$ rpki-client -vvf rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft File: AEHvq_80PMLoP86WztiQWej04sE.mft (raw, json) Hash identifier: PXgVFSUnhVpH8CcZjtP8ykW9hSxUH74EIfFn/LD/aSs= Subject key identifier: CE:5C:A5:B6:AE:BE:3C:BB:FD:69:05:67:A7:F6:F9:8C:B1:0A:25:F2 Authority key identifier: 00:41:EF:AB:FF:34:3C:C2:E8:3F:CE:96:CE:D8:90:59:E8:F4:E2:C1 Certificate issuer: /CN=A91A236D/serialNumber=0041EFABFF343CC2E83FCE96CED89059E8F4E2C1 Certificate serial: 0307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEHvq_80PMLoP86WztiQWej04sE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft Manifest number: 0303 Signing time: Tue 01 Jul 2025 01:52:59 +0000 Manifest this update: Tue 01 Jul 2025 01:52:59 +0000 Manifest next update: Tue 08 Jul 2025 01:52:59 +0000 Files and hashes: 1: AEHvq_80PMLoP86WztiQWej04sE.crl (hash: 5ok3XygJu+kIr+tibtYLAKLkGa6Nn44HPxWZg9p1wmU=) 2: DC072950DCB911EC8AAB8710C4F9AE02.roa (hash: yybFsJYo0u1DXgO0+Ag0eONj7o/2vIeK/qEAg2e5UXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.crl rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEHvq_80PMLoP86WztiQWej04sE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A236D, serialNumber=0041EFABFF343CC2E83FCE96CED89059E8F4E2C1 Validity Not Before: Jul 1 01:52:59 2025 GMT Not After : Jul 8 01:52:59 2025 GMT Subject: CN=68633f7b-ed08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d2:fd:05:f9:9d:a5:45:4d:8e:df:ec:71:f7: 6d:7e:ab:ac:dd:d0:11:7b:64:b7:d7:3f:e2:2a:d2: fc:3b:d6:2f:c5:98:6b:be:e6:d0:13:ce:38:c0:58: 20:33:1a:47:a8:af:38:ea:e2:3c:bc:77:d5:c5:a8: 20:b9:55:08:09:99:3a:1c:ee:b9:73:7a:88:3e:98: b8:8c:97:77:3c:0e:fe:08:09:89:71:61:13:fc:75: 66:84:74:60:79:b1:cc:36:0b:78:cd:a8:bf:bd:fc: fd:28:ea:31:c5:6c:af:a3:d0:27:19:70:86:9a:ee: 83:54:3b:d6:dc:81:fc:30:25:60:58:0a:d9:fc:01: 3d:06:ee:3a:3b:42:5b:30:53:ba:23:33:1f:38:c9: b7:a4:a4:6f:44:67:26:1d:1a:5a:4a:ea:8d:b8:c6: 6d:b0:d3:df:3e:af:3d:8f:52:84:52:fa:18:4e:df: 56:26:17:f6:f6:15:2b:43:3f:13:98:7a:73:61:87: 83:b5:cf:5b:6b:29:05:ac:78:46:22:d2:73:8d:da: b9:d7:59:e1:44:ed:30:28:ec:4a:8f:93:c7:b5:3f: ff:6e:1e:0b:de:b3:f0:f1:95:40:58:f8:51:73:dd: d7:b1:58:80:df:4f:54:fb:af:0d:de:70:78:58:7d: c3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:5C:A5:B6:AE:BE:3C:BB:FD:69:05:67:A7:F6:F9:8C:B1:0A:25:F2 X509v3 Authority Key Identifier: