$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: BYD2pd6wNmBRE/Pb6mmj3pK3XjBsHCcv6jIm0ntJqEY= Subject key identifier: 2A:D1:0A:E5:20:0F:A4:02:F2:F5:80:4B:58:6E:76:EF:F4:FD:19:9F Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 07C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 07C2 Signing time: Mon 30 Jun 2025 21:21:27 +0000 Manifest this update: Mon 30 Jun 2025 21:21:27 +0000 Manifest next update: Mon 07 Jul 2025 21:21:27 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: E1Jj4P94kPSR4svxEujMmonDkarSVJg8q3YsKjtXneA=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: IA44NsOrK26vTiCAA24OiQTy1Evi9ojQ75K61lOkBEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1991 (0x7c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Jun 30 21:21:27 2025 GMT Not After : Jul 7 21:21:27 2025 GMT Subject: CN=6862ffd7-90d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:b9:9a:bd:e5:43:71:68:d9:ed:7e:b3:02: 23:a5:d8:a9:87:44:a7:f7:b9:ea:e8:96:51:c7:17: fb:4f:2b:87:5d:82:dd:38:45:5e:0d:7d:94:8f:31: 3b:e5:62:36:b9:46:3f:59:b1:f1:e0:7c:0a:f5:9b: 35:e2:3c:98:2e:eb:6f:4c:80:7c:67:c8:10:bc:aa: 60:de:c0:cb:92:31:cb:ef:78:a8:24:9a:7d:fa:e3: a7:36:12:18:27:da:71:f3:8e:71:e5:54:37:c3:6d: 39:92:c0:a8:45:01:78:ec:ea:a2:5c:f7:9b:a8:47: c5:31:05:78:bb:3c:ee:fc:dd:b7:5e:6c:73:74:c3: ea:a6:43:87:5a:1f:bf:3c:b9:23:39:ec:44:21:b5: 00:64:dd:99:50:84:9e:6a:b5:dc:ca:b9:fc:a7:08: ff:69:37:7f:fd:3e:a4:e5:ea:bc:33:d5:c6:fe:e7: 29:84:87:14:a3:1c:cf:0e:82:21:ff:d6:81:74:d4: cf:29:70:d2:c5:65:d8:53:07:a0:fd:77:b4:ab:f4: 83:c7:cc:6f:7a:49:8e:0a:83:3a:9c:78:83:42:44: d6:46:2f:d1:a4:37:b6:a9:e2:43:2a:96:fc:31:61: f9:c5:54:e0:68:7e:ec:42:4e:d8:89:a0:40:b4:6b: 57:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D1:0A:E5:20:0F:A4:02:F2:F5:80:4B:58:6E:76:EF:F4:FD:19:9F X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:37:6d:d0:df:61:a5:03:8c:44:a8:b0:a0:71:2e:69:32:42: dd:b6:1d:4a:0d:11:8b:30:44:cc:7f:76:f1:dd:24:a2:ed:5c: 73:2f:74:2a:d9:5b:4d:6e:db:89:b9:79:50:e0:54:b2:13:d3: 68:a4:75:13:c5:fd:65:9e:e4:41:8f:fe:5b:77:03:5f:7e:cf: de:45:3f:53:5a:33:05:57:f5:87:ad:a7:77:ce:d2:f7:e5:b9: 9d:6b:7e:61:f1:d4:79:9d:3d:ba:ef:8a:be:f8:4f:db:2d:7f: 41:af:9e:d7:17:f1:81:cb:60:c3:a6:29:04:c6:d2:20:39:64: 3a:2b:84:20:79:a3:77:8a:3e:db:3c:a4:fb:a1:a7:09:d4:30: 43:64:bb:b5:32:ce:ce:06:77:a8:18:d9:fd:03:8f:f0:64:61: 5c:c7:92:eb:85:f0:11:a3:c8:9b:c2:4e:75:77:2e:ef:b4:7f: c8:34:36:45:89:b2:d4:72:19:a0:a2:c4:d7:34:81:a3:ec:1d: de:f4:4f:98:b9:d7:38:ca:25:bb:25:de:93:4e:30:af:3d:79: a1:0a:09:4e:77:a5:9b:ff:60:40:de:a1:29:82:d1:7c:1e:27: 8b:df:0e:8b:c6:a0:f9:a7:0d:4b:0e:71:1a:f2:de:13:0b:25: af:01:31:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUwNjMwMjEyMTI3WhcNMjUwNzA3MjEyMTI3WjAYMRYwFAYD VQQDEw02ODYyZmZkNy05MGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaq5mr3lQ3Fo2e1+swIjpdiph0Sn97nq6JZRxxf7TyuHXYLdOEVeDX2UjzE7 5WI2uUY/WbHx4HwK9Zs14jyYLutvTIB8Z8gQvKpg3sDLkjHL73ioJJp9+uOnNhIY J9px845x5VQ3w205ksCoRQF47OqiXPebqEfFMQV4uzzu/N23XmxzdMPqpkOHWh+/ PLkjOexEIbUAZN2ZUISearXcyrn8pwj/aTd//T6k5eq8M9XG/ucphIcUoxzPDoIh /9aBdNTPKXDSxWXYUweg/Xe0q/SDx8xvekmOCoM6nHiDQkTWRi/RpDe2qeJDKpb8 MWH5xVTgaH7sQk7YiaBAtGtX2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrRCuUg D6QC8vWAS1hudu/0/RmfMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvN23Q32GlA4xEqLCgcS5pMkLdth1KDRGLMETMf3bx3SSi7VxzL3Qq 2VtNbtuJuXlQ4FSyE9NopHUTxf1lnuRBj/5bdwNffs/eRT9TWjMFV/WHrad3ztL3 5bmda35h8dR5nT2674q++E/bLX9Br57XF/GBy2DDpikExtIgOWQ6K4QgeaN3ij7b PKT7oacJ1DBDZLu1Ms7OBneoGNn9A4/wZGFcx5LrhfARo8ibwk51dy7vtH/INDZF ibLUchmgosTXNIGj7B3e9E+Yudc4yiW7Jd6TTjCvPXmhCglOd6Wb/2BA3qEpgtF8 HieL3w6LxqD5pw1LDnEa8t4TCyWvATGC -----END CERTIFICATE-----Generated at Wed Jul 2 10:18:11 2025 by rpki-client