$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: GCJB44z2I15F+aB+Bw7axzmE23oZ0scUIn/v2bFPU9E= Subject key identifier: E5:1B:DA:36:63:AE:06:BD:15:B3:81:A4:00:BF:4F:3D:93:9E:3F:70 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 07DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 07C4 Signing time: Sat 28 Jun 2025 20:55:49 +0000 Manifest this update: Sat 28 Jun 2025 20:55:48 +0000 Manifest next update: Sat 05 Jul 2025 20:55:48 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: GORHIcsu3I6mr8KlhD+ipMofjQL6o4N9Ntst9eH61Uo=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2011 (0x7db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Jun 28 20:55:48 2025 GMT Not After : Jul 5 20:55:48 2025 GMT Subject: CN=686056d5-5f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:84:d1:81:68:b0:7e:9c:a6:d2:85:10:0b:02: 4e:ea:32:23:82:f7:f9:c6:9f:77:8e:bd:fc:ce:f6: a9:c6:45:0b:c6:77:81:6c:d7:ad:04:e3:4b:25:8e: 59:cf:14:82:ab:7e:68:1c:e5:68:20:b2:c8:ac:2b: 7e:ab:a5:48:71:6d:5f:fb:f1:ee:28:14:7f:47:04: 85:57:7e:14:89:11:57:c2:eb:47:42:f7:3c:1a:a0: 83:1d:46:6b:e8:1b:5a:f5:ca:aa:a1:6d:e0:9b:8d: 74:e4:78:08:a1:ec:2b:b5:fd:d4:9b:b7:a2:06:ee: 54:39:1e:ee:cf:34:e0:1e:18:95:b1:c4:68:98:c1: 1a:47:d1:4d:92:9c:62:45:a6:ae:09:95:b2:16:ab: 3e:d2:8c:a4:86:dc:37:83:63:da:9a:9c:c9:fb:b9: e6:6f:89:75:c8:01:74:f9:a9:a7:75:3d:78:ef:de: e4:30:4b:26:66:1e:2b:d8:a0:25:93:2c:22:7a:25: 43:f8:c8:b8:36:94:ce:36:fc:ad:75:d0:fc:f5:aa: 2d:d7:f3:a3:0c:4d:0c:3e:3f:23:fd:ae:b9:07:e9: ea:49:44:57:a2:14:2f:70:89:33:b9:a1:eb:e7:25: d8:f2:a5:5a:d7:ef:f2:44:92:fb:d7:e0:0b:f1:e5: 32:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1B:DA:36:63:AE:06:BD:15:B3:81:A4:00:BF:4F:3D:93:9E:3F:70 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:ce:a9:97:a1:9e:fb:ad:c9:94:6f:ef:b0:41:ac:21:4b:45: 9f:f6:d7:08:24:6d:c4:53:1d:2b:ab:37:92:9a:89:fb:38:51: 3b:2b:c1:9d:df:7a:79:13:13:83:4e:be:ad:fb:17:c8:00:f7: f3:4b:0a:85:f1:1f:76:95:cb:15:a7:e6:f2:35:0d:7b:f5:4a: 6d:4f:bd:76:5a:25:93:f4:d4:b4:58:c9:d2:a5:0a:4b:57:52: da:66:89:e2:7a:fb:53:ec:96:43:06:39:b0:88:de:26:16:2a: cb:87:2b:b2:14:c2:34:c3:4a:ce:8d:02:68:9b:e4:db:ed:7c: 6f:fd:57:d8:cb:0b:48:b6:7d:a1:67:71:99:f0:df:8b:60:e9: 3d:37:3c:95:33:ac:1a:23:81:2a:18:b1:35:61:dd:cd:a2:f9: 54:1c:6d:4d:1f:da:50:2f:b1:cc:99:05:4e:a8:a8:9f:e2:44: 06:ab:13:a4:e1:77:4f:8b:95:ff:66:f6:4b:63:3d:02:2c:6e: 37:50:27:14:ae:50:2e:b0:2d:25:ae:c2:56:d5:e2:57:dc:61: 5c:83:40:e3:a1:2c:17:38:df:a1:fa:af:9b:5d:5a:0c:a4:09: 82:41:69:38:3b:f1:1f:b8:f1:b7:b7:d8:6c:af:07:ec:f6:64: b4:46:93:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUwNjI4MjA1NTQ4WhcNMjUwNzA1MjA1NTQ4WjAYMRYwFAYD VQQDEw02ODYwNTZkNS01ZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4TRgWiwfpym0oUQCwJO6jIjgvf5xp93jr38zvapxkULxneBbNetBONLJY5Z zxSCq35oHOVoILLIrCt+q6VIcW1f+/HuKBR/RwSFV34UiRFXwutHQvc8GqCDHUZr 6Bta9cqqoW3gm4105HgIoewrtf3Um7eiBu5UOR7uzzTgHhiVscRomMEaR9FNkpxi RaauCZWyFqs+0oykhtw3g2PampzJ+7nmb4l1yAF0+amndT14797kMEsmZh4r2KAl kywieiVD+Mi4NpTONvytddD89aot1/OjDE0MPj8j/a65B+nqSURXohQvcIkzuaHr 5yXY8qVa1+/yRJL71+AL8eUySwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUb2jZj rga9FbOBpAC/Tz2Tnj9wMB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxzqmXoZ77rcmUb++wQawhS0Wf9tcIJG3EUx0rqzeSmon7OFE7K8Gd 33p5ExODTr6t+xfIAPfzSwqF8R92lcsVp+byNQ179UptT712WiWT9NS0WMnSpQpL V1LaZonievtT7JZDBjmwiN4mFirLhyuyFMI0w0rOjQJom+Tb7Xxv/VfYywtItn2h Z3GZ8N+LYOk9NzyVM6waI4EqGLE1Yd3NovlUHG1NH9pQL7HMmQVOqKif4kQGqxOk 4XdPi5X/ZvZLYz0CLG43UCcUrlAusC0lrsJW1eJX3GFcg0DjoSwXON+h+q+bXVoM pAmCQWk4O/EfuPG3t9hsrwfs9mS0RpOG -----END CERTIFICATE-----Generated at Sun Jun 29 20:21:44 2025 by rpki-client