keyid:00:41:EF:AB:FF:34:3C:C2:E8:3F:CE:96:CE:D8:90:59:E8:F4:E2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEHvq_80PMLoP86WztiQWej04sE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:50:9f:2d:6a:45:86:92:4d:50:99:1e:01:f3:93:16:d7:b3: 2f:f2:de:bf:06:32:23:ce:11:04:e4:ef:62:da:c7:eb:63:1d: d2:47:56:6f:ea:7f:2b:83:7a:6e:a1:2d:e3:08:7d:73:e1:f3: 22:21:fd:5f:9d:f2:89:44:00:62:b5:73:46:f9:0d:46:59:97: de:49:91:d8:e7:04:11:a3:9a:50:b6:a7:34:c8:22:49:86:47: 84:db:0a:22:fe:07:ac:fb:fa:7e:53:52:f0:7d:18:21:36:df: 85:3a:59:9d:e3:25:d5:90:20:78:cc:1c:ac:2d:37:59:e8:9b: 5a:f6:e2:2e:27:a9:5e:d5:db:24:a0:60:fb:9d:6b:e3:92:1c: 0f:e6:02:5e:68:03:7c:8b:18:d9:66:3b:2b:40:85:7e:63:37: 4a:f0:47:a9:60:61:aa:25:c8:47:f1:b5:34:e7:e3:e4:05:b4: fd:f2:3a:3e:fc:48:56:f0:66:06:3e:a4:56:87:c9:ef:3d:5a: da:91:f8:91:81:2e:a2:01:b7:13:33:17:0c:87:ae:ec:b6:65: 77:55:1e:e1:01:bf:87:f5:86:ff:d4:77:c0:f3:ca:c8:49:8f: 4f:0c:2f:b9:42:bf:ad:7c:f3:ed:55:8c:33:c4:5f:84:b7:3d: f8:08:10:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIzNkQxMTAvBgNVBAUTKDAwNDFFRkFCRkYzNDNDQzJFODNGQ0U5NkNFRDg5MDU5 RThGNEUyQzEwHhcNMjUwNzAxMDE1MjU5WhcNMjUwNzA4MDE1MjU5WjAYMRYwFAYD VQQDEw02ODYzM2Y3Yi1lZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9L9BfmdpUVNjt/scfdtfqus3dARe2S31z/iKtL8O9YvxZhrvubQE844wFgg MxpHqK846uI8vHfVxagguVUICZk6HO65c3qIPpi4jJd3PA7+CAmJcWET/HVmhHRg ebHMNgt4zai/vfz9KOoxxWyvo9AnGXCGmu6DVDvW3IH8MCVgWArZ/AE9Bu46O0Jb MFO6IzMfOMm3pKRvRGcmHRpaSuqNuMZtsNPfPq89j1KEUvoYTt9WJhf29hUrQz8T mHpzYYeDtc9baykFrHhGItJzjdq511nhRO0wKOxKj5PHtT//bh4L3rPw8ZVAWPhR c93XsViA309U+68N3nB4WH3D2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5cpbau vjy7/WkFZ6f2+YyxCiXyMB8GA1UdIwQYMBaAFABB76v/NDzC6D/Ols7YkFno9OLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjM2RC8yMkU2OTJBQURD QjIxMUVDQUJERTNFNkVDNEY5QUUwMi9BRUh2cV84MFBNTG9QODZXenRpUVdlajA0 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FFSHZxXzgwUE1Mb1A4Nld6dGlRV2VqMDRzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjM2RC8yMkU2OTJBQURDQjIxMUVDQUJERTNFNkVDNEY5QUUwMi9BRUh2cV84MFBN TG9QODZXenRpUVdlajA0c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5UJ8takWGkk1QmR4B85MW17Mv8t6/BjIjzhEE5O9i2sfrYx3SR1Zv 6n8rg3puoS3jCH1z4fMiIf1fnfKJRABitXNG+Q1GWZfeSZHY5wQRo5pQtqc0yCJJ hkeE2woi/ges+/p+U1LwfRghNt+FOlmd4yXVkCB4zBysLTdZ6Jta9uIuJ6le1dsk oGD7nWvjkhwP5gJeaAN8ixjZZjsrQIV+YzdK8EepYGGqJchH8bU05+PkBbT98jo+ /EhW8GYGPqRWh8nvPVrakfiRgS6iAbcTMxcMh67stmV3VR7hAb+H9Yb/1HfA88rI SY9PDC+5Qr+tfPPtVYwzxF+Etz34CBAq -----END CERTIFICATE-----Generated at Tue Jul 1 08:37:34 2025 by rpki-client