$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: 3WIHRGqofUfT4qW082sbrLWohfAG8XV0KGjX2cxH7i4= Subject key identifier: 64:CF:3B:FB:DF:BA:16:2E:40:8D:2A:1D:9F:29:5D:EF:29:30:D3:F5 Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: 010E Signing time: Thu 19 Jun 2025 04:17:45 +0000 Manifest this update: Thu 19 Jun 2025 04:17:44 +0000 Manifest next update: Thu 26 Jun 2025 04:17:44 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: /Oz2ClmtCyL45HJZR5yEuCuIcd3nn3zDmNV+Obdz8Pk=) 2: 658B1AC8AE4711EE8C130419C4F9AE02.roa (hash: pBuyb8tUeoDi0BGNU1PyCW1Le78/gB9wiXHTRO2r0pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Jun 19 04:17:44 2025 GMT Not After : Jun 26 04:17:44 2025 GMT Subject: CN=68538f68-aa73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c4:41:f3:38:43:81:98:0a:44:85:a1:c2:98: b6:99:61:70:7f:e7:eb:a1:94:24:4e:b2:d0:a8:8d: 66:d5:b6:aa:0f:52:ff:ba:1d:c1:7b:2d:c8:7b:d3: a2:6a:06:44:f1:43:a4:e8:d2:de:e4:b0:25:c9:d0: 22:17:9e:c6:37:e3:5e:ed:0b:1f:30:23:c1:a8:70: 53:96:61:f0:63:c1:5a:bc:7a:ee:4b:ae:9d:b3:40: 6e:e7:a5:8c:c5:70:5b:1d:f2:95:d3:56:96:e9:10: 65:c4:8f:30:9b:89:87:5c:33:6c:95:78:d5:22:43: e3:8a:22:e8:cb:6b:48:bc:c8:fd:d9:c5:3c:8e:f5: de:05:51:32:45:f5:94:93:45:f3:14:b9:e9:b1:b7: 3d:61:07:98:eb:b1:bd:27:7e:9b:c3:b5:c8:e6:00: c9:1d:36:c3:18:d7:3e:bd:c5:c9:e3:63:80:50:01: 13:bd:92:c8:af:8d:eb:3c:71:d1:a3:05:a2:b4:28: ff:cc:fb:b4:09:04:10:64:be:14:1d:fe:f1:a7:bb: 33:4f:0e:16:9e:50:47:61:a9:b3:66:c3:01:66:6e: 63:b2:80:15:fa:ab:71:18:53:c1:b1:b3:83:ae:53: f4:e2:11:1f:c2:71:af:90:57:d6:4f:6a:a6:04:34: d4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:CF:3B:FB:DF:BA:16:2E:40:8D:2A:1D:9F:29:5D:EF:29:30:D3:F5 X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:58:1c:12:8c:ea:b2:e0:3d:8d:c9:08:e2:1a:ba:e3:1e:c9: fc:c4:25:c4:e8:a9:ee:4e:20:16:ae:64:c0:c4:c3:0c:0b:71: bf:a7:4a:17:19:6f:18:36:90:d5:92:7d:c6:59:64:4a:b5:27: 27:62:a2:16:04:f9:5c:3b:6f:aa:ea:8d:6c:b2:c5:86:33:89: 13:67:d9:fb:43:84:46:d7:94:4c:d5:6b:c8:a6:39:2c:09:2f: 07:0e:1b:47:4b:c8:43:e4:ea:12:d8:11:57:98:4c:6b:bd:18: 59:97:31:d9:60:22:d3:9a:f4:ae:4c:b2:34:02:73:f7:3b:80: a9:cc:a9:35:34:4b:23:95:e4:92:d8:90:5a:d4:2a:da:6b:e1: 9b:29:3b:24:0a:ac:f5:0f:fd:86:3d:75:05:d3:70:d6:0c:62: fa:fe:61:d8:74:e1:25:09:f1:68:d8:7f:af:02:6d:96:a3:5b: f3:9e:2b:8f:ce:4f:d7:b2:d9:14:39:cc:6b:8b:4a:46:39:d6: c2:13:fb:0e:c6:3f:3c:c1:75:ef:8b:c5:99:44:14:d5:e8:ec: 18:d7:c8:55:3b:88:27:83:b7:dc:5b:6e:0a:29:eb:a8:7b:09: 59:bc:65:1b:ad:ee:40:bc:79:e7:a1:0a:39:10:ca:34:00:8b: 7e:ad:93:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjUwNjE5MDQxNzQ0WhcNMjUwNjI2MDQxNzQ0WjAYMRYwFAYD VQQDEw02ODUzOGY2OC1hYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cRB8zhDgZgKRIWhwpi2mWFwf+froZQkTrLQqI1m1baqD1L/uh3Bey3Ie9Oi agZE8UOk6NLe5LAlydAiF57GN+Ne7QsfMCPBqHBTlmHwY8FavHruS66ds0Bu56WM xXBbHfKV01aW6RBlxI8wm4mHXDNslXjVIkPjiiLoy2tIvMj92cU8jvXeBVEyRfWU k0XzFLnpsbc9YQeY67G9J36bw7XI5gDJHTbDGNc+vcXJ42OAUAETvZLIr43rPHHR owWitCj/zPu0CQQQZL4UHf7xp7szTw4WnlBHYamzZsMBZm5jsoAV+qtxGFPBsbOD rlP04hEfwnGvkFfWT2qmBDTU5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTPO/vf uhYuQI0qHZ8pXe8pMNP1MB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRWBwSjOqy4D2NyQjiGrrjHsn8xCXE6KnuTiAWrmTAxMMMC3G/p0oX GW8YNpDVkn3GWWRKtScnYqIWBPlcO2+q6o1sssWGM4kTZ9n7Q4RG15RM1WvIpjks CS8HDhtHS8hD5OoS2BFXmExrvRhZlzHZYCLTmvSuTLI0AnP3O4CpzKk1NEsjleSS 2JBa1Craa+GbKTskCqz1D/2GPXUF03DWDGL6/mHYdOElCfFo2H+vAm2Wo1vzniuP zk/XstkUOcxri0pGOdbCE/sOxj88wXXvi8WZRBTV6OwY18hVO4gng7fcW24KKeuo ewlZvGUbre5AvHnnoQo5EMo0AIt+rZMm -----END CERTIFICATE-----Generated at Thu Jun 19 08:41:43 2025 by rpki-client