$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: nEkZJZH8RQVvF+BKSlMsLgjugiHKBShUvnCgdjkY9MM= Subject key identifier: AA:36:E7:E9:D6:A1:38:B8:FC:7C:5F:2D:AE:57:0A:7F:69:3E:BB:8B Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 0490 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 048B Signing time: Mon 02 Jun 2025 16:43:36 +0000 Manifest this update: Mon 02 Jun 2025 16:43:36 +0000 Manifest next update: Mon 09 Jun 2025 16:43:36 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: op5KlbpPn3IbdxJLZBcBpKZeCvenS9/lENr8J8sQmn8=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Jun 2 16:43:36 2025 GMT Not After : Jun 9 16:43:36 2025 GMT Subject: CN=683dd4b8-2c28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:69:c8:f7:a8:70:a1:dc:3e:de:10:d4:27:fe: 79:a5:83:44:a2:be:bd:41:9a:7c:54:6f:9d:5b:33: b2:37:69:88:3b:b4:47:a6:06:da:b3:56:2a:14:73: f2:81:3e:f5:1b:5d:b8:61:e2:cd:ba:3a:8c:37:aa: a1:ce:89:8b:81:75:c6:0f:4f:55:aa:e6:c7:98:39: 65:ec:16:01:8e:96:57:49:59:7d:3e:a3:ac:ab:97: 86:53:51:b4:48:7f:45:63:76:05:77:6c:1a:5c:66: 00:cd:30:25:a8:ca:ee:83:1e:8b:f4:ad:c5:dc:94: 8c:da:cb:6c:85:21:79:14:c0:2f:b7:31:5b:e0:52: ca:2f:78:d0:5c:d6:fd:af:19:35:f7:22:74:d4:e1: 76:a5:ec:cc:1d:f8:04:30:f7:29:66:2c:f2:48:9e: 7f:44:96:dd:cc:0f:44:98:d4:24:2d:be:1b:09:e4: c2:21:4f:89:26:3f:b1:2b:52:05:4c:08:4b:4b:9c: 8d:b2:a6:fd:14:f9:2d:e5:90:51:04:76:11:08:b0: 74:9a:6c:8c:a2:27:f4:99:bb:18:8b:e5:c7:b9:fb: 32:e3:ec:72:0e:88:6a:8e:48:70:1c:34:f8:02:33: 7e:57:d4:9e:21:ba:0f:cd:73:ac:f0:92:47:3a:48: ba:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:36:E7:E9:D6:A1:38:B8:FC:7C:5F:2D:AE:57:0A:7F:69:3E:BB:8B X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:65:ec:7b:25:cb:75:b0:0a:b7:da:7d:17:89:a9:15:e2:4f: 78:1b:eb:b4:b6:4b:23:42:32:19:6f:e2:46:bd:f4:66:00:35: 3a:13:b5:66:00:95:63:17:48:ac:26:ab:9d:d3:6a:1e:c9:da: d9:4c:53:37:a4:07:f5:ea:1f:4e:77:16:b5:9d:1d:a2:f7:ac: 43:3a:cb:6b:c8:2f:90:7e:68:c3:1c:a1:0b:81:8d:21:9a:9b: 87:92:f6:29:57:7d:b2:16:15:f8:12:34:15:6d:d0:6a:78:ba: e1:5d:63:c4:60:f7:5a:0a:5b:38:ed:05:9b:bf:62:16:75:d1: 08:ec:df:f1:4b:1b:80:8e:0d:3e:ca:19:cf:2a:b7:10:ce:e9: 4f:b2:59:fe:83:a4:71:01:ea:ff:49:95:69:22:ac:f7:5a:ec: 7a:e4:52:c0:8d:ad:bf:95:7e:9a:61:10:b1:94:61:06:f4:38: 55:7f:ad:78:34:86:86:b0:e6:34:f6:a3:a4:9a:d3:88:6b:33: d8:3b:98:68:b2:09:97:75:c7:b9:44:82:85:12:ba:38:ad:ef: ed:60:8d:9c:4e:4f:76:82:2b:6e:03:a2:58:90:28:e4:07:a7: 1d:05:b3:28:47:5d:77:4c:ec:e5:bf:39:f5:7a:a2:c3:6f:4c: 86:03:34:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjUwNjAyMTY0MzM2WhcNMjUwNjA5MTY0MzM2WjAYMRYwFAYD VQQDEw02ODNkZDRiOC0yYzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGnI96hwodw+3hDUJ/55pYNEor69QZp8VG+dWzOyN2mIO7RHpgbas1YqFHPy gT71G124YeLNujqMN6qhzomLgXXGD09VqubHmDll7BYBjpZXSVl9PqOsq5eGU1G0 SH9FY3YFd2waXGYAzTAlqMrugx6L9K3F3JSM2stshSF5FMAvtzFb4FLKL3jQXNb9 rxk19yJ01OF2pezMHfgEMPcpZizySJ5/RJbdzA9EmNQkLb4bCeTCIU+JJj+xK1IF TAhLS5yNsqb9FPkt5ZBRBHYRCLB0mmyMoif0mbsYi+XHufsy4+xyDohqjkhwHDT4 AjN+V9SeIboPzXOs8JJHOki6rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKo25+nW oTi4/HxfLa5XCn9pPruLMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArZex7Jct1sAq32n0XiakV4k94G+u0tksjQjIZb+JGvfRmADU6E7Vm AJVjF0isJqud02oeydrZTFM3pAf16h9Odxa1nR2i96xDOstryC+QfmjDHKELgY0h mpuHkvYpV32yFhX4EjQVbdBqeLrhXWPEYPdaCls47QWbv2IWddEI7N/xSxuAjg0+ yhnPKrcQzulPsln+g6RxAer/SZVpIqz3Wux65FLAja2/lX6aYRCxlGEG9DhVf614 NIaGsOY09qOkmtOIazPYO5hosgmXdce5RIKFEro4re/tYI2cTk92gituA6JYkCjk B6cdBbMoR113TOzlvzn1eqLDb0yGAzRm -----END CERTIFICATE-----Generated at Tue Jun 3 23:42:43 2025 by rpki-client