$ rpki-client -vvf rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft File: doh0adZBC-RoB3WHhH7qoIC0InI.mft (raw, json) Hash identifier: qA4o4rBQ+c3Ck9rQx1vjkIRm8uUiqmnwb2yQTcod3lY= Subject key identifier: 95:68:AB:81:BD:17:FC:1D:FF:F5:2F:1F:AB:00:E0:64:38:D5:24:FD Authority key identifier: 76:88:74:69:D6:41:0B:E4:68:07:75:87:84:7E:EA:A0:80:B4:22:72 Certificate issuer: /CN=A9114382/serialNumber=76887469D6410BE468077587847EEAA080B42272 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft Manifest number: 2A Signing time: Fri 13 Jun 2025 06:40:43 +0000 Manifest this update: Fri 13 Jun 2025 06:40:42 +0000 Manifest next update: Fri 20 Jun 2025 06:40:42 +0000 Files and hashes: 1: doh0adZBC-RoB3WHhH7qoIC0InI.crl (hash: S+I6Yuup/pokKo8ny1RW89kjllQMZIHrxHUapS2pJh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.crl rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114382, serialNumber=76887469D6410BE468077587847EEAA080B42272 Validity Not Before: Jun 13 06:40:42 2025 GMT Not After : Jun 20 06:40:42 2025 GMT Subject: CN=684bc7eb-5bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:57:aa:50:6f:b2:79:93:fa:08:9f:52:d5:25: ce:fa:39:3c:fa:5b:de:3d:83:12:af:48:24:5e:b2: d8:84:86:48:17:a2:ba:d3:75:a1:e0:1f:5f:06:13: fb:a2:8c:a9:91:41:75:6d:1c:39:90:ae:00:3a:79: a8:30:b9:ef:04:4f:3c:4e:40:84:65:fd:54:db:71: 9f:48:90:b2:21:1e:ec:2d:08:13:ab:f9:f6:28:18: b8:e9:f7:f4:bf:7c:26:09:12:85:11:ab:08:33:74: 3f:eb:cb:91:d4:75:0b:ef:6b:17:dd:47:ee:8d:a8: 0e:fd:81:00:3a:4d:ed:bb:1f:73:1d:1f:40:17:9c: 8c:d8:4e:f7:49:99:ac:05:74:bf:43:bc:96:9e:f0: 4b:eb:21:1f:53:3e:8f:97:68:08:9d:d7:35:57:cf: 08:98:24:51:fe:31:07:6e:71:ca:3c:72:5f:da:55: f3:ac:79:f6:b4:d7:51:3e:1b:6f:98:af:ed:dd:8c: fa:af:be:f2:bd:0d:bb:11:b4:ad:fa:0f:fe:d8:92: fc:c7:da:e7:fb:f5:df:c8:75:4a:8a:8e:6b:2e:fc: 32:f7:32:cc:e5:3a:e3:e2:1d:74:19:bb:08:cc:c9: 08:22:6a:49:ab:f5:67:86:1f:0e:19:bb:99:1d:2d: 60:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:68:AB:81:BD:17:FC:1D:FF:F5:2F:1F:AB:00:E0:64:38:D5:24:FD X509v3 Authority Key Identifier: keyid:76:88:74:69:D6:41:0B:E4:68:07:75:87:84:7E:EA:A0:80:B4:22:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:db:b0:ee:f5:d4:6c:d8:a5:a6:ed:a8:c8:7f:20:6c:7f:62: dc:41:05:34:a5:36:ee:25:b7:07:4f:65:b4:7d:05:fc:3e:e2: 