$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft File: aj72cYLbsPbM88pBN4wBGYBq6b0.mft (raw, json) Hash identifier: QM0hGRDnfBl5Uf+1DXuPWWevzi/bI9q0Gm7RChOI9t8= Subject key identifier: 85:9E:A3:E3:96:7A:3A:EB:42:C0:C9:A9:3E:A5:5C:32:90:65:A1:BC Authority key identifier: 6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD Certificate issuer: /CN=A91A0A2E/serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft Manifest number: 39 Signing time: Sat 31 May 2025 07:07:14 +0000 Manifest this update: Sat 31 May 2025 07:07:14 +0000 Manifest next update: Sat 07 Jun 2025 07:07:14 +0000 Files and hashes: 1: aj72cYLbsPbM88pBN4wBGYBq6b0.crl (hash: comslPMKPk1JqM2VPNSEzuHJYZALP5lRcEXYtMe//GE=) 2: FDE6938CE90C11EFB9D98326C4F9AE02.roa (hash: EQY90pkMKZS20T7XhciTL191HbTMnbpWtQHaja8QyGI=) 3: F449A3FCE9C811EF9972A934C4F9AE02.roa (hash: 7MwfNHRXASMEn22ZfT4zj9oG/ZQKY9GDP1pjifjdSXI=) 4: FD63D5BEE90C11EFB9D98326C4F9AE02.roa (hash: XHfUu+5yh0x5y1fbUjOYEtUpMyJC2J2Z1oZf8nnZcak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A2E, serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Validity Not Before: May 31 07:07:14 2025 GMT Not After : Jun 7 07:07:14 2025 GMT Subject: CN=683aaaa2-f46d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:03:59:98:fc:19:a0:3d:59:fb:58:66:ea:66: 1c:59:2d:0c:4e:12:c7:cd:e4:56:2c:ca:d7:3a:ba: 4c:08:86:d4:53:b7:6c:83:4d:ed:72:1c:33:36:59: 19:a7:d6:f5:e1:44:f9:09:da:17:b5:0d:c3:d7:0c: 02:9c:10:54:64:5e:68:62:77:50:fb:a2:ae:e9:53: e8:04:a8:fc:eb:5b:6d:bb:a2:1c:2c:27:bb:0f:38: 61:20:7f:8e:92:bb:af:7e:73:0d:78:77:b6:87:53: 81:d0:9e:7f:a2:c8:05:be:6a:e5:bb:1e:7d:1c:21: 95:ae:6c:8e:63:c1:ec:6f:72:c2:5f:a6:9f:00:39: 33:69:ec:be:06:64:1f:11:52:ff:6d:0e:e5:bb:53: af:20:6a:c3:45:d0:9e:06:09:2f:0c:00:59:76:f1: 85:8d:04:f4:89:0b:b9:67:15:37:2b:05:c0:e0:41: bc:53:82:44:d2:b3:4a:69:60:ad:47:4b:e7:9a:de: ee:8b:c6:22:05:69:04:01:de:11:1b:74:9c:13:21: 5d:b8:d3:af:fe:d5:f7:63:0b:0e:25:55:8d:cb:63: 4e:c2:6f:b8:c6:30:58:f5:2e:ff:ca:25:6d:6a:d2: bd:9b:a1:99:ae:81:c9:1e:a1:3a:9a:ed:15:90:d4: 1c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9E:A3:E3:96:7A:3A:EB:42:C0:C9:A9:3E:A5:5C:32:90:65:A1:BC X509v3 Authority Key Identifier: keyid:6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:83:50:2b:a6:08:3e:3d:e8:ef:02:be:fc:2b:1e:6b:72:b8: 