$ rpki-client -vvf rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft File: AEHvq_80PMLoP86WztiQWej04sE.mft (raw, json) Hash identifier: GK0QKod2JjDDqfaRfjleVn6sifS22+QPlwLeqpBOBBQ= Subject key identifier: 20:F7:7F:51:2B:F9:7B:E7:9C:6B:F3:A1:2F:85:C2:6C:3F:B7:86:C2 Authority key identifier: 00:41:EF:AB:FF:34:3C:C2:E8:3F:CE:96:CE:D8:90:59:E8:F4:E2:C1 Certificate issuer: /CN=A91A236D/serialNumber=0041EFABFF343CC2E83FCE96CED89059E8F4E2C1 Certificate serial: 0306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEHvq_80PMLoP86WztiQWej04sE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft Manifest number: 0302 Signing time: Sun 29 Jun 2025 00:47:36 +0000 Manifest this update: Sun 29 Jun 2025 00:47:36 +0000 Manifest next update: Sun 06 Jul 2025 00:47:36 +0000 Files and hashes: 1: AEHvq_80PMLoP86WztiQWej04sE.crl (hash: E3KNX5JjqGf+3oQ+mHnr819Fl/EEL2RxWKzo83hzyRk=) 2: DC072950DCB911EC8AAB8710C4F9AE02.roa (hash: yybFsJYo0u1DXgO0+Ag0eONj7o/2vIeK/qEAg2e5UXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.crl rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEHvq_80PMLoP86WztiQWej04sE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A236D, serialNumber=0041EFABFF343CC2E83FCE96CED89059E8F4E2C1 Validity Not Before: Jun 29 00:47:36 2025 GMT Not After : Jul 6 00:47:36 2025 GMT Subject: CN=68608d28-4757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:60:cc:bf:20:16:67:db:b3:e1:04:c4:04:7f: d7:fd:4d:c3:38:f9:d0:40:bc:b7:db:24:55:fd:a2: f5:c0:1e:34:42:0f:46:f2:84:5d:1e:99:17:30:f0: b0:28:56:cc:fb:38:f3:09:e2:ca:f7:61:62:01:ac: 7a:73:5b:f9:b2:07:bd:dd:88:af:87:f2:b2:9d:2c: 8a:72:08:0b:64:7e:02:7e:08:bd:80:df:13:f4:f6: fe:2d:20:ad:88:b0:a2:69:7e:98:95:92:49:5a:c6: 25:16:88:95:6c:11:22:23:e8:33:a8:5d:82:a0:75: 67:bc:fd:cf:d5:83:6b:6e:eb:f6:df:00:34:05:8a: 9b:dd:59:46:90:d1:a7:f7:7e:f1:98:df:65:76:d4: bb:c8:e8:9d:b9:72:55:89:bc:2f:ff:c1:ce:bb:21: 71:65:f0:f9:2f:c4:65:9f:9c:80:f8:00:e7:ea:7f: ad:06:b3:21:00:a3:c6:c0:45:aa:2a:67:1b:61:1e: 7b:93:3f:67:09:06:5c:e6:85:90:4c:66:26:80:66: 0b:bd:66:8d:93:33:6c:43:f4:0b:90:4e:5d:86:d1: ce:a5:f6:18:f0:61:02:44:e8:16:c7:7b:c9:0d:e5: 84:e7:ae:99:8c:f6:81:0d:8a:19:10:5d:8a:48:fc: a5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F7:7F:51:2B:F9:7B:E7:9C:6B:F3:A1:2F:85:C2:6C:3F:B7:86:C2 X509v3 Authority Key Identifier: