$ rpki-client -vvf rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft File: 1cNfp3myIZlgnD6gpTHFoNMyrQE.mft (raw, json) Hash identifier: a5ZnzSS21Yxa5R06I/Y9hIInoBgqnibWnmfjgdeC65c= Subject key identifier: 25:19:44:AC:4D:AE:1A:A8:C3:C2:29:CB:75:F7:2C:1A:56:C8:A2:70 Authority key identifier: D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01 Certificate issuer: /CN=A912A8BC/serialNumber=D5C35FA779B22199609C3EA0A531C5A0D332AD01 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft Manifest number: 0190 Signing time: Fri 13 Jun 2025 02:31:00 +0000 Manifest this update: Fri 13 Jun 2025 02:31:00 +0000 Manifest next update: Fri 20 Jun 2025 02:31:00 +0000 Files and hashes: 1: 1cNfp3myIZlgnD6gpTHFoNMyrQE.crl (hash: G17LJBwySEOMEYzPHAlv6r1bZXF/RsrmYC1r4FctQjQ=) 2: 4D962E8AE65111ED90E5833EC4F9AE02.roa (hash: 3SQV1F9slNIO5M7UqEAQZkXcxMO9bvgWNAs/r+smThc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.crl rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A8BC, serialNumber=D5C35FA779B22199609C3EA0A531C5A0D332AD01 Validity Not Before: Jun 13 02:31:00 2025 GMT Not After : Jun 20 02:31:00 2025 GMT Subject: CN=684b8d64-609f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1c:6c:3b:b0:a4:79:1b:b1:f9:17:03:bf:32: 0a:fe:e2:b0:01:45:fc:1a:ea:32:64:4a:ea:aa:a2: ec:c1:75:b8:5a:d8:7a:92:e8:cf:4c:6e:46:95:4f: 1c:10:40:e9:f5:66:0b:42:09:5c:2f:9c:b6:b3:e9: 30:ec:3b:cd:34:68:7d:af:0b:59:eb:4e:19:9c:79: 7d:5c:1f:a4:1c:a9:6a:a8:10:cd:d4:9b:12:c3:35: e9:fa:41:c9:b7:95:73:f7:c0:d6:e7:d9:55:2a:ac: 40:21:21:44:01:64:43:4e:ca:aa:6b:03:56:9f:e1: 6f:b3:85:a6:c7:4a:8f:c4:27:78:4e:00:50:5a:bc: 8b:12:27:24:69:ef:02:7d:35:da:cb:ee:85:e7:60: fc:9e:60:d7:ac:30:4c:49:cb:cf:b4:38:64:08:3b: ee:58:c9:5f:2b:88:1a:ff:54:12:f1:4a:2f:63:e6: 6e:56:c9:84:05:d3:20:fe:a5:04:51:88:c2:64:da: 4f:20:4b:02:76:2f:b5:dd:46:02:54:e7:74:32:75: 0b:7f:80:4a:78:8c:09:e8:eb:52:e0:51:fd:1e:48: 5c:fb:16:2e:45:a5:f9:71:c7:62:8f:b9:d2:a7:13: 54:20:c9:c5:2a:52:65:ec:12:63:ed:bb:ef:c7:74: 51:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:19:44:AC:4D:AE:1A:A8:C3:C2:29:CB:75:F7:2C:1A:56:C8:A2:70 X509v3 Authority Key Identifier: keyid:D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:96:f8:16:ee:e7:c4:fa:9d:6d:66:b0:42:72:7b:03:2b:0f: 