$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: yGUcn6DVC1qE8txGElC9k3+/VZUx7M9c6CPZcag/i7c= Subject key identifier: E7:78:93:18:C3:B5:18:DE:A4:8C:09:35:3A:54:13:A7:F9:09:BB:25 Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 0347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 0342 Signing time: Sun 15 Jun 2025 00:45:14 +0000 Manifest this update: Sun 15 Jun 2025 00:45:13 +0000 Manifest next update: Sun 22 Jun 2025 00:45:13 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: PKaMVYjq1EzVFfOouPqliOOox/h/6ps8vwGAdh/fpxE=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: 3Kdq8iB7GHkmorOzNCkj5Eih8OtxQjBmOJhG+WoD4A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Jun 15 00:45:13 2025 GMT Not After : Jun 22 00:45:13 2025 GMT Subject: CN=684e1799-a5d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c7:2a:47:e8:f2:db:40:7f:8c:44:80:c3:17: c5:37:9a:0a:2d:b5:15:4c:d0:18:ef:ae:bb:da:bc: 3d:46:79:1a:2b:f4:b4:86:e0:0f:3b:f2:ab:15:9f: 83:73:08:00:2b:0e:22:61:a5:7a:92:79:92:cb:1e: 90:19:60:ff:eb:97:06:03:97:73:eb:38:13:63:1a: ef:6d:35:3d:ce:71:5a:d8:5d:66:83:97:ec:f9:e2: 4f:86:11:b9:0f:e7:16:ac:07:9c:c1:51:66:21:49: 39:ba:03:ef:31:2e:30:76:df:75:98:bc:60:1c:cc: 30:91:d9:f6:ce:bc:a5:6c:a6:d7:37:0f:5c:a1:19: 0f:a3:34:04:0b:1e:4a:3e:d7:55:db:9c:17:ed:a7: 74:e2:a2:d7:c9:d0:33:a4:4f:1a:99:e1:62:ac:7e: 73:81:ce:98:95:48:bd:56:8d:51:78:18:be:ea:c1: 3d:df:82:aa:e7:32:40:19:f9:82:15:25:82:c8:f4: ba:29:fb:a0:42:2f:2d:d3:6e:64:d8:93:a1:90:a6: 70:97:0e:7e:64:c9:b1:dc:aa:fe:35:54:c9:7f:4f: be:f8:17:ac:f9:25:90:6d:63:60:3c:83:74:7e:a1: cb:75:32:a9:8a:21:56:36:fb:84:ee:f2:bb:c2:cd: fa:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:78:93:18:C3:B5:18:DE:A4:8C:09:35:3A:54:13:A7:F9:09:BB:25 X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6e:b6:06:1d:46:3c:82:ad:5c:8f:d0:aa:c8:ec:58:10:8f: da:35:fc:8e:b9:63:09:05:65:cf:ab:58:e7:94:b8:fa:0a:fd: 67:eb:25:0c:82:79:e4:e0:9b:9e:df:b2:f1:5d:4a:95:34:b9: 93:d8:eb:82:cf:99:5a:18:45:19:30:bc:68:6e:f9:19:85:ed: 08:98:b1:7d:16:25:b6:9b:f3:3c:a8:4c:19:12:b4:d7:67:d8: ce:3d:a6:71:97:6e:55:59:1a:85:9d:d4:ff:0e:9d:f4:91:64: a5:f0:03:e1:8b:0e:37:59:4a:1a:b1:66:92:ae:c3:46:fe:12: 58:8b:be:ad:36:a4:93:dc:2e:85:09:fb:2c:ae:8d:2c:27:86: 53:75:45:e2:f2:ec:a0:7e:af:23:66:1f:75:ce:e1:98:4f:95: cc:1f:a2:84:ee:9d:5b:e0:3e:d0:53:16:25:66:d6:de:15:f8: c0:82:6a:73:dc:c5:c5:cb:72:76:6f:d5:2c:e8:53:46:74:20: b5:0f:d3:36:7d:49:ad:c6:b3:8b:d5:0b:ad:54:4b:c2:f0:01: 0d:c9:bf:37:88:01:c3:fe:43:02:92:25:3a:76:90:18:db:4b: 27:23:be:be:59:5f:ff:76:09:8c:f0:a5:3d:40:7c:bd:65:1d: ae:92:af:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUwNjE1MDA0NTEzWhcNMjUwNjIyMDA0NTEzWjAYMRYwFAYD VQQDEw02ODRlMTc5OS1hNWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1scqR+jy20B/jESAwxfFN5oKLbUVTNAY76672rw9RnkaK/S0huAPO/KrFZ+D cwgAKw4iYaV6knmSyx6QGWD/65cGA5dz6zgTYxrvbTU9znFa2F1mg5fs+eJPhhG5 D+cWrAecwVFmIUk5ugPvMS4wdt91mLxgHMwwkdn2zrylbKbXNw9coRkPozQECx5K PtdV25wX7ad04qLXydAzpE8ameFirH5zgc6YlUi9Vo1ReBi+6sE934Kq5zJAGfmC FSWCyPS6KfugQi8t025k2JOhkKZwlw5+ZMmx3Kr+NVTJf0+++Bes+SWQbWNgPIN0 fqHLdTKpiiFWNvuE7vK7ws36SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOd4kxjD tRjepIwJNTpUE6f5CbslMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtbrYGHUY8gq1cj9CqyOxYEI/aNfyOuWMJBWXPq1jnlLj6Cv1n6yUM gnnk4Jue37LxXUqVNLmT2OuCz5laGEUZMLxobvkZhe0ImLF9FiW2m/M8qEwZErTX Z9jOPaZxl25VWRqFndT/Dp30kWSl8APhiw43WUoasWaSrsNG/hJYi76tNqST3C6F Cfssro0sJ4ZTdUXi8uygfq8jZh91zuGYT5XMH6KE7p1b4D7QUxYlZtbeFfjAgmpz 3MXFy3J2b9Us6FNGdCC1D9M2fUmtxrOL1QutVEvC8AENyb83iAHD/kMCkiU6dpAY 20snI76+WV//dgmM8KU9QHy9ZR2ukq/a -----END CERTIFICATE-----Generated at Tue Jun 17 01:06:53 2025 by rpki-client