$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: kwKkqCYj6/YrYcyhw/5apoIhmw0gXZY99fsKlgxENvI= Subject key identifier: 30:62:15:01:8C:84:4F:B2:B0:EE:63:D6:94:27:6D:4F:B4:A6:2F:39 Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: 60 Signing time: Wed 02 Jul 2025 23:18:46 +0000 Manifest this update: Wed 02 Jul 2025 23:18:46 +0000 Manifest next update: Wed 09 Jul 2025 23:18:46 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: rJpPveAkfbOKG+aeF8HFXMJNkgrmmOOJyH1XynfVBRE=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: eqsW8B/nzh24Js41J8yQQdlaY75NMXqpYi5U4uiBwdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Jul 2 23:18:46 2025 GMT Not After : Jul 9 23:18:46 2025 GMT Subject: CN=6865be56-39e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6d:cd:c0:1d:b3:56:ab:de:b7:a4:51:08:e0: ca:6c:52:43:1a:14:73:2f:4b:50:3f:86:57:f0:6d: 46:17:e2:76:bf:f4:e0:e4:0d:a8:ea:d2:16:4a:05: 9f:86:dd:ef:0d:c9:90:c9:9c:f9:90:e3:cc:89:af: 94:a4:0a:ba:8d:cd:12:13:d8:30:b5:ac:e1:fb:34: 4c:f2:5e:35:2f:5c:e7:54:65:e8:eb:9a:16:86:2b: 53:2d:34:a4:d2:c1:87:fc:10:87:b4:65:51:07:d4: 56:a9:31:7a:b9:87:17:c1:49:80:16:70:ad:e0:dc: d8:f1:a2:34:08:f6:76:1b:85:35:81:07:d1:d2:99: ec:76:cc:b2:6d:7a:4d:6e:f1:20:18:82:2f:b8:31: 79:63:0c:98:a5:13:54:e1:b2:6d:cc:32:5a:29:04: a1:16:bf:c0:15:dc:e9:46:c0:87:b2:54:1b:5e:05: c5:70:da:55:b0:bb:33:24:45:1f:61:83:b9:a9:09: 75:8c:ed:85:23:e8:e2:dc:54:21:14:9c:6b:c4:2b: ab:6b:85:48:9a:41:36:f1:30:9d:8b:47:2e:20:eb: b9:62:0d:bb:0c:a9:d2:c0:8e:4d:97:cd:a8:9c:89: ea:92:f3:15:f6:2d:27:cd:b9:e4:81:9e:87:73:f2: 04:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:62:15:01:8C:84:4F:B2:B0:EE:63:D6:94:27:6D:4F:B4:A6:2F:39 X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:2d:5f:ed:f6:35:57:90:eb:e4:34:e8:f8:3a:2f:9b:f9:5e: 46:00:63:a7:30:9f:3a:0a:eb:60:53:8e:d4:62:a6:a8:07:63: 35:5c:e3:2e:79:a8:dc:ac:3a:55:4d:ba:de:e4:e2:b2:21:a5: 1e:60:0e:1c:cc:1a:c1:38:96:97:e4:b4:30:06:79:d9:27:d1: 78:c5:5f:74:e1:7d:6c:37:5e:ca:ef:6a:b5:c4:23:ea:4a:f9: 39:c0:8d:51:8c:8f:be:d1:8e:9b:7c:79:35:c0:24:cd:93:c9: 2c:6e:77:01:f2:f3:9f:40:07:4f:d8:96:ee:91:74:1c:1a:47: b2:fc:a6:4d:4f:c4:eb:ca:19:ee:2d:e2:9e:2d:5c:96:bf:1a: 73:36:95:3f:76:de:5d:e4:ab:9c:51:f0:80:35:20:6e:3c:1b: e4:02:b2:12:04:40:18:8f:f4:ce:1b:6b:93:52:43:40:d8:e4: 87:f9:b8:3f:97:78:51:ea:5c:b9:85:61:76:2a:1a:a1:ec:ed: 94:59:77:77:30:2d:6a:68:0a:27:e7:f8:fc:11:4f:99:90:35: 8c:08:13:f6:4e:0b:fd:71:9f:02:92:a1:64:72:7e:ab:b6:a1: ac:23:a1:d6:35:ca:48:5b:07:95:91:47:7f:60:65:50:8c:a7: cb:6c:dc:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0E4MjExMC8GA1UEBRMoNjg0MTNENDFGNjAwNUUwMzE2RTBFMjU3NkYyMjZDMjE4 OEFBMTU2RjAeFw0yNTA3MDIyMzE4NDZaFw0yNTA3MDkyMzE4NDZaMBgxFjAUBgNV BAMTDTY4NjViZTU2LTM5ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9bc3AHbNWq963pFEI4MpsUkMaFHMvS1A/hlfwbUYX4na/9ODkDajq0hZKBZ+G 3e8NyZDJnPmQ48yJr5SkCrqNzRIT2DC1rOH7NEzyXjUvXOdUZejrmhaGK1MtNKTS wYf8EIe0ZVEH1FapMXq5hxfBSYAWcK3g3NjxojQI9nYbhTWBB9HSmex2zLJtek1u 8SAYgi+4MXljDJilE1Thsm3MMlopBKEWv8AV3OlGwIeyVBteBcVw2lWwuzMkRR9h g7mpCXWM7YUj6OLcVCEUnGvEK6trhUiaQTbxMJ2LRy4g67liDbsMqdLAjk2Xzaic ieqS8xX2LSfNueSBnodz8gSTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMGIVAYyE T7Kw7mPWlCdtT7SmLzkwHwYDVR0jBBgwFoAUaEE9QfYAXgMW4OJXbyJsIYiqFW8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQTgyL0Y2OTlFMzU0Q0Yx MjExRUY4RjFEMjA1QkM0RjlBRTAyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZX OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYUVFOVFmWUFYZ01XNE9KWGJ5SnNJWWlxRlc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QTgyL0Y2OTlFMzU0Q0YxMjExRUY4RjFEMjA1QkM0RjlBRTAyL2FFRTlRZllBWGdN VzRPSlhieUpzSVlpcUZXOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEItX+32NVeQ6+Q06Pg6L5v5XkYAY6cwnzoK62BTjtRipqgHYzVc4y55 qNysOlVNut7k4rIhpR5gDhzMGsE4lpfktDAGedkn0XjFX3ThfWw3XsrvarXEI+pK +TnAjVGMj77Rjpt8eTXAJM2TySxudwHy859AB0/Ylu6RdBwaR7L8pk1PxOvKGe4t 4p4tXJa/GnM2lT923l3kq5xR8IA1IG48G+QCshIEQBiP9M4ba5NSQ0DY5If5uD+X eFHqXLmFYXYqGqHs7ZRZd3cwLWpoCifn+PwRT5mQNYwIE/ZOC/1xnwKSoWRyfqu2 oawjodY1ykhbB5WRR39gZVCMp8ts3LU= -----END CERTIFICATE-----Generated at Fri Jul 4 02:20:32 2025 by rpki-client