$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: vvlGWFZ9URgTO862eOdO3yatAF4E0wb8gyP3eTrl0Ag= Subject key identifier: 8A:5C:E9:6D:8B:FE:75:D6:4F:E0:13:41:AF:B5:C3:50:69:F5:6D:85 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0ADD Signing time: Fri 20 Jun 2025 19:22:09 +0000 Manifest this update: Fri 20 Jun 2025 19:22:09 +0000 Manifest next update: Fri 27 Jun 2025 19:22:09 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: RxX3gA64qttEuMA8CmY9RCK2GhZ2w2x9y+PHpFagFN4=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Jun 20 19:22:09 2025 GMT Not After : Jun 27 19:22:09 2025 GMT Subject: CN=6855b4e1-cd68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dd:30:d8:59:8f:c1:d8:d7:60:41:0f:29:ff: 26:a8:0c:8f:30:f2:ad:93:ea:6b:4f:0b:4c:63:ec: ba:15:bc:b6:c0:d0:06:e8:1b:24:8b:26:08:76:0b: b1:e5:5d:de:0f:bb:0f:e3:f6:67:ea:4a:32:33:d1: 1a:ce:25:a4:84:39:6f:b7:12:9e:7a:0a:12:b0:0b: 3a:03:87:62:2f:ff:18:71:47:61:0b:55:b0:4c:a9: 7b:f5:7c:fc:f9:bd:b9:5c:7c:fd:14:43:5a:00:32: 34:d5:04:f9:a4:92:8e:c9:e7:66:23:09:0c:03:17: dc:7f:f7:5c:9e:1c:ff:f2:27:d4:ea:a4:61:76:ad: 26:d3:9d:40:ca:42:5c:04:eb:2f:c2:2f:ba:0e:ed: c6:94:00:71:69:df:3e:f1:50:02:21:22:5f:39:f2: e7:db:87:f6:fe:f5:dc:2b:9c:da:21:fd:1b:97:6d: 77:20:ba:11:39:1b:1a:00:fb:23:c0:d7:07:b5:f9: 03:8d:69:8a:69:bb:91:19:46:7f:e8:98:35:96:c7: 28:c2:26:66:f6:d4:12:05:b6:cf:2a:f1:dc:a0:0f: cc:b7:26:20:0d:09:9e:57:e8:c6:9f:bb:bd:ba:92: 05:bc:b6:8f:8d:47:32:5d:09:f9:bc:17:4b:2d:81: af:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:5C:E9:6D:8B:FE:75:D6:4F:E0:13:41:AF:B5:C3:50:69:F5:6D:85 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:52:73:2e:7f:21:6e:6b:43:32:29:71:92:45:48:68:f7:61: be:39:0c:4b:62:42:1d:64:83:54:3e:10:12:87:6b:15:84:af: f7:46:f7:0b:aa:07:b6:e0:02:0a:39:63:e0:0f:88:2c:04:6b: 32:0e:dc:d3:8e:8a:c9:83:8e:c8:82:7b:6a:40:d0:77:ac:f9: 4e:e3:1b:1a:32:c7:3a:31:0b:c6:61:98:b7:e8:7d:8c:eb:44: 73:72:bf:26:2b:52:bf:5a:ef:d1:3a:ef:d7:0d:4a:7f:f2:b1: 09:0f:95:95:7c:c8:8a:26:de:22:08:21:5f:43:dc:fa:ed:f4: 11:d6:47:14:8d:aa:5b:ad:c8:51:91:0b:0f:27:75:60:dc:17: 1d:94:15:68:78:35:91:0f:ed:b2:fb:49:55:92:1a:bf:82:a0: 32:ba:30:b6:86:61:92:9a:de:79:c5:72:54:2c:60:80:d6:d9: 57:ce:69:a1:7d:8b:a8:32:88:aa:e8:fe:6e:07:42:11:40:aa: 6a:b1:1c:40:c4:90:c9:3a:a4:c3:a8:20:c4:be:53:43:05:13: fc:4b:82:a2:bf:35:ea:b6:99:85:9e:85:bc:fc:f6:34:32:28: 21:27:49:cf:da:54:79:4c:3c:7d:8f:fe:91:0d:4c:71:b4:13: 2f:7c:c2:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUwNjIwMTkyMjA5WhcNMjUwNjI3MTkyMjA5WjAYMRYwFAYD VQQDEw02ODU1YjRlMS1jZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt90w2FmPwdjXYEEPKf8mqAyPMPKtk+prTwtMY+y6Fby2wNAG6BskiyYIdgux 5V3eD7sP4/Zn6koyM9EaziWkhDlvtxKeegoSsAs6A4diL/8YcUdhC1WwTKl79Xz8 +b25XHz9FENaADI01QT5pJKOyedmIwkMAxfcf/dcnhz/8ifU6qRhdq0m051AykJc BOsvwi+6Du3GlABxad8+8VACISJfOfLn24f2/vXcK5zaIf0bl213ILoRORsaAPsj wNcHtfkDjWmKabuRGUZ/6Jg1lscowiZm9tQSBbbPKvHcoA/MtyYgDQmeV+jGn7u9 upIFvLaPjUcyXQn5vBdLLYGvFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpc6W2L /nXWT+ATQa+1w1Bp9W2FMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxUnMufyFua0MyKXGSRUho92G+OQxLYkIdZINUPhASh2sVhK/3RvcL qge24AIKOWPgD4gsBGsyDtzTjorJg47IgntqQNB3rPlO4xsaMsc6MQvGYZi36H2M 60Rzcr8mK1K/Wu/ROu/XDUp/8rEJD5WVfMiKJt4iCCFfQ9z67fQR1kcUjapbrchR kQsPJ3Vg3BcdlBVoeDWRD+2y+0lVkhq/gqAyujC2hmGSmt55xXJULGCA1tlXzmmh fYuoMoiq6P5uB0IRQKpqsRxAxJDJOqTDqCDEvlNDBRP8S4KivzXqtpmFnoW8/PY0 MighJ0nP2lR5TDx9j/6RDUxxtBMvfMJm -----END CERTIFICATE-----Generated at Sun Jun 22 10:35:44 2025 by rpki-client