$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: o935Zogqq87PrSoxlv86XBbAdFJGR2woiV70eQfbTsI= Subject key identifier: 06:6D:21:D0:E7:31:A6:97:BE:79:0B:5D:2B:F5:EE:0D:54:3D:78:EB Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23A6 Signing time: Mon 30 Jun 2025 15:53:12 +0000 Manifest this update: Mon 30 Jun 2025 15:53:12 +0000 Manifest next update: Mon 07 Jul 2025 15:53:12 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: qYCEroP3I7fZSS5hYxkcVIlqeAcQ2SOZNZMLm4DeVYQ=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:53:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9173 (0x23d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Jun 30 15:53:12 2025 GMT Not After : Jul 7 15:53:12 2025 GMT Subject: CN=6862b2e8-60d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:ed:21:26:77:4e:68:94:0e:7b:28:d9:7b: 7d:74:27:9b:b8:2c:41:64:2b:90:28:b6:d3:b5:95: fc:90:71:bc:9d:76:be:fc:86:b5:e0:16:9f:2c:78: 07:ef:da:6d:47:92:15:33:5a:2c:99:84:08:02:b9: 19:af:ec:59:63:ad:dd:af:9a:61:17:d5:8d:a8:ae: 8d:57:af:02:9b:74:d3:04:b1:8e:8a:b1:64:43:68: bd:8e:18:e5:5d:dd:00:a7:f0:fc:ee:4a:bb:7c:75: ab:9f:1e:ad:c5:fd:51:ba:e2:8b:d5:d0:ea:cd:aa: e6:63:67:97:7f:0f:af:2c:87:ed:14:6a:fe:2a:0c: ec:10:ac:07:5a:6f:e5:36:16:23:0e:78:78:f6:a0: 26:d4:e4:7c:f6:3c:19:54:7e:b5:de:59:9d:c5:db: c2:dd:e7:96:e7:d1:40:3d:89:2b:cd:f3:3d:e0:27: 5a:c8:60:9d:37:b4:77:a7:64:a5:e6:09:fb:f9:b4: da:2e:75:fc:a2:28:c0:c1:96:0b:44:22:10:13:ee: 0a:21:ce:75:36:ba:14:61:64:fe:cd:4b:f9:b1:18: 36:1f:e5:0d:8c:12:c1:ce:5e:0d:dc:79:7f:0c:65: 77:aa:6e:8a:5d:22:41:88:35:2a:67:9f:71:81:43: 4f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6D:21:D0:E7:31:A6:97:BE:79:0B:5D:2B:F5:EE:0D:54:3D:78:EB X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:5f:e0:fd:e2:80:45:cc:27:87:cf:45:c8:eb:96:9c:c5:e7: 7e:e4:f6:84:47:11:34:11:e3:40:ad:cc:d8:1d:f0:e9:75:b3: 31:38:c7:4d:90:45:02:21:96:1b:7d:a3:cd:53:de:b3:45:c2: c6:8e:d8:2a:32:7b:01:32:22:0b:4b:12:30:db:d5:a0:cf:3c: d2:99:86:fe:c5:36:89:6b:05:ed:aa:8e:e4:5d:d6:29:36:39: 43:87:a6:22:bf:d0:3c:21:53:77:9f:25:61:b2:6f:98:e6:68: d9:4a:13:9d:ae:2c:f8:9b:5a:30:bc:3c:7f:24:ff:f4:2d:99: db:ad:1c:ba:f4:ab:8c:bd:d6:30:98:04:4f:99:cd:d8:06:68: 45:82:4e:3f:e9:57:2e:84:b2:6e:79:6e:0f:9e:e6:68:aa:02: 66:93:1f:c5:30:06:1c:e5:6a:53:95:42:10:61:a1:7f:e4:f8: 80:c3:89:7e:ed:1a:f5:18:33:0f:73:96:2c:d1:d8:92:c7:60: f3:7f:b1:2a:dc:e9:d6:4b:96:4c:8d:84:53:51:ee:37:3d:ad: de:b8:53:73:b1:24:b7:ce:12:56:bb:6a:05:33:35:ed:bd:f9: d0:c4:79:74:7c:47:87:82:36:bc:4b:81:ae:61:e9:2e:4c:ff: de:a2:1a:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNjMwMTU1MzEyWhcNMjUwNzA3MTU1MzEyWjAYMRYwFAYD VQQDEw02ODYyYjJlOC02MGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSztISZ3TmiUDnso2Xt9dCebuCxBZCuQKLbTtZX8kHG8nXa+/Ia14BafLHgH 79ptR5IVM1osmYQIArkZr+xZY63dr5phF9WNqK6NV68Cm3TTBLGOirFkQ2i9jhjl Xd0Ap/D87kq7fHWrnx6txf1RuuKL1dDqzarmY2eXfw+vLIftFGr+KgzsEKwHWm/l NhYjDnh49qAm1OR89jwZVH613lmdxdvC3eeW59FAPYkrzfM94CdayGCdN7R3p2Sl 5gn7+bTaLnX8oijAwZYLRCIQE+4KIc51NroUYWT+zUv5sRg2H+UNjBLBzl4N3Hl/ DGV3qm6KXSJBiDUqZ59xgUNPZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZtIdDn MaaXvnkLXSv17g1UPXjrMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4X+D94oBFzCeHz0XI65acxed+5PaERxE0EeNArczYHfDpdbMxOMdN kEUCIZYbfaPNU96zRcLGjtgqMnsBMiILSxIw29WgzzzSmYb+xTaJawXtqo7kXdYp NjlDh6Yiv9A8IVN3nyVhsm+Y5mjZShOdriz4m1owvDx/JP/0LZnbrRy69KuMvdYw mARPmc3YBmhFgk4/6VcuhLJueW4PnuZoqgJmkx/FMAYc5WpTlUIQYaF/5PiAw4l+ 7Rr1GDMPc5Ys0diSx2Dzf7Eq3OnWS5ZMjYRTUe43Pa3euFNzsSS3zhJWu2oFMzXt vfnQxHl0fEeHgja8S4GuYekuTP/eohrU -----END CERTIFICATE-----Generated at Tue Jul 1 19:52:52 2025 by rpki-client