$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: RqIuhagGMnpoeJ01p6hX5ocKW7ss4kAw20tS/fkyl3Q= Subject key identifier: 38:C4:E7:2F:4E:B5:24:CF:B8:BE:23:8A:CB:31:16:88:EE:25:C9:BE Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1319 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1309 Signing time: Wed 02 Jul 2025 17:14:24 +0000 Manifest this update: Wed 02 Jul 2025 17:14:24 +0000 Manifest next update: Wed 09 Jul 2025 17:14:24 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: lJvMEz+UYTW8uoofas8tzXuqB20Lh7VgdsY8xoMdGuI=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4889 (0x1319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Jul 2 17:14:24 2025 GMT Not After : Jul 9 17:14:24 2025 GMT Subject: CN=686568f0-825c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:29:c0:f5:e5:ab:34:1d:42:46:0a:26:a2: 6d:2a:15:03:d4:87:30:51:9a:9b:2b:fb:67:76:e9: 6b:f9:ce:1a:06:3a:90:42:ac:53:27:9f:c7:89:6e: 7a:9a:b1:91:eb:6f:b6:a5:a4:36:23:69:a0:a4:b7: 7a:f9:65:65:f2:f0:3e:9c:d0:d2:ec:0a:2d:73:6f: 05:13:f5:97:e2:16:fd:5a:3c:3b:73:68:c9:8b:aa: e8:0d:9e:a1:54:4d:b2:d1:a1:8c:e5:6a:4e:06:b1: 0a:f8:91:d2:57:16:ec:8a:e8:f0:e8:2b:fb:17:05: 1d:c0:1c:d4:b9:8f:32:42:5b:93:26:7e:d5:92:54: 59:f6:84:86:a9:d9:d3:25:fe:b3:5f:ec:c7:92:9c: 47:93:97:60:73:0e:d7:9b:fb:60:7a:96:e9:dd:3c: 7a:a7:7f:a5:a9:95:99:9b:dd:18:48:bb:2b:34:cd: 7d:97:6a:8a:fc:66:0f:67:b0:7a:6c:fb:5a:e8:b4: 28:61:e6:97:fc:97:21:ed:c7:60:50:60:33:4a:03: d9:6a:d0:29:d4:01:c6:19:6f:c9:51:0e:60:e1:7d: 09:10:83:24:bb:23:d6:2e:39:e4:32:b7:e9:d2:2f: 77:63:dc:e9:46:cb:6a:a3:90:16:52:0b:dc:23:c7: a7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C4:E7:2F:4E:B5:24:CF:B8:BE:23:8A:CB:31:16:88:EE:25:C9:BE X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:be:61:96:7c:3b:19:1c:05:1e:96:bd:a7:bc:bc:65:7d:6f: de:58:fc:9f:33:2e:a5:34:5e:18:23:cb:7b:81:7c:34:57:9b: 2f:e4:46:c2:0d:6f:6f:37:03:27:37:d5:e6:b2:4d:4a:4e:9e: bb:8f:21:f7:49:23:fd:5b:fb:e6:eb:5e:29:bc:7f:cc:7e:42: 7a:3e:f2:2f:4d:2b:92:46:38:98:0b:93:41:87:13:2b:cb:dd: b2:47:8c:c8:b6:fd:3c:c5:1c:95:82:35:07:f5:60:ef:cb:2b: 34:f7:55:94:ff:eb:88:f5:5a:1c:f1:c6:a9:31:16:44:99:e0: fa:f7:25:ec:9b:24:57:58:34:33:aa:c7:21:20:e4:56:43:73: 00:56:84:ad:a3:10:9d:64:6c:99:48:bd:7e:fc:f5:07:bc:24: 30:57:b1:c4:a8:ed:a8:b2:51:c1:93:37:1b:e0:79:94:ad:ee: 76:0d:26:95:be:e5:43:df:8d:3f:74:2c:7e:59:1e:ce:79:15: ab:4d:bd:3a:52:84:b5:40:23:65:1e:a3:04:d1:8f:66:17:13: 3f:47:36:92:09:d9:c2:50:97:69:9c:be:c9:8f:75:90:8b:ec: fb:36:99:86:92:ee:3b:e3:3b:87:cd:dc:c9:7e:84:df:d2:a9: f3:b6:e7:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwNzAyMTcxNDI0WhcNMjUwNzA5MTcxNDI0WjAYMRYwFAYD VQQDEw02ODY1NjhmMC04MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKopwPXlqzQdQkYKJqJtKhUD1IcwUZqbK/tndulr+c4aBjqQQqxTJ5/HiW56 mrGR62+2paQ2I2mgpLd6+WVl8vA+nNDS7Aotc28FE/WX4hb9Wjw7c2jJi6roDZ6h VE2y0aGM5WpOBrEK+JHSVxbsiujw6Cv7FwUdwBzUuY8yQluTJn7VklRZ9oSGqdnT Jf6zX+zHkpxHk5dgcw7Xm/tgepbp3Tx6p3+lqZWZm90YSLsrNM19l2qK/GYPZ7B6 bPta6LQoYeaX/Jch7cdgUGAzSgPZatAp1AHGGW/JUQ5g4X0JEIMkuyPWLjnkMrfp 0i93Y9zpRstqo5AWUgvcI8enjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjE5y9O tSTPuL4jissxFojuJcm+MB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHvmGWfDsZHAUelr2nvLxlfW/eWPyfMy6lNF4YI8t7gXw0V5sv5EbC DW9vNwMnN9Xmsk1KTp67jyH3SSP9W/vm614pvH/MfkJ6PvIvTSuSRjiYC5NBhxMr y92yR4zItv08xRyVgjUH9WDvyys091WU/+uI9Voc8capMRZEmeD69yXsmyRXWDQz qschIORWQ3MAVoStoxCdZGyZSL1+/PUHvCQwV7HEqO2oslHBkzcb4HmUre52DSaV vuVD340/dCx+WR7OeRWrTb06UoS1QCNlHqME0Y9mFxM/RzaSCdnCUJdpnL7Jj3WQ i+z7NpmGku474zuHzdzJfoTf0qnztud9 -----END CERTIFICATE-----Generated at Wed Jul 2 19:10:30 2025 by rpki-client