$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: /rM17iDHnqpPhVzBBj4t+b3VYPqaVJrOoW0+Aqw5JzA= Subject key identifier: FE:92:68:0E:48:E2:D8:95:2F:D9:A0:76:02:3E:44:2F:0A:F3:7C:70 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 12FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 12EF Signing time: Sat 10 May 2025 16:57:40 +0000 Manifest this update: Sat 10 May 2025 16:57:39 +0000 Manifest next update: Sat 17 May 2025 16:57:39 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: M/W1pCIRW7mTuNzbbZxiN4tXM0nWdBK3ys3mFZXqMkM=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4863 (0x12ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: May 10 16:57:39 2025 GMT Not After : May 17 16:57:39 2025 GMT Subject: CN=681f8583-1bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:20:ff:9d:61:2d:b0:82:3b:da:49:70:2a:25: 70:e0:37:28:b4:d3:f1:86:27:51:98:3f:3a:d4:57: 73:4d:c9:5e:25:24:d3:f8:a4:63:c8:ae:47:fd:25: a4:28:03:75:00:d1:12:de:77:c3:03:ed:12:55:4a: da:76:cd:63:2a:88:7c:5a:e1:d8:11:a7:d1:02:40: 9d:03:f5:62:bf:7d:40:80:aa:0b:16:5e:a4:8e:89: c1:3d:26:4e:9c:5d:78:bd:24:83:c3:c3:8c:66:eb: bc:f5:a1:54:39:65:68:01:71:3d:53:76:de:91:b0: 06:7e:9a:83:2d:e9:1f:66:f2:3a:43:49:2e:40:33: 05:d2:b8:f1:62:cb:e3:e7:ad:db:10:1a:22:98:82: 72:90:75:6e:3b:04:26:c6:1a:b3:cf:60:4e:20:c4: 8f:8a:d7:3c:09:57:44:31:7d:62:e6:0a:ad:c9:95: 81:80:8e:28:8f:10:94:53:f3:c2:1c:fa:48:9f:e9: 79:df:c0:95:96:aa:04:06:63:67:91:f8:a5:60:60: ca:d0:ba:fc:ad:a4:5c:39:ba:1e:b2:c8:58:c2:62: eb:ed:01:8d:74:3e:8d:c4:a9:a1:fe:52:8a:47:62: 19:36:4a:06:2e:1c:a3:ac:8f:73:81:e5:25:74:4c: e6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:92:68:0E:48:E2:D8:95:2F:D9:A0:76:02:3E:44:2F:0A:F3:7C:70 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:f8:2d:ad:e0:08:7b:df:84:61:50:cc:01:a7:c2:ce:9b:4f: 87:68:27:9d:88:73:99:da:7c:89:23:e9:bc:43:f4:68:14:b1: fe:fb:8e:0d:e7:9a:b7:21:c8:c7:f2:8c:e2:02:8a:c0:d3:65: ab:bb:a6:6a:ee:da:59:de:31:e0:fe:e6:57:b8:1e:dc:dc:46: 9f:a2:dc:46:36:26:c7:64:bd:87:c2:21:46:50:51:00:e5:6e: 43:c5:67:e3:84:0c:91:62:2d:a6:08:6c:6a:5d:cf:8a:29:92: 1b:92:06:89:ce:ca:00:88:34:b9:d8:4a:5b:ef:02:08:4a:0a: 89:23:99:3d:5c:c0:21:6e:29:3e:99:d7:cb:4b:19:fa:f3:1f: 44:2a:80:64:70:5d:13:2f:86:e1:b0:91:53:5c:07:df:7e:c1: db:b5:2e:6a:45:d7:a5:e9:0f:5a:be:9f:05:53:b0:4e:41:bf: 2b:2b:6d:f7:d6:b8:5a:b2:85:bd:70:9f:0e:a6:ea:93:1c:d8: f6:93:7e:2c:9f:6e:91:b2:23:63:7b:1d:b3:fa:03:56:2d:0b: 7d:93:05:b6:c6:19:bd:3e:dc:74:8c:3e:5b:82:2c:29:15:f3: b4:ef:f1:6f:d8:17:df:a9:2e:e7:8a:b0:b8:60:45:b4:25:71: e4:ab:86:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwNTEwMTY1NzM5WhcNMjUwNTE3MTY1NzM5WjAYMRYwFAYD VQQDEw02ODFmODU4My0xYmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlSD/nWEtsII72klwKiVw4DcotNPxhidRmD861FdzTcleJSTT+KRjyK5H/SWk KAN1ANES3nfDA+0SVUrads1jKoh8WuHYEafRAkCdA/Viv31AgKoLFl6kjonBPSZO nF14vSSDw8OMZuu89aFUOWVoAXE9U3bekbAGfpqDLekfZvI6Q0kuQDMF0rjxYsvj 563bEBoimIJykHVuOwQmxhqzz2BOIMSPitc8CVdEMX1i5gqtyZWBgI4ojxCUU/PC HPpIn+l538CVlqoEBmNnkfilYGDK0Lr8raRcOboesshYwmLr7QGNdD6NxKmh/lKK R2IZNkoGLhyjrI9zgeUldEzmlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6SaA5I 4tiVL9mgdgI+RC8K83xwMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb+C2t4Ah734RhUMwBp8LOm0+HaCediHOZ2nyJI+m8Q/RoFLH++44N 55q3IcjH8oziAorA02Wru6Zq7tpZ3jHg/uZXuB7c3EafotxGNibHZL2HwiFGUFEA 5W5DxWfjhAyRYi2mCGxqXc+KKZIbkgaJzsoAiDS52Epb7wIISgqJI5k9XMAhbik+ mdfLSxn68x9EKoBkcF0TL4bhsJFTXAfffsHbtS5qRdel6Q9avp8FU7BOQb8rK233 1rhasoW9cJ8OpuqTHNj2k34sn26RsiNjex2z+gNWLQt9kwW2xhm9Ptx0jD5bgiwp FfO07/Fv2BffqS7nirC4YEW0JXHkq4ax -----END CERTIFICATE-----Generated at Mon May 12 12:50:55 2025 by rpki-client