$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: CNWkfmln/1gQUepH5c5rOLj+8TFaKXchooq/TKDtMCQ= Subject key identifier: 6C:AA:53:08:83:34:EE:A7:F6:E4:D9:44:63:43:7A:E3:BF:80:D0:40 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 049B Signing time: Tue 01 Jul 2025 00:30:42 +0000 Manifest this update: Tue 01 Jul 2025 00:30:42 +0000 Manifest next update: Tue 08 Jul 2025 00:30:42 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: 0NFfHU4BJiHJrm9sN3bUKahxxoB2GGTvJMQLXcHMjnI=) 2: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I=) 3: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Jul 1 00:30:42 2025 GMT Not After : Jul 8 00:30:42 2025 GMT Subject: CN=68632c32-b119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:59:e7:77:0e:8a:58:9d:74:93:76:b8:fe:b7: a7:f1:3e:c7:34:a5:6b:ff:57:14:a4:16:1f:fd:d0: 37:b4:17:88:96:5b:fc:94:51:cf:45:f1:54:44:5e: 47:69:b3:b9:9b:e7:d9:54:43:ef:f8:80:c4:e7:36: f0:47:27:54:aa:f3:f1:65:87:a9:c9:a8:b5:aa:f5: 33:75:15:7b:8b:88:0a:5d:1e:f9:9f:a5:67:d3:1d: 25:53:49:96:f8:5f:a8:75:98:d2:37:89:f7:68:f1: 5d:c1:e6:e4:98:da:e6:32:d6:5a:3e:c7:3b:f0:6a: cc:6a:e5:29:82:01:99:9d:38:20:ca:1e:53:9d:00: 92:36:f9:6d:de:5d:92:53:13:5b:f6:e2:27:55:d7: 1f:8f:ff:ac:ca:e4:39:08:42:01:6d:6b:0f:c7:90: 4f:fe:a1:8c:09:3f:25:cf:32:25:ba:f3:13:85:05: ff:be:ca:a0:6b:1c:42:23:6d:de:af:61:58:70:6b: d6:7d:21:e1:9a:30:44:5d:af:4e:06:9a:ef:b9:fd: a7:81:0a:30:2a:2e:1e:83:22:db:f4:b9:cc:95:06: 8c:6b:e2:27:f3:99:13:79:24:5e:53:af:8f:0c:bf: 3c:1d:5f:63:e3:61:92:c2:16:8a:a0:44:dd:46:b5: 1c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AA:53:08:83:34:EE:A7:F6:E4:D9:44:63:43:7A:E3:BF:80:D0:40 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:c7:c5:37:39:fe:cd:9a:8f:6f:4f:1a:33:2a:2b:8f:22:82: 8c:83:ab:38:02:19:51:8d:78:56:5e:d5:c4:1d:0f:dc:70:8a: 15:f5:5a:10:74:16:ed:8f:b3:33:26:a8:e7:3e:77:ab:3b:21: 6d:38:ae:48:d2:53:d2:40:52:20:fa:41:c3:36:d9:3e:2e:ac: 2f:d9:e0:b6:0e:92:41:08:29:b4:df:ac:8d:bc:cd:a8:c3:fb: 2b:0e:d5:d8:97:72:ea:6e:48:c6:41:c1:14:e0:82:20:9e:3e: e3:12:78:f5:02:c9:8d:d8:3c:37:71:30:18:5e:8b:3b:f7:82: 37:0e:07:f5:dc:71:bf:51:b2:13:6a:21:35:a4:f7:34:ff:a0: f9:f2:a6:ae:16:23:90:55:94:84:15:14:83:2c:94:ea:e9:ac: 1e:49:93:b7:8e:de:76:43:51:77:01:db:a2:13:3d:d8:ec:a7: 60:76:4f:07:f0:3b:a3:b7:1e:8e:c3:71:3e:21:69:7c:b0:c1: d8:7f:31:04:a0:e9:6f:cb:80:a1:c5:d2:a9:5b:07:2f:f5:67: d8:ff:26:f6:f5:67:bc:d1:96:fb:6f:23:bc:73:3e:47:a7:31: 98:f1:38:5c:73:99:47:e3:51:a7:3c:4d:19:f3:42:af:6a:ec: 29:8e:12:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUwNzAxMDAzMDQyWhcNMjUwNzA4MDAzMDQyWjAYMRYwFAYD VQQDEw02ODYzMmMzMi1iMTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1nndw6KWJ10k3a4/ren8T7HNKVr/1cUpBYf/dA3tBeIllv8lFHPRfFURF5H abO5m+fZVEPv+IDE5zbwRydUqvPxZYepyai1qvUzdRV7i4gKXR75n6Vn0x0lU0mW +F+odZjSN4n3aPFdwebkmNrmMtZaPsc78GrMauUpggGZnTggyh5TnQCSNvlt3l2S UxNb9uInVdcfj/+syuQ5CEIBbWsPx5BP/qGMCT8lzzIluvMThQX/vsqgaxxCI23e r2FYcGvWfSHhmjBEXa9OBprvuf2ngQowKi4egyLb9LnMlQaMa+In85kTeSReU6+P DL88HV9j42GSwhaKoETdRrUcuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyqUwiD NO6n9uTZRGNDeuO/gNBAMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBx8U3Of7Nmo9vTxozKiuPIoKMg6s4AhlRjXhWXtXEHQ/ccIoV9VoQ dBbtj7MzJqjnPnerOyFtOK5I0lPSQFIg+kHDNtk+Lqwv2eC2DpJBCCm036yNvM2o w/srDtXYl3LqbkjGQcEU4IIgnj7jEnj1AsmN2Dw3cTAYXos794I3Dgf13HG/UbIT aiE1pPc0/6D58qauFiOQVZSEFRSDLJTq6aweSZO3jt52Q1F3AduiEz3Y7Kdgdk8H 8Dujtx6Ow3E+IWl8sMHYfzEEoOlvy4ChxdKpWwcv9WfY/yb29We80Zb7byO8cz5H pzGY8Thcc5lH41GnPE0Z80KvauwpjhLL -----END CERTIFICATE-----Generated at Tue Jul 1 19:51:38 2025 by rpki-client