$ rpki-client -vvf rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft File: Aul8r2u1VIcberzm6NeDIOuURpE.mft (raw, json) Hash identifier: iQCnzO4qeWdy4fh0rp6OfJZlzG618ziCZmL4Tk2eV8k= Subject key identifier: 32:DA:1D:45:FA:42:EE:C5:2E:E8:7D:FA:F1:68:58:3D:9E:CD:7E:1A Authority key identifier: 02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 Certificate issuer: /CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Certificate serial: 23F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft Manifest number: 23E1 Signing time: Mon 30 Jun 2025 15:52:56 +0000 Manifest this update: Mon 30 Jun 2025 15:52:56 +0000 Manifest next update: Mon 07 Jul 2025 15:52:56 +0000 Files and hashes: 1: Aul8r2u1VIcberzm6NeDIOuURpE.crl (hash: 8z4U8tc+taUQjVchzkR5wKYBVAhPIeSqdJ7b9EZS8GU=) 2: 0B72CFAC049211EBB8144531C4F9AE02.roa (hash: HoemRN9Bqh3dS3wFw1CGTUnb1f4mFjxNW0+qSLr4eCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9206 (0x23f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A47E, serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Validity Not Before: Jun 30 15:52:56 2025 GMT Not After : Jul 7 15:52:56 2025 GMT Subject: CN=6862b2d8-fa4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:88:07:c1:eb:72:79:92:0e:3a:d8:8a:6a:3b: 3e:e7:bc:46:e3:02:19:0f:40:ee:1e:49:2f:0f:74: 0f:e0:8e:7c:90:35:ce:ee:12:f0:44:ef:18:f7:b1: 77:e2:c5:df:25:b7:5d:ed:aa:3f:19:91:4a:05:eb: d6:8f:8f:4b:b6:07:3f:89:a5:bc:50:64:c7:fb:3d: 78:73:80:52:78:81:f3:1c:f3:af:c0:ee:81:35:49: 72:24:5d:20:91:57:9d:39:2f:c6:eb:b4:68:ea:9d: d0:ca:0e:90:81:a4:fd:86:0b:79:e0:22:7d:c1:f6: 51:93:28:2d:4c:60:b0:60:58:ee:8b:56:db:7e:bf: 16:41:75:f0:bc:39:41:72:6e:79:60:c3:f0:a0:1a: dc:b9:d9:76:9f:51:8c:e1:48:6c:34:f3:7d:87:98: a5:95:fe:ec:77:fd:f6:5b:5a:8b:54:2b:c7:a1:d7: 0f:eb:d1:4b:70:db:08:74:a5:a0:57:93:2c:e2:63: 81:98:cd:99:af:db:00:04:9a:80:6a:9d:19:88:09: 48:ee:93:d1:3f:9e:c9:0f:af:35:34:7f:43:65:da: 47:48:81:71:df:08:db:7d:93:60:83:f3:4e:c1:46: 6c:ae:8e:85:55:81:43:1e:d9:9e:e3:4a:45:50:43: 88:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:DA:1D:45:FA:42:EE:C5:2E:E8:7D:FA:F1:68:58:3D:9E:CD:7E:1A X509v3 Authority Key Identifier: keyid:02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ee:fc:3f:2d:bd:04:c5:3d:76:15:3a:f1:41:2d:bd:96:77: 5f:ca:b0:af:46:ca:cb:b6:d1:09:6b:48:7a:f3:99:f3:66:ed: 5a:ef:42:a9:ee:1f:29:9e:a4:92:87:0c:87:81:ce:36:6e:c0: c1:a6:05:b8:bc:36:16:32:df:e3:be:6f:e7:6d:4d:17:59:5c: bf:59:40:c1:c5:c8:2c:a2:29:5c:f1:d1:fa:23:4b:0b:e6:21: 15:02:37:6e:36:ab:e8:70:ab:62:98:1b:ce:e5:54:6f:27:d2: 5b:b8:d3:5d:87:41:7f:db:7a:4f:75:b6:64:62:6c:ad:87:d3: 30:19:7a:6b:33:d4:cc:f8:a1:b8:8c:45:fd:7f:bd:68:ca:90: 66:f0:e3:26:b8:48:37:56:5a:70:b6:47:95:07:28:15:7d:4b: e8:ba:d1:e2:47:7c:d3:5a:07:0f:89:36:bc:0c:9a:78:f3:19: 7c:d4:56:9d:72:e7:46:2a:5b:82:6d:80:74:40:86:11:f7:a4: 49:a1:18:25:83:1f:86:57:99:7c:fa:7f:4e:c3:13:09:fa:f9: 24:f3:8d:f6:ba:fa:73:50:87:17:05:d8:aa:56:97:0f:bf:92: 04:a6:3a:45:0e:14:fa:12:57:0a:c4:e3:aa:ee:8b:fe:73:35: 76:95:61:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0N0UxMTAvBgNVBAUTKDAyRTk3Q0FGNkJCNTU0ODcxQjdBQkNFNkU4RDc4MzIw RUI5NDQ2OTEwHhcNMjUwNjMwMTU1MjU2WhcNMjUwNzA3MTU1MjU2WjAYMRYwFAYD VQQDEw02ODYyYjJkOC1mYTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YgHwetyeZIOOtiKajs+57xG4wIZD0DuHkkvD3QP4I58kDXO7hLwRO8Y97F3 4sXfJbdd7ao/GZFKBevWj49Ltgc/iaW8UGTH+z14c4BSeIHzHPOvwO6BNUlyJF0g kVedOS/G67Ro6p3Qyg6QgaT9hgt54CJ9wfZRkygtTGCwYFjui1bbfr8WQXXwvDlB cm55YMPwoBrcudl2n1GM4UhsNPN9h5illf7sd/32W1qLVCvHodcP69FLcNsIdKWg V5Ms4mOBmM2Zr9sABJqAap0ZiAlI7pPRP57JD681NH9DZdpHSIFx3wjbfZNgg/NO wUZsro6FVYFDHtme40pFUEOILQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLaHUX6 Qu7FLuh9+vFoWD2ezX4aMB8GA1UdIwQYMBaAFALpfK9rtVSHG3q85ujXgyDrlEaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ3RS8zRTZCRUM1NjY5 MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJY2JlcnptNk5lRElPdVVS cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F1bDhyMnUxVkljYmVyem02TmVESU91VVJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ3RS8zRTZCRUM1NjY5MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJ Y2JlcnptNk5lRElPdVVScEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb7vw/Lb0ExT12FTrxQS29lndfyrCvRsrLttEJa0h685nzZu1a70Kp 7h8pnqSShwyHgc42bsDBpgW4vDYWMt/jvm/nbU0XWVy/WUDBxcgsoilc8dH6I0sL 5iEVAjduNqvocKtimBvO5VRvJ9JbuNNdh0F/23pPdbZkYmyth9MwGXprM9TM+KG4 jEX9f71oypBm8OMmuEg3VlpwtkeVBygVfUvoutHiR3zTWgcPiTa8DJp48xl81Fad cudGKluCbYB0QIYR96RJoRglgx+GV5l8+n9OwxMJ+vkk8432uvpzUIcXBdiqVpcP v5IEpjpFDhT6ElcKxOOq7ov+czV2lWHe -----END CERTIFICATE-----Generated at Wed Jul 2 00:38:58 2025 by rpki-client