$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft File: sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft (raw, json) Hash identifier: umaNR3VXkATaBTtD78p1KA0EynkiwmbCWObpAyCzyMM= Subject key identifier: CB:9E:D3:B1:2F:42:68:40:96:A7:E1:0B:54:4F:B5:22:58:E9:3C:0C Authority key identifier: B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 Certificate issuer: /CN=A911C53A/serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft Manifest number: 06 Signing time: Fri 13 Jun 2025 07:04:31 +0000 Manifest this update: Fri 13 Jun 2025 07:04:30 +0000 Manifest next update: Fri 20 Jun 2025 07:04:30 +0000 Files and hashes: 1: sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl (hash: HaA/AY6lZlyu1lRW3dslgf8wBrCelfkRLWQGY3xjaYY=) 2: BDF659C4445111F0945A7E49C4F9AE02.roa (hash: NrM1GT0GOIEPUd0x6/lOomv0lodf7Nxw+vo5Gb1q27Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53A, serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Validity Not Before: Jun 13 07:04:30 2025 GMT Not After : Jun 20 07:04:30 2025 GMT Subject: CN=684bcd7f-8c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1f:47:4b:1c:72:43:c0:a3:27:84:7b:ac:1b: 54:ef:27:7e:5d:86:fa:d0:5d:51:81:4f:62:11:67: b2:75:65:58:09:87:1f:a5:7b:40:21:40:2f:20:53: 06:83:d2:57:79:84:17:0d:4f:1f:b5:cd:22:08:cc: d9:b5:fe:fd:33:d2:96:3e:67:9e:6f:22:d4:93:b1: f6:0e:73:35:87:1b:19:b9:95:0e:af:5d:45:63:f5: a1:b0:72:99:1c:b3:e1:a7:75:58:6d:ba:06:ca:1c: 52:4d:74:b6:53:19:ee:07:46:fc:c4:6a:00:28:28: ba:d1:a8:e3:e0:0a:67:4e:95:4a:1e:00:e4:59:e4: 16:bc:41:e5:27:97:97:b8:30:5a:c3:f9:42:82:6a: 4d:f2:5e:1e:35:1f:61:a7:68:12:bc:c2:36:59:80: 86:3c:5d:f7:12:81:fc:e9:a4:9a:ae:e8:56:c9:f9: 45:f3:8e:60:6d:d9:48:0f:a9:f6:1b:a1:48:37:6b: 51:45:39:81:1c:ec:22:d5:4d:00:57:a8:11:61:1f: 3e:04:97:c2:5b:a8:ff:39:84:5b:29:6e:7e:de:69: 2c:cd:d3:42:ff:19:cc:e9:80:4d:63:94:b4:b0:fb: 90:65:7b:23:5b:cc:1e:4e:01:0d:2b:d3:86:36:60: 37:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9E:D3:B1:2F:42:68:40:96:A7:E1:0B:54:4F:B5:22:58:E9:3C:0C X509v3 Authority Key Identifier: keyid:B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:27:bb:1a:50:d3:2e:e5:5c:6a:df:c4:9f:7c:4d:3f:e1:b3: 95:44:76:88:f3:fd:ee:f7:15:c6:0d:58:b3:13:a8:63:a2:e4: 5f:e1:6b:97:2c:48:de:74:a7:ef:97:c6:a1:dd:37:02:8e:d9: fa:c2:bd:99:2a:6a:67:ac:65:b7:96:12:57:b5:cb:11:0b:83: 70:25:43:2b:68:40:a8:81:e0:6f:4f:14:85:05:5b:11:23:2d: 0a:49:f3:cd:7b:a2:d4:8b:1a:0c:48:d1:7e:cc:a2:16:74:b2: 0f:c4:f8:ae:a6:70:5a:1e:3f:e1:2f:b4:71:a1:7f:cb:98:17: 77:09:db:12:d7:31:f1:67:d3:d4:69:67:8b:42:fb:05:30:4a: 3f:73:a0:e6:76:07:5d:d0:94:8f:5e:f6:51:18:00:11:aa:55: a0:d6:80:7f:1b:8a:ae:af:c1:74:d2:68:6d:85:d5:1e:1c:cc: d6:42:eb:35:6f:8c:d1:fd:10:37:61:38:e4:29:0d:a9:a0:fa: 3a:47:b5:03:44:41:81:3f:f5:f5:56:ee:2f:48:5d:9b:43:b8: 10:9e:57:67:62:bf:c6:40:be:48:11:a1:66:ef:6b:93:46:df: da:0c:c4:69:c6:b9:86:e1:a3:d6:13:2b:98:c0:da:31:08:62: 51:34:38:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzUzQTExMC8GA1UEBRMoQjA4QjU5RTVEMTA3MDVDNUNCMkQzQ0RCODU2NUIzMjhE NTAyRjU1MDAeFw0yNTA2MTMwNzA0MzBaFw0yNTA2MjAwNzA0MzBaMBgxFjAUBgNV BAMTDTY4NGJjZDdmLThjOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLH0dLHHJDwKMnhHusG1TvJ35dhvrQXVGBT2IRZ7J1ZVgJhx+le0AhQC8gUwaD 0ld5hBcNTx+1zSIIzNm1/v0z0pY+Z55vItSTsfYOczWHGxm5lQ6vXUVj9aGwcpkc s+GndVhtugbKHFJNdLZTGe4HRvzEagAoKLrRqOPgCmdOlUoeAORZ5Ba8QeUnl5e4 MFrD+UKCak3yXh41H2GnaBK8wjZZgIY8XfcSgfzppJqu6FbJ+UXzjmBt2UgPqfYb oUg3a1FFOYEc7CLVTQBXqBFhHz4El8JbqP85hFspbn7eaSzN00L/GczpgE1jlLSw +5BleyNbzB5OAQ0r04Y2YDd9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy57TsS9C aECWp+ELVE+1IljpPAwwHwYDVR0jBBgwFoAUsItZ5dEHBcXLLTzbhWWzKNUC9VAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDNTNBLzQ3NDUwNTZFNDQ1 MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNYTExUemJoV1d6S05VQzlW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0l0WjVkRUhCY1hMTFR6YmhXV3pLTlVDOVZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD NTNBLzQ3NDUwNTZFNDQ1MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNY TExUemJoV1d6S05VQzlWQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIwnuxpQ0y7lXGrfxJ98TT/hs5VEdojz/e73FcYNWLMTqGOi5F/ha5cs SN50p++XxqHdNwKO2frCvZkqamesZbeWEle1yxELg3AlQytoQKiB4G9PFIUFWxEj LQpJ8817otSLGgxI0X7MohZ0sg/E+K6mcFoeP+EvtHGhf8uYF3cJ2xLXMfFn09Rp Z4tC+wUwSj9zoOZ2B13QlI9e9lEYABGqVaDWgH8biq6vwXTSaG2F1R4czNZC6zVv jNH9EDdhOOQpDamg+jpHtQNEQYE/9fVW7i9IXZtDuBCeV2div8ZAvkgRoWbva5NG 39oMxGnGuYbho9YTK5jA2jEIYlE0OGg= -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:05 2025 by rpki-client