$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: TJblVq2UuZ1XVn7Lh0BseCU7bIIbXjkNbSH4RZm1Oak= Subject key identifier: 67:88:56:DF:82:95:90:42:6F:09:C2:7F:F7:2D:81:54:97:41:3A:9D Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 76 Signing time: Sat 31 May 2025 06:23:16 +0000 Manifest this update: Sat 31 May 2025 06:23:15 +0000 Manifest next update: Sat 07 Jun 2025 06:23:15 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: cd9is7Jz69BxO/tIWTjuMUIN51aWUl5law+jl1X9bzw=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EDXTUfDV5y3+rKMOJtb6JOA7sYGQ4kz4K9vrUd4nHN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: May 31 06:23:15 2025 GMT Not After : Jun 7 06:23:15 2025 GMT Subject: CN=683aa053-a6cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:28:f5:99:6f:4f:93:61:a1:4a:e0:9d:21:bc: 18:9c:38:86:26:60:29:5c:d3:55:02:8b:df:e5:2a: eb:e3:8b:cc:4f:9a:42:4a:9c:b5:4c:b3:92:19:6e: 51:41:35:30:8b:d9:f2:3c:15:e5:fe:70:6c:67:04: 35:b8:b0:16:0e:cf:ed:a9:5c:34:c5:96:89:aa:84: 8d:bb:75:c3:e0:e3:41:8e:9d:a3:9c:f2:e9:28:bb: 1e:18:f1:54:04:f7:5a:8e:62:f4:a5:03:2e:d8:35: d6:09:22:1c:ae:d3:6e:ab:af:45:0c:1d:60:91:b8: a7:fd:07:5d:18:ae:df:a3:51:8b:eb:52:bf:e4:e9: c2:18:45:84:b2:05:a2:7d:ff:73:22:6b:44:e9:7f: e9:a8:37:f7:4b:36:e8:8f:3f:37:4e:7e:10:8e:ef: 1e:68:79:25:5b:07:44:16:0d:29:ef:e8:ad:f7:12: 83:bb:84:bf:f6:23:19:c1:8b:10:b4:62:12:4e:69: 83:36:2c:bb:64:e8:02:be:2e:68:48:39:fc:8f:df: d3:9f:b9:5f:49:97:b9:80:76:5e:ab:c2:f0:38:c3: c7:5c:db:55:cc:81:38:6e:1a:a5:ed:68:f4:7a:c1: ba:f8:81:d1:60:6f:d4:70:7d:03:42:e5:5f:f3:7e: 22:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:88:56:DF:82:95:90:42:6F:09:C2:7F:F7:2D:81:54:97:41:3A:9D X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:19:64:2d:eb:d6:27:39:fa:ce:e8:d4:42:5f:6e:e1:14:a9: 45:d9:ff:e6:20:2f:4a:3d:b1:e1:60:87:4d:7a:2e:87:9b:d9: 54:23:26:e9:a3:7d:3d:9f:35:33:6e:69:13:82:87:ed:e8:a0: a8:06:e4:53:02:ea:f5:92:47:37:8d:2b:c4:ab:52:66:28:b8: bc:02:f3:f0:cb:e8:76:cb:9d:d3:e0:59:b8:93:54:eb:ee:b1: d1:52:dc:fd:35:82:f8:7d:eb:e6:05:75:03:f2:7f:e1:0e:6e: 20:26:3e:f0:99:87:d6:8b:56:bb:d5:ef:33:95:b2:1a:a6:65: 63:dc:00:8e:41:1f:ba:92:d8:b7:02:9e:6e:ee:c9:13:fd:1a: 6f:46:91:c9:22:81:73:e4:49:34:f1:ac:b8:3b:57:64:bb:95: 82:66:17:ec:6c:2c:68:dd:24:c1:7b:c2:b6:f8:d6:11:89:79: 08:8b:40:ef:ef:93:3a:6a:a7:e4:14:14:70:d0:c7:73:71:47: 78:98:6b:c1:1f:2e:e5:6d:81:03:6a:67:86:2e:2e:f5:c1:1a: 4a:a1:dc:01:98:52:60:b2:27:17:63:69:c5:e9:f7:bf:c7:47: b1:b7:54:7a:ea:d4:8e:e0:ba:c8:d2:8e:5f:9c:4b:83:dc:da: bd:f1:60:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QURBRjExMC8GA1UEBRMoNjhDMkI1ODhEMTY4NUE1ODc0MkQ4QTJFMTg4ODY1REIz MTEwM0NGNzAeFw0yNTA1MzEwNjIzMTVaFw0yNTA2MDcwNjIzMTVaMBgxFjAUBgNV BAMTDTY4M2FhMDUzLWE2Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuKPWZb0+TYaFK4J0hvBicOIYmYClc01UCi9/lKuvji8xPmkJKnLVMs5IZblFB NTCL2fI8FeX+cGxnBDW4sBYOz+2pXDTFlomqhI27dcPg40GOnaOc8ukoux4Y8VQE 91qOYvSlAy7YNdYJIhyu026rr0UMHWCRuKf9B10Yrt+jUYvrUr/k6cIYRYSyBaJ9 /3Mia0Tpf+moN/dLNuiPPzdOfhCO7x5oeSVbB0QWDSnv6K33EoO7hL/2IxnBixC0 YhJOaYM2LLtk6AK+LmhIOfyP39OfuV9Jl7mAdl6rwvA4w8dc21XMgThuGqXtaPR6 wbr4gdFgb9RwfQNC5V/zfiJTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ4hW34KV kEJvCcJ/9y2BVJdBOp0wHwYDVR0jBBgwFoAUaMK1iNFoWlh0LYouGIhl2zEQPPcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBREFGLzg3MTU5Qzk2OENG MzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU1LMWlORm9XbGgwTFlvdUdJaGwyekVRUFBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB REFGLzg3MTU5Qzk2OENGMzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xo MExZb3VHSWhsMnpFUVBQYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFUZZC3r1ic5+s7o1EJfbuEUqUXZ/+YgL0o9seFgh016Loeb2VQjJumj fT2fNTNuaROCh+3ooKgG5FMC6vWSRzeNK8SrUmYouLwC8/DL6HbLndPgWbiTVOvu sdFS3P01gvh96+YFdQPyf+EObiAmPvCZh9aLVrvV7zOVshqmZWPcAI5BH7qS2LcC nm7uyRP9Gm9GkckigXPkSTTxrLg7V2S7lYJmF+xsLGjdJMF7wrb41hGJeQiLQO/v kzpqp+QUFHDQx3NxR3iYa8EfLuVtgQNqZ4YuLvXBGkqh3AGYUmCyJxdjacXp97/H R7G3VHrq1I7gusjSjl+cS4Pc2r3xYPI= -----END CERTIFICATE-----Generated at Sat May 31 16:46:57 2025 by rpki-client