$ rpki-client -vvf rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft File: MnO_dM_TfcKwgKpPGtntXtY-YyA.mft (raw, json) Hash identifier: YoyIDcp7/JoE/KGLLYztMLDFt5TPLLkKsnCUpmS9aww= Subject key identifier: 0A:6C:6A:1A:33:40:8A:3B:9F:30:7A:97:E1:5A:C3:A5:BC:F4:4A:93 Authority key identifier: 32:73:BF:74:CF:D3:7D:C2:B0:80:AA:4F:1A:D9:ED:5E:D6:3E:63:20 Certificate issuer: /CN=A912E3C7/serialNumber=3273BF74CFD37DC2B080AA4F1AD9ED5ED63E6320 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft Manifest number: 62 Signing time: Fri 13 Jun 2025 05:57:47 +0000 Manifest this update: Fri 13 Jun 2025 05:57:47 +0000 Manifest next update: Fri 20 Jun 2025 05:57:47 +0000 Files and hashes: 1: MnO_dM_TfcKwgKpPGtntXtY-YyA.crl (hash: 7K2f5gfoJrPuWHOif1e5BasGBZwnxb3tuFxAanQFwIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.crl rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E3C7, serialNumber=3273BF74CFD37DC2B080AA4F1AD9ED5ED63E6320 Validity Not Before: Jun 13 05:57:47 2025 GMT Not After : Jun 20 05:57:47 2025 GMT Subject: CN=684bbddb-7ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:59:a2:2c:a7:d4:b4:28:39:fc:54:88:16:e3: f6:b8:80:39:c9:9d:65:bb:18:71:ae:c7:d6:2f:32: 9c:83:d2:fd:c0:87:45:44:90:19:c9:7e:2b:d3:7c: dd:b1:c9:b5:dc:72:1a:b8:b5:ba:e9:53:6e:30:f1: 49:07:54:83:9e:f1:b9:3c:52:8e:a6:be:5b:94:2a: 80:4d:08:f0:28:f6:30:70:a9:d9:5d:46:fb:a2:26: 62:93:2c:53:3e:c0:8a:ec:55:4c:d0:40:ab:50:af: 83:55:e1:90:5a:57:46:90:69:ae:3a:c6:07:c3:d2: 05:30:e4:06:e5:15:b4:91:cf:b1:4b:ab:6f:3a:53: 35:96:24:88:20:80:e8:e3:c6:cc:40:3f:b0:47:bf: c8:1b:1c:f0:d3:69:e0:aa:d0:12:cc:da:07:7b:39: 43:23:47:62:34:ed:5b:80:06:06:04:d9:a9:f0:48: 83:45:e5:fa:af:d0:4f:73:c4:14:6d:f9:81:0d:2c: 5b:38:4e:fe:f0:eb:63:de:5f:98:ec:21:01:1a:e9: b3:83:7f:0c:b1:04:b4:96:00:1a:94:30:ef:5e:a9: 9c:4d:3a:d2:62:fc:7b:b4:56:9f:03:83:9b:60:3f: 52:1b:be:f7:7a:69:f3:aa:78:16:b5:4b:0b:e1:18: f9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:6C:6A:1A:33:40:8A:3B:9F:30:7A:97:E1:5A:C3:A5:BC:F4:4A:93 X509v3 Authority Key Identifier: keyid:32:73:BF:74:CF:D3:7D:C2:B0:80:AA:4F:1A:D9:ED:5E:D6:3E:63:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:0c:df:4d:6a:90:29:f9:50:aa:ff:e3:39:f7:c0:37:c2:b9: 00:f8:47:f5:5c:91:45:05:b9:5a:f4:28:50:24:ca:df:b5:2f: 