$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft File: rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft (raw, json) Hash identifier: VQc7nXhu8qXQljk7o/8W5pRzY61N7n2xqmqv9laXmSA= Subject key identifier: 99:14:51:4D:5D:38:A3:7F:CC:4C:D9:72:FA:67:81:C3:02:0F:D9:EF Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft Manifest number: A2 Signing time: Sun 15 Jun 2025 05:19:27 +0000 Manifest this update: Sun 15 Jun 2025 05:19:26 +0000 Manifest next update: Sun 22 Jun 2025 05:19:26 +0000 Files and hashes: 1: rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl (hash: dTKuzG3vXBWss65Nutma34v/AyjafLZVEeMAspjZZqk=) 2: 39E76DD0589311EF88BF4665C4F9AE02.roa (hash: Zq031S+vIKwvUtyaWGsL0NF/sqhKajdnHiA3MDn79EA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Jun 15 05:19:26 2025 GMT Not After : Jun 22 05:19:26 2025 GMT Subject: CN=684e57de-9323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c1:5a:87:11:10:e3:d0:11:4b:71:fd:91:ad: a0:ff:09:f5:81:e3:c5:de:b6:3d:30:e5:29:96:80: 16:5a:12:cd:ed:95:57:6d:47:a5:81:e6:d8:8a:4f: 35:1c:23:04:1d:2f:2a:84:de:02:24:7c:2c:49:6c: d0:66:74:2e:13:8b:02:6c:4b:54:35:3d:bf:a0:df: fb:ae:47:ce:c2:4e:c6:72:59:82:00:1d:4b:fa:69: 1e:8d:5e:79:01:c8:e8:57:a1:4e:36:97:48:b1:df: 48:3d:7f:5c:0a:6a:eb:36:19:89:28:1c:96:b2:fe: 5a:a9:e0:5b:0d:74:9f:58:8f:11:40:c7:48:77:16: bd:06:c1:4f:01:e3:7b:23:17:1e:22:d4:7e:e9:4e: bb:11:4e:72:c3:6e:c5:ad:cc:5e:db:80:f3:28:e9: 12:b2:7f:1f:f1:a4:0b:d3:d1:81:a4:49:2d:6d:27: a8:5c:36:56:09:68:af:d4:80:ff:41:91:42:95:b6: 60:a3:d1:11:cd:6a:42:28:73:9c:4f:6f:22:76:54: 42:5d:8e:ae:f7:fe:ea:bb:4b:6e:3d:12:43:32:8f: c2:1f:a6:ae:f6:ca:3c:c3:e8:66:11:88:2f:27:6d: 3f:b9:96:a0:bd:82:2e:03:82:3f:96:a7:74:3a:8c: 1e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:14:51:4D:5D:38:A3:7F:CC:4C:D9:72:FA:67:81:C3:02:0F:D9:EF X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:a5:48:92:e2:cf:26:2f:9d:53:c2:c3:33:7d:0a:2f:17:a2: 3c:f2:a7:e3:de:b6:3f:e3:76:cb:21:dc:fc:fe:ed:dd:fc:81: e1:ea:87:af:e2:e4:c2:9e:a0:5b:81:8d:8f:4e:f8:bf:75:84: c9:e9:ff:ae:bc:e3:b3:67:08:ec:a1:b0:a4:5c:4f:ed:30:b0: 58:59:f8:66:eb:e9:48:c5:d9:34:fe:67:75:bd:3b:a3:ff:cd: df:5b:72:b3:58:52:a5:1c:cb:6e:20:d8:e3:bb:3a:06:67:7b: ee:84:02:2e:b1:24:ec:8c:27:fc:88:92:0d:f2:c8:3b:5d:f9: 46:f8:56:d7:c8:fe:55:0b:d0:4a:91:fb:19:28:77:2b:e8:de: f5:09:a0:87:08:31:c0:47:75:d8:c2:32:5b:64:29:1e:85:32: dc:85:46:07:a4:be:09:9e:57:e2:35:7c:ee:0d:56:49:c9:df: 36:e1:55:58:c7:06:bf:71:7c:5c:1c:df:29:47:b8:ec:a3:f3: e0:b4:9c:97:96:da:85:9b:a2:b9:5d:e6:4e:3d:21:9d:3e:27: 04:4b:3c:6d:32:99:45:d0:9e:87:6d:2c:5a:18:e0:e8:51:72: d0:46:57:37:53:59:0f:33:e6:c6:83:63:79:09:c9:4f:cc:00: 34:06:91:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUwNjE1MDUxOTI2WhcNMjUwNjIyMDUxOTI2WjAYMRYwFAYD VQQDEw02ODRlNTdkZS05MzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMFahxEQ49ARS3H9ka2g/wn1gePF3rY9MOUploAWWhLN7ZVXbUelgebYik81 HCMEHS8qhN4CJHwsSWzQZnQuE4sCbEtUNT2/oN/7rkfOwk7GclmCAB1L+mkejV55 AcjoV6FONpdIsd9IPX9cCmrrNhmJKByWsv5aqeBbDXSfWI8RQMdIdxa9BsFPAeN7 IxceItR+6U67EU5yw27Frcxe24DzKOkSsn8f8aQL09GBpEktbSeoXDZWCWiv1ID/ QZFClbZgo9ERzWpCKHOcT28idlRCXY6u9/7qu0tuPRJDMo/CH6au9so8w+hmEYgv J20/uZagvYIuA4I/lqd0OoweqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkUUU1d OKN/zEzZcvpngcMCD9nvMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTY5QS84QjBFNzM4MDU4OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZ UUxDT3BzaU5rSkRvdHNVZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJpUiS4s8mL51TwsMzfQovF6I88qfj3rY/43bLIdz8/u3d/IHh6oev 4uTCnqBbgY2PTvi/dYTJ6f+uvOOzZwjsobCkXE/tMLBYWfhm6+lIxdk0/md1vTuj /83fW3KzWFKlHMtuINjjuzoGZ3vuhAIusSTsjCf8iJIN8sg7XflG+FbXyP5VC9BK kfsZKHcr6N71CaCHCDHAR3XYwjJbZCkehTLchUYHpL4JnlfiNXzuDVZJyd824VVY xwa/cXxcHN8pR7jso/PgtJyXltqFm6K5XeZOPSGdPicESzxtMplF0J6HbSxaGODo UXLQRlc3U1kPM+bGg2N5CclPzAA0BpGr -----END CERTIFICATE-----Generated at Sun Jun 15 09:53:41 2025 by rpki-client