$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: NiK8TKn6F9GrpIbDZDZtuJhT7vz373FSCPjVCUVrnhM= Subject key identifier: F1:0C:5F:F4:E0:45:F8:8B:A1:42:2F:60:3D:06:CC:03:3A:2E:D2:6C Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23A7 Signing time: Wed 02 Jul 2025 15:55:56 +0000 Manifest this update: Wed 02 Jul 2025 15:55:56 +0000 Manifest next update: Wed 09 Jul 2025 15:55:56 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: K26ApUwHexgi+2Prz+yXAtc+HlY+fDIKgHTfFjdHkxM=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9174 (0x23d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Jul 2 15:55:56 2025 GMT Not After : Jul 9 15:55:56 2025 GMT Subject: CN=6865568c-33ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:7c:aa:3c:47:a9:19:e6:53:97:73:d0:07:3f: ad:4a:22:45:75:31:0f:60:bf:eb:32:e0:f0:9e:fd: 65:5f:b6:8c:36:be:50:60:8c:89:f9:85:cc:22:38: df:c5:90:a8:36:89:65:af:3b:ee:91:df:1e:ae:fc: 2b:c9:59:1c:da:80:19:32:9c:1c:c6:c3:ac:f9:be: fd:ac:7b:27:5b:c7:7d:fd:bb:98:31:a3:5d:93:ef: c0:bd:a1:f3:fe:85:f6:6e:7c:89:0f:c3:05:fe:91: ac:a5:bf:ea:b9:ac:1b:81:63:f8:12:d6:78:a3:dc: 10:ad:c4:15:19:7e:d7:a1:b8:51:68:df:9c:d2:26: e2:a1:29:9a:1d:c8:c1:5c:bd:4e:2f:f4:8e:5b:a1: 69:95:74:98:1a:28:73:4f:90:17:a4:75:e0:c8:ca: e7:b3:9e:f3:91:3d:43:fe:8e:e5:cd:ba:21:c3:e8: 90:3a:05:86:3e:f6:f6:a5:07:82:01:2f:32:e6:a5: 26:75:e2:9f:8e:8a:ba:6f:69:6c:90:f6:87:54:79: 17:f8:fa:d7:33:15:19:e1:b2:93:6a:ea:fb:9c:59: b9:fe:ce:0b:89:b2:0b:15:98:dd:59:c6:59:bb:0b: 1a:c9:c1:ed:cb:fb:2a:9e:88:59:49:15:03:27:b0: 28:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0C:5F:F4:E0:45:F8:8B:A1:42:2F:60:3D:06:CC:03:3A:2E:D2:6C X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:dd:32:cf:6b:0b:dd:bb:eb:fa:7b:b6:1e:5f:5b:96:c7:ed: e4:4c:15:4a:ef:8a:01:bd:f6:91:94:d8:da:8e:b0:49:80:21: ca:07:a2:23:19:7e:0e:39:5e:73:06:e7:b0:fc:fa:bc:1d:b8: 45:8f:ae:42:5b:70:ca:4e:45:69:c7:52:35:0c:e1:2e:43:6b: de:a5:b0:7a:96:c4:c3:77:25:e2:25:dd:a4:0c:aa:6a:6c:e6: 2b:60:45:ad:21:16:e8:30:4f:36:3c:8d:f1:94:b7:bd:a1:66: f1:1d:7f:b7:c5:cf:78:c2:f0:fa:ec:92:55:af:4b:ab:a3:e3: 02:6d:e1:31:ca:81:67:fb:0c:45:80:95:61:69:18:9c:b8:ee: ae:92:d9:fa:31:d3:bd:9b:98:38:5f:b9:e3:98:21:02:66:11: 72:fa:b7:dd:a7:9f:81:38:cb:d9:66:3c:4d:83:38:63:3e:b8: aa:f2:44:84:88:60:61:a8:72:c7:c5:98:93:47:44:fd:97:85: 87:0b:27:e5:26:32:ae:a1:ec:a6:e0:cf:59:77:e9:71:f9:7c: b0:77:fe:98:56:eb:36:4c:0a:09:99:f0:ba:8c:c3:b6:18:85: c6:3d:53:e1:ba:95:72:23:e3:cc:b7:d7:a1:7a:ce:cd:2e:96: 16:e7:47:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNzAyMTU1NTU2WhcNMjUwNzA5MTU1NTU2WjAYMRYwFAYD VQQDEw02ODY1NTY4Yy0zM2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nyqPEepGeZTl3PQBz+tSiJFdTEPYL/rMuDwnv1lX7aMNr5QYIyJ+YXMIjjf xZCoNollrzvukd8ervwryVkc2oAZMpwcxsOs+b79rHsnW8d9/buYMaNdk+/AvaHz /oX2bnyJD8MF/pGspb/quawbgWP4EtZ4o9wQrcQVGX7XobhRaN+c0ibioSmaHcjB XL1OL/SOW6FplXSYGihzT5AXpHXgyMrns57zkT1D/o7lzbohw+iQOgWGPvb2pQeC AS8y5qUmdeKfjoq6b2lskPaHVHkX+PrXMxUZ4bKTaur7nFm5/s4LibILFZjdWcZZ uwsaycHty/sqnohZSRUDJ7AoyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEMX/Tg RfiLoUIvYD0GzAM6LtJsMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi3TLPawvdu+v6e7YeX1uWx+3kTBVK74oBvfaRlNjajrBJgCHKB6Ij GX4OOV5zBuew/Pq8HbhFj65CW3DKTkVpx1I1DOEuQ2vepbB6lsTDdyXiJd2kDKpq bOYrYEWtIRboME82PI3xlLe9oWbxHX+3xc94wvD67JJVr0uro+MCbeExyoFn+wxF gJVhaRicuO6uktn6MdO9m5g4X7njmCECZhFy+rfdp5+BOMvZZjxNgzhjPriq8kSE iGBhqHLHxZiTR0T9l4WHCyflJjKuoeym4M9Zd+lx+Xywd/6YVus2TAoJmfC6jMO2 GIXGPVPhupVyI+PMt9ehes7NLpYW50f/ -----END CERTIFICATE-----Generated at Thu Jul 3 14:58:43 2025 by rpki-client