$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: 1vtBr1hKpm9ZngNa9uDJ4aAmKIdfgyhDxRBQ8LH36jM= Subject key identifier: 97:0B:07:29:48:12:62:29:44:08:B0:41:A8:1B:3B:31:5E:BB:88:5C Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0AD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0ACE Signing time: Mon 30 Jun 2025 19:35:09 +0000 Manifest this update: Mon 30 Jun 2025 19:35:09 +0000 Manifest next update: Mon 07 Jul 2025 19:35:09 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: 3z+VKYIRm2TR9W65V3B8cjNPD1anq+SMEGsDgC1sOnY=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2773 (0xad5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Jun 30 19:35:09 2025 GMT Not After : Jul 7 19:35:09 2025 GMT Subject: CN=6862e6ed-0c9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fc:52:25:fe:a2:9a:e3:3f:3d:5f:02:f8:f4: ac:bb:35:fc:ed:b7:6a:55:4a:ae:02:a0:7e:4c:95: 73:a5:59:b2:7e:95:a0:27:4a:59:25:7b:41:1a:84: d7:d2:c3:31:4c:03:27:29:a0:9c:a3:ad:cd:7d:4f: b7:98:dc:3e:72:8e:e5:3f:93:aa:8a:24:21:fb:a4: 2f:19:99:3b:f6:fc:78:50:0b:17:5f:a0:82:bd:a0: 61:10:7f:75:e6:83:65:42:7c:ab:b3:3a:28:f1:d8: 5e:60:53:b3:a6:a7:b4:48:ee:85:fe:ef:ad:ab:8d: 7e:6e:8c:01:58:73:9f:4e:f8:1f:42:bb:77:43:b7: 4f:14:d6:0e:c8:c9:07:05:c8:f0:87:6a:0d:d0:f9: 3f:5a:09:0c:7f:06:0e:12:94:47:e1:80:dd:05:08: 67:74:7a:a9:9f:f8:cc:7f:44:3b:1a:11:fb:92:19: da:63:81:88:f9:21:2a:68:4c:52:c9:7e:47:fb:e7: cb:99:74:3a:6b:c0:e3:4b:a1:8f:73:74:af:b9:d1: a7:82:67:15:0f:84:dd:8e:ce:38:e8:b5:56:c8:7b: c4:99:93:d8:1f:9f:cb:92:12:17:5e:9c:bd:b7:e4: c3:1e:c1:ae:e2:42:39:11:82:bf:0b:fc:c2:f5:d4: 4d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0B:07:29:48:12:62:29:44:08:B0:41:A8:1B:3B:31:5E:BB:88:5C X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d0:39:fa:1a:ed:80:d2:2a:3f:d9:32:4e:e8:ab:2b:c7:02: 3c:31:ec:aa:2d:2a:4f:2d:9b:16:2f:bd:a7:3a:b9:8d:5e:4f: ca:5a:ff:c8:ad:c8:ad:53:52:91:86:34:45:ce:ae:fe:93:89: cc:c9:2d:66:ba:65:9f:e6:29:bc:96:4b:b2:23:6f:61:5b:b6: d5:ef:a3:7a:6c:bb:f9:51:32:fc:1d:44:cd:b0:62:93:0a:54: 09:6d:fc:9c:f1:2d:46:6e:db:f2:53:bf:7d:96:13:61:cb:be: a2:ef:5a:52:f0:6f:a9:29:89:49:57:82:35:37:74:f4:8e:8d: 5d:85:8e:22:4f:67:99:6d:5a:d3:ae:4e:b4:2c:f9:4d:79:48: dc:21:4a:bb:f1:c6:67:04:1b:8c:76:47:92:12:97:20:22:47: 92:fd:51:6f:be:9f:5f:f4:84:c2:16:f0:4c:e9:4e:7b:cb:40: 90:c2:2f:f8:b8:77:eb:60:8f:c4:39:f2:11:56:d7:5e:ae:df: 11:b1:0b:39:01:eb:06:68:b2:4d:d7:37:98:91:9c:fc:0b:bd: a7:4f:fc:e8:17:4d:03:b0:e3:02:3f:83:3d:22:39:7c:81:1e: 24:fe:3e:3d:21:83:af:62:51:a1:45:3a:5d:6e:37:cc:ce:73: 20:62:80:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUwNjMwMTkzNTA5WhcNMjUwNzA3MTkzNTA5WjAYMRYwFAYD VQQDEw02ODYyZTZlZC0wYzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vxSJf6imuM/PV8C+PSsuzX87bdqVUquAqB+TJVzpVmyfpWgJ0pZJXtBGoTX 0sMxTAMnKaCco63NfU+3mNw+co7lP5OqiiQh+6QvGZk79vx4UAsXX6CCvaBhEH91 5oNlQnyrszoo8dheYFOzpqe0SO6F/u+tq41+bowBWHOfTvgfQrt3Q7dPFNYOyMkH Bcjwh2oN0Pk/WgkMfwYOEpRH4YDdBQhndHqpn/jMf0Q7GhH7khnaY4GI+SEqaExS yX5H++fLmXQ6a8DjS6GPc3SvudGngmcVD4Tdjs446LVWyHvEmZPYH5/LkhIXXpy9 t+TDHsGu4kI5EYK/C/zC9dRN9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcLBylI EmIpRAiwQagbOzFeu4hcMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS0Dn6Gu2A0io/2TJO6KsrxwI8MeyqLSpPLZsWL72nOrmNXk/KWv/I rcitU1KRhjRFzq7+k4nMyS1mumWf5im8lkuyI29hW7bV76N6bLv5UTL8HUTNsGKT ClQJbfyc8S1GbtvyU799lhNhy76i71pS8G+pKYlJV4I1N3T0jo1dhY4iT2eZbVrT rk60LPlNeUjcIUq78cZnBBuMdkeSEpcgIkeS/VFvvp9f9ITCFvBM6U57y0CQwi/4 uHfrYI/EOfIRVtdert8RsQs5AesGaLJN1zeYkZz8C72nT/zoF00DsOMCP4M9Ijl8 gR4k/j49IYOvYlGhRTpdbjfMznMgYoDZ -----END CERTIFICATE-----Generated at Wed Jul 2 16:35:57 2025 by rpki-client