$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: +hIqOy3YyzW9LmftQ+80Dl64fB+Kb33uwgdPQ+wkTDY= Subject key identifier: 88:47:12:8A:6C:0B:F5:46:E4:88:C9:96:BA:B8:25:5A:CC:91:D6:E5 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 0109 Signing time: Sun 15 Jun 2025 04:12:37 +0000 Manifest this update: Sun 15 Jun 2025 04:12:36 +0000 Manifest next update: Sun 22 Jun 2025 04:12:36 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: 93IXiwVEw6n0PjiSPa4PAosLUZ7dhpO56JRJSq6DJB0=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Jun 15 04:12:36 2025 GMT Not After : Jun 22 04:12:36 2025 GMT Subject: CN=684e4835-843b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6e:5e:d1:34:09:35:c9:d6:6d:07:e3:72:9f: 16:65:0b:98:d9:6c:cc:eb:50:9f:86:80:1d:aa:04: d6:d7:a7:5e:92:a1:ee:0b:30:af:09:62:f6:39:f6: 48:39:ea:ac:85:14:ed:a8:9f:26:28:12:8e:0b:d8: 10:c7:d2:0c:f3:38:39:85:fa:6f:37:ee:40:3d:6d: 03:09:08:c8:a3:5b:85:38:09:17:d8:4a:6d:11:3f: f1:4c:24:3a:4c:12:fc:eb:ce:7f:d9:71:ae:ba:b4: 9b:2b:fe:3a:57:a3:93:f2:82:52:91:4c:ec:1b:c4: 3f:c1:a4:3d:23:f7:d9:35:71:1f:41:5a:4c:3d:64: 51:92:e8:73:01:cc:13:cd:7e:8a:62:9d:ee:7b:c8: a3:31:b4:00:2b:a5:53:3f:48:4a:b6:c8:2a:6c:b2: 49:b1:ba:0f:2a:99:1d:ad:a9:84:b5:0d:aa:40:57: 21:68:f6:78:aa:18:23:ef:4d:00:82:01:88:93:15: ae:34:cb:87:ef:6c:9a:ff:10:ea:b5:4c:ed:23:a6: 39:0c:80:e8:a2:dc:bf:8c:05:58:62:b9:38:48:27: 3a:69:e9:48:43:33:bc:5a:2c:78:4e:67:a0:60:bc: 35:01:a7:27:ac:c1:4a:84:dc:15:81:00:b7:72:e1: 5b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:47:12:8A:6C:0B:F5:46:E4:88:C9:96:BA:B8:25:5A:CC:91:D6:E5 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:62:08:96:44:6a:10:64:d0:d4:32:74:e3:08:c6:6b:f7:17: 94:87:0b:bc:13:7b:9c:39:52:a0:1e:62:98:77:50:39:5d:af: 49:e0:b9:3a:5d:ca:cf:f8:21:0f:16:81:4f:1c:bc:96:26:2d: 81:93:38:be:bf:b0:16:4d:34:dd:e4:7e:74:ac:55:ef:a1:82: ba:77:42:57:30:c9:36:b4:2b:46:84:28:b8:b9:7d:58:df:71: 33:2b:90:09:6a:7e:63:e1:23:29:7b:c3:d4:b5:63:6f:4b:98: 88:2c:52:26:20:81:f6:40:94:be:e5:a2:81:b1:90:a3:f9:45: e5:08:72:fe:cc:ca:85:4d:af:2b:42:86:bc:93:3f:46:35:d0: 52:30:ae:c0:bc:64:f4:f0:34:ce:4e:54:bb:d6:ab:1b:18:d4: 0d:6b:b8:b3:ec:1b:92:a1:46:c1:54:93:8a:f1:10:dd:be:ff: 65:a4:20:43:f0:f1:54:5a:31:26:90:25:8c:1d:89:9a:fe:53: 6e:34:f6:f8:a8:73:cd:ae:14:31:50:ef:84:e6:70:c4:b1:f6: c7:d2:50:26:97:ef:c6:47:10:db:cd:28:83:e3:ac:1e:c1:68: 7d:c8:d7:e1:63:7d:1f:2c:03:d6:88:bc:e0:89:48:b1:87:ce: 37:b2:8f:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUwNjE1MDQxMjM2WhcNMjUwNjIyMDQxMjM2WjAYMRYwFAYD VQQDEw02ODRlNDgzNS04NDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwW5e0TQJNcnWbQfjcp8WZQuY2WzM61CfhoAdqgTW16dekqHuCzCvCWL2OfZI OeqshRTtqJ8mKBKOC9gQx9IM8zg5hfpvN+5APW0DCQjIo1uFOAkX2EptET/xTCQ6 TBL8685/2XGuurSbK/46V6OT8oJSkUzsG8Q/waQ9I/fZNXEfQVpMPWRRkuhzAcwT zX6KYp3ue8ijMbQAK6VTP0hKtsgqbLJJsboPKpkdramEtQ2qQFchaPZ4qhgj700A ggGIkxWuNMuH72ya/xDqtUztI6Y5DIDooty/jAVYYrk4SCc6aelIQzO8Wix4Tmeg YLw1AacnrMFKhNwVgQC3cuFbawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhHEops C/VG5IjJlrq4JVrMkdblMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKYgiWRGoQZNDUMnTjCMZr9xeUhwu8E3ucOVKgHmKYd1A5Xa9J4Lk6 XcrP+CEPFoFPHLyWJi2Bkzi+v7AWTTTd5H50rFXvoYK6d0JXMMk2tCtGhCi4uX1Y 33EzK5AJan5j4SMpe8PUtWNvS5iILFImIIH2QJS+5aKBsZCj+UXlCHL+zMqFTa8r Qoa8kz9GNdBSMK7AvGT08DTOTlS71qsbGNQNa7iz7BuSoUbBVJOK8RDdvv9lpCBD 8PFUWjEmkCWMHYma/lNuNPb4qHPNrhQxUO+E5nDEsfbH0lAml+/GRxDbzSiD46we wWh9yNfhY30fLAPWiLzgiUixh843so8A -----END CERTIFICATE-----Generated at Sun Jun 15 23:09:39 2025 by rpki-client