$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: r2DdSQbgbMxeVZ73ROttFaHX96MLtvCjC2aj2EggEdA= Subject key identifier: 3E:FD:64:E5:4F:78:49:A2:76:54:8B:C2:78:72:BD:E9:DD:DC:CA:28 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0F60 Signing time: Sat 14 Jun 2025 17:30:42 +0000 Manifest this update: Sat 14 Jun 2025 17:30:41 +0000 Manifest next update: Sat 21 Jun 2025 17:30:41 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: 6BsM31+OfTQBqh3/3eUZzmsmvi81OPeTLTLuRj1HRVY=) 2: 164B42E2414111F0A098A82DC4F9AE02.roa (hash: dJHoDekjFkpD+HydVswBgGgsUVupPAujnF3OBVrSpKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3957 (0xf75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Jun 14 17:30:41 2025 GMT Not After : Jun 21 17:30:41 2025 GMT Subject: CN=684db1c2-cf75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:66:6e:a5:91:99:8d:bd:e1:42:13:03:f1:70: 29:de:37:85:b4:e3:51:c0:67:1d:08:4a:56:2f:53: 1c:ef:4d:e0:9c:92:e7:15:03:43:46:e9:78:b0:52: 80:ab:cf:d0:77:89:41:bf:ba:7f:15:1a:ab:a9:b8: 25:eb:32:7e:ed:a6:42:c9:25:28:a5:81:81:04:5c: 2c:ff:ff:bf:5a:f7:7e:ad:7e:62:c7:96:93:7d:cb: d5:83:e3:3d:f9:c3:b6:40:1c:c8:a1:12:d3:a8:38: 5c:29:46:61:75:cb:3c:97:14:7b:9b:54:5d:f7:5c: e3:40:f1:c4:9a:a4:79:01:5c:83:5b:06:39:2f:21: 3c:47:a5:24:00:07:58:4b:4b:7a:0b:eb:ff:21:14: 65:3a:3d:f4:06:7a:fd:b5:0e:ec:b2:87:b4:05:02: ef:22:f6:be:0f:af:3c:18:d3:e5:a5:e4:12:3a:e4: 7b:76:88:b4:de:89:1f:08:82:05:a3:9a:7f:05:4e: b9:a8:16:f0:ea:fb:80:bb:9f:17:4c:21:64:a9:e0: 8b:c9:0c:99:d2:4d:04:9c:12:a2:97:0b:ff:f0:0d: fb:83:d8:7f:21:ce:44:19:54:51:a9:7e:84:b6:26: 35:05:5f:e2:a6:9b:ad:e0:8b:b0:2e:b0:57:14:cb: ac:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:FD:64:E5:4F:78:49:A2:76:54:8B:C2:78:72:BD:E9:DD:DC:CA:28 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:db:40:66:60:1f:ae:e1:c0:d3:30:53:7c:e2:fc:a7:dc:da: 12:81:0a:74:9b:37:7a:69:91:53:cb:13:43:da:63:ce:a5:29: fc:96:ba:ae:2f:1e:10:15:20:75:9e:f8:32:63:58:37:53:c3: 41:6d:24:1c:53:8b:03:cf:5d:e0:b8:1b:16:0d:e3:47:0d:a6: fe:7a:a8:11:fa:8b:f5:2c:f6:9e:0f:94:68:09:86:f9:5b:46: 5a:b4:fc:62:40:a8:44:d5:da:49:1e:d8:30:62:02:89:cd:5c: e0:1e:28:ba:d8:b4:d0:1c:c7:7c:e9:bb:d0:b4:57:c6:74:47: 7b:0b:62:7a:2a:f8:4a:10:fc:7c:26:f2:88:86:09:05:e0:fc: c3:7a:af:0b:b4:58:67:ab:4e:bd:71:7e:5c:56:a3:45:6f:d2: 2b:ee:92:df:6c:9a:09:27:4b:e5:08:e4:4e:a1:36:70:9d:73: ac:d5:77:d0:a0:57:53:d7:bd:0a:68:c2:6e:01:4c:54:b0:f1: 33:06:55:16:49:89:62:22:7a:e1:50:35:dc:b8:92:da:68:dd: 47:86:09:5a:69:85:9d:0d:96:e1:a4:8e:77:0a:6b:6c:9c:3a: 51:f2:29:93:50:4e:dc:62:7f:19:fc:78:82:b1:48:c1:37:6c: 45:f7:6e:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwNjE0MTczMDQxWhcNMjUwNjIxMTczMDQxWjAYMRYwFAYD VQQDEw02ODRkYjFjMi1jZjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmZupZGZjb3hQhMD8XAp3jeFtONRwGcdCEpWL1Mc703gnJLnFQNDRul4sFKA q8/Qd4lBv7p/FRqrqbgl6zJ+7aZCySUopYGBBFws//+/Wvd+rX5ix5aTfcvVg+M9 +cO2QBzIoRLTqDhcKUZhdcs8lxR7m1Rd91zjQPHEmqR5AVyDWwY5LyE8R6UkAAdY S0t6C+v/IRRlOj30Bnr9tQ7ssoe0BQLvIva+D688GNPlpeQSOuR7doi03okfCIIF o5p/BU65qBbw6vuAu58XTCFkqeCLyQyZ0k0EnBKilwv/8A37g9h/Ic5EGVRRqX6E tiY1BV/ipput4IuwLrBXFMusFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD79ZOVP eEmidlSLwnhyvend3MooMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB120BmYB+u4cDTMFN84vyn3NoSgQp0mzd6aZFTyxND2mPOpSn8lrqu Lx4QFSB1nvgyY1g3U8NBbSQcU4sDz13guBsWDeNHDab+eqgR+ov1LPaeD5RoCYb5 W0ZatPxiQKhE1dpJHtgwYgKJzVzgHii62LTQHMd86bvQtFfGdEd7C2J6KvhKEPx8 JvKIhgkF4PzDeq8LtFhnq069cX5cVqNFb9Ir7pLfbJoJJ0vlCOROoTZwnXOs1XfQ oFdT170KaMJuAUxUsPEzBlUWSYliInrhUDXcuJLaaN1HhglaaYWdDZbhpI53Cmts nDpR8imTUE7cYn8Z/HiCsUjBN2xF924g -----END CERTIFICATE-----Generated at Sun Jun 15 08:45:23 2025 by rpki-client