$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: W+Rbg5pyGUsaUlefcdNXmkMH0A6f8SyUsXNIB6IhQ4I= Subject key identifier: 03:50:6A:8E:0F:77:AF:53:6B:CF:67:26:93:80:A0:BC:5D:4B:37:F7 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 049C Signing time: Thu 03 Jul 2025 00:19:45 +0000 Manifest this update: Thu 03 Jul 2025 00:19:45 +0000 Manifest next update: Thu 10 Jul 2025 00:19:45 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: 6DGlJ56QXf9YF8J82YCkAw/IhAgFeY/H7pKVa+Pjd64=) 2: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I=) 3: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Jul 3 00:19:45 2025 GMT Not After : Jul 10 00:19:45 2025 GMT Subject: CN=6865cca1-25f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:67:e6:61:db:2b:27:7a:9b:7c:7b:af:95:45: 72:ef:06:6c:9c:0c:a9:8a:22:69:1a:8b:15:24:6e: 21:40:5d:3c:a7:fe:4e:25:73:2f:ff:78:e8:47:ae: 18:b9:f1:2d:34:d4:fe:9f:cd:bb:77:f6:16:9b:f5: 14:98:be:22:e8:19:54:db:36:1e:27:13:47:98:7a: fb:29:43:90:f6:98:9a:13:06:4e:13:d4:ae:09:a3: bb:3a:62:f4:6b:c2:b9:c7:de:51:98:60:4b:82:45: 82:a1:96:80:1f:fa:18:3d:dd:23:27:61:8b:35:1b: 5a:88:0f:ba:04:ca:df:52:c8:4e:75:06:70:03:0d: 73:c7:61:62:1a:fa:44:0f:53:47:fd:7d:b9:0f:24: 54:35:d2:bb:6b:f7:6e:70:d3:9b:9e:41:60:3a:81: f1:65:50:4c:98:9b:89:bb:4b:60:74:f8:f0:63:e3: 39:11:e1:63:4d:9e:1c:26:93:72:fa:40:15:13:8e: cf:68:ec:29:43:0e:97:25:55:ca:ac:6a:27:79:b5: a0:de:50:30:c3:9d:8f:01:e1:c4:5a:84:59:7e:57: 3b:d2:1f:66:f6:e1:39:5f:4c:5e:8b:9b:f9:d6:ed: ea:b2:11:06:69:b0:34:2b:ea:7a:31:28:16:7e:fb: 69:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:50:6A:8E:0F:77:AF:53:6B:CF:67:26:93:80:A0:BC:5D:4B:37:F7 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:26:d3:5d:33:eb:e9:d1:ac:b9:cb:2c:75:7b:2c:de:6a:af: ad:ef:1b:e6:f3:39:d9:38:ee:e0:a5:dd:f2:d1:f2:27:71:d2: f7:d0:e3:c8:4c:7d:9f:f4:72:bf:cf:68:26:0c:b5:52:88:a9: 10:57:6b:26:a9:f6:9b:2f:75:71:50:c9:d0:87:21:42:a7:87: 8f:72:6d:ba:71:2f:4e:dd:f6:66:6d:45:30:7b:6c:93:52:56: 7f:9a:04:91:b7:69:3a:42:5c:9c:c5:a5:dc:d8:bb:e8:74:7e: 0b:cb:33:75:6b:a6:3b:a6:90:3d:47:fa:a9:5f:18:e0:93:02: fb:ee:8c:f9:84:91:df:9e:00:6c:ac:55:ee:1d:90:2d:49:42: b5:24:ef:c9:3b:9c:ed:8b:f4:df:69:59:50:c4:22:3a:d0:13: 71:37:61:58:4f:9a:36:ae:c1:92:b8:4d:f8:64:59:dc:85:e4: 77:72:fa:fd:c0:a5:fc:de:3f:a9:81:78:94:11:ad:23:66:ed: 6d:ce:8a:fa:82:b8:53:17:67:ed:ee:c3:98:78:1a:d9:ea:6f: 49:ec:2c:38:1b:2c:11:72:14:15:e0:ee:15:be:87:d7:1f:31: 2d:0b:78:75:18:12:72:22:69:f0:0f:92:d3:68:f8:56:a7:01: 1f:c1:7a:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUwNzAzMDAxOTQ1WhcNMjUwNzEwMDAxOTQ1WjAYMRYwFAYD VQQDEw02ODY1Y2NhMS0yNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72fmYdsrJ3qbfHuvlUVy7wZsnAypiiJpGosVJG4hQF08p/5OJXMv/3joR64Y ufEtNNT+n827d/YWm/UUmL4i6BlU2zYeJxNHmHr7KUOQ9piaEwZOE9SuCaO7OmL0 a8K5x95RmGBLgkWCoZaAH/oYPd0jJ2GLNRtaiA+6BMrfUshOdQZwAw1zx2FiGvpE D1NH/X25DyRUNdK7a/ducNObnkFgOoHxZVBMmJuJu0tgdPjwY+M5EeFjTZ4cJpNy +kAVE47PaOwpQw6XJVXKrGonebWg3lAww52PAeHEWoRZflc70h9m9uE5X0xei5v5 1u3qshEGabA0K+p6MSgWfvtp4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANQao4P d69Ta89nJpOAoLxdSzf3MB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApJtNdM+vp0ay5yyx1eyzeaq+t7xvm8znZOO7gpd3y0fIncdL30OPI TH2f9HK/z2gmDLVSiKkQV2smqfabL3VxUMnQhyFCp4ePcm26cS9O3fZmbUUwe2yT UlZ/mgSRt2k6QlycxaXc2LvodH4LyzN1a6Y7ppA9R/qpXxjgkwL77oz5hJHfngBs rFXuHZAtSUK1JO/JO5zti/TfaVlQxCI60BNxN2FYT5o2rsGSuE34ZFncheR3cvr9 wKX83j+pgXiUEa0jZu1tzor6grhTF2ft7sOYeBrZ6m9J7Cw4GywRchQV4O4VvofX HzEtC3h1GBJyImnwD5LTaPhWpwEfwXoD -----END CERTIFICATE-----Generated at Fri Jul 4 00:33:10 2025 by rpki-client