$ rpki-client -vvf rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft File: MkK64Aup8N9Ontpv5cCPEp-RaIE.mft (raw, json) Hash identifier: C8WJVEzKLvtlZEutEvqbnw0fdy6h9FyBRg2K7lZiUns= Subject key identifier: 16:55:BA:F0:01:AC:81:16:CB:83:ED:20:42:08:45:DC:38:8D:A5:62 Authority key identifier: 32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 Certificate issuer: /CN=A912B0A3/serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft Manifest number: 07C7 Signing time: Wed 18 Jun 2025 21:04:59 +0000 Manifest this update: Wed 18 Jun 2025 21:04:58 +0000 Manifest next update: Wed 25 Jun 2025 21:04:58 +0000 Files and hashes: 1: MkK64Aup8N9Ontpv5cCPEp-RaIE.crl (hash: Glp2BEXZ+7m8yWpasHlMhYQGYzwotQeMEsvrCSomS+M=) 2: F0B154E6085A11EBA6864D71C4F9AE02.roa (hash: LwB2LqDOhHIBTqs2GBEUbqXjt3VBU4kWjANTbQ1spqo=) 3: 73DDDA0206FF11ED8C6B565FC4F9AE02.roa (hash: +6R7bMqMqpzAOMYELOdkWclWKRtU/auj18n3CAr0V2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B0A3, serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Validity Not Before: Jun 18 21:04:58 2025 GMT Not After : Jun 25 21:04:58 2025 GMT Subject: CN=685329fa-633c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:22:27:72:9a:bc:95:32:c1:3f:c8:33:3e:18: 1f:0d:a5:63:39:9c:23:d0:ba:01:bd:51:6e:67:09: 5f:fe:62:7e:4d:3d:2b:db:6f:80:76:a8:0e:6a:4c: 63:44:9f:3f:3d:76:8a:b0:e8:70:1d:8e:27:79:c1: 91:ee:f0:18:14:e8:2a:44:6a:94:58:13:b2:2f:04: 77:fc:58:c1:3d:46:7d:08:b7:30:82:ee:7d:73:bd: f2:84:a3:f3:12:40:83:0d:0d:44:3a:7c:d4:4e:42: 3b:73:1c:2f:eb:f8:11:f1:8a:15:b1:10:0b:bb:b6: e9:aa:ac:53:a4:6a:59:c3:c0:99:1e:59:62:e6:4a: 15:c9:fe:11:4a:e9:5d:b4:0c:bf:90:80:b6:41:83: 49:30:fd:38:e0:05:38:d6:95:dd:e1:91:06:c5:19: 69:bc:65:1a:5b:68:55:09:8c:d4:0a:c0:d0:86:4f: 1b:99:d2:39:8b:4e:9f:51:3c:75:89:0c:54:55:29: 0d:91:fc:3b:45:3b:ec:ad:ab:f0:23:d1:20:ff:d0: 7a:b9:a9:a1:f1:95:a6:f7:1a:40:96:3f:a4:d4:88: ed:2a:ed:1e:3b:11:36:81:ed:82:fa:fa:46:57:5a: bd:96:ed:4c:02:fe:be:db:3f:45:da:68:1e:e0:cc: 46:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:55:BA:F0:01:AC:81:16:CB:83:ED:20:42:08:45:DC:38:8D:A5:62 X509v3 Authority Key Identifier: keyid:32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b0:83:71:13:47:46:72:29:37:d6:53:b8:d2:26:78:4a:ec: c3:2f:78:80:8e:8e:67:52:d2:45:e7:a4:7d:25:39:ff:48:03: 66:18:d9:b0:5a:f7:70:6a:46:33:9a:12:01:0f:da:60:f3:e7: f3:26:e8:b8:f0:a5:dc:07:fc:ee:eb:fc:f2:dc:f7:a2:94:5e: 17:6a:fd:47:65:96:4c:b5:33:09:da:dd:2d:ab:d2:58:3a:00: a5:a6:6a:a8:0f:92:65:25:57:a1:03:1a:7e:5f:a6:93:2b:86: 77:88:ef:d6:c2:fd:2d:27:14:8c:0a:a8:ea:5f:03:cb:d1:0c: 7a:33:79:31:9c:a4:91:89:24:37:27:94:7f:91:9f:d9:1e:fc: df:9b:f9:a7:a0:ed:b0:2b:c8:c9:b8:e3:87:18:16:4c:d2:e3: c6:59:6c:bf:a0:4b:70:d6:9c:fe:3e:c6:71:2f:d1:2d:39:c6: 02:54:65:7c:ab:82:a0:33:9e:5f:76:42:5e:7e:3c:07:24:3f: a1:55:64:f3:ad:77:4f:12:b2:62:5c:d1:94:30:05:6a:ce:c0: 36:52:01:2d:54:6e:d4:70:3d:d6:a7:31:7a:49:c3:cb:4b:3d: ff:37:e3:f7:fd:d4:01:fd:4e:11:09:57:30:59:0f:81:70:47: ba:17:29:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIwQTMxMTAvBgNVBAUTKDMyNDJCQUUwMEJBOUYwREY0RTlFREE2RkU1QzA4RjEy OUY5MTY4ODEwHhcNMjUwNjE4MjEwNDU4WhcNMjUwNjI1MjEwNDU4WjAYMRYwFAYD VQQDEw02ODUzMjlmYS02MzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiIncpq8lTLBP8gzPhgfDaVjOZwj0LoBvVFuZwlf/mJ+TT0r22+AdqgOakxj RJ8/PXaKsOhwHY4necGR7vAYFOgqRGqUWBOyLwR3/FjBPUZ9CLcwgu59c73yhKPz EkCDDQ1EOnzUTkI7cxwv6/gR8YoVsRALu7bpqqxTpGpZw8CZHlli5koVyf4RSuld tAy/kIC2QYNJMP044AU41pXd4ZEGxRlpvGUaW2hVCYzUCsDQhk8bmdI5i06fUTx1 iQxUVSkNkfw7RTvsravwI9Eg/9B6uamh8ZWm9xpAlj+k1IjtKu0eOxE2ge2C+vpG V1q9lu1MAv6+2z9F2mge4MxG2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZVuvAB rIEWy4PtIEIIRdw4jaViMB8GA1UdIwQYMBaAFDJCuuALqfDfTp7ab+XAjxKfkWiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjBBMy83NTQ1NDVCQzAz QjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhOOU9udHB2NWNDUEVwLVJh SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rSzY0QXVwOE45T250cHY1Y0NQRXAtUmFJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjBBMy83NTQ1NDVCQzAzQjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhO OU9udHB2NWNDUEVwLVJhSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhsINxE0dGcik31lO40iZ4SuzDL3iAjo5nUtJF56R9JTn/SANmGNmw WvdwakYzmhIBD9pg8+fzJui48KXcB/zu6/zy3PeilF4Xav1HZZZMtTMJ2t0tq9JY OgClpmqoD5JlJVehAxp+X6aTK4Z3iO/Wwv0tJxSMCqjqXwPL0Qx6M3kxnKSRiSQ3 J5R/kZ/ZHvzfm/mnoO2wK8jJuOOHGBZM0uPGWWy/oEtw1pz+PsZxL9EtOcYCVGV8 q4KgM55fdkJefjwHJD+hVWTzrXdPErJiXNGUMAVqzsA2UgEtVG7UcD3WpzF6ScPL Sz3/N+P3/dQB/U4RCVcwWQ+BcEe6Fymx -----END CERTIFICATE-----Generated at Thu Jun 19 14:25:07 2025 by rpki-client