$ rpki-client -vvf rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft File: rCP1TTAVC0YAnBoCnl7s224FVlY.mft (raw, json) Hash identifier: fnkL8cqj9Kg9Lj1Gy4UIe7iOEG9aIgMw1FTPxbYYaYs= Subject key identifier: E4:B1:F1:16:7C:6A:A7:5A:7F:88:2F:3A:61:53:7E:0C:74:44:CF:AB Authority key identifier: AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 Certificate issuer: /CN=A9141586/serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft Manifest number: 0288 Signing time: Sun 15 Jun 2025 01:19:18 +0000 Manifest this update: Sun 15 Jun 2025 01:19:17 +0000 Manifest next update: Sun 22 Jun 2025 01:19:17 +0000 Files and hashes: 1: rCP1TTAVC0YAnBoCnl7s224FVlY.crl (hash: CDMwfOYEBV87XYkm5fZRIYYXh6hjH3h9iTzjLHsanrQ=) 2: CA08C348098D11EDAB30E934C4F9AE02.roa (hash: aPI8mVL7Dstx7y3IRo2S4CN1FA4wN8FwOnV7yts7LdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141586, serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Validity Not Before: Jun 15 01:19:17 2025 GMT Not After : Jun 22 01:19:17 2025 GMT Subject: CN=684e1f95-150e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:84:c3:7b:50:3b:4d:72:8f:34:38:62:60:59: 7b:a9:18:9a:84:1a:57:64:5e:d0:ff:af:e2:de:96: 53:4a:6c:a3:ee:78:06:18:dd:d0:7c:52:bd:db:ce: 97:ad:b9:ee:0c:54:90:33:07:11:c8:fa:a4:d8:29: 29:72:ab:28:e2:b4:31:63:77:f1:13:b0:a8:e0:9e: 27:7b:95:5e:df:23:a2:9f:e7:6d:5a:66:c0:8e:84: f9:1f:00:df:7a:39:e5:c2:6f:de:c8:ad:20:80:ea: 0e:2d:3a:88:ff:6c:c1:eb:82:8d:f8:4a:a0:08:bc: af:b4:53:c5:d0:00:e1:b0:a5:12:49:22:98:cd:f0: 78:cc:80:97:a1:a3:5f:d0:2b:4c:31:60:db:da:73: 24:33:0a:52:1f:17:41:d6:fe:e8:9d:39:4f:61:46: 1d:09:b2:7d:eb:38:05:93:41:ab:83:fe:8c:82:79: 3a:d0:f5:71:1d:05:f0:ad:8a:3d:aa:32:0d:33:24: 69:23:c4:8d:23:cf:ee:01:9f:6f:67:ea:61:c7:46: 95:de:74:f4:93:f8:f8:aa:37:2e:46:01:80:c3:0d: bb:87:7d:6a:09:9f:09:dd:9a:41:0a:f2:e1:c7:a4: 15:93:6d:48:a9:02:2b:58:fb:7c:f4:cb:34:20:d3: c9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B1:F1:16:7C:6A:A7:5A:7F:88:2F:3A:61:53:7E:0C:74:44:CF:AB X509v3 Authority Key Identifier: keyid:AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:c2:fc:b0:33:e0:a2:b9:1a:a8:c5:f5:1e:f6:2e:52:8e:8a: 2a:ca:33:f3:fb:c3:e4:8a:ed:d4:08:82:83:43:51:54:7d:2e: 09:79:ef:97:47:cd:6e:e3:ff:a8:de:13:a8:2c:b8:cb:31:dd: 8a:b2:e9:b5:87:e5:d9:82:63:bf:fa:3a:b9:11:0b:c7:4f:96: e8:9c:b8:32:2f:f0:46:93:7c:71:33:55:34:5b:60:0b:50:1d: 73:79:26:a5:32:49:43:77:f8:65:b4:67:f7:60:1c:29:0b:8e: 56:96:42:2f:8f:13:f9:67:d7:ca:fc:6a:06:a3:cf:55:de:71: ee:62:16:0f:ec:10:ee:83:e6:cd:d4:26:db:57:a4:fc:ac:a7: d9:cf:fe:42:9e:05:2c:3a:35:fb:fc:24:8c:4a:a0:81:2d:2a: d8:84:30:c3:27:bc:9e:3d:0f:c6:1a:66:c2:56:f8:8a:c0:38: e4:89:86:3f:9f:de:ff:5c:a5:b3:fc:36:dd:39:3e:97:5b:f9: 3f:72:0c:80:eb:bb:c6:9d:0b:fa:d5:7c:c4:05:16:58:3e:03: 98:3b:e9:b3:50:c1:60:5d:b6:3a:73:53:19:a6:ac:54:92:51: d0:05:4a:68:e9:82:2c:5c:24:87:e9:72:b3:f0:fd:44:8a:0e: 3a:24:28:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1ODYxMTAvBgNVBAUTKEFDMjNGNTREMzAxNTBCNDYwMDlDMUEwMjlFNUVFQ0RC NkUwNTU2NTYwHhcNMjUwNjE1MDExOTE3WhcNMjUwNjIyMDExOTE3WjAYMRYwFAYD VQQDEw02ODRlMWY5NS0xNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYTDe1A7TXKPNDhiYFl7qRiahBpXZF7Q/6/i3pZTSmyj7ngGGN3QfFK9286X rbnuDFSQMwcRyPqk2Ckpcqso4rQxY3fxE7Co4J4ne5Ve3yOin+dtWmbAjoT5HwDf ejnlwm/eyK0ggOoOLTqI/2zB64KN+EqgCLyvtFPF0ADhsKUSSSKYzfB4zICXoaNf 0CtMMWDb2nMkMwpSHxdB1v7onTlPYUYdCbJ96zgFk0Grg/6Mgnk60PVxHQXwrYo9 qjINMyRpI8SNI8/uAZ9vZ+phx0aV3nT0k/j4qjcuRgGAww27h31qCZ8J3ZpBCvLh x6QVk21IqQIrWPt89Ms0INPJxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSx8RZ8 aqdaf4gvOmFTfgx0RM+rMB8GA1UdIwQYMBaAFKwj9U0wFQtGAJwaAp5e7NtuBVZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTU4Ni8wRDYxOTE2ODA5 OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMwWUFuQm9Dbmw3czIyNEZW bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDUDFUVEFWQzBZQW5Cb0NubDdzMjI0RlZsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTU4Ni8wRDYxOTE2ODA5OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMw WUFuQm9Dbmw3czIyNEZWbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuwvywM+CiuRqoxfUe9i5SjooqyjPz+8Pkiu3UCIKDQ1FUfS4Jee+X R81u4/+o3hOoLLjLMd2Ksum1h+XZgmO/+jq5EQvHT5bonLgyL/BGk3xxM1U0W2AL UB1zeSalMklDd/hltGf3YBwpC45WlkIvjxP5Z9fK/GoGo89V3nHuYhYP7BDug+bN 1CbbV6T8rKfZz/5CngUsOjX7/CSMSqCBLSrYhDDDJ7yePQ/GGmbCVviKwDjkiYY/ n97/XKWz/DbdOT6XW/k/cgyA67vGnQv61XzEBRZYPgOYO+mzUMFgXbY6c1MZpqxU klHQBUpo6YIsXCSH6XKz8P1Eig46JCjs -----END CERTIFICATE-----Generated at Sun Jun 15 08:21:11 2025 by rpki-client