$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: DrRfbt1QeyDqrPScv4efkx+OYw7DiNgKDW/Kpp/woyQ= Subject key identifier: B9:4E:CB:BD:0C:A1:A0:70:DA:A1:78:5F:ED:25:41:42:F3:65:D4:15 Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 056E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 056A Signing time: Thu 12 Jun 2025 22:57:10 +0000 Manifest this update: Thu 12 Jun 2025 22:57:10 +0000 Manifest next update: Thu 19 Jun 2025 22:57:10 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: AzUKMrmmJSVnfOq2u/rIfesTRXgWLC2dVYZTlGJUI24=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: mvt83k4r04Uj589p/6oDGv6atTVgppc7yoDpOvB9Gm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Jun 12 22:57:10 2025 GMT Not After : Jun 19 22:57:10 2025 GMT Subject: CN=684b5b46-b57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ca:0c:0d:b4:92:b4:01:10:dc:33:1f:60:32: 07:48:4d:4c:75:49:91:e7:6e:5d:59:6a:4f:29:5e: d2:9d:87:84:38:fd:8d:96:ce:76:8e:3d:84:da:82: 97:06:41:87:b7:06:fd:df:04:23:44:f7:cb:41:e4: 14:ca:a4:b6:69:2c:6e:1e:24:7c:e9:60:09:07:16: 0f:52:69:2a:43:e0:0b:57:e3:e1:25:37:70:a6:d1: 9e:60:ea:64:55:5c:3d:1c:7d:44:64:2e:c0:c2:63: 41:14:cd:39:ca:10:8f:4a:c1:2c:20:d9:ba:44:a1: 9b:43:05:50:15:52:b9:ae:1a:6e:8b:ae:e0:bf:56: 20:72:c2:a4:80:e3:5c:30:62:42:a6:4f:2d:dc:63: d2:39:cd:ad:de:5f:b7:ad:22:f8:96:31:5e:dc:56: 05:2f:b7:7d:e4:fb:ed:9e:ea:49:3e:2a:18:2d:98: 86:89:70:95:5b:ff:15:3d:46:88:99:01:65:ff:d1: d7:ac:40:cf:ab:28:9a:57:73:53:9b:84:8c:6f:a3: 36:2a:ca:84:71:56:7a:05:49:df:c5:b3:24:6c:9f: 02:d9:46:02:a1:f6:5b:56:d2:9e:f0:4a:22:34:43: 95:7a:23:80:3d:a3:cf:16:a1:62:7c:c7:4b:40:c9: 30:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4E:CB:BD:0C:A1:A0:70:DA:A1:78:5F:ED:25:41:42:F3:65:D4:15 X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:79:1f:19:fd:4a:91:bc:97:79:34:33:85:a1:9a:19:7e:ed: 52:98:31:85:0e:c9:79:79:50:29:18:37:2c:86:ce:67:5a:04: 85:ad:11:e1:60:ba:7b:8d:f9:df:1b:d6:a5:35:da:99:b9:de: 6a:96:10:82:b2:7d:ad:09:97:db:ad:63:a1:65:70:60:11:55: 1f:20:1f:d7:7f:ea:60:c0:aa:a2:02:ef:9e:87:d6:a1:a0:d9: 40:a6:89:2f:ca:3b:2c:26:3c:86:47:38:f6:e6:71:5a:cf:f0: 5c:c5:f4:be:a5:9c:14:f1:ba:13:cf:e2:c5:c7:e8:75:af:d9: e2:7f:27:bd:28:0e:15:a0:72:ae:d2:06:00:78:a4:40:c0:71: 17:04:00:7d:19:9c:5f:37:ba:81:ac:e2:47:7f:28:73:8f:73: ba:86:bf:43:d7:b8:3d:c7:a7:25:57:1f:1b:87:34:9a:04:37: 07:69:ce:86:50:db:cd:f8:a4:3f:c6:cf:05:6a:01:c3:73:6b: 21:2c:17:7b:e2:fc:58:72:31:cb:4f:3b:30:45:f2:6b:df:55: df:bf:d4:eb:63:61:04:81:e5:80:28:cf:0d:d4:fb:b4:fd:56: d9:b1:4c:4f:10:3d:f3:6d:d8:75:56:32:06:ca:87:6c:11:53: 99:74:eb:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjUwNjEyMjI1NzEwWhcNMjUwNjE5MjI1NzEwWjAYMRYwFAYD VQQDEw02ODRiNWI0Ni1iNTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8oMDbSStAEQ3DMfYDIHSE1MdUmR525dWWpPKV7SnYeEOP2Nls52jj2E2oKX BkGHtwb93wQjRPfLQeQUyqS2aSxuHiR86WAJBxYPUmkqQ+ALV+PhJTdwptGeYOpk VVw9HH1EZC7AwmNBFM05yhCPSsEsINm6RKGbQwVQFVK5rhpui67gv1YgcsKkgONc MGJCpk8t3GPSOc2t3l+3rSL4ljFe3FYFL7d95PvtnupJPioYLZiGiXCVW/8VPUaI mQFl/9HXrEDPqyiaV3NTm4SMb6M2KsqEcVZ6BUnfxbMkbJ8C2UYCofZbVtKe8Eoi NEOVeiOAPaPPFqFifMdLQMkwEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlOy70M oaBw2qF4X+0lQULzZdQVMB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPeR8Z/UqRvJd5NDOFoZoZfu1SmDGFDsl5eVApGDcshs5nWgSFrRHh YLp7jfnfG9alNdqZud5qlhCCsn2tCZfbrWOhZXBgEVUfIB/Xf+pgwKqiAu+eh9ah oNlApokvyjssJjyGRzj25nFaz/BcxfS+pZwU8boTz+LFx+h1r9nifye9KA4VoHKu 0gYAeKRAwHEXBAB9GZxfN7qBrOJHfyhzj3O6hr9D17g9x6clVx8bhzSaBDcHac6G UNvN+KQ/xs8FagHDc2shLBd74vxYcjHLTzswRfJr31Xfv9TrY2EEgeWAKM8N1Pu0 /VbZsUxPED3zbdh1VjIGyodsEVOZdOvy -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:53 2025 by rpki-client