9e:55:a4:31:4c:c0:bb:be:31:28:4e:4d:e6:2f:fd:00:e0:50: 7d:9f:bc:9a:ed:9e:c0:d1:24:ad:28:c4:ad:1e:dc:b6:da:6d: ec:1d:64:82:f7:cd:0b:99:a6:a5:14:3e:e4:9d:61:20:c9:1e: fa:93:34:a0:2e:57:21:71:e8:71:db:9f:55:7f:d2:04:5b:6a: a3:c8:ae:60:17:41:26:a6:2c:cc:9e:f2:d9:40:36:a8:19:7f: 6c:bc:ca:5d:80:12:88:5e:b3:72:3f:ec:a8:f6:15:4c:f1:a8: 81:9e:29:90:46:9f:ce:04:66:48:6a:0c:c4:5e:5e:97:e4:f8: e7:01:f8:f9:05:58:41:9f:da:e6:a5:51:f2:a4:58:69:b8:a3: de:5c:3b:39:6b:7b:0d:0b:99:59:ea:f4:16:c6:9f:3b:b3:c6: 27:37:22:b5:20:2a:5f:e1:a9:6c:ec:dd:d2:94:ec:10:2a:cf: 18:bc:ef:47:9e:a7:4e:85:9d:9e:05:28:19:ad:18:62:e1:b6: ca:b4:3c:98:64:44:1b:6d:28:c5:e5:58:69:61:1b:ae:eb:1b: 70:56:f5:0d:9a:02:b4:1e:71:8f:e1:4d:92:dc:1f:a2:bc:5d: f8:31:10:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE4QkMxMTAvBgNVBAUTKEQ1QzM1RkE3NzlCMjIxOTk2MDlDM0VBMEE1MzFDNUEw RDMzMkFEMDEwHhcNMjUwNjEzMDIzMTAwWhcNMjUwNjIwMDIzMTAwWjAYMRYwFAYD VQQDEw02ODRiOGQ2NC02MDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRxsO7CkeRux+RcDvzIK/uKwAUX8GuoyZErqqqLswXW4Wth6kujPTG5GlU8c EEDp9WYLQglcL5y2s+kw7DvNNGh9rwtZ604ZnHl9XB+kHKlqqBDN1JsSwzXp+kHJ t5Vz98DW59lVKqxAISFEAWRDTsqqawNWn+Fvs4Wmx0qPxCd4TgBQWryLEickae8C fTXay+6F52D8nmDXrDBMScvPtDhkCDvuWMlfK4ga/1QS8UovY+ZuVsmEBdMg/qUE UYjCZNpPIEsCdi+13UYCVOd0MnULf4BKeIwJ6OtS4FH9Hkhc+xYuRaX5ccdij7nS pxNUIMnFKlJl7BJj7bvvx3RRdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUZRKxN rhqow8Ipy3X3LBpWyKJwMB8GA1UdIwQYMBaAFNXDX6d5siGZYJw+oKUxxaDTMq0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQThCQy8wNTRBNEM1MEU2 NEQxMUVEQjNGODE3MzdDNEY5QUUwMi8xY05mcDNteUlabGduRDZncFRIRm9OTXly UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFjTmZwM215SVpsZ25ENmdwVEhGb05NeXJRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QThCQy8wNTRBNEM1MEU2NEQxMUVEQjNGODE3MzdDNEY5QUUwMi8xY05mcDNteUla bGduRDZncFRIRm9OTXlyUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXlvgW7ufE+p1tZrBCcnsDKw+eVaQxTMC7vjEoTk3mL/0A4FB9n7ya 7Z7A0SStKMStHty22m3sHWSC980LmaalFD7knWEgyR76kzSgLlchcehx259Vf9IE W2qjyK5gF0EmpizMnvLZQDaoGX9svMpdgBKIXrNyP+yo9hVM8aiBnimQRp/OBGZI agzEXl6X5PjnAfj5BVhBn9rmpVHypFhpuKPeXDs5a3sNC5lZ6vQWxp87s8YnNyK1 ICpf4als7N3SlOwQKs8YvO9HnqdOhZ2eBSgZrRhi4bbKtDyYZEQbbSjF5VhpYRuu 6xtwVvUNmgK0HnGP4U2S3B+ivF34MRDK -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:06 2025 by rpki-client