4a:3e:4c:4c:7c:a6:2d:dd:42:bc:f8:c6:7f:5c:c8:7b:61:9a: ba:4f:ce:87:14:77:17:3e:82:d2:f1:3e:58:0e:b3:0e:6e:86: e4:c5:38:42:09:bc:64:1b:10:0b:6f:95:e6:5d:fb:9c:e4:89: 27:7e:0a:51:29:d3:87:29:e1:58:85:17:ba:80:c3:b5:03:11: 73:fe:9e:4e:3c:00:23:3d:b8:8b:c3:e9:82:89:02:9c:1c:2d: 0b:1d:a4:b6:5c:17:f9:48:97:34:1f:3e:70:af:55:6a:a7:34: 31:fa:47:af:9b:f4:87:06:58:55:77:4a:24:fc:bc:23:7d:7a: 94:c5:e5:97:da:d2:5e:56:0a:fd:f3:29:5e:d2:bf:12:2e:2b: 6e:a8:5c:0e:24:67:0e:64:67:19:10:9e:1d:54:11:d7:93:d4: df:2e:43:c7:63:e8:21:c1:83:f5:39:45:d2:bd:15:76:c2:dc: ef:ac:0d:ab:6c:c6:28:7f:0e:bb:00:c5:4a:30:b2:81:30:47: 51:05:43:e5:4d:20:f6:92:4f:fd:84:34:25:d4:70:45:b7:5c: 3f:32:b8:bb:51:71:4c:bd:2d:5d:5b:b5:b2:af:72:df:50:45: 51:b5:a8:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEEyRTExMC8GA1UEBRMoNkEzRUY2NzE4MkRCQjBGNkNDRjNDQTQxMzc4QzAxMTk4 MDZBRTlCRDAeFw0yNTA1MzEwNzA3MTRaFw0yNTA2MDcwNzA3MTRaMBgxFjAUBgNV BAMTDTY4M2FhYWEyLWY0NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUA1mY/BmgPVn7WGbqZhxZLQxOEsfN5FYsytc6ukwIhtRTt2yDTe1yHDM2WRmn 1vXhRPkJ2he1DcPXDAKcEFRkXmhid1D7oq7pU+gEqPzrW227ohwsJ7sPOGEgf46S u69+cw14d7aHU4HQnn+iyAW+auW7Hn0cIZWubI5jwexvcsJfpp8AOTNp7L4GZB8R Uv9tDuW7U68gasNF0J4GCS8MAFl28YWNBPSJC7lnFTcrBcDgQbxTgkTSs0ppYK1H S+ea3u6LxiIFaQQB3hEbdJwTIV2406/+1fdjCw4lVY3LY07Cb7jGMFj1Lv/KJW1q 0r2boZmugckeoTqa7RWQ1BxDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhZ6j45Z6 OutCwMmpPqVcMpBlobwwHwYDVR0jBBgwFoAUaj72cYLbsPbM88pBN4wBGYBq6b0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwQTJFL0M4MzZDN0IyRTkw QjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1BiTTg4cEJONHdCR1lCcTZi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWo3MmNZTGJzUGJNODhwQk40d0JHWUJxNmIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw QTJFL0M4MzZDN0IyRTkwQjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1Bi TTg4cEJONHdCR1lCcTZiMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAyDUCumCD496O8CvvwrHmtyuEo+TEx8pi3dQrz4xn9cyHthmrpPzocU dxc+gtLxPlgOsw5uhuTFOEIJvGQbEAtvleZd+5zkiSd+ClEp04cp4ViFF7qAw7UD EXP+nk48ACM9uIvD6YKJApwcLQsdpLZcF/lIlzQfPnCvVWqnNDH6R6+b9IcGWFV3 SiT8vCN9epTF5Zfa0l5WCv3zKV7SvxIuK26oXA4kZw5kZxkQnh1UEdeT1N8uQ8dj 6CHBg/U5RdK9FXbC3O+sDatsxih/DrsAxUowsoEwR1EFQ+VNIPaST/2ENCXUcEW3 XD8yuLtRcUy9LV1btbKvct9QRVG1qHU= -----END CERTIFICATE-----Generated at Sat May 31 16:36:55 2025 by rpki-client