$ rpki-client -vvf rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft File: aNpOhaeYSz_RCu80x9HQDxtGRTE.mft (raw, json) Hash identifier: wuoJGG3k0aiQEhQwFzEoh4tDrPvUu54IPx6r/KuhIys= Subject key identifier: 86:EA:52:14:26:EB:DE:67:A5:FC:31:1F:EA:AD:31:A7:DD:07:E7:AB Authority key identifier: 68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 Certificate issuer: /CN=A918D931/serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Certificate serial: 07AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft Manifest number: 07A8 Signing time: Mon 30 Jun 2025 21:29:20 +0000 Manifest this update: Mon 30 Jun 2025 21:29:19 +0000 Manifest next update: Mon 07 Jul 2025 21:29:19 +0000 Files and hashes: 1: aNpOhaeYSz_RCu80x9HQDxtGRTE.crl (hash: xO93IYkte6flWlHx6s0qY5zKeGou5j/+ffUrjeHsMqY=) 2: F575D65A085A11EBA6864D71C4F9AE02.roa (hash: MoYCzKz4ghJi1D1zSWKy/H/ig794mxo8w546loZw0HA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1966 (0x7ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D931, serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Validity Not Before: Jun 30 21:29:19 2025 GMT Not After : Jul 7 21:29:19 2025 GMT Subject: CN=686301af-bf17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:59:80:9c:c7:da:43:fb:0e:9f:59:9d:29:c8: 9a:fc:15:41:a6:b9:30:ab:41:dd:b9:f5:cc:29:6d: 35:4c:c2:8c:b5:98:90:4d:43:5a:45:f5:4f:4d:26: 49:47:08:08:74:8f:67:e0:ea:67:40:de:5a:f4:99: 28:14:de:f2:f6:ed:be:52:2d:47:4a:01:15:92:50: a5:24:97:ac:15:ce:70:2b:dd:35:7b:a3:78:d8:28: cd:dc:ed:c2:2e:1c:b1:05:2a:61:a9:b0:b0:50:01: 81:d4:b7:93:ef:9d:b9:0b:47:69:83:19:2a:28:0d: 2c:45:ac:89:a0:8c:e6:0a:ca:ec:64:7f:f0:0a:d3: da:d3:98:fd:77:ed:ff:8a:05:18:0f:a5:71:93:d4: 83:07:93:cf:74:7d:6e:ea:20:fb:24:00:21:d3:ef: c8:dc:82:1b:c8:28:80:bd:76:2b:c5:52:9b:d5:13: 9a:de:37:3e:7e:a6:08:b4:5c:59:8b:fa:f2:ab:d9: 02:9a:a0:65:2e:af:20:04:32:95:38:4b:7d:fb:8b: b9:14:5d:ca:7a:55:7e:5f:6b:43:dc:ab:df:ff:47: fd:95:73:15:4c:05:30:cb:f0:4e:6f:2b:76:86:5a: 85:38:1a:6c:ac:a4:a7:63:ec:60:d6:25:ba:49:6a: f9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:EA:52:14:26:EB:DE:67:A5:FC:31:1F:EA:AD:31:A7:DD:07:E7:AB X509v3 Authority Key Identifier: keyid:68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:99:91:d2:2b:ca:8e:5a:f9:d4:d1:36:77:e7:ef:f9:3a:21: bf:82:3b:e8:76:5b:1a:14:f7:3e:d7:ac:4e:7e:f1:66:ba:a5: ed:27:20:99:5b:87:3e:e8:3d:1e:41:80:0f:9a:a4:4e:05:85: 7a:f8:b8:c0:c8:1b:e9:7e:94:ad:d3:d8:17:b6:67:8a:0c:fa: be:3d:2e:28:0c:f8:96:e2:5b:e1:ae:d4:63:08:39:32:7f:33: 01:c9:d2:df:db:d1:ec:9d:30:e0:5b:0d:f3:91:7e:c9:70:0c: b9:68:f5:9f:a5:be:b0:df:6d:d8:bd:0f:8d:c9:47:f5:71:cc: 8e:c1:97:36:e7:e1:36:a1:63:44:01:32:47:a8:92:8c:78:5b: c9:54:1f:96:f9:71:10:49:e8:3a:48:b2:cb:ea:85:44:b3:8b: 8d:a2:fa:1c:22:c4:3d:de:ae:17:ad:97:e3:98:57:a5:30:7b: b6:6a:70:e2:ca:2b:57:8b:3b:20:9a:64:04:eb:11:63:f3:ed: 34:6b:57:11:de:36:43:85:d0:d3:63:87:ed:71:27:9c:f9:da: 98:c0:09:93:ca:4a:33:89:53:d3:77:7c:4d:30:83:c2:b4:9b: 98:3b:86:1c:66:d2:f4:6d:7d:54:65:ac:cf:88:17:30:c1:1e: 7b:0c:5e:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5MzExMTAvBgNVBAUTKDY4REE0RTg1QTc5ODRCM0ZEMTBBRUYzNEM3RDFEMDBG MUI0NjQ1MzEwHhcNMjUwNjMwMjEyOTE5WhcNMjUwNzA3MjEyOTE5WjAYMRYwFAYD VQQDEw02ODYzMDFhZi1iZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVmAnMfaQ/sOn1mdKcia/BVBprkwq0HdufXMKW01TMKMtZiQTUNaRfVPTSZJ RwgIdI9n4OpnQN5a9JkoFN7y9u2+Ui1HSgEVklClJJesFc5wK901e6N42CjN3O3C LhyxBSphqbCwUAGB1LeT7525C0dpgxkqKA0sRayJoIzmCsrsZH/wCtPa05j9d+3/ igUYD6Vxk9SDB5PPdH1u6iD7JAAh0+/I3IIbyCiAvXYrxVKb1ROa3jc+fqYItFxZ i/ryq9kCmqBlLq8gBDKVOEt9+4u5FF3KelV+X2tD3Kvf/0f9lXMVTAUwy/BObyt2 hlqFOBpsrKSnY+xg1iW6SWr5fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbqUhQm 695npfwxH+qtMafdB+erMB8GA1UdIwQYMBaAFGjaToWnmEs/0QrvNMfR0A8bRkUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDkzMS9GQjVBNTA4NDA4 NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6X1JDdTgweDlIUUR4dEdS VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FOcE9oYWVZU3pfUkN1ODB4OUhRRHh0R1JURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDkzMS9GQjVBNTA4NDA4NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6 X1JDdTgweDlIUUR4dEdSVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAamZHSK8qOWvnU0TZ35+/5OiG/gjvodlsaFPc+16xOfvFmuqXtJyCZ W4c+6D0eQYAPmqROBYV6+LjAyBvpfpSt09gXtmeKDPq+PS4oDPiW4lvhrtRjCDky fzMBydLf29HsnTDgWw3zkX7JcAy5aPWfpb6w323YvQ+NyUf1ccyOwZc25+E2oWNE ATJHqJKMeFvJVB+W+XEQSeg6SLLL6oVEs4uNovocIsQ93q4XrZfjmFelMHu2anDi yitXizsgmmQE6xFj8+00a1cR3jZDhdDTY4ftcSec+dqYwAmTykoziVPTd3xNMIPC tJuYO4YcZtL0bX1UZazPiBcwwR57DF5S -----END CERTIFICATE-----Generated at Tue Jul 1 20:13:30 2025 by rpki-client