$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft File: K08yPFindrTnU4be6Dci4EViMsY.mft (raw, json) Hash identifier: guIJHSY8+Ev1QusM0H4dmqDOdT6TqQPMg20sHYPzTu8= Subject key identifier: 06:B2:CC:AF:F9:8D:D8:8C:7D:5C:DD:95:B7:E8:A1:76:7E:94:2F:DD Authority key identifier: 2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 Certificate issuer: /CN=A911BC62/serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Certificate serial: 0DF1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft Manifest number: 0DE4 Signing time: Mon 16 Jun 2025 15:42:57 +0000 Manifest this update: Mon 16 Jun 2025 15:42:56 +0000 Manifest next update: Mon 23 Jun 2025 15:42:56 +0000 Files and hashes: 1: K08yPFindrTnU4be6Dci4EViMsY.crl (hash: aslEkpS5aFLy6lWzy7ZeaxF899T2OkiCTQ4yxDq+vH0=) 2: EE1EA292EA6A11E98F16FE30C4F9AE02.roa (hash: QaiwA0ii3swzDmEn5ZYRLYQTMUg0WLwS1y2KJOPdMzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3569 (0xdf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Validity Not Before: Jun 16 15:42:56 2025 GMT Not After : Jun 23 15:42:56 2025 GMT Subject: CN=68503b81-c502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:17:77:43:41:49:95:ec:6e:c9:3b:dc:02:44: ae:4d:09:b4:f5:56:fe:82:d0:f3:a6:a7:99:11:30: 5f:3d:b0:94:bb:43:15:e6:4e:6c:49:e3:aa:c2:6b: 5f:bd:4f:ac:4d:bb:93:f2:3b:c3:96:72:7a:a4:fc: a5:10:a7:90:1d:d4:7a:df:4f:9d:d1:2f:b4:ba:3d: 3a:df:06:83:14:60:49:09:f9:1f:e8:6e:38:c4:75: cf:e2:94:ce:d9:24:56:cc:83:a2:8b:1e:04:5a:35: ce:79:d3:58:69:e3:41:12:db:a7:b7:43:14:35:19: 55:ad:87:2b:6c:a2:50:1b:e7:0d:44:c4:10:ab:6d: bf:fa:6e:4e:bf:37:fc:0c:bf:77:8c:f1:64:6a:b8: 1f:2f:51:0c:0b:5b:fc:a7:f0:49:b0:5e:c2:77:df: 0b:3f:cc:9d:d4:5a:a0:6c:9a:12:0b:c6:b2:98:e1: b0:6a:c9:27:04:2b:c1:98:cc:ec:c8:f6:78:b7:da: 07:29:66:25:2c:6e:03:ae:0b:51:29:4a:99:d2:9f: 66:42:14:3a:19:dd:ae:77:d7:92:fb:c5:9a:68:fa: 97:30:02:2d:74:39:4a:8d:a3:57:77:b1:dd:a5:b3: 7c:68:c1:09:b0:d6:db:be:96:1e:c7:d6:12:28:c4: f4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B2:CC:AF:F9:8D:D8:8C:7D:5C:DD:95:B7:E8:A1:76:7E:94:2F:DD X509v3 Authority Key Identifier: keyid:2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:47:3c:c7:97:1b:dc:94:ac:ae:6c:0f:79:b3:19:4f:5a:c4: 9a:ec:69:60:d8:b4:d0:ce:00:24:e5:c3:70:66:d9:49:95:a4: 2d:17:c4:88:55:0c:a4:39:ee:fa:35:b2:68:40:ac:a6:dc:b2: b8:45:2c:81:b1:5c:5a:15:34:de:16:eb:fd:ac:36:4c:5f:c6: 41:f7:dc:a6:7e:c2:65:43:17:80:26:23:fb:d3:d9:f0:aa:eb: 0d:f7:14:c0:9d:d7:01:f8:a2:dd:8d:b1:6a:14:25:48:4b:8a: d4:a8:68:26:59:c6:3a:0a:63:ad:f9:81:3e:37:47:7a:75:74: 55:da:f2:7d:ad:44:2b:97:07:ba:8b:59:bf:0b:8a:ff:65:2e: 07:1d:60:25:d5:3e:c4:35:0d:2b:d9:82:1d:6e:b7:5e:0a:e9: 4f:eb:f6:31:c0:b8:3c:a2:e9:5b:ed:34:01:28:cc:c4:36:3d: bd:d5:66:22:3f:4b:9e:6b:f5:cf:f6:68:1e:6f:7b:13:e5:ae: a5:32:c8:85:e8:0d:02:60:50:31:ec:cb:a6:a0:d6:d2:d7:4d: b8:d3:c1:78:ed:64:bb:a7:e2:8a:95:ea:0c:0c:d8:b8:cf:2e: 85:a9:90:d5:02:ae:86:84:f9:25:b7:97:39:18:cb:da:1e:be: ab:7a:2c:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDJCNEYzMjNDNThBNzc2QjRFNzUzODZERUU4MzcyMkUw NDU2MjMyQzYwHhcNMjUwNjE2MTU0MjU2WhcNMjUwNjIzMTU0MjU2WjAYMRYwFAYD VQQDEw02ODUwM2I4MS1jNTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBd3Q0FJlexuyTvcAkSuTQm09Vb+gtDzpqeZETBfPbCUu0MV5k5sSeOqwmtf vU+sTbuT8jvDlnJ6pPylEKeQHdR630+d0S+0uj063waDFGBJCfkf6G44xHXP4pTO 2SRWzIOiix4EWjXOedNYaeNBEtunt0MUNRlVrYcrbKJQG+cNRMQQq22/+m5Ovzf8 DL93jPFkargfL1EMC1v8p/BJsF7Cd98LP8yd1FqgbJoSC8aymOGwasknBCvBmMzs yPZ4t9oHKWYlLG4DrgtRKUqZ0p9mQhQ6Gd2ud9eS+8WaaPqXMAItdDlKjaNXd7Hd pbN8aMEJsNbbvpYex9YSKMT05QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAayzK/5 jdiMfVzdlbfooXZ+lC/dMB8GA1UdIwQYMBaAFCtPMjxYp3a051OG3ug3IuBFYjLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi9FRTk1RkQ0MkI3 NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRyVG5VNGJlNkRjaTRFVmlN c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0swOHlQRmluZHJUblU0YmU2RGNpNEVWaU1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkM2Mi9FRTk1RkQ0MkI3NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRy VG5VNGJlNkRjaTRFVmlNc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqRzzHlxvclKyubA95sxlPWsSa7Glg2LTQzgAk5cNwZtlJlaQtF8SI VQykOe76NbJoQKym3LK4RSyBsVxaFTTeFuv9rDZMX8ZB99ymfsJlQxeAJiP709nw qusN9xTAndcB+KLdjbFqFCVIS4rUqGgmWcY6CmOt+YE+N0d6dXRV2vJ9rUQrlwe6 i1m/C4r/ZS4HHWAl1T7ENQ0r2YIdbrdeCulP6/YxwLg8oulb7TQBKMzENj291WYi P0uea/XP9mgeb3sT5a6lMsiF6A0CYFAx7MumoNbS102408F47WS7p+KKleoMDNi4 zy6FqZDVAq6GhPklt5c5GMvaHr6reizY -----END CERTIFICATE-----Generated at Mon Jun 16 23:40:47 2025 by rpki-client