$ rpki-client -vvf rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft File: cDaiAHf_h_76NADX-QdrfhmDiy4.mft (raw, json) Hash identifier: yD4gzCTKAGx9Jv+wyudD4zmC+1dteTaZDNJVIoiY/L8= Subject key identifier: 3F:34:DA:99:37:04:46:D5:8E:94:A1:52:E9:3D:D8:72:91:4E:29:81 Authority key identifier: 70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E Certificate issuer: /CN=A913F124/serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft Manifest number: 01F7 Signing time: Sun 15 Jun 2025 01:45:15 +0000 Manifest this update: Sun 15 Jun 2025 01:45:15 +0000 Manifest next update: Sun 22 Jun 2025 01:45:15 +0000 Files and hashes: 1: cDaiAHf_h_76NADX-QdrfhmDiy4.crl (hash: x7YfVe4i0cJimy7Ey/BjJzgcAUMDyLyBhog8SHULv2w=) 2: B13C376049EC11ED9EAEAC0CC4F9AE02.roa (hash: 3aaeEi1YrA3uSceTUOZGuJZHBHy8WbpEjF+B/7Isrys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F124, serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Validity Not Before: Jun 15 01:45:15 2025 GMT Not After : Jun 22 01:45:15 2025 GMT Subject: CN=684e25ab-f79d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a9:39:b2:32:48:8d:52:d2:76:96:7a:5b:00: 68:7e:83:17:ca:1a:24:e3:17:da:d4:40:86:82:05: 2f:6c:b3:2e:34:4b:bf:74:44:f8:09:77:81:dd:27: ac:f0:f5:e6:91:e2:37:35:b8:58:0a:f6:9c:8a:31: d7:32:bd:d9:d1:ed:7a:60:a6:49:87:20:bf:a4:9d: 0f:24:c8:41:30:8d:e2:e0:2d:f4:bd:4d:61:7e:0c: 06:8f:4c:e2:b1:0c:8a:02:e5:d0:c9:14:1c:8e:60: eb:40:1e:97:54:36:19:5f:dc:e4:5b:1a:e7:cf:0e: c8:89:bd:22:92:97:23:5a:38:ac:8a:13:d7:26:5a: 66:bf:d0:5e:53:85:52:38:8b:5d:63:b8:6a:10:c5: ed:01:87:c6:77:5f:0d:e7:e2:0c:75:18:32:20:16: 5d:17:92:85:4c:f3:bc:a3:74:33:74:c1:2c:f8:05: 77:36:0b:2c:47:8f:d1:f5:85:41:9f:16:c4:ad:89: cc:7a:c2:ef:9f:06:e0:c8:8d:fa:97:02:4e:0e:66: f3:ae:59:43:7f:5d:ba:41:6c:d1:30:88:4b:4f:75: 04:c8:33:9c:46:d7:cd:00:28:75:59:8d:b8:fc:ed: 18:5c:fc:d5:7e:4d:c0:e8:9b:04:b4:f7:de:54:53: 4a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:34:DA:99:37:04:46:D5:8E:94:A1:52:E9:3D:D8:72:91:4E:29:81 X509v3 Authority Key Identifier: keyid:70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:19:73:51:59:33:48:b5:d3:8f:e5:f4:43:09:01:8e:f9:6b: a5:bd:d7:ed:4c:1d:8e:8b:c5:49:db:2c:15:ed:98:30:cb:3c: 3b:70:97:21:1f:1a:3c:b3:31:a3:ea:c5:fd:84:eb:f7:e9:3a: d0:e0:af:84:d0:00:33:df:b9:1d:ca:6e:70:e1:d6:75:31:38: b8:76:d2:5d:6f:83:84:20:3f:05:97:c1:65:e1:22:3e:df:38: 90:88:93:0e:fe:24:42:1b:c9:c5:a1:ba:84:4a:a8:b0:28:30: 06:4c:87:6c:b5:48:c6:3b:30:a5:67:4b:f5:00:15:bc:fc:e0: 1c:3f:fe:8a:9d:98:eb:e1:25:f5:0d:c3:93:18:2c:e3:36:d3: ac:db:98:c0:59:8e:ca:34:81:78:8e:67:21:60:d7:48:7f:09: 84:df:c3:fa:5d:c9:e4:a0:f7:63:70:75:3e:21:73:28:dc:ec: 12:d7:51:e7:2b:24:fa:2a:02:87:81:63:0a:0d:94:79:97:66: de:65:c7:fc:02:17:fd:3a:e9:e8:19:a1:ff:ca:5d:68:7e:41: 4f:71:05:88:d0:90:3e:fb:b2:23:ec:b9:94:2f:5b:f1:fe:7a: 17:3e:bd:bf:99:e3:e9:ee:81:c5:66:17:e5:41:60:5b:4c:3a: 3b:eb:50:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YxMjQxMTAvBgNVBAUTKDcwMzZBMjAwNzdGRjg3RkVGQTM0MDBEN0Y5MDc2QjdF MTk4MzhCMkUwHhcNMjUwNjE1MDE0NTE1WhcNMjUwNjIyMDE0NTE1WjAYMRYwFAYD VQQDEw02ODRlMjVhYi1mNzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApak5sjJIjVLSdpZ6WwBofoMXyhok4xfa1ECGggUvbLMuNEu/dET4CXeB3Ses 8PXmkeI3NbhYCvacijHXMr3Z0e16YKZJhyC/pJ0PJMhBMI3i4C30vU1hfgwGj0zi sQyKAuXQyRQcjmDrQB6XVDYZX9zkWxrnzw7Iib0ikpcjWjisihPXJlpmv9BeU4VS OItdY7hqEMXtAYfGd18N5+IMdRgyIBZdF5KFTPO8o3QzdMEs+AV3NgssR4/R9YVB nxbErYnMesLvnwbgyI36lwJODmbzrllDf126QWzRMIhLT3UEyDOcRtfNACh1WY24 /O0YXPzVfk3A6JsEtPfeVFNKkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD802pk3 BEbVjpShUuk92HKRTimBMB8GA1UdIwQYMBaAFHA2ogB3/4f++jQA1/kHa34Zg4su MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjEyNC81NjU1REE3NjQ5 RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hfNzZOQURYLVFkcmZobURp eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NEYWlBSGZfaF83Nk5BRFgtUWRyZmhtRGl5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjEyNC81NjU1REE3NjQ5RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hf NzZOQURYLVFkcmZobURpeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2GXNRWTNItdOP5fRDCQGO+WulvdftTB2Oi8VJ2ywV7Zgwyzw7cJch Hxo8szGj6sX9hOv36TrQ4K+E0AAz37kdym5w4dZ1MTi4dtJdb4OEID8Fl8Fl4SI+ 3ziQiJMO/iRCG8nFobqESqiwKDAGTIdstUjGOzClZ0v1ABW8/OAcP/6KnZjr4SX1 DcOTGCzjNtOs25jAWY7KNIF4jmchYNdIfwmE38P6XcnkoPdjcHU+IXMo3OwS11Hn KyT6KgKHgWMKDZR5l2beZcf8Ahf9OunoGaH/yl1ofkFPcQWI0JA++7Ij7LmUL1vx /noXPr2/mePp7oHFZhflQWBbTDo761B7 -----END CERTIFICATE-----Generated at Sun Jun 15 23:52:46 2025 by rpki-client