$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: lTnYmGeO4T+lbv7st5aASVT7yT9IJ+W1bLsFo4HDVLc= Subject key identifier: 76:71:49:05:D5:0E:B6:94:84:7F:1A:A5:50:BC:BF:35:D2:33:6D:AD Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 06F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 06EA Signing time: Thu 12 Jun 2025 21:38:00 +0000 Manifest this update: Thu 12 Jun 2025 21:38:00 +0000 Manifest next update: Thu 19 Jun 2025 21:38:00 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: rMeiQTThmMxjLdzra+LB+VLBz4CMaAGN4Owy+xAzuWQ=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1778 (0x6f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Jun 12 21:38:00 2025 GMT Not After : Jun 19 21:38:00 2025 GMT Subject: CN=684b48b8-1f2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:42:cd:f5:5e:0e:55:49:52:c9:e9:22:2e:f3: 3a:4a:db:61:75:54:00:e0:87:12:d0:1b:72:20:1c: c8:9a:1d:8e:84:29:14:85:f3:3c:13:b1:25:36:e1: 71:61:d5:5f:1f:de:b5:91:3b:46:e1:2c:69:c1:24: f4:f2:aa:a1:ef:3b:58:57:04:b6:92:a4:81:80:17: 1b:2a:dc:f1:f0:14:fe:ee:87:61:6b:b7:04:59:b7: cb:bc:cc:be:4c:03:a7:5a:aa:7f:03:e4:5a:bf:13: f8:f3:f3:67:28:ac:10:53:43:48:d0:c7:f7:40:45: 20:6d:7e:1c:11:8a:c7:df:5f:5f:f2:6e:b9:a5:cb: 09:35:c9:c7:10:17:e9:bd:0a:5e:a3:48:34:e3:8a: 62:d7:4f:7e:80:b6:c8:18:9f:8f:3b:93:88:c5:c7: 01:78:05:67:74:65:f4:76:da:5c:d8:d0:17:58:e2: 50:2f:35:9d:9a:3d:a6:60:b9:aa:6f:1a:48:f7:2c: cd:0a:3d:b1:92:ab:42:31:00:2e:82:89:fe:1f:15: b0:85:c9:ee:67:70:51:f1:20:49:bf:12:3d:d2:89: c1:63:05:e2:9c:c3:c8:3e:ef:b3:f5:8e:6b:48:9c: 95:54:cf:6a:e3:70:0d:05:17:73:c6:f1:6f:86:60: 7b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:71:49:05:D5:0E:B6:94:84:7F:1A:A5:50:BC:BF:35:D2:33:6D:AD X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:29:7e:13:92:2a:cb:32:b4:a8:12:fe:c0:d8:cd:20:0f:d5: b6:54:90:26:9c:bc:8a:22:54:e4:0c:ce:18:0c:a4:c8:7e:48: 38:bd:4b:bb:78:b0:4c:51:90:c1:0b:a7:78:aa:17:c7:20:f4: 79:4c:58:4b:0b:85:ab:c9:57:07:88:7d:4c:19:3c:0f:3e:3e: cb:5c:86:51:ae:03:b3:1c:fa:f9:7c:c6:85:f6:81:7a:ab:50: 3d:4f:10:12:7b:de:68:32:3e:bb:a1:39:d5:e2:46:a2:7e:51: b2:7e:be:d2:2a:86:a2:db:26:d7:ab:18:d8:53:65:14:6d:99: 23:bd:6e:32:fc:37:5e:69:d4:91:d6:96:0b:df:57:3a:1b:8d: 9e:a0:5c:5c:22:ce:2d:2b:0a:8d:45:6b:84:4f:c7:59:a3:7d: 1f:38:24:bd:e4:93:98:4e:75:99:83:1c:da:85:87:f4:7e:36: 3f:3d:fd:d6:d5:a0:78:35:a0:2b:3c:cc:d7:0f:71:58:f6:2a: 42:68:97:77:f6:5e:77:7f:4a:64:84:79:aa:23:46:ad:3b:09: 47:91:b5:e5:99:7e:c9:82:90:c5:4d:82:df:49:bc:03:00:9c: 9a:f1:d7:8c:de:35:c7:95:58:26:18:0b:38:86:3e:0d:cb:c5: fd:1d:2a:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjUwNjEyMjEzODAwWhcNMjUwNjE5MjEzODAwWjAYMRYwFAYD VQQDEw02ODRiNDhiOC0xZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5kLN9V4OVUlSyekiLvM6StthdVQA4IcS0BtyIBzImh2OhCkUhfM8E7ElNuFx YdVfH961kTtG4SxpwST08qqh7ztYVwS2kqSBgBcbKtzx8BT+7odha7cEWbfLvMy+ TAOnWqp/A+RavxP48/NnKKwQU0NI0Mf3QEUgbX4cEYrH319f8m65pcsJNcnHEBfp vQpeo0g044pi109+gLbIGJ+PO5OIxccBeAVndGX0dtpc2NAXWOJQLzWdmj2mYLmq bxpI9yzNCj2xkqtCMQAugon+HxWwhcnuZ3BR8SBJvxI90onBYwXinMPIPu+z9Y5r SJyVVM9q43ANBRdzxvFvhmB7uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZxSQXV DraUhH8apVC8vzXSM22tMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyKX4TkirLMrSoEv7A2M0gD9W2VJAmnLyKIlTkDM4YDKTIfkg4vUu7 eLBMUZDBC6d4qhfHIPR5TFhLC4WryVcHiH1MGTwPPj7LXIZRrgOzHPr5fMaF9oF6 q1A9TxASe95oMj67oTnV4kaiflGyfr7SKoai2ybXqxjYU2UUbZkjvW4y/DdeadSR 1pYL31c6G42eoFxcIs4tKwqNRWuET8dZo30fOCS95JOYTnWZgxzahYf0fjY/Pf3W 1aB4NaArPMzXD3FY9ipCaJd39l53f0pkhHmqI0atOwlHkbXlmX7JgpDFTYLfSbwD AJya8deM3jXHlVgmGAs4hj4Ny8X9HSr6 -----END CERTIFICATE-----Generated at Sat Jun 14 16:21:26 2025 by rpki-client