$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: qLbrajOJnw3MJPRnkt1KUl/R7Dw6gx97BnXe4E1liNU= Subject key identifier: CA:C3:5E:AF:06:7E:02:8D:0C:AD:6F:3B:64:53:68:A3:B9:31:FB:AA Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: E3 Signing time: Tue 01 Jul 2025 05:58:51 +0000 Manifest this update: Tue 01 Jul 2025 05:58:51 +0000 Manifest next update: Tue 08 Jul 2025 05:58:51 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: bJgiaxC46LCi9f92K7UcOvG5hImhY3Mar3L1/rNiV6g=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: 8wMwW5uNjWkG/EYhzvD28CGT7P5U8FJODoDJkkfTgvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: Jul 1 05:58:51 2025 GMT Not After : Jul 8 05:58:51 2025 GMT Subject: CN=6863791b-1dec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ee:29:f3:d8:5f:94:95:ae:bc:9a:5f:57:51: 52:95:91:19:f8:89:b0:5f:22:86:45:2d:89:44:84: 92:9d:da:ed:29:a3:b1:20:29:89:fa:d1:08:29:32: e4:9a:51:93:69:61:26:93:72:60:91:9f:59:da:ad: 99:e1:a9:87:63:5f:60:33:6f:4f:4a:15:2e:c2:0a: ab:45:02:35:e7:47:5d:d5:50:61:dd:04:c8:96:25: f5:7c:71:0f:54:ed:aa:15:8a:71:22:5a:54:76:7a: 94:e9:72:ac:ee:4a:08:78:82:75:8c:b2:3a:0b:13: b7:38:69:bc:e1:9c:85:d8:91:e0:f1:69:e7:33:ce: 4a:f8:d2:56:e3:23:34:ab:2e:34:28:77:cd:d1:85: fd:6c:58:e0:9c:59:90:c9:7e:20:64:b1:ce:cd:70: 66:bf:b4:28:c4:f4:aa:46:0d:d1:a1:23:d7:62:51: 50:14:33:65:44:c0:ca:27:17:cf:5a:33:59:71:71: 48:1e:d1:7c:2b:ba:9a:30:18:6e:4a:7b:4c:6a:90: e3:e6:88:7a:59:db:5f:aa:0e:b9:e2:ce:91:ed:2b: 84:54:ab:22:20:ed:fa:0a:0d:d9:1a:7b:ca:cb:27: 5b:2e:c0:4e:ce:ae:1b:ba:13:02:4c:bc:a9:b7:a8: 5a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C3:5E:AF:06:7E:02:8D:0C:AD:6F:3B:64:53:68:A3:B9:31:FB:AA X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:af:50:20:77:97:f3:42:81:e9:a1:fa:5a:31:89:8f:c5:a1: ed:2b:1e:5e:c2:e3:66:85:86:20:a4:7b:d7:e1:d2:c4:b7:80: e1:79:25:de:91:49:ab:e6:84:27:f9:17:87:46:50:aa:4d:89: fe:a7:77:1a:19:2a:4b:87:1f:ae:46:37:ac:0d:7f:76:5d:ef: b4:4a:98:8f:bc:dd:20:ef:ca:fb:d2:7b:90:3a:96:bd:bf:6e: 57:c4:42:53:2e:ce:e8:f9:9b:44:f3:3d:5c:ff:c4:56:37:90: 11:83:c6:f4:cb:9b:c3:7c:ab:ee:35:10:7d:5d:df:25:8e:34: 97:af:14:94:30:a8:d3:e8:a3:5c:a2:72:49:2d:c1:5c:52:a6: 31:0a:40:64:4f:0b:6f:da:fa:66:c8:1f:fa:a4:f2:66:97:8c: 81:b7:86:32:20:64:f8:db:10:04:d1:fc:20:51:6b:17:ab:b1: f0:d5:96:7c:5b:38:79:f7:58:6d:8d:63:69:31:aa:3c:cc:c8: fc:d0:b8:20:73:98:34:82:67:f6:47:92:b0:f5:ae:74:d3:8f: 91:54:ba:26:4d:b8:ef:3b:cf:94:6d:9d:cd:ee:dc:18:64:59: ca:a5:a5:60:56:e0:99:9c:83:83:82:aa:f5:2a:55:59:80:03: 05:a7:9c:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjUwNzAxMDU1ODUxWhcNMjUwNzA4MDU1ODUxWjAYMRYwFAYD VQQDEw02ODYzNzkxYi0xZGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuu4p89hflJWuvJpfV1FSlZEZ+ImwXyKGRS2JRISSndrtKaOxICmJ+tEIKTLk mlGTaWEmk3JgkZ9Z2q2Z4amHY19gM29PShUuwgqrRQI150dd1VBh3QTIliX1fHEP VO2qFYpxIlpUdnqU6XKs7koIeIJ1jLI6CxO3OGm84ZyF2JHg8WnnM85K+NJW4yM0 qy40KHfN0YX9bFjgnFmQyX4gZLHOzXBmv7QoxPSqRg3RoSPXYlFQFDNlRMDKJxfP WjNZcXFIHtF8K7qaMBhuSntMapDj5oh6Wdtfqg654s6R7SuEVKsiIO36Cg3ZGnvK yydbLsBOzq4buhMCTLypt6hafwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrDXq8G fgKNDK1vO2RTaKO5MfuqMB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjBEOC8wN0FBQkNEQUZCMTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFt MDRzUkJRWjVjMDlFLWwyWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+r1Agd5fzQoHpofpaMYmPxaHtKx5ewuNmhYYgpHvX4dLEt4DheSXe kUmr5oQn+ReHRlCqTYn+p3caGSpLhx+uRjesDX92Xe+0SpiPvN0g78r70nuQOpa9 v25XxEJTLs7o+ZtE8z1c/8RWN5ARg8b0y5vDfKvuNRB9Xd8ljjSXrxSUMKjT6KNc onJJLcFcUqYxCkBkTwtv2vpmyB/6pPJml4yBt4YyIGT42xAE0fwgUWsXq7Hw1ZZ8 Wzh591htjWNpMao8zMj80Lggc5g0gmf2R5Kw9a5004+RVLomTbjvO8+UbZ3N7twY ZFnKpaVgVuCZnIODgqr1KlVZgAMFp5wr -----END CERTIFICATE-----Generated at Tue Jul 1 22:43:23 2025 by rpki-client