$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: lz/KXGNX7Tshx9xctttUi6Z+nFkm67TsMvkUkSvgoPI= Subject key identifier: 05:39:25:0E:D6:EC:7C:76:FF:C6:F9:02:A8:4C:68:4C:C6:81:D6:01 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 10A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 108A Signing time: Sat 14 Jun 2025 17:17:01 +0000 Manifest this update: Sat 14 Jun 2025 17:17:01 +0000 Manifest next update: Sat 21 Jun 2025 17:17:01 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: 3rQPFn8R7rvqY5yBiyb3YloiMCrfbO7YNqQrLXoF6Hw=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4261 (0x10a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Jun 14 17:17:01 2025 GMT Not After : Jun 21 17:17:01 2025 GMT Subject: CN=684dae8d-e0fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:d7:89:0d:9a:49:01:bb:b3:6c:4a:de:8e: 3c:8f:e2:1a:ce:14:59:d9:30:76:89:50:32:e9:72: b2:55:1d:5d:f9:a8:67:b7:d4:7e:39:98:8d:e5:6b: b1:0e:0e:f4:b1:47:42:be:55:18:e9:ce:6c:d4:ce: 34:85:2d:00:60:3f:eb:bf:f9:b6:5a:8d:d6:79:69: 46:8a:35:fd:65:f1:e1:f3:63:60:d0:c0:08:6e:53: 20:ef:f5:ea:de:40:a4:7f:94:1a:f0:40:cf:6c:57: 79:88:af:57:16:f5:17:a8:dd:e0:5e:87:95:dd:89: c0:e5:19:db:a6:44:79:a1:ab:be:ea:bb:e3:c9:f4: 23:38:dc:42:60:d4:9e:3b:1c:d3:fa:a1:be:f9:f7: a3:54:28:97:56:22:b0:b4:75:bb:ac:6a:d1:87:08: 79:00:c3:49:bc:e2:0a:7a:f5:a0:cc:d7:53:e6:70: 91:b9:ce:28:f9:b0:e3:7e:8d:81:db:30:62:18:e0: 59:da:8c:91:05:b0:62:b5:01:d8:8e:4d:38:02:44: 3a:83:2a:f3:f8:6e:58:de:34:c8:f5:d4:6f:6a:c6: 0b:ad:1b:ba:51:4e:4d:9a:f0:7d:f1:a2:73:93:dd: f6:98:2d:39:68:ca:7b:5a:3e:b3:7e:84:f5:eb:98: 93:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:39:25:0E:D6:EC:7C:76:FF:C6:F9:02:A8:4C:68:4C:C6:81:D6:01 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e8:6e:88:fe:4a:0c:6f:b4:cb:f0:20:a7:b3:5c:c3:f7:b2: 8e:18:05:6d:85:0e:0d:57:5c:5b:0a:09:0e:cd:40:5c:d2:8d: 3b:10:bf:2f:84:55:0f:65:a9:54:39:57:20:36:83:2c:1e:a4: c1:bb:24:f3:53:da:53:bf:81:98:43:83:13:06:20:87:45:19: 79:6e:a0:1a:24:67:2f:3c:a8:d9:11:b6:a3:42:17:45:ce:c8: 3f:d0:55:b5:6e:48:24:28:b1:32:16:65:29:67:eb:d8:03:a0: 4a:5f:11:6b:6a:0b:ec:f8:5e:bb:34:3b:2d:41:20:50:81:3b: dc:71:c3:1e:14:41:8e:6c:9c:e5:72:8e:80:e4:75:da:95:55: 06:f9:eb:d1:62:d3:f6:5b:9d:60:58:7c:2f:b1:73:3c:f2:b2: 0a:7e:73:52:81:d3:a1:d3:c9:02:ff:27:70:b0:74:e1:58:b9: e7:76:33:48:a1:63:53:42:d0:23:3b:ef:0a:24:9f:d5:be:af: 46:bd:3c:12:46:58:50:85:06:b4:b8:43:6f:e8:24:59:79:2d: f0:2a:c7:8c:80:ca:9a:ba:0a:88:51:70:cd:85:ba:de:4a:0e: 13:d2:87:39:3c:83:0e:2c:bd:f5:e3:3a:d2:48:a3:79:b4:b8: 35:54:e0:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUwNjE0MTcxNzAxWhcNMjUwNjIxMTcxNzAxWjAYMRYwFAYD VQQDEw02ODRkYWU4ZC1lMGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWvXiQ2aSQG7s2xK3o48j+IazhRZ2TB2iVAy6XKyVR1d+ahnt9R+OZiN5Wux Dg70sUdCvlUY6c5s1M40hS0AYD/rv/m2Wo3WeWlGijX9ZfHh82Ng0MAIblMg7/Xq 3kCkf5Qa8EDPbFd5iK9XFvUXqN3gXoeV3YnA5RnbpkR5oau+6rvjyfQjONxCYNSe OxzT+qG++fejVCiXViKwtHW7rGrRhwh5AMNJvOIKevWgzNdT5nCRuc4o+bDjfo2B 2zBiGOBZ2oyRBbBitQHYjk04AkQ6gyrz+G5Y3jTI9dRvasYLrRu6UU5NmvB98aJz k932mC05aMp7Wj6zfoT165iTZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAU5JQ7W 7Hx2/8b5AqhMaEzGgdYBMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB6G6I/koMb7TL8CCns1zD97KOGAVthQ4NV1xbCgkOzUBc0o07EL8v hFUPZalUOVcgNoMsHqTBuyTzU9pTv4GYQ4MTBiCHRRl5bqAaJGcvPKjZEbajQhdF zsg/0FW1bkgkKLEyFmUpZ+vYA6BKXxFragvs+F67NDstQSBQgTvcccMeFEGObJzl co6A5HXalVUG+evRYtP2W51gWHwvsXM88rIKfnNSgdOh08kC/ydwsHThWLnndjNI oWNTQtAjO+8KJJ/Vvq9GvTwSRlhQhQa0uENv6CRZeS3wKseMgMqaugqIUXDNhbre Sg4T0oc5PIMOLL314zrSSKN5tLg1VOBK -----END CERTIFICATE-----Generated at Sun Jun 15 08:51:29 2025 by rpki-client