$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: YichRO0K+uD8/rOW7j0pQJiqLxBDDwYtWfA4tTLq2/I= Subject key identifier: DD:88:15:85:E8:B1:BA:CF:58:A0:5A:87:69:80:D4:C4:AD:BE:19:A8 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 13A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 138D Signing time: Wed 18 Jun 2025 16:58:05 +0000 Manifest this update: Wed 18 Jun 2025 16:58:05 +0000 Manifest next update: Wed 25 Jun 2025 16:58:05 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: 6FawRMPv7D2bhE+0m3m6IZ5zhycoEUJwasoniLMl/Lw=) 2: 337C9CE4314C11F0845D2C39C4F9AE02.roa (hash: tLRJQ8QY9Inh1rPsduPheEywqKEjWOsUqz32XElA7RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5030 (0x13a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Jun 18 16:58:05 2025 GMT Not After : Jun 25 16:58:05 2025 GMT Subject: CN=6852f01d-1a58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9a:84:fc:81:98:35:f0:97:6b:76:65:bf:ac: 1e:b2:c1:ce:d5:5c:68:bc:dc:94:0f:be:14:14:01: 9e:27:be:eb:ca:63:9f:6a:7d:b1:e3:28:84:27:17: d6:eb:b0:90:33:31:83:27:68:01:3a:b9:9a:e5:4b: ca:1d:b6:56:02:4f:14:d2:4e:5b:b3:26:3c:31:fe: 69:b8:d5:30:f4:27:ba:18:35:fd:2f:23:60:09:54: a7:23:84:c8:0f:5f:a3:68:8e:7f:30:91:00:a1:f1: 29:3b:5e:1c:eb:f9:52:35:99:93:78:f3:8f:ec:ce: 5b:21:68:ce:7a:a5:44:ff:47:b8:8c:bc:d3:1f:1f: d7:83:f1:a5:6f:8a:f9:76:8a:ef:f6:19:4e:5c:fa: c5:e4:18:64:f3:42:56:20:51:7b:9d:38:ac:85:e5: f4:3b:67:4e:d5:0e:6d:86:8d:99:5e:71:c4:5b:5d: 63:1d:0b:46:c4:a8:35:f1:aa:04:a7:58:3a:52:98: 95:0d:0e:3c:90:8a:73:92:73:95:37:ac:51:63:28: 22:c7:ad:b3:c8:76:54:66:ea:b4:65:a3:40:a0:92: f4:47:0e:51:84:e4:ae:43:6e:92:c4:d3:47:a3:a7: 65:1c:fa:fb:e6:9e:4f:72:62:91:be:82:86:59:dd: b9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:88:15:85:E8:B1:BA:CF:58:A0:5A:87:69:80:D4:C4:AD:BE:19:A8 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:fb:33:6f:4c:cb:34:6e:e1:e8:b5:d9:6d:65:f4:1c:1b:57: 73:f5:e4:26:0d:3c:53:ca:18:91:24:35:d5:a5:a4:f2:c2:ce: 7b:a1:4e:bb:9d:5d:f7:95:14:f0:ab:e7:74:c7:32:f6:cd:3b: c9:8d:5c:4a:38:85:e5:47:44:ef:c9:18:65:86:03:94:29:b0: e1:de:3b:9d:8c:9f:63:f6:82:08:c8:29:fe:a8:75:52:e9:eb: dc:6d:b7:9d:22:18:66:fe:f6:42:db:1d:c5:b2:73:d8:85:52: 02:e3:09:43:e3:54:28:f6:de:21:6e:01:22:49:b0:7e:7b:b7: b6:ad:25:db:b9:08:7b:45:12:84:8b:53:2e:67:e7:cb:9a:ca: 0a:60:32:7e:ec:d2:aa:e2:d2:bc:bc:39:b6:b5:28:b0:50:2c: 07:8d:16:f9:27:0a:cd:27:d1:54:77:6c:5d:f8:6c:37:c1:56: 00:10:de:0b:8c:2f:a8:8a:5d:c7:c2:76:df:b3:51:a3:af:75: 3b:85:52:ae:1b:5f:82:21:d7:15:6d:39:3e:57:f0:f1:b2:13: ba:23:a1:59:2a:c0:d5:07:71:69:1c:df:0c:fd:30:f2:aa:8e: 03:eb:e9:a1:70:ed:0c:9b:fe:07:8e:3d:0b:79:bc:e1:d8:74: 0f:ad:de:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUwNjE4MTY1ODA1WhcNMjUwNjI1MTY1ODA1WjAYMRYwFAYD VQQDEw02ODUyZjAxZC0xYTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5qE/IGYNfCXa3Zlv6wessHO1VxovNyUD74UFAGeJ77rymOfan2x4yiEJxfW 67CQMzGDJ2gBOrma5UvKHbZWAk8U0k5bsyY8Mf5puNUw9Ce6GDX9LyNgCVSnI4TI D1+jaI5/MJEAofEpO14c6/lSNZmTePOP7M5bIWjOeqVE/0e4jLzTHx/Xg/Glb4r5 dorv9hlOXPrF5Bhk80JWIFF7nTisheX0O2dO1Q5tho2ZXnHEW11jHQtGxKg18aoE p1g6UpiVDQ48kIpzknOVN6xRYygix62zyHZUZuq0ZaNAoJL0Rw5RhOSuQ26SxNNH o6dlHPr75p5PcmKRvoKGWd25NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2IFYXo sbrPWKBah2mA1MStvhmoMB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy+zNvTMs0buHotdltZfQcG1dz9eQmDTxTyhiRJDXVpaTyws57oU67 nV33lRTwq+d0xzL2zTvJjVxKOIXlR0TvyRhlhgOUKbDh3judjJ9j9oIIyCn+qHVS 6evcbbedIhhm/vZC2x3FsnPYhVIC4wlD41Qo9t4hbgEiSbB+e7e2rSXbuQh7RRKE i1MuZ+fLmsoKYDJ+7NKq4tK8vDm2tSiwUCwHjRb5JwrNJ9FUd2xd+Gw3wVYAEN4L jC+oil3Hwnbfs1Gjr3U7hVKuG1+CIdcVbTk+V/DxshO6I6FZKsDVB3FpHN8M/TDy qo4D6+mhcO0Mm/4Hjj0Lebzh2HQPrd6Z -----END CERTIFICATE-----Generated at Thu Jun 19 02:59:37 2025 by rpki-client