$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: CoDU1zQuqRmqYR1o9yHePoKE1nzNW9xQTfiCbiNZK+4= Subject key identifier: 55:41:E2:BE:CE:B3:46:1B:2F:12:57:FC:FE:0C:C3:54:01:E0:48:53 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 0596 Signing time: Mon 02 Jun 2025 23:27:31 +0000 Manifest this update: Mon 02 Jun 2025 23:27:30 +0000 Manifest next update: Mon 09 Jun 2025 23:27:30 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: H7QSKeN7z4Mtiz2//857GppSGSxKqhBRcd0w+Sp5or8=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1447 (0x5a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Jun 2 23:27:30 2025 GMT Not After : Jun 9 23:27:30 2025 GMT Subject: CN=683e3363-aab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:25:e1:b8:0e:d5:09:27:5f:d8:eb:c2:45:8b: 0f:00:ce:c0:36:85:23:6b:58:e3:f3:5d:fe:54:63: 39:2f:e1:c7:35:ff:9b:05:77:c1:52:6f:e6:45:d1: c4:87:93:55:c6:98:a1:ef:1e:9c:21:8e:07:2a:84: 69:80:24:9a:b5:bb:15:e0:76:a0:29:a4:0c:71:34: 5c:e3:0e:7c:e9:dd:b1:33:82:82:87:91:33:26:f7: 3f:2c:2c:c5:e7:eb:a1:fe:b5:65:b0:97:d0:03:f7: 7b:ae:11:a4:f1:34:24:e3:de:38:44:7e:76:47:9c: e2:17:91:22:fb:59:38:b0:17:28:36:6c:80:a6:12: 38:e0:b9:04:70:d1:48:d6:7b:f1:9d:14:41:ba:d8: 1c:50:be:63:6a:94:be:35:27:a3:73:d1:58:87:89: cf:bf:1b:e6:30:9c:b3:27:43:27:7d:79:a5:82:11: ba:7b:9c:56:87:a2:df:45:21:f9:cb:a8:95:b7:f0: ea:4a:46:2e:6f:77:f8:5f:4a:ca:64:4c:03:b9:33: 33:2d:5b:c6:49:87:4e:cf:f8:c5:02:9d:32:96:cb: 5f:47:35:92:71:26:06:57:e3:c8:83:b7:df:e4:40: 3e:27:32:43:79:b9:18:09:63:a8:ba:2e:9b:dc:64: 33:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:41:E2:BE:CE:B3:46:1B:2F:12:57:FC:FE:0C:C3:54:01:E0:48:53 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:1b:6f:49:d4:bb:2d:e7:be:8e:79:6b:da:7f:6f:75:73:a0: b9:26:ee:95:d7:5f:ba:4f:f6:aa:c4:89:df:df:59:d4:48:a5: 9e:91:c6:0b:0a:e6:b2:7d:6c:45:fc:e4:fa:85:17:05:5e:fc: 6c:b6:db:16:30:44:b3:fa:a4:99:dd:69:f7:08:77:61:ad:7d: 78:cd:40:69:80:16:68:33:96:82:de:ec:17:49:dd:75:86:6c: d9:a0:b4:8e:44:6f:fc:d4:7c:01:c2:17:43:52:43:72:ed:77: e8:7b:c2:6e:53:d5:e3:83:39:22:72:61:ca:30:a0:da:21:3d: 47:bd:f8:11:93:18:f9:d7:9c:f7:81:29:9a:96:78:94:d9:82: 22:6f:a5:8a:54:6a:49:db:bd:b1:d7:24:81:15:79:ba:ef:c3: 2c:96:50:1b:4b:1a:9d:36:5d:fa:11:44:15:c5:75:1a:d3:0c: 24:c0:12:11:46:aa:a1:96:b8:50:74:18:5d:47:d9:82:e9:85: 8d:99:af:9b:75:c6:86:ac:51:99:aa:0c:c3:00:35:eb:87:c1: c8:85:1e:b5:18:1e:45:a8:ce:b6:63:36:f1:90:20:3a:97:32: 00:13:3e:35:44:35:5a:43:60:e6:67:81:9e:3d:4a:42:3e:0e: 77:60:12:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwNjAyMjMyNzMwWhcNMjUwNjA5MjMyNzMwWjAYMRYwFAYD VQQDEw02ODNlMzM2My1hYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCXhuA7VCSdf2OvCRYsPAM7ANoUja1jj813+VGM5L+HHNf+bBXfBUm/mRdHE h5NVxpih7x6cIY4HKoRpgCSatbsV4HagKaQMcTRc4w586d2xM4KCh5EzJvc/LCzF 5+uh/rVlsJfQA/d7rhGk8TQk4944RH52R5ziF5Ei+1k4sBcoNmyAphI44LkEcNFI 1nvxnRRButgcUL5japS+NSejc9FYh4nPvxvmMJyzJ0MnfXmlghG6e5xWh6LfRSH5 y6iVt/DqSkYub3f4X0rKZEwDuTMzLVvGSYdOz/jFAp0ylstfRzWScSYGV+PIg7ff 5EA+JzJDebkYCWOoui6b3GQzCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVB4r7O s0YbLxJX/P4Mw1QB4EhTMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcG29J1Lst576OeWvaf291c6C5Ju6V11+6T/aqxInf31nUSKWekcYL CuayfWxF/OT6hRcFXvxsttsWMESz+qSZ3Wn3CHdhrX14zUBpgBZoM5aC3uwXSd11 hmzZoLSORG/81HwBwhdDUkNy7Xfoe8JuU9XjgzkicmHKMKDaIT1HvfgRkxj515z3 gSmalniU2YIib6WKVGpJ272x1ySBFXm678MsllAbSxqdNl36EUQVxXUa0wwkwBIR RqqhlrhQdBhdR9mC6YWNma+bdcaGrFGZqgzDADXrh8HIhR61GB5FqM62YzbxkCA6 lzIAEz41RDVaQ2DmZ4GePUpCPg53YBK6 -----END CERTIFICATE-----Generated at Tue Jun 3 23:27:44 2025 by rpki-client