$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft File: aMW6vfwSOWbQX4DD-kI3lELEIgw.mft (raw, json) Hash identifier: Qk1YT1bgdxCYXxAOciMasPErDo1JbPDnNQxuIW/ockg= Subject key identifier: B4:EC:25:D6:C1:1F:FD:44:BF:24:D4:DD:9E:94:A9:72:D5:24:CD:B8 Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 34B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft Manifest number: 3498 Signing time: Sat 31 May 2025 14:44:01 +0000 Manifest this update: Sat 31 May 2025 14:44:01 +0000 Manifest next update: Sat 07 Jun 2025 14:44:01 +0000 Files and hashes: 1: aMW6vfwSOWbQX4DD-kI3lELEIgw.crl (hash: tgr+mRKQT+K5Rdnh/+uQUtE6LODzuMyWgnPnUX6xTWs=) 2: E05FE99AB0D511E5B4F68B09C4F9AE02.roa (hash: /edqiqL2miGSNr0uoaTjo4btCNWXItXesGyoq/gND/E=) 3: 73438FF06DED11E9A21D1341C4F9AE02.roa (hash: C4bWHi41cN0y8JVNPFitYHiPYUVvz8I3upa7uMSFTP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13492 (0x34b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D, serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: May 31 14:44:01 2025 GMT Not After : Jun 7 14:44:01 2025 GMT Subject: CN=683b15b1-92b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9a:e4:ee:dc:3f:9d:81:b7:7c:fb:a9:a3:12: 5e:3e:8f:5f:d6:c7:25:4b:ac:0b:62:51:16:e1:f2: 2f:26:0d:7a:fe:08:b9:30:9b:aa:a4:ad:36:30:52: ea:1b:f9:bf:25:90:1b:d5:ed:7c:bc:8e:af:4a:d7: 64:be:95:57:e0:a2:e8:66:b7:08:4f:cf:85:d7:32: 68:25:77:f2:b7:c8:6e:7f:e2:2b:3c:03:df:88:34: 9c:a1:1f:1d:b0:5a:6c:1c:a7:6c:32:df:24:59:9e: eb:7e:00:66:e8:ff:aa:67:4e:b3:ab:d5:04:18:c3: c5:58:09:d4:49:ff:7c:83:fc:be:1d:39:49:05:32: 32:cc:be:68:b8:d4:74:8f:89:2e:dd:ec:c9:c6:b6: 80:ea:92:02:4b:59:9e:59:68:5f:3e:39:04:21:d9: f1:2f:45:81:8e:5a:db:36:44:68:e1:0e:c0:12:58: f8:61:d6:f8:c8:49:a0:a3:f8:f2:1a:27:f8:98:65: ac:9e:de:b4:cd:05:df:12:bb:70:ae:a9:94:ad:65: 31:29:bd:01:f3:2d:37:59:f8:e5:62:4a:07:7e:55: 7f:1e:01:cd:f0:cd:29:17:d4:9c:98:ef:51:0b:e5: 9e:dc:3a:96:40:e9:1a:cf:fd:a5:d2:21:63:0c:05: 60:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EC:25:D6:C1:1F:FD:44:BF:24:D4:DD:9E:94:A9:72:D5:24:CD:B8 X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:b2:a8:8e:76:f3:58:1e:e8:e3:82:72:b4:4a:2b:92:5b:af: 19:fd:f9:ca:36:80:58:c0:61:1f:75:4c:1c:99:93:5d:06:80: d3:b6:f7:29:29:d7:4c:65:a9:c9:24:8d:2f:a7:cd:4f:df:d9: 83:22:52:87:dc:d8:d7:39:5b:8e:21:d6:58:67:fb:8c:4f:2d: 03:1a:9f:41:ca:a2:1b:bd:b2:a9:8a:20:ae:d2:89:8e:73:30: 9b:b9:47:19:c5:9f:ec:57:9e:07:e5:bf:a2:07:dd:9b:e8:1a: 1c:2c:e2:3e:68:b2:08:f5:d1:b6:85:98:be:36:df:0e:57:35: 4a:d1:dd:2d:c6:33:88:3e:3f:66:e7:59:d8:33:99:b2:74:15: d2:68:2e:10:46:70:d1:a1:a2:8a:ed:46:24:5e:63:c9:b8:2c: 47:45:af:78:9f:1b:32:46:52:8a:fe:8f:e3:26:30:1d:d0:0c: 36:5b:25:16:22:97:c7:9f:42:80:df:6e:94:3e:b3:1b:52:28: 49:c7:5c:0c:6b:bb:96:46:59:c5:cf:9e:63:5f:6b:e4:03:2c: 00:4a:77:69:34:79:da:fa:bf:78:de:9f:79:44:5e:6f:ba:65: a7:e9:86:cf:2e:30:78:ca:e7:1d:c9:4a:3b:ec:9a:1d:23:31: c5:ef:76:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjUwNTMxMTQ0NDAxWhcNMjUwNjA3MTQ0NDAxWjAYMRYwFAYD VQQDEw02ODNiMTViMS05MmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Zrk7tw/nYG3fPupoxJePo9f1sclS6wLYlEW4fIvJg16/gi5MJuqpK02MFLq G/m/JZAb1e18vI6vStdkvpVX4KLoZrcIT8+F1zJoJXfyt8huf+IrPAPfiDScoR8d sFpsHKdsMt8kWZ7rfgBm6P+qZ06zq9UEGMPFWAnUSf98g/y+HTlJBTIyzL5ouNR0 j4ku3ezJxraA6pICS1meWWhfPjkEIdnxL0WBjlrbNkRo4Q7AElj4Ydb4yEmgo/jy Gif4mGWsnt60zQXfErtwrqmUrWUxKb0B8y03WfjlYkoHflV/HgHN8M0pF9ScmO9R C+We3DqWQOkaz/2l0iFjDAVg9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTsJdbB H/1EvyTU3Z6UqXLVJM24MB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjAxRC9DRDFFMjk0ODFEOTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09X YlFYNERELWtJM2xFTEVJZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQsqiOdvNYHujjgnK0SiuSW68Z/fnKNoBYwGEfdUwcmZNdBoDTtvcp KddMZanJJI0vp81P39mDIlKH3NjXOVuOIdZYZ/uMTy0DGp9ByqIbvbKpiiCu0omO czCbuUcZxZ/sV54H5b+iB92b6BocLOI+aLII9dG2hZi+Nt8OVzVK0d0txjOIPj9m 51nYM5mydBXSaC4QRnDRoaKK7UYkXmPJuCxHRa94nxsyRlKK/o/jJjAd0Aw2WyUW IpfHn0KA326UPrMbUihJx1wMa7uWRlnFz55jX2vkAywASndpNHna+r943p95RF5v umWn6YbPLjB4yucdyUo77JodIzHF73ZW -----END CERTIFICATE-----Generated at Sat May 31 17:06:23 2025 by rpki-client