c:d7:72:42:a7:88:34:5a:6f: 33:21:6e:d2:f5:69:c4:0c:df:85:4e:19:d2:a8:97: 58:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C7:31:E6:4C:E2:8C:40:D5:CD:5E:65:8D:1C:10:D0:F0:9B:4F:BA X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e3:c1:4e:05:04:78:99:aa:1f:f1:36:95:69:6c:c1:d8:76: 4c:63:ef:ea:66:2a:db:e4:08:08:d5:79:4f:43:4e:e7:13:3f: 8e:35:6c:05:a6:65:c0:c7:42:93:fd:b8:af:75:bc:6c:9b:c6: 58:3f:51:2d:08:10:b4:66:f9:66:0b:cf:27:cb:da:bc:bf:08: c4:e9:31:2b:fe:15:41:c6:5d:19:f1:7f:94:6d:32:fe:06:e3: 47:73:7a:ea:bc:7d:bb:d5:0a:68:85:dc:b5:2c:3c:bd:8c:18: 59:b1:83:2c:a7:24:8a:95:0c:52:bf:2b:46:44:11:7f:c5:26: f5:e9:6d:70:26:fb:89:84:df:79:86:3d:61:fd:a4:13:c0:3e: 18:7a:55:dc:82:69:8d:73:ee:4b:81:9b:ec:eb:06:f3:df:1f: 03:7c:c9:e7:68:4f:28:5e:7b:fa:59:b8:05:75:06:d7:a4:20: fd:d1:b6:b7:cb:75:99:cb:11:85:df:18:85:41:47:f5:1d:ea: a4:3a:be:f4:3f:59:c4:0b:8c:1a:56:b0:37:f2:97:08:f1:de: e7:78:b1:f6:cd:c0:2e:fe:5f:5b:8c:31:5b:2d:19:98:bd:c5: d2:38:29:7f:f9:91:ea:e5:1b:8c:a4:55:da:34:62:85:63:6e: 4b:c4:f7:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUwNjA5MDI1MTI5WhcNMjUwNjE2MDI1MTI5WjAYMRYwFAYD VQQDEw02ODQ2NGMzMS0xODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjyvnBaqSwAdKyXFHZ1+R7JX+RlTe7gpw73qnH7C6m5sUlHkXYcgHdNvFMN3 COb7Dd5N3TDdm7KJjAPq0W1YtuqCwbe2MRh61asEqPv6kQTBvRHvKYUMqm7OfoaH wUbVRklyFRZSeG2OtoDYwUAeUdQg9II2usFMU3vOhwYxE25uMuZUQMtqwNoSPazT jkIF3t0rU2/goKfKFa/Ie4eAoYHt1tqf+JnCgIN91qi+XeBbwXumeNKD1Nb7IE/L rRFym9Ae6vkRPRZ9DuMbI0xrcoakRRsBTqJPifEnHxZ3JCpd1Ocdh5lc13JCp4g0 Wm8zIW7S9WnEDN+FThnSqJdYhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrHMeZM 4oxA1c1eZY0cENDwm0+6MB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu48FOBQR4maof8TaVaWzB2HZMY+/qZirb5AgI1XlPQ07nEz+ONWwF pmXAx0KT/bivdbxsm8ZYP1EtCBC0ZvlmC88ny9q8vwjE6TEr/hVBxl0Z8X+UbTL+ BuNHc3rqvH271Qpohdy1LDy9jBhZsYMspySKlQxSvytGRBF/xSb16W1wJvuJhN95 hj1h/aQTwD4YelXcgmmNc+5LgZvs6wbz3x8DfMnnaE8oXnv6WbgFdQbXpCD90ba3 y3WZyxGF3xiFQUf1HeqkOr70P1nEC4waVrA38pcI8d7neLH2zcAu/l9bjDFbLRmY vcXSOCl/+ZHq5RuMpFXaNGKFY25LxPfN -----END CERTIFICATE-----Generated at Tue Jun 10 19:26:25 2025 by rpki-client