$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: xTeF+2M3b4Xw8lBRCRtL6gMVa2drlZdvhgo0oa75d2U= Subject key identifier: BD:13:81:A8:92:6B:38:D5:6D:AE:8B:6B:23:F5:A4:1C:74:2F:39:99 Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 06F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 06E9 Signing time: Tue 10 Jun 2025 21:51:41 +0000 Manifest this update: Tue 10 Jun 2025 21:51:40 +0000 Manifest next update: Tue 17 Jun 2025 21:51:40 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: Tc61nRT1a4fhyHnXTsToq8C10LjrObo51Ghy44/KqMk=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 21:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Jun 10 21:51:40 2025 GMT Not After : Jun 17 21:51:40 2025 GMT Subject: CN=6848a8ec-e4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7b:d7:93:4a:f4:0b:e9:4b:6e:42:71:7c:fd: a6:44:1f:b0:12:a6:47:66:35:20:db:25:91:51:cd: 8c:6a:7e:e1:ff:02:8e:34:07:db:64:52:e7:f2:a5: 76:39:a9:54:7c:50:55:1f:05:4b:d7:e3:f7:73:c8: 89:da:32:a1:12:78:01:38:73:9d:0d:0f:fe:f9:f5: 40:cb:6f:20:42:2b:f1:6a:04:92:08:66:9a:27:6b: dc:e4:f6:bc:8f:1c:f0:c9:a2:18:82:22:40:29:ef: 4f:e3:71:2d:07:e1:6a:99:9c:4e:8a:c8:08:88:1b: 91:24:12:f5:05:bb:36:fd:0d:23:5e:da:80:10:0e: c5:a1:c6:25:46:9b:5e:b8:51:04:37:02:62:c7:aa: c0:9f:58:8d:96:29:74:a7:a6:b2:94:51:d5:24:21: 95:c2:d2:07:20:bd:94:c1:b4:bc:5c:6d:05:e4:87: dc:82:fe:b9:1f:fe:b8:3f:df:b5:58:0b:51:9c:cf: d8:f6:a5:1c:b1:c0:d7:41:95:2d:29:07:2a:65:25: e0:64:6f:3b:63:a7:64:a6:05:e1:31:9f:ae:33:45: c0:20:e0:65:c4:89:b5:db:94:86:7f:e4:46:05:d5: 5d:c8:3a:f1:8d:01:36:42:47:b0:e7:42:8e:64:78: 40:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:13:81:A8:92:6B:38:D5:6D:AE:8B:6B:23:F5:A4:1C:74:2F:39:99 X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ab:55:54:a5:e3:a0:a1:d2:97:3e:ef:66:91:f2:f1:78:9e: 9d:c9:8f:27:df:e3:25:84:a2:4f:c0:db:79:b2:f9:1c:6d:64: 94:ce:cb:b0:a2:07:19:ad:27:10:c8:dc:b5:ba:92:fd:90:d0: 0e:c4:24:6e:df:59:57:1f:22:1a:bc:ec:b6:36:09:1f:26:a0: 47:00:73:d6:10:a2:fe:ac:08:23:b7:1e:d4:43:14:68:0d:27: a0:1a:de:81:fd:8c:2b:c4:d3:e3:29:cf:25:d4:22:1c:71:ef: 49:4c:b9:94:50:db:00:c4:71:6a:28:c5:5a:f9:0d:86:d0:fa: 2a:b0:db:89:1a:7e:62:0e:3f:30:ec:14:44:e1:39:85:d4:66: 41:59:a6:3e:12:b3:26:79:98:5f:02:24:f6:d4:4c:8d:bd:4d: 94:04:f3:0d:7e:7e:4e:2b:6e:99:ed:8c:21:a7:ea:c9:ed:7e: a2:c8:6a:94:99:d1:11:78:b6:d9:72:bf:5f:fc:28:fd:95:8c: 09:f9:72:6a:0e:b2:d9:58:0c:5a:81:c9:6f:43:9d:60:2a:96: 25:c2:c2:59:26:14:2e:d9:84:48:eb:28:81:8b:c0:a7:8b:04: 29:a9:14:ba:bc:04:d4:78:d4:f0:7d:c1:dd:01:8e:de:9e:82: f2:c9:61:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjUwNjEwMjE1MTQwWhcNMjUwNjE3MjE1MTQwWjAYMRYwFAYD VQQDEw02ODQ4YThlYy1lNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXvXk0r0C+lLbkJxfP2mRB+wEqZHZjUg2yWRUc2Man7h/wKONAfbZFLn8qV2 OalUfFBVHwVL1+P3c8iJ2jKhEngBOHOdDQ/++fVAy28gQivxagSSCGaaJ2vc5Pa8 jxzwyaIYgiJAKe9P43EtB+FqmZxOisgIiBuRJBL1Bbs2/Q0jXtqAEA7FocYlRpte uFEENwJix6rAn1iNlil0p6aylFHVJCGVwtIHIL2UwbS8XG0F5Ifcgv65H/64P9+1 WAtRnM/Y9qUcscDXQZUtKQcqZSXgZG87Y6dkpgXhMZ+uM0XAIOBlxIm125SGf+RG BdVdyDrxjQE2Qkew50KOZHhArQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0TgaiS azjVba6LayP1pBx0LzmZMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTq1VUpeOgodKXPu9mkfLxeJ6dyY8n3+MlhKJPwNt5svkcbWSUzsuw ogcZrScQyNy1upL9kNAOxCRu31lXHyIavOy2NgkfJqBHAHPWEKL+rAgjtx7UQxRo DSegGt6B/YwrxNPjKc8l1CIcce9JTLmUUNsAxHFqKMVa+Q2G0PoqsNuJGn5iDj8w 7BRE4TmF1GZBWaY+ErMmeZhfAiT21EyNvU2UBPMNfn5OK26Z7Ywhp+rJ7X6iyGqU mdEReLbZcr9f/Cj9lYwJ+XJqDrLZWAxagclvQ51gKpYlwsJZJhQu2YRI6yiBi8Cn iwQpqRS6vATUeNTwfcHdAY7enoLyyWEu -----END CERTIFICATE-----Generated at Thu Jun 12 16:38:01 2025 by rpki-client