$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: ex8XaPO6mQriM1aGamrYql00xbqLpMekz/2AIrWypig= Subject key identifier: EB:39:B6:E0:EF:EC:B5:21:FE:25:94:AC:1E:C3:56:93:CB:DC:2A:A5 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 1D Signing time: Tue 17 Jun 2025 06:46:20 +0000 Manifest this update: Tue 17 Jun 2025 06:46:19 +0000 Manifest next update: Tue 24 Jun 2025 06:46:19 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: vtgAFWk2PEzVysWsQxW37lCTX4Go9vsiGZPgcDiQGRI=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 1rT5RRmmBu2dtW7r80awQ5qBk4VrGxHD3sFnkgNZ9lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:46:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Jun 17 06:46:19 2025 GMT Not After : Jun 24 06:46:19 2025 GMT Subject: CN=68510f3c-01e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:28:5b:97:09:3b:02:de:7a:3a:80:44:ec:78: e6:49:5c:ce:d6:0f:2d:d8:d1:78:99:ad:ae:51:66: b5:2b:54:cc:62:dd:36:52:40:8b:a2:d6:29:18:e8: 74:78:59:aa:e6:dc:89:be:0f:5c:91:4d:00:5e:45: 69:8a:82:22:0b:0c:09:21:91:d1:e9:e2:46:04:5f: 63:4d:2a:75:5b:eb:19:ef:0d:27:2d:5e:a0:fd:24: 6e:ce:d8:73:76:ff:29:1a:f2:60:65:ea:a7:75:99: 23:e3:02:c9:76:c9:a3:66:9f:27:9e:7a:80:b9:e2: 62:8f:06:9a:e8:ff:51:31:f3:0c:cf:56:0c:f6:e7: a1:26:0e:65:50:8a:12:98:a8:23:c4:16:9b:4f:41: 5e:99:d9:c7:cf:10:c6:46:59:06:89:a3:02:db:ba: 63:d4:21:4a:ca:f9:c3:91:08:03:be:32:10:d1:da: 03:c6:39:42:3b:c4:b5:a1:1e:48:89:9e:25:b9:41: 59:2c:11:75:b3:ef:b3:40:da:b4:e9:e5:dd:36:bb: bf:22:b5:bf:80:b0:c6:87:44:d9:ef:88:cb:68:79: 12:7b:e2:ee:5d:c8:ed:8b:0d:5e:e3:ec:e9:91:76: 17:2c:9a:3f:ac:b9:ed:ff:6b:52:64:a0:6e:2a:73: 37:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:39:B6:E0:EF:EC:B5:21:FE:25:94:AC:1E:C3:56:93:CB:DC:2A:A5 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:41:e4:4c:fa:80:43:8a:28:ed:96:2a:d1:a8:4e:b4:bd:f3: 8d:45:87:6d:bd:c6:bc:40:46:e0:29:bc:9e:83:b2:06:06:a5: f9:0e:1c:42:05:26:4c:f7:d3:48:e6:f9:9d:e0:33:1d:1e:cb: 9f:7e:95:ab:49:f5:5f:da:ab:fe:41:d5:d0:54:63:b1:2b:b0: a0:92:08:d7:18:c9:f9:10:a6:3d:c3:56:ca:2c:87:2e:98:f5: df:62:f9:fa:3a:eb:cc:48:75:7f:06:88:f7:fa:7f:8a:85:81: 5e:c0:7c:3e:5a:8d:11:f9:62:6d:23:a3:16:97:36:94:4b:97: dc:e1:a8:0f:da:9c:56:87:c3:5c:ae:30:40:21:cd:c6:d2:a5: 43:60:f4:7a:2c:f5:af:0e:89:01:c2:7c:ba:77:32:8c:9c:c8: b4:79:3a:d6:7d:43:ce:38:9c:72:11:5c:e5:65:c5:82:80:1e: ad:08:d6:8a:e5:10:a2:ea:f3:05:a0:41:12:b9:cb:02:98:2f: 1d:10:34:4e:43:f6:34:94:d4:1d:bb:b0:73:46:e2:c3:c7:ac: 58:23:c4:37:a9:67:d8:4a:9e:4c:f3:3f:fa:6f:dd:16:ed:d8: 85:25:8e:35:df:57:42:59:03:7d:37:37:b9:73:33:5c:c8:75: 5c:d3:af:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA2MTcwNjQ2MTlaFw0yNTA2MjQwNjQ2MTlaMBgxFjAUBgNV BAMTDTY4NTEwZjNjLTAxZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2KFuXCTsC3no6gETseOZJXM7WDy3Y0XiZra5RZrUrVMxi3TZSQIui1ikY6HR4 Warm3Im+D1yRTQBeRWmKgiILDAkhkdHp4kYEX2NNKnVb6xnvDSctXqD9JG7O2HN2 /yka8mBl6qd1mSPjAsl2yaNmnyeeeoC54mKPBpro/1Ex8wzPVgz256EmDmVQihKY qCPEFptPQV6Z2cfPEMZGWQaJowLbumPUIUrK+cORCAO+MhDR2gPGOUI7xLWhHkiJ niW5QVksEXWz77NA2rTp5d02u78itb+AsMaHRNnviMtoeRJ74u5dyO2LDV7j7OmR dhcsmj+sue3/a1JkoG4qczdrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6zm24O/s tSH+JZSsHsNWk8vcKqUwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEFB5Ez6gEOKKO2WKtGoTrS9841Fh229xrxARuApvJ6DsgYGpfkOHEIF Jkz300jm+Z3gMx0ey59+latJ9V/aq/5B1dBUY7ErsKCSCNcYyfkQpj3DVsoshy6Y 9d9i+fo668xIdX8GiPf6f4qFgV7AfD5ajRH5Ym0joxaXNpRLl9zhqA/anFaHw1yu MEAhzcbSpUNg9Hos9a8OiQHCfLp3MoycyLR5OtZ9Q844nHIRXOVlxYKAHq0I1orl EKLq8wWgQRK5ywKYLx0QNE5D9jSU1B27sHNG4sPHrFgjxDepZ9hKnkzzP/pv3Rbt 2IUljjXfV0JZA303N7lzM1zIdVzTr7g= -----END CERTIFICATE-----Generated at Wed Jun 18 01:49:17 2025 by rpki-client