14:48:cd:c9:7e:8a:73:6b:ab:24:c1:94:7f:60:47:96:7c:c9: 45:bb:0e:0e:48:72:fb:58:39:85:0e:e3:0c:1c:28:00:d1:cd: 84:b3:33:3f:f2:ec:96:8b:81:78:0b:f8:fc:e1:bd:87:f2:dc: 11:b9:cf:12:46:9d:1c:bb:2b:23:a9:ca:1b:6d:57:4c:76:cf: a3:27:f0:a0:4e:a1:b3:48:06:ee:51:7f:19:f8:cc:db:ec:13: 9d:f9:a6:40:ba:b8:bd:d2:c5:2e:e0:23:f7:ec:22:e1:5e:37: 2d:75:42:8f:7f:36:58:76:a6:de:9c:27:cc:6b:ee:5a:23:d1: 15:54:73:ce:89:ba:76:15:e6:9d:28:4e:42:e8:d7:6b:3b:47: a4:5a:51:0f:34:1b:b3:ae:80:d8:d2:df:1b:95:f6:0b:40:7c: 32:e8:17:b5:45:73:ee:a3:66:8b:c9:8c:79:bf:0f:65:df:13: fa:85:df:b6:43:8b:6f:0e:08:e4:b8:2e:3a:e9:9f:ac:c4:3a: 3f:d1:4b:0b:d1:3d:43:05:cb:e1:06:fb:4b:89:7e:cd:8b:aa: 7f:ed:49:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDM4MjExMC8GA1UEBRMoNzY4ODc0NjlENjQxMEJFNDY4MDc3NTg3ODQ3RUVBQTA4 MEI0MjI3MjAeFw0yNTA2MTMwNjQwNDJaFw0yNTA2MjAwNjQwNDJaMBgxFjAUBgNV BAMTDTY4NGJjN2ViLTViYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxV6pQb7J5k/oIn1LVJc76OTz6W949gxKvSCRestiEhkgXorrTdaHgH18GE/ui jKmRQXVtHDmQrgA6eagwue8ETzxOQIRl/VTbcZ9IkLIhHuwtCBOr+fYoGLjp9/S/ fCYJEoURqwgzdD/ry5HUdQvvaxfdR+6NqA79gQA6Te27H3MdH0AXnIzYTvdJmawF dL9DvJae8EvrIR9TPo+XaAid1zVXzwiYJFH+MQducco8cl/aVfOsefa011E+G2+Y r+3djPqvvvK9DbsRtK36D/7YkvzH2uf79d/IdUqKjmsu/DL3MszlOuPiHXQZuwjM yQgiakmr9WeGHw4Zu5kdLWDBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlWirgb0X /B3/9S8fqwDgZDjVJP0wHwYDVR0jBBgwFoAUdoh0adZBC+RoB3WHhH7qoIC0InIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0MzgyLzQ0QjVGQTFDMEFD MDExRjBCNThGODI0N0M0RjlBRTAyL2RvaDBhZFpCQy1Sb0IzV0hoSDdxb0lDMElu SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZG9oMGFkWkJDLVJvQjNXSGhIN3FvSUMwSW5JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 MzgyLzQ0QjVGQTFDMEFDMDExRjBCNThGODI0N0M0RjlBRTAyL2RvaDBhZFpCQy1S b0IzV0hoSDdxb0lDMEluSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMXbsO711GzYpabtqMh/IGx/YtxBBTSlNu4ltwdPZbR9Bfw+4hRIzcl+ inNrqyTBlH9gR5Z8yUW7Dg5IcvtYOYUO4wwcKADRzYSzMz/y7JaLgXgL+PzhvYfy 3BG5zxJGnRy7KyOpyhttV0x2z6Mn8KBOobNIBu5Rfxn4zNvsE535pkC6uL3SxS7g I/fsIuFeNy11Qo9/Nlh2pt6cJ8xr7loj0RVUc86JunYV5p0oTkLo12s7R6RaUQ80 G7OugNjS3xuV9gtAfDLoF7VFc+6jZovJjHm/D2XfE/qF37ZDi28OCOS4Ljrpn6zE Oj/RSwvRPUMFy+EG+0uJfs2Lqn/tSXM= -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:18 2025 by rpki-client