$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft File: h7LA6ClUHS71JmOF6zlGuNUpBgg.mft (raw, json) Hash identifier: USHVOnC86XPyzP0NrPmAjol8aFhCJfih9djNgkNCcRo= Subject key identifier: AB:13:C1:EC:DD:59:9C:3F:52:F6:51:79:F9:D5:E6:C7:F9:C3:CD:4B Authority key identifier: 87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 Certificate issuer: /CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Certificate serial: 0840 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft Manifest number: 0824 Signing time: Thu 12 Jun 2025 20:36:06 +0000 Manifest this update: Thu 12 Jun 2025 20:36:05 +0000 Manifest next update: Thu 19 Jun 2025 20:36:05 +0000 Files and hashes: 1: h7LA6ClUHS71JmOF6zlGuNUpBgg.crl (hash: W9iRbfQxHaWSvQNAgicHeBn/3bIfzHsab5BYy1cceh0=) 2: 0A7320284D4811EE86B7A71FC4F9AE02.roa (hash: SiDzLOasKO+XNvQ+goSOpdOQE3ZO4gyfhkgA7eX7eA0=) 3: 021F5D1E005F11EE9D6E2530C4F9AE02.roa (hash: D9Du1jxG8oE9wceHFEoY5Nl8COEasjJYKId8W2qCUf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B0, serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Validity Not Before: Jun 12 20:36:05 2025 GMT Not After : Jun 19 20:36:05 2025 GMT Subject: CN=684b3a36-a5e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5b:bc:ac:fb:9b:84:e2:23:28:ac:8a:77:77: cc:78:6b:a2:77:2a:4e:db:29:dc:39:65:ab:1b:f1: 06:ee:37:9f:4c:a1:6f:44:42:c8:d4:b4:5d:38:0c: cd:c3:d4:02:39:31:5b:a4:23:85:4e:a7:bb:89:db: b7:16:e9:d3:f4:21:70:33:1c:33:8b:fa:6f:ad:cc: e0:2a:17:19:07:b0:e5:3e:b8:57:94:f8:eb:eb:a3: 0c:e6:4d:26:d8:30:b4:1b:44:ae:86:21:f7:eb:99: 16:cd:65:c4:61:29:a9:6b:2c:a4:99:e2:a2:da:27: 13:c2:53:1e:3f:1f:ea:ed:88:54:02:ce:da:4b:eb: fc:b1:09:27:74:4f:cb:ea:40:54:cc:60:50:b5:b0: 19:d3:f6:95:12:b2:c1:0c:85:40:bf:ac:36:e1:6f: 48:78:74:b1:f9:a4:d3:f4:9e:e2:cf:e3:d2:fc:12: fc:85:4c:8e:c0:7c:c0:48:19:81:27:51:ed:b5:7b: 6a:ae:f0:6c:0e:d2:69:f1:f6:05:2b:4a:6d:9e:2e: f6:37:c1:f1:bc:cb:a8:dd:2d:bc:64:7b:d1:ad:67: ff:e9:48:70:ce:d1:db:a0:85:bb:d0:a1:32:b8:33: b0:f0:03:84:7b:e3:a4:cd:0f:75:07:ab:3d:5d:9e: 20:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:13:C1:EC:DD:59:9C:3F:52:F6:51:79:F9:D5:E6:C7:F9:C3:CD:4B X509v3 Authority Key Identifier: keyid:87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:83:10:aa:5f:bc:45:a3:ed:d2:1f:cc:08:1a:d8:bc:8a:c2: 41:07:95:b2:61:d5:84:88:eb:10:4f:96:74:62:66:a8:82:df: fa:2e:91:7f:25:9f:b8:5f:1c:91:09:31:c7:c1:6c:2e:41:88: 90:0f:45:ea:16:8f:68:20:78:c7:47:6b:2a:ae:23:a9:33:14: a9:6c:d7:0c:ec:df:f5:80:4d:20:5a:6c:f4:57:11:34:96:7a: 48:bb:00:16:df:3e:9d:3b:12:47:7f:7e:d3:c8:41:d1:60:26: 36:3b:bd:16:34:6c:62:0b:ab:64:9c:f1:06:cd:85:ba:1e:e2: ae:4a:19:ea:44:8a:4a:06:e8:00:8d:73:b6:1d:28:bd:fc:ff: 53:15:89:92:c3:fb:a1:48:e1:80:c3:01:aa:c5:41:b9:55:24: 44:a0:1d:e8:7f:11:d4:77:38:f2:43:74:1a:c0:a0:6b:26:73: 79:fc:8d:47:40:19:98:9e:67:ac:c7:06:96:17:5e:aa:a3:05: 94:a4:b9:67:28:42:46:fd:5b:0b:48:c8:17:92:a8:0c:82:5d: 55:a8:75:43:33:7a:f7:0e:66:23:3b:68:6e:74:40:12:f0:a2: 6c:df:ab:f1:5d:0a:d6:17:b2:64:83:bd:3f:04:da:73:60:c6: 33:e7:07:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjAxMTAvBgNVBAUTKDg3QjJDMEU4Mjk1NDFEMkVGNTI2NjM4NUVCMzk0NkI4 RDUyOTA2MDgwHhcNMjUwNjEyMjAzNjA1WhcNMjUwNjE5MjAzNjA1WjAYMRYwFAYD VQQDEw02ODRiM2EzNi1hNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Vu8rPubhOIjKKyKd3fMeGuidypO2yncOWWrG/EG7jefTKFvRELI1LRdOAzN w9QCOTFbpCOFTqe7idu3FunT9CFwMxwzi/pvrczgKhcZB7DlPrhXlPjr66MM5k0m 2DC0G0SuhiH365kWzWXEYSmpayykmeKi2icTwlMePx/q7YhUAs7aS+v8sQkndE/L 6kBUzGBQtbAZ0/aVErLBDIVAv6w24W9IeHSx+aTT9J7iz+PS/BL8hUyOwHzASBmB J1HttXtqrvBsDtJp8fYFK0ptni72N8HxvMuo3S28ZHvRrWf/6UhwztHboIW70KEy uDOw8AOEe+OkzQ91B6s9XZ4giQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsTwezd WZw/UvZRefnV5sf5w81LMB8GA1UdIwQYMBaAFIeywOgpVB0u9SZjhes5RrjVKQYI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCMC9BMkRGNENFQ0RE NEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhTNzFKbU9GNnpsR3VOVXBC Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3TEE2Q2xVSFM3MUptT0Y2emxHdU5VcEJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCMC9BMkRGNENFQ0RENEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhT NzFKbU9GNnpsR3VOVXBCZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxgxCqX7xFo+3SH8wIGti8isJBB5WyYdWEiOsQT5Z0Ymaogt/6LpF/ JZ+4XxyRCTHHwWwuQYiQD0XqFo9oIHjHR2sqriOpMxSpbNcM7N/1gE0gWmz0VxE0 lnpIuwAW3z6dOxJHf37TyEHRYCY2O70WNGxiC6tknPEGzYW6HuKuShnqRIpKBugA jXO2HSi9/P9TFYmSw/uhSOGAwwGqxUG5VSREoB3ofxHUdzjyQ3QawKBrJnN5/I1H QBmYnmesxwaWF16qowWUpLlnKEJG/VsLSMgXkqgMgl1VqHVDM3r3DmYjO2hudEAS 8KJs36vxXQrWF7Jkg70/BNpzYMYz5weU -----END CERTIFICATE-----Generated at Sat Jun 14 18:46:52 2025 by rpki-client