$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: v2bLKO26mnolb/S2jJroSZKjT5yvm846J//Dc0KoiBw= Subject key identifier: 43:B2:9C:06:F5:CE:4E:46:49:2E:57:CD:48:BE:B4:DB:8F:F6:51:5A Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0674 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 0666 Signing time: Sat 28 Jun 2025 22:05:43 +0000 Manifest this update: Sat 28 Jun 2025 22:05:43 +0000 Manifest next update: Sat 05 Jul 2025 22:05:43 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: uqSSK5VYOc4zMM0lNNOOHpybg5tn4fvUDMi2aYXjThE=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Jun 28 22:05:43 2025 GMT Not After : Jul 5 22:05:43 2025 GMT Subject: CN=68606737-2e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e8:34:6a:b9:c0:f0:94:4c:9d:5b:d0:8e:f4: d2:52:63:2c:3f:36:5c:01:0c:4d:bd:16:77:a6:c8: 41:1d:17:97:24:2b:ba:9e:14:80:79:e1:5d:30:80: a5:23:2c:dc:64:ce:eb:79:d2:7c:bb:ad:c2:28:b6: ea:4d:92:4f:e2:93:b1:de:d7:1f:15:f3:e9:9a:7e: 4c:4d:2f:fd:93:14:82:fa:f9:c3:07:09:27:97:6a: 33:cb:29:10:76:34:eb:6a:c7:60:70:07:74:66:a7: 42:c7:ea:6b:fb:1f:51:77:0b:e7:47:63:00:c5:eb: 4f:a8:62:3f:2b:23:41:01:2f:a6:fc:23:6c:11:bb: ea:48:4b:50:de:cb:05:03:0d:db:82:88:fd:63:88: 27:a1:0d:90:6d:ad:e1:66:fc:89:97:c5:43:1c:65: 9b:54:3d:65:39:1c:a2:07:16:56:82:4c:1b:69:e2: f6:86:30:8f:fe:89:be:17:51:fd:be:f3:8c:b9:94: b1:0f:ef:af:29:7e:ef:5f:0d:af:51:3f:d6:3e:25: 59:64:bd:22:cd:d0:af:33:02:60:5a:6e:b7:76:ec: 18:dd:4f:0c:41:6a:48:f2:be:6f:5a:ba:e8:4f:db: 7b:2a:f0:a7:20:34:09:bc:a6:74:a8:84:0e:08:f3: 70:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B2:9C:06:F5:CE:4E:46:49:2E:57:CD:48:BE:B4:DB:8F:F6:51:5A X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:4e:de:49:9a:21:1a:54:ca:8e:cb:51:86:61:eb:b9:69:f9: aa:9d:4d:18:a3:5d:64:bb:82:2d:d9:5c:9a:96:dc:9a:88:cb: b2:37:ba:ed:90:79:97:db:58:57:a2:9b:3d:5c:90:33:e2:21: 8e:24:e0:12:ba:a5:63:0c:8d:59:e4:4f:51:80:57:ad:ce:9d: 49:06:5c:43:88:6e:57:86:3f:a7:44:32:c6:66:e4:a9:e9:fd: ea:10:00:d9:66:c3:c4:a2:9d:84:86:7a:fa:d1:19:1f:f2:88: d9:90:36:55:2d:06:ee:8b:d0:ba:e7:41:b2:cf:af:12:e7:82: fa:6a:e6:98:1b:0e:26:3a:2a:99:ed:cb:76:b6:25:a9:40:f4: 44:89:2b:38:b5:c7:57:85:0e:83:de:91:34:8e:39:27:49:6f: 2c:cf:c1:e6:68:f1:f6:2e:6b:72:d4:c2:8d:1e:2e:5d:49:d5: 8b:ed:ec:b8:0d:0d:1e:a0:33:87:ac:2b:f0:f0:95:6c:97:63: 39:59:2e:4b:8a:02:e0:3f:b7:3a:a1:d2:8d:a9:ca:3a:b8:8d: 24:c5:0d:60:b7:be:f5:87:83:2e:4d:9e:bc:ce:ed:2a:36:13: e9:9e:5d:47:64:da:2b:cc:06:a2:1b:6a:b4:7a:2a:a9:64:7b: 35:a3:cf:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUwNjI4MjIwNTQzWhcNMjUwNzA1MjIwNTQzWjAYMRYwFAYD VQQDEw02ODYwNjczNy0yZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxug0arnA8JRMnVvQjvTSUmMsPzZcAQxNvRZ3pshBHReXJCu6nhSAeeFdMICl IyzcZM7redJ8u63CKLbqTZJP4pOx3tcfFfPpmn5MTS/9kxSC+vnDBwknl2ozyykQ djTrasdgcAd0ZqdCx+pr+x9RdwvnR2MAxetPqGI/KyNBAS+m/CNsEbvqSEtQ3ssF Aw3bgoj9Y4gnoQ2Qba3hZvyJl8VDHGWbVD1lORyiBxZWgkwbaeL2hjCP/om+F1H9 vvOMuZSxD++vKX7vXw2vUT/WPiVZZL0izdCvMwJgWm63duwY3U8MQWpI8r5vWrro T9t7KvCnIDQJvKZ0qIQOCPNwewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOynAb1 zk5GSS5XzUi+tNuP9lFaMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbTt5JmiEaVMqOy1GGYeu5afmqnU0Yo11ku4It2VyaltyaiMuyN7rt kHmX21hXops9XJAz4iGOJOASuqVjDI1Z5E9RgFetzp1JBlxDiG5Xhj+nRDLGZuSp 6f3qEADZZsPEop2Ehnr60Rkf8ojZkDZVLQbui9C650Gyz68S54L6auaYGw4mOiqZ 7ct2tiWpQPREiSs4tcdXhQ6D3pE0jjknSW8sz8HmaPH2Lmty1MKNHi5dSdWL7ey4 DQ0eoDOHrCvw8JVsl2M5WS5LigLgP7c6odKNqco6uI0kxQ1gt771h4MuTZ68zu0q NhPpnl1HZNorzAaiG2q0eiqpZHs1o8+R -----END CERTIFICATE-----Generated at Sun Jun 29 17:08:15 2025 by rpki-client