$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: NVAMbCJPcdk6m8IY295Bt4g9Uxr9+LAvKK3H8/TebNs= Subject key identifier: E0:4E:FF:FE:02:A3:46:D4:BF:DD:1E:70:DF:60:A3:A9:78:DD:01:61 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1308 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 12F8 Signing time: Fri 30 May 2025 17:14:22 +0000 Manifest this update: Fri 30 May 2025 17:14:22 +0000 Manifest next update: Fri 06 Jun 2025 17:14:22 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: k/Zi1fuNtEh7YH5bKMTdFI2fnU5Ug/fvA0tv7I7uv8I=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4872 (0x1308) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: May 30 17:14:22 2025 GMT Not After : Jun 6 17:14:22 2025 GMT Subject: CN=6839e76e-3efc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:f3:45:45:b8:c0:f2:0b:fd:0f:c6:13:d1: 81:c5:d2:45:66:5f:79:fc:c4:cd:2d:d9:a2:d2:70: 60:57:cd:81:38:de:cc:78:ef:53:2e:af:a8:79:83: 13:eb:64:cd:38:5e:2f:04:3c:cf:1a:a4:ee:1b:96: 5d:bc:86:ab:82:1d:76:4e:ca:9e:60:c6:0f:12:f7: b8:29:d1:b3:ca:4d:c8:08:37:2d:60:a0:2f:50:30: b0:a1:cf:8b:5f:55:2a:ae:c2:6b:dd:55:96:68:79: 3d:70:f2:9f:4d:b8:53:53:11:99:64:93:07:7b:10: 85:74:49:47:2b:1c:8a:04:7b:13:7a:66:c3:5d:7b: 23:7a:3b:1f:d1:05:af:9d:7c:d9:fd:7f:3d:a0:c9: 5c:42:8d:ca:ca:ac:13:94:05:a0:46:b6:09:25:0e: bd:95:7e:f4:56:e1:d0:29:dc:a9:83:25:eb:90:69: 7a:85:83:40:5d:e0:77:a1:76:0b:6e:82:c2:90:85: 5e:83:19:8b:08:82:00:a2:c0:3e:fc:ad:0d:55:85: c6:e4:71:84:32:df:16:f9:21:0e:2b:a4:07:1a:7d: 6d:60:d0:ac:c1:76:56:84:e6:8e:48:ce:06:0d:f9: 3e:31:e5:31:00:6a:f2:4e:1e:4c:d2:ab:0d:f0:7a: 23:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4E:FF:FE:02:A3:46:D4:BF:DD:1E:70:DF:60:A3:A9:78:DD:01:61 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:1f:0f:f0:24:1b:a0:87:da:da:7e:56:de:a4:3b:b9:1b:b1: f3:29:56:7f:d5:88:cd:e2:72:07:d7:f4:ff:a0:f9:93:c1:a9: b5:c0:5e:97:59:9c:4a:b6:2a:e1:04:f1:7a:e3:32:2a:ca:a7: eb:0a:85:03:e6:bd:97:2e:b9:29:76:84:b8:98:29:bc:e2:0d: f2:10:97:e8:a9:4e:38:8d:c9:41:83:47:3a:67:c2:25:42:ed: c6:a7:1f:7f:b3:c4:07:ef:48:79:d9:48:3b:4b:61:c4:96:c9: a5:06:37:6a:ca:2f:56:d0:92:4e:fd:82:c8:7f:35:3f:13:5a: 1b:de:59:2a:c0:9b:bf:0d:03:28:1a:85:96:69:b0:83:c4:c9: 05:c4:0a:34:72:b4:e2:cc:34:c6:66:88:c8:e6:62:43:dc:01: aa:8a:46:a8:f2:90:a9:4f:82:e1:b9:19:2d:29:19:b4:ae:bd: 37:ea:5b:25:88:f8:e5:8c:d3:4f:a5:92:6c:58:b6:dd:63:1d: 3a:f8:6c:49:39:89:4d:64:62:20:79:31:8c:6f:91:f0:7b:2c: 53:14:20:0b:3a:7e:e6:9b:e6:99:76:df:50:c2:5b:c0:36:57: 52:60:99:1c:4f:3e:27:fa:df:59:27:bf:82:0a:6c:02:27:2c: 9f:d6:9d:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwNTMwMTcxNDIyWhcNMjUwNjA2MTcxNDIyWjAYMRYwFAYD VQQDEw02ODM5ZTc2ZS0zZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdrzRUW4wPIL/Q/GE9GBxdJFZl95/MTNLdmi0nBgV82BON7MeO9TLq+oeYMT 62TNOF4vBDzPGqTuG5ZdvIargh12TsqeYMYPEve4KdGzyk3ICDctYKAvUDCwoc+L X1UqrsJr3VWWaHk9cPKfTbhTUxGZZJMHexCFdElHKxyKBHsTembDXXsjejsf0QWv nXzZ/X89oMlcQo3KyqwTlAWgRrYJJQ69lX70VuHQKdypgyXrkGl6hYNAXeB3oXYL boLCkIVegxmLCIIAosA+/K0NVYXG5HGEMt8W+SEOK6QHGn1tYNCswXZWhOaOSM4G Dfk+MeUxAGryTh5M0qsN8HojNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBO//4C o0bUv90ecN9go6l43QFhMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5Hw/wJBugh9raflbepDu5G7HzKVZ/1YjN4nIH1/T/oPmTwam1wF6X WZxKtirhBPF64zIqyqfrCoUD5r2XLrkpdoS4mCm84g3yEJfoqU44jclBg0c6Z8Il Qu3Gpx9/s8QH70h52Ug7S2HElsmlBjdqyi9W0JJO/YLIfzU/E1ob3lkqwJu/DQMo GoWWabCDxMkFxAo0crTizDTGZojI5mJD3AGqikao8pCpT4LhuRktKRm0rr036lsl iPjljNNPpZJsWLbdYx06+GxJOYlNZGIgeTGMb5HweyxTFCALOn7mm+aZdt9QwlvA NldSYJkcTz4n+t9ZJ7+CCmwCJyyf1p0t -----END CERTIFICATE-----Generated at Sat May 31 16:52:09 2025 by rpki-client