$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: YTPtrOAzLE4e0T2tE9Zr+xRbC7IaMNcYh0uBZWNFKcs= Subject key identifier: 4C:22:04:93:38:40:EF:8E:72:FD:E9:E3:17:FE:67:03:EE:B2:F0:94 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 07B2 Signing time: Fri 30 May 2025 21:25:34 +0000 Manifest this update: Fri 30 May 2025 21:25:34 +0000 Manifest next update: Fri 06 Jun 2025 21:25:34 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: ktuc9WOKks/5kwyNIaDfiuUH8J3ze5P2ek73xW2vBDc=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: IA44NsOrK26vTiCAA24OiQTy1Evi9ojQ75K61lOkBEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: May 30 21:25:34 2025 GMT Not After : Jun 6 21:25:34 2025 GMT Subject: CN=683a224e-812b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:2d:6f:3e:b3:80:65:08:92:41:e8:b2:a9: 46:06:01:fd:b6:e0:73:d3:04:cf:90:62:26:c7:85: b7:0f:39:0a:3e:d0:42:55:b5:72:38:a3:c6:9a:db: 3c:04:a7:2a:39:9d:50:30:78:1e:e9:f5:37:d1:80: 2a:9b:aa:30:7f:10:f7:bb:77:5d:f3:a1:8b:d7:de: 1c:9e:21:90:5f:83:b6:82:a1:3a:de:10:09:a0:62: f1:8b:89:e9:0d:0e:64:f6:48:53:aa:b6:1c:4f:dd: f5:73:4b:17:81:d6:68:2b:57:1d:11:0d:5a:9e:ca: c0:59:45:0a:de:6f:f9:40:8b:48:9f:2c:16:fa:18: 92:2c:37:0e:c1:bd:2c:d0:f7:45:78:2a:ac:a9:1e: db:e7:83:36:76:71:d2:84:8d:e5:35:62:01:fc:ae: 8b:de:cc:3f:4d:79:db:e4:91:34:67:69:9b:f3:bb: 6c:75:3d:c5:af:93:14:a4:fd:92:ba:f9:df:fd:92: 7e:4b:88:09:9f:f3:42:2e:a2:36:fe:4c:c4:06:2d: d3:bf:90:8f:71:84:4f:64:dc:3e:29:aa:ba:ca:18: 15:54:7f:1a:54:18:48:ca:af:83:3e:fa:22:ae:d4: da:0e:90:01:1c:a5:ae:a8:ce:ae:ae:bf:e9:30:20: a9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:22:04:93:38:40:EF:8E:72:FD:E9:E3:17:FE:67:03:EE:B2:F0:94 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e6:e2:b4:49:03:ca:e7:59:9a:e4:cf:87:aa:4f:d7:c8:1b: e5:08:12:2f:e3:55:ab:ec:16:22:57:77:75:5f:6d:00:74:9d: f3:69:53:29:56:d7:14:e9:e2:59:8a:68:c7:62:d8:fc:8b:2c: 23:ad:df:34:3a:1b:b4:95:ce:63:9c:6e:c1:cb:2b:19:a9:e1: 70:6a:d2:a1:3c:49:02:f5:29:af:17:ae:8f:c9:4d:4e:02:c8: 25:52:29:84:2c:db:2d:54:32:04:98:00:63:c2:d5:a8:d2:f4: b5:dd:1d:04:2b:4d:8e:7a:27:7e:9e:fa:61:e1:6d:79:f2:14: 6e:1a:e8:6f:31:bf:7f:c3:96:6f:a7:cd:51:51:e2:3b:55:8a: fa:7c:d5:11:e5:3d:74:7d:bb:39:86:7f:11:2f:22:fd:d1:3b: 04:be:69:60:8b:ef:8d:17:06:13:e5:6c:b7:3b:c0:98:4a:31: a8:60:31:8d:d5:e5:43:64:11:9d:a3:18:0d:53:eb:72:de:4e: 8e:37:10:82:1f:6b:4e:db:52:26:92:94:3d:07:af:11:53:c0: 0c:7d:a6:18:c9:95:d8:40:59:52:e9:6b:b4:14:24:ee:8b:c8: 86:a8:d2:eb:ad:fb:c2:74:c1:ad:f3:9c:99:7c:5d:7a:23:b1: 99:fb:20:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUwNTMwMjEyNTM0WhcNMjUwNjA2MjEyNTM0WjAYMRYwFAYD VQQDEw02ODNhMjI0ZS04MTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G4tbz6zgGUIkkHosqlGBgH9tuBz0wTPkGImx4W3DzkKPtBCVbVyOKPGmts8 BKcqOZ1QMHge6fU30YAqm6owfxD3u3dd86GL194cniGQX4O2gqE63hAJoGLxi4np DQ5k9khTqrYcT931c0sXgdZoK1cdEQ1ansrAWUUK3m/5QItInywW+hiSLDcOwb0s 0PdFeCqsqR7b54M2dnHShI3lNWIB/K6L3sw/TXnb5JE0Z2mb87tsdT3Fr5MUpP2S uvnf/ZJ+S4gJn/NCLqI2/kzEBi3Tv5CPcYRPZNw+Kaq6yhgVVH8aVBhIyq+DPvoi rtTaDpABHKWuqM6urr/pMCCpuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwiBJM4 QO+Ocv3p4xf+ZwPusvCUMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf5uK0SQPK51ma5M+Hqk/XyBvlCBIv41Wr7BYiV3d1X20AdJ3zaVMp VtcU6eJZimjHYtj8iywjrd80Ohu0lc5jnG7ByysZqeFwatKhPEkC9SmvF66PyU1O AsglUimELNstVDIEmABjwtWo0vS13R0EK02Oeid+nvph4W158hRuGuhvMb9/w5Zv p81RUeI7VYr6fNUR5T10fbs5hn8RLyL90TsEvmlgi++NFwYT5Wy3O8CYSjGoYDGN 1eVDZBGdoxgNU+ty3k6ONxCCH2tO21ImkpQ9B68RU8AMfaYYyZXYQFlS6Wu0FCTu i8iGqNLrrfvCdMGt85yZfF16I7GZ+yBl -----END CERTIFICATE-----Generated at Sat May 31 16:49:11 2025 by rpki-client