$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: lTU8d7gXo3lbotykZPdjfFND/OQd2bV2MtidXBHGVKw= Subject key identifier: 61:57:EB:7D:83:41:A4:15:5E:73:95:D4:A0:83:FE:5D:5A:26:E6:71 Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0C75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0C6A Signing time: Sat 14 Jun 2025 18:13:08 +0000 Manifest this update: Sat 14 Jun 2025 18:13:08 +0000 Manifest next update: Sat 21 Jun 2025 18:13:08 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: WkuhQ9R3vKuWcMauhdzkt4OlKMLhG4FxgUAjN/+MUXo=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Jun 14 18:13:08 2025 GMT Not After : Jun 21 18:13:08 2025 GMT Subject: CN=684dbbb4-5db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:44:17:56:8a:cf:fd:cb:a4:90:a9:16:55:b8: 09:0e:1d:a3:06:43:58:27:9b:fa:0c:67:95:f0:c3: ef:f6:ae:b4:f6:81:75:2c:18:ac:52:54:33:13:5a: 2d:0e:81:97:06:13:d3:27:cd:91:cd:91:db:80:e5: 9f:76:87:b9:24:84:70:ee:1a:da:d3:87:cf:a0:07: 70:e7:f0:ff:72:34:6f:15:92:17:9e:e5:18:20:b5: e4:8f:cf:47:14:df:5c:65:a3:12:68:bb:19:97:71: 57:9d:6c:03:ab:f9:58:12:1e:4f:95:fe:6e:05:dd: 0d:48:24:c0:9d:62:5e:24:08:3d:08:b8:49:74:81: 8d:3e:23:3a:1c:49:90:27:1d:7c:d1:c8:75:70:5d: d7:0b:13:8d:7c:0b:a8:39:f2:05:1d:95:8b:21:fd: 05:7c:a9:43:7a:b8:2e:9d:45:2c:18:22:01:e2:25: b0:83:84:8f:2a:5e:51:b4:b4:ef:64:7d:49:ea:a1: 48:ec:57:46:55:2e:d5:8e:85:f3:51:d2:5a:c2:b9: c2:af:89:c4:f4:21:c6:52:ee:a8:2a:b3:44:d5:5d: ee:c8:ab:cc:e3:96:fb:1b:a6:97:c3:bb:1f:69:a7: e6:74:37:70:0a:97:6b:21:5d:de:3e:54:9c:d1:e0: 82:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:57:EB:7D:83:41:A4:15:5E:73:95:D4:A0:83:FE:5D:5A:26:E6:71 X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:7b:47:61:04:56:e1:11:a0:ba:41:62:c1:52:98:54:70:4a: 41:a9:81:eb:b2:95:7d:3c:8a:0c:a2:2b:91:35:55:ad:1d:fb: 34:b9:23:e7:a9:ff:13:a8:79:c9:7a:8f:f7:25:74:6e:38:6e: 83:01:54:ed:8c:0c:ea:74:3f:ed:1f:0f:6c:7d:ca:f8:73:85: fd:56:61:e9:02:6d:73:e2:d3:a3:62:42:5c:48:a0:b8:74:a4: 04:5e:85:33:23:c4:56:88:ab:02:13:4b:2e:53:fa:34:ee:92: 5e:b8:14:c5:b8:b3:4b:3e:d3:f1:71:34:bc:44:7a:f9:2c:22: e1:33:d8:35:ed:23:d8:00:43:54:59:1e:db:66:f0:8b:27:f7: 5c:32:a0:6d:9e:51:92:d1:80:cb:b1:a8:f5:f5:01:a8:54:d6: a8:94:69:4c:2c:7c:7c:16:3d:77:b5:a5:fc:25:6e:4e:6a:40: dc:3e:6d:c9:e8:59:c4:18:e2:9f:a2:fd:70:0b:d3:93:96:4a: 1b:f1:7b:45:f9:ab:70:39:03:b3:c8:93:68:26:47:37:fe:53: 33:8f:04:1a:6f:56:19:44:12:01:5d:d3:5f:c5:e0:3d:60:c2: 83:fc:c1:0e:56:91:b0:60:4e:c4:25:e7:9d:e5:8d:f4:c9:ae: 76:b3:f5:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUwNjE0MTgxMzA4WhcNMjUwNjIxMTgxMzA4WjAYMRYwFAYD VQQDEw02ODRkYmJiNC01ZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3EQXVorP/cukkKkWVbgJDh2jBkNYJ5v6DGeV8MPv9q609oF1LBisUlQzE1ot DoGXBhPTJ82RzZHbgOWfdoe5JIRw7hra04fPoAdw5/D/cjRvFZIXnuUYILXkj89H FN9cZaMSaLsZl3FXnWwDq/lYEh5Plf5uBd0NSCTAnWJeJAg9CLhJdIGNPiM6HEmQ Jx180ch1cF3XCxONfAuoOfIFHZWLIf0FfKlDergunUUsGCIB4iWwg4SPKl5RtLTv ZH1J6qFI7FdGVS7VjoXzUdJawrnCr4nE9CHGUu6oKrNE1V3uyKvM45b7G6aXw7sf aafmdDdwCpdrIV3ePlSc0eCCywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFX632D QaQVXnOV1KCD/l1aJuZxMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAke0dhBFbhEaC6QWLBUphUcEpBqYHrspV9PIoMoiuRNVWtHfs0uSPn qf8TqHnJeo/3JXRuOG6DAVTtjAzqdD/tHw9sfcr4c4X9VmHpAm1z4tOjYkJcSKC4 dKQEXoUzI8RWiKsCE0suU/o07pJeuBTFuLNLPtPxcTS8RHr5LCLhM9g17SPYAENU WR7bZvCLJ/dcMqBtnlGS0YDLsaj19QGoVNaolGlMLHx8Fj13taX8JW5OakDcPm3J 6FnEGOKfov1wC9OTlkob8XtF+atwOQOzyJNoJkc3/lMzjwQab1YZRBIBXdNfxeA9 YMKD/MEOVpGwYE7EJeed5Y30ya52s/Wr -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:36 2025 by rpki-client