keyid:00:41:EF:AB:FF:34:3C:C2:E8:3F:CE:96:CE:D8:90:59:E8:F4:E2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEHvq_80PMLoP86WztiQWej04sE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A236D/22E692AADCB211ECABDE3E6EC4F9AE02/AEHvq_80PMLoP86WztiQWej04sE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:0b:e1:29:8a:40:38:2b:62:57:de:21:73:12:19:1c:57:86: 42:30:e6:5d:ce:7c:63:8d:27:0d:e4:5f:fa:c4:3c:a4:69:07: 15:3c:47:fa:35:99:de:1c:19:65:7f:dd:d8:01:70:7d:24:d6: 9d:ac:79:00:e5:c5:9f:bb:f3:6b:81:41:68:0a:03:a3:c7:14: 49:a0:c5:35:ce:31:c0:3d:63:d9:75:cb:0d:ef:73:17:84:8e: 97:df:66:88:fb:a9:ff:eb:f9:79:11:3c:bc:83:0e:da:d8:86: cd:f0:1b:a8:ea:35:a4:ec:5b:96:71:50:81:37:e0:44:0a:79: bb:44:de:16:8a:d2:3e:6a:22:d2:c4:3e:c8:74:7a:19:16:50: ff:9e:11:6e:9e:8c:96:28:58:3e:ca:1b:82:a0:4c:83:5d:59: 53:eb:4d:8b:0a:65:c0:ce:75:14:f5:dc:eb:ae:ce:b7:a2:a5: 18:3d:6a:eb:ff:fb:6c:b6:c5:cb:47:0f:a5:01:92:f7:83:07: b2:1a:80:1f:0e:b0:eb:e0:b8:8a:16:08:b3:4c:21:12:f4:ee: 53:1b:a8:8d:b4:27:8f:50:38:e5:86:45:e0:c8:be:1a:3e:46: 32:eb:66:ca:89:5f:98:c3:d3:e2:fc:6a:d7:20:f5:81:d5:8c: 1f:50:a4:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIzNkQxMTAvBgNVBAUTKDAwNDFFRkFCRkYzNDNDQzJFODNGQ0U5NkNFRDg5MDU5 RThGNEUyQzEwHhcNMjUwNjI5MDA0NzM2WhcNMjUwNzA2MDA0NzM2WjAYMRYwFAYD VQQDEw02ODYwOGQyOC00NzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGDMvyAWZ9uz4QTEBH/X/U3DOPnQQLy32yRV/aL1wB40Qg9G8oRdHpkXMPCw KFbM+zjzCeLK92FiAax6c1v5sge93Yivh/KynSyKcggLZH4Cfgi9gN8T9Pb+LSCt iLCiaX6YlZJJWsYlFoiVbBEiI+gzqF2CoHVnvP3P1YNrbuv23wA0BYqb3VlGkNGn 937xmN9ldtS7yOiduXJVibwv/8HOuyFxZfD5L8Rln5yA+ADn6n+tBrMhAKPGwEWq KmcbYR57kz9nCQZc5oWQTGYmgGYLvWaNkzNsQ/QLkE5dhtHOpfYY8GECROgWx3vJ DeWE566ZjPaBDYoZEF2KSPyl7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCD3f1Er +XvnnGvzoS+Fwmw/t4bCMB8GA1UdIwQYMBaAFABB76v/NDzC6D/Ols7YkFno9OLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjM2RC8yMkU2OTJBQURD QjIxMUVDQUJERTNFNkVDNEY5QUUwMi9BRUh2cV84MFBNTG9QODZXenRpUVdlajA0 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FFSHZxXzgwUE1Mb1A4Nld6dGlRV2VqMDRzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjM2RC8yMkU2OTJBQURDQjIxMUVDQUJERTNFNkVDNEY5QUUwMi9BRUh2cV84MFBN TG9QODZXenRpUVdlajA0c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9C+EpikA4K2JX3iFzEhkcV4ZCMOZdznxjjScN5F/6xDykaQcVPEf6 NZneHBllf93YAXB9JNadrHkA5cWfu/NrgUFoCgOjxxRJoMU1zjHAPWPZdcsN73MX hI6X32aI+6n/6/l5ETy8gw7a2IbN8Buo6jWk7FuWcVCBN+BECnm7RN4WitI+aiLS xD7IdHoZFlD/nhFunoyWKFg+yhuCoEyDXVlT602LCmXAznUU9dzrrs63oqUYPWrr //tstsXLRw+lAZL3gweyGoAfDrDr4LiKFgizTCES9O5TG6iNtCePUDjlhkXgyL4a PkYy62bKiV+Yw9Pi/GrXIPWB1YwfUKQx -----END CERTIFICATE-----Generated at Mon Jun 30 00:23:37 2025 by rpki-client