26:ec:71:ac:2d:bd:2d:5d:56:eb:24:70:82:2c:38:7a:dc:c7: 7d:69:0a:ce:ae:e6:20:36:9b:f4:0b:14:6a:98:b0:d9:88:d8: d3:08:65:da:d7:bc:98:16:c6:a2:e6:68:c1:70:ec:9d:4a:69: 1c:5b:74:6c:87:f7:51:17:4b:75:4a:ec:c4:0c:a2:aa:df:9e: 5e:38:ce:12:66:a0:cf:33:b8:f6:cb:7e:81:94:84:27:fa:38: 23:d3:25:08:ab:11:30:99:d8:02:74:38:96:eb:f4:bc:f2:ed: bc:66:88:b0:30:b4:63:de:d0:64:95:42:69:ce:e3:2c:96:14: ac:c8:39:4b:fd:a3:e8:a4:ec:99:a7:01:0e:85:cf:b3:69:39: 4b:e6:21:81:8c:93:0a:9b:44:2b:49:99:66:b3:1c:d1:aa:41: e3:8f:7b:54:41:75:2c:1f:a0:b1:dc:ba:00:b5:af:43:f5:44: 2d:8e:1c:e6:0a:fa:c4:7f:71:a8:59:60:9f:a5:f7:8a:45:79: ad:76:c3:8f:c9:c6:a3:77:27:31:ad:5f:13:ae:6b:cb:d5:a6: 09:66:9c:c4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTNDNzExMC8GA1UEBRMoMzI3M0JGNzRDRkQzN0RDMkIwODBBQTRGMUFEOUVENUVE NjNFNjMyMDAeFw0yNTA2MTMwNTU3NDdaFw0yNTA2MjAwNTU3NDdaMBgxFjAUBgNV BAMTDTY4NGJiZGRiLTdlYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlWaIsp9S0KDn8VIgW4/a4gDnJnWW7GHGux9YvMpyD0v3Ah0VEkBnJfivTfN2x ybXcchq4tbrpU24w8UkHVIOe8bk8Uo6mvluUKoBNCPAo9jBwqdldRvuiJmKTLFM+ wIrsVUzQQKtQr4NV4ZBaV0aQaa46xgfD0gUw5AblFbSRz7FLq286UzWWJIgggOjj xsxAP7BHv8gbHPDTaeCq0BLM2gd7OUMjR2I07VuABgYE2anwSINF5fqv0E9zxBRt +YENLFs4Tv7w62PeX5jsIQEa6bODfwyxBLSWABqUMO9eqZxNOtJi/Hu0Vp8Dg5tg P1Ibvvd6afOqeBa1SwvhGPl1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCmxqGjNA ijufMHqX4VrDpbz0SpMwHwYDVR0jBBgwFoAUMnO/dM/TfcKwgKpPGtntXtY+YyAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFM0M3LzhFNjA4QThBQjI2 NzExRUZBNTY1QTg0OUM0RjlBRTAyL01uT19kTV9UZmNLd2dLcFBHdG50WHRZLVl5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTW5PX2RNX1RmY0t3Z0twUEd0bnRYdFktWXlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF M0M3LzhFNjA4QThBQjI2NzExRUZBNTY1QTg0OUM0RjlBRTAyL01uT19kTV9UZmNL d2dLcFBHdG50WHRZLVl5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAgM301qkCn5UKr/4zn3wDfCuQD4R/VckUUFuVr0KFAkyt+1Lybscawt vS1dVuskcIIsOHrcx31pCs6u5iA2m/QLFGqYsNmI2NMIZdrXvJgWxqLmaMFw7J1K aRxbdGyH91EXS3VK7MQMoqrfnl44zhJmoM8zuPbLfoGUhCf6OCPTJQirETCZ2AJ0 OJbr9Lzy7bxmiLAwtGPe0GSVQmnO4yyWFKzIOUv9o+ik7JmnAQ6Fz7NpOUvmIYGM kwqbRCtJmWazHNGqQeOPe1RBdSwfoLHcugC1r0P1RC2OHOYK+sR/cahZYJ+l94pF ea12w4/JxqN3JzGtXxOua8vVpglmnMQ= -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:37 2025 by rpki-client