$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: N7mUaRWuxhZ1Lpky+y7lN8CCTF5NIgM+jvVTezw/llQ= Subject key identifier: 93:31:12:DA:70:62:49:5F:DA:B3:D0:01:C8:CE:25:C7:04:98:62:28 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0190 Signing time: Thu 19 Jun 2025 02:53:28 +0000 Manifest this update: Thu 19 Jun 2025 02:53:27 +0000 Manifest next update: Thu 26 Jun 2025 02:53:27 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: DWFlGFWUf5F7PQRHTZYmdtCOwuuWwcrFBStrc+7hmY4=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Jun 19 02:53:27 2025 GMT Not After : Jun 26 02:53:27 2025 GMT Subject: CN=68537ba8-5ff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7e:65:24:a2:4a:84:de:42:5a:20:b5:47:66: 6e:af:f9:97:50:ac:ee:f6:cf:80:cc:2a:3f:42:ef: 80:0e:b8:51:c9:64:53:49:1f:8d:3a:7c:c2:8d:be: b5:aa:d4:90:bf:84:cc:ab:7f:bd:a9:f7:0a:e1:f4: e1:1f:b0:7b:a7:ad:e6:3c:bc:a5:d2:07:48:0e:09: 1d:7c:f4:e9:7b:b8:a6:7d:0b:60:aa:1b:e2:bc:e4: f0:04:dc:08:9e:3a:0f:60:1c:5f:68:e8:11:c1:2e: 63:49:b4:52:60:36:ba:4f:bf:8c:59:0b:7c:ed:e3: 8c:10:7a:1e:38:c9:fb:7c:e2:d5:d4:5a:d2:3f:ca: 20:cb:a5:f2:83:18:85:ec:de:72:8b:2d:27:48:9c: f9:79:33:08:7a:e6:5b:fd:1b:de:1f:d1:e0:f5:60: 7a:66:90:81:4f:bd:8f:d1:fc:61:6c:44:f0:4d:af: 2c:e4:05:07:f5:56:71:2c:24:9e:32:6c:53:a5:d5: ba:54:99:43:5c:51:f6:6d:1b:80:5e:26:8c:53:61: ae:5a:09:8f:cb:f0:3f:77:50:51:f9:8d:b1:a7:82: 84:56:d3:c2:78:c2:a5:56:be:34:d0:41:fc:2c:ec: dc:be:4d:ad:82:bf:3f:b1:b0:72:73:f9:e6:98:e3: 45:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:31:12:DA:70:62:49:5F:DA:B3:D0:01:C8:CE:25:C7:04:98:62:28 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:d9:e3:3d:82:1d:08:75:49:c4:11:4f:7f:87:e5:06:5f:22: 2c:00:1d:c5:27:4b:1e:f4:61:fe:de:bd:ea:4b:2f:c7:4c:e6: 60:77:8f:2e:c5:5f:32:d1:d9:f1:fd:37:34:15:99:a7:f5:a9: a1:74:81:b4:b2:e5:e1:3a:63:71:23:b8:c2:88:c0:b9:74:18: 84:1b:84:af:46:a7:8c:ff:29:58:cc:4d:0e:8f:f6:57:1c:63: e6:98:86:ed:da:f1:77:90:6b:27:63:30:ed:8f:bb:64:55:ce: 6b:ca:fa:0d:e3:9d:54:6a:88:1a:8f:62:16:de:58:27:d4:e3: 37:7f:b0:25:2a:1c:f3:84:87:98:30:17:18:fc:73:99:c8:86: a1:1c:3b:f9:9f:62:05:e3:51:dc:5c:a0:f5:7c:82:50:6f:80: 8e:b5:c5:ff:d2:0a:d9:d4:e0:48:40:dd:ec:b9:bf:19:96:c0: 5a:c3:5c:2a:68:73:30:90:53:d0:31:49:15:ef:4b:0f:41:5a: 4f:13:c4:7f:52:f1:ac:76:47:76:45:b1:38:28:a8:27:4f:ef: cf:22:d7:6c:b2:3e:c6:86:8c:82:c2:d7:f5:93:2b:e1:33:1d: 7d:3e:e1:65:14:22:4d:e5:d9:5c:12:a1:49:fc:f8:99:07:67: 0b:af:f5:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwNjE5MDI1MzI3WhcNMjUwNjI2MDI1MzI3WjAYMRYwFAYD VQQDEw02ODUzN2JhOC01ZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX5lJKJKhN5CWiC1R2Zur/mXUKzu9s+AzCo/Qu+ADrhRyWRTSR+NOnzCjb61 qtSQv4TMq3+9qfcK4fThH7B7p63mPLyl0gdIDgkdfPTpe7imfQtgqhvivOTwBNwI njoPYBxfaOgRwS5jSbRSYDa6T7+MWQt87eOMEHoeOMn7fOLV1FrSP8ogy6XygxiF 7N5yiy0nSJz5eTMIeuZb/RveH9Hg9WB6ZpCBT72P0fxhbETwTa8s5AUH9VZxLCSe MmxTpdW6VJlDXFH2bRuAXiaMU2GuWgmPy/A/d1BR+Y2xp4KEVtPCeMKlVr400EH8 LOzcvk2tgr8/sbByc/nmmONF8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMxEtpw Yklf2rPQAcjOJccEmGIoMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq2eM9gh0IdUnEEU9/h+UGXyIsAB3FJ0se9GH+3r3qSy/HTOZgd48u xV8y0dnx/Tc0FZmn9amhdIG0suXhOmNxI7jCiMC5dBiEG4SvRqeM/ylYzE0Oj/ZX HGPmmIbt2vF3kGsnYzDtj7tkVc5ryvoN451Uaogaj2IW3lgn1OM3f7AlKhzzhIeY MBcY/HOZyIahHDv5n2IF41HcXKD1fIJQb4COtcX/0grZ1OBIQN3sub8ZlsBaw1wq aHMwkFPQMUkV70sPQVpPE8R/UvGsdkd2RbE4KKgnT+/PItdssj7GhoyCwtf1kyvh Mx19PuFlFCJN5dlcEqFJ/PiZB2cLr/UZ -----END CERTIFICATE-----Generated at Thu Jun 19 05:57:48 2025 by rpki-client