$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft File: mbcL8gJe3c35KkfQTLdWrLBz3EU.mft (raw, json) Hash identifier: AJ+ywH/9/fZnQcza/e0K7JopyTqp2YJxyMpRe2ocTqo= Subject key identifier: CE:0D:6D:83:AC:99:B1:E4:DD:21:77:87:C6:26:2B:43:45:83:6C:02 Authority key identifier: 99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 Certificate issuer: /CN=A912C7DC/serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft Manifest number: 56 Signing time: Fri 13 Jun 2025 06:04:34 +0000 Manifest this update: Fri 13 Jun 2025 06:04:33 +0000 Manifest next update: Fri 20 Jun 2025 06:04:33 +0000 Files and hashes: 1: mbcL8gJe3c35KkfQTLdWrLBz3EU.crl (hash: 7jwvFRBDt02VAaZmDTfog4a9WKN1WR5fws1XJP43bAo=) 2: E310D7E2C58B11EFBA44DE34C4F9AE02.roa (hash: KRcguCIL3wMi3PwztLJpTVhTUzHmH2MqWyforuoA8o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC, serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Validity Not Before: Jun 13 06:04:33 2025 GMT Not After : Jun 20 06:04:33 2025 GMT Subject: CN=684bbf72-ef5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:02:f6:35:8a:20:22:c7:ce:94:7d:6b:5b:4a: 63:78:e0:dc:d3:6d:c7:56:b2:d3:35:5e:ed:28:82: d1:6e:95:ea:88:3c:eb:59:24:89:fa:1d:88:27:03: 72:cd:55:2e:77:37:8e:28:4e:6c:28:ab:0e:57:f8: 12:09:9f:27:06:c3:37:10:73:46:59:a8:50:3f:5f: 91:85:bc:1c:36:f0:d8:52:2e:e8:ab:56:cd:76:10: 1d:fa:d9:e1:77:f8:74:0c:96:de:ca:bf:1b:9f:21: 1a:a4:07:00:09:8a:4f:65:7f:63:77:e1:7d:3d:04: 33:f8:3e:f7:eb:ce:89:ee:65:eb:3a:7c:8e:bc:96: 77:c3:12:e5:70:f6:40:92:9e:61:60:5e:e1:40:fb: 76:e1:de:24:18:f9:f0:8d:55:68:20:04:c8:4b:ad: bf:9e:4f:19:ae:ea:d9:46:a8:1d:2d:d5:5a:e5:fb: 62:ad:d9:56:97:08:b6:55:75:3e:5d:52:c0:59:a5: d0:c2:81:f9:d6:4f:de:c8:2d:a3:21:7f:e2:8e:c9: 1d:c6:31:97:d5:52:19:3f:a7:33:73:fb:fc:82:1f: d2:56:f6:5e:e8:72:da:6e:19:9d:51:35:ac:e7:43: f1:71:25:c5:b2:6e:a4:08:2d:eb:55:ca:d6:64:72: e7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0D:6D:83:AC:99:B1:E4:DD:21:77:87:C6:26:2B:43:45:83:6C:02 X509v3 Authority Key Identifier: keyid:99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:62:39:6f:e6:0d:1a:c1:18:7f:62:fd:fa:63:5b:9a:f0:28: a2:db:68:8c:c9:a7:f1:5f:49:c4:27:61:da:80:ba:a0:8f:08: 60:e6:a3:c9:5e:d3:8f:9c:a8:a5:86:d2:37:6e:18:cc:27:da: 2b:4d:64:23:7a:2f:8f:f0:10:4e:07:db:01:2c:66:e3:b1:8e: 9e:30:da:fc:21:52:65:89:1d:78:93:6a:4a:47:6e:83:ef:93: 50:ca:44:12:78:e2:ff:1b:fa:b7:b1:75:90:5f:95:ac:c1:9c: 18:dc:50:4b:70:47:cc:78:0e:dc:6a:f2:d8:a2:04:99:ad:78: 75:28:4c:3e:cd:fc:bb:92:63:25:7b:ff:e8:54:5c:bb:e8:c5: a6:f5:e4:6d:69:33:9a:37:d1:e0:9a:4e:12:d5:f1:8b:d4:27: 77:7d:8c:e9:6e:a1:4b:d1:70:d5:7a:38:bc:4e:e1:58:17:74: e0:65:f4:e9:0d:8c:24:99:8f:06:35:23:cf:4b:e0:f4:ee:61: a6:e8:42:4b:9d:08:c7:d4:92:0d:9a:bb:2d:c0:57:33:0a:95: 44:69:13:a0:6f:f2:65:93:3d:3b:65:b5:8c:85:0a:8c:3f:46: 75:fc:52:80:04:3f:0d:55:cc:76:78:f8:59:d4:52:5f:01:39: 16:8e:fc:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzdEQzExMC8GA1UEBRMoOTlCNzBCRjIwMjVFRERDREY5MkE0N0QwNENCNzU2QUNC MDczREM0NTAeFw0yNTA2MTMwNjA0MzNaFw0yNTA2MjAwNjA0MzNaMBgxFjAUBgNV BAMTDTY4NGJiZjcyLWVmNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0AvY1iiAix86UfWtbSmN44NzTbcdWstM1Xu0ogtFuleqIPOtZJIn6HYgnA3LN VS53N44oTmwoqw5X+BIJnycGwzcQc0ZZqFA/X5GFvBw28NhSLuirVs12EB362eF3 +HQMlt7KvxufIRqkBwAJik9lf2N34X09BDP4PvfrzonuZes6fI68lnfDEuVw9kCS nmFgXuFA+3bh3iQY+fCNVWggBMhLrb+eTxmu6tlGqB0t1Vrl+2Kt2VaXCLZVdT5d UsBZpdDCgfnWT97ILaMhf+KOyR3GMZfVUhk/pzNz+/yCH9JW9l7octpuGZ1RNazn Q/FxJcWybqQILetVytZkcuftAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzg1tg6yZ seTdIXeHxiYrQ0WDbAIwHwYDVR0jBBgwFoAUmbcL8gJe3c35KkfQTLdWrLBz3EUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDN0RDLzZERUZEQjcwQzU4 QjExRUZCODdFNUYzM0M0RjlBRTAyL21iY0w4Z0plM2MzNUtrZlFUTGRXckxCejNF VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWJjTDhnSmUzYzM1S2tmUVRMZFdyTEJ6M0VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD N0RDLzZERUZEQjcwQzU4QjExRUZCODdFNUYzM0M0RjlBRTAyL21iY0w4Z0plM2Mz NUtrZlFUTGRXckxCejNFVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB5iOW/mDRrBGH9i/fpjW5rwKKLbaIzJp/FfScQnYdqAuqCPCGDmo8le 04+cqKWG0jduGMwn2itNZCN6L4/wEE4H2wEsZuOxjp4w2vwhUmWJHXiTakpHboPv k1DKRBJ44v8b+rexdZBflazBnBjcUEtwR8x4Dtxq8tiiBJmteHUoTD7N/LuSYyV7 /+hUXLvoxab15G1pM5o30eCaThLV8YvUJ3d9jOluoUvRcNV6OLxO4VgXdOBl9OkN jCSZjwY1I89L4PTuYaboQkudCMfUkg2auy3AVzMKlURpE6Bv8mWTPTtltYyFCow/ RnX8UoAEPw1VzHZ4+FnUUl8BORaO/MA= -----END CERTIFICATE-----Generated at Sun Jun 15 05:43:13 2025 by rpki-client