$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: 6T4W7I9ac05sgPE2ynHItVJ9SaorEHCS1bUe63aqTqc= Subject key identifier: 94:8F:06:EA:05:DD:9E:34:1A:93:6F:61:C0:BD:38:66:2B:78:B5:74 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 0216 Signing time: Thu 03 Jul 2025 02:22:25 +0000 Manifest this update: Thu 03 Jul 2025 02:22:25 +0000 Manifest next update: Thu 10 Jul 2025 02:22:25 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: eWpFcxwt5IsK/WOSKYbcqx444YLNprqoSuMbMfD7Wqw=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: 8tU0+bWbTseOr25wJKvheZneGGhgRMUkg1uHcFDydtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Jul 3 02:22:25 2025 GMT Not After : Jul 10 02:22:25 2025 GMT Subject: CN=6865e961-7a88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:f7:9e:2b:f7:22:77:32:50:6a:da:7d:63: 9d:9b:3e:77:d4:5e:1b:ad:a3:53:fb:e6:8b:3d:9a: 8c:33:1b:71:ee:cd:2d:0e:e0:e2:de:23:f3:13:52: f9:f0:af:f2:2f:70:63:6b:69:49:99:af:b2:60:23: 55:7e:53:cd:74:66:66:98:80:d8:3a:cd:1e:dd:8e: 0c:11:7d:76:b2:e2:45:4c:64:13:62:f1:4b:c7:6b: e4:71:ce:05:22:5e:7c:66:17:be:96:34:d5:65:0a: 52:4e:f0:a4:30:9c:b0:26:7d:6f:75:b3:d0:92:aa: 5f:61:f8:48:db:ba:8d:46:62:ee:6c:cc:e6:f8:1b: bc:69:3d:d6:f6:e9:34:4a:c8:dd:0e:68:21:12:11: fc:8e:02:dd:a1:63:80:a9:02:a9:8c:67:58:e3:7a: 3f:24:4a:74:69:65:53:5d:b2:ba:e7:94:f9:7d:db: b9:cc:82:ca:78:36:e6:9c:ea:97:30:d2:dd:5c:5c: 93:95:25:88:8f:f0:df:83:51:8b:b4:c0:73:d2:ed: 3f:c3:5f:a3:38:9c:d1:0b:ab:4f:93:53:6f:d9:49: 82:84:34:7e:c2:92:77:4e:1f:86:34:12:b1:16:56: a2:38:ef:3d:80:b3:45:a5:6a:8e:65:10:83:48:0f: ee:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8F:06:EA:05:DD:9E:34:1A:93:6F:61:C0:BD:38:66:2B:78:B5:74 X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:9e:1e:a4:f8:7e:21:3c:e8:f5:fe:a2:f5:b0:08:bb:94:06: 09:8a:30:c4:05:2b:8e:a5:1d:d0:6f:12:8c:68:4d:6f:e6:1c: aa:39:d2:cd:7e:95:f0:33:36:8a:47:78:cb:33:2c:9b:86:f7: f0:61:eb:5d:57:2e:0f:be:7e:d6:6f:e7:ed:41:69:01:13:e5: 5d:46:75:e9:5e:93:2a:6e:af:7f:c8:18:1a:42:99:b6:d1:97: fd:62:bf:b5:47:4e:20:b9:93:99:ce:49:10:b8:4b:b8:83:e4: c5:c6:f2:cc:05:28:7d:59:47:4d:31:58:47:74:90:02:b7:2a: e2:ab:fe:ac:a9:e9:d4:03:52:06:20:3d:a4:6d:a2:ba:c9:ad: 69:5a:44:87:84:47:a7:62:3e:23:da:44:37:9b:d3:ac:3f:ab: 98:80:b7:50:a5:5d:b7:79:1f:46:b1:46:4b:21:f3:46:54:a2: 6c:08:8e:50:7c:80:66:fd:14:d2:b3:19:b2:c6:d2:5c:fc:1f: 79:49:72:0f:61:37:94:3f:a9:9f:d6:c3:72:6e:28:7c:3f:85: 82:51:07:15:b7:51:4a:17:d6:d6:05:3c:cf:86:30:da:5e:b7: 11:dd:60:e2:85:70:2a:37:59:c1:45:9b:17:13:3d:ad:5c:ac: 46:87:0c:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjUwNzAzMDIyMjI1WhcNMjUwNzEwMDIyMjI1WjAYMRYwFAYD VQQDEw02ODY1ZTk2MS03YTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttL3niv3IncyUGrafWOdmz531F4braNT++aLPZqMMxtx7s0tDuDi3iPzE1L5 8K/yL3Bja2lJma+yYCNVflPNdGZmmIDYOs0e3Y4MEX12suJFTGQTYvFLx2vkcc4F Il58Zhe+ljTVZQpSTvCkMJywJn1vdbPQkqpfYfhI27qNRmLubMzm+Bu8aT3W9uk0 SsjdDmghEhH8jgLdoWOAqQKpjGdY43o/JEp0aWVTXbK655T5fdu5zILKeDbmnOqX MNLdXFyTlSWIj/Dfg1GLtMBz0u0/w1+jOJzRC6tPk1Nv2UmChDR+wpJ3Th+GNBKx FlaiOO89gLNFpWqOZRCDSA/uiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSPBuoF 3Z40GpNvYcC9OGYreLV0MB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0nh6k+H4hPOj1/qL1sAi7lAYJijDEBSuOpR3QbxKMaE1v5hyqOdLN fpXwMzaKR3jLMyybhvfwYetdVy4Pvn7Wb+ftQWkBE+VdRnXpXpMqbq9/yBgaQpm2 0Zf9Yr+1R04guZOZzkkQuEu4g+TFxvLMBSh9WUdNMVhHdJACtyriq/6sqenUA1IG ID2kbaK6ya1pWkSHhEenYj4j2kQ3m9OsP6uYgLdQpV23eR9GsUZLIfNGVKJsCI5Q fIBm/RTSsxmyxtJc/B95SXIPYTeUP6mf1sNybih8P4WCUQcVt1FKF9bWBTzPhjDa XrcR3WDihXAqN1nBRZsXEz2tXKxGhwwV -----END CERTIFICATE-----Generated at Thu Jul 3 18:19:44 2025 by rpki-client