$ rpki-client -vvf rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft File: -0iFaOdSC8eCoRmJdikDDtBpXNs.mft (raw, json) Hash identifier: uRLbSswlzveB23m0r8aP/mcw/lPRasoJYJCmp9X/8as= Subject key identifier: D5:A6:01:97:8D:A0:D6:6B:E8:01:D1:47:96:86:23:E9:6C:17:D5:99 Authority key identifier: FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB Certificate issuer: /CN=A914459D/serialNumber=FB488568E7520BC782A119897629030ED0695CDB Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft Manifest number: 4D Signing time: Fri 13 Jun 2025 06:13:48 +0000 Manifest this update: Fri 13 Jun 2025 06:13:47 +0000 Manifest next update: Fri 20 Jun 2025 06:13:47 +0000 Files and hashes: 1: -0iFaOdSC8eCoRmJdikDDtBpXNs.crl (hash: p/2IdofeWJBOsEFPtcBoEvw8XRzgP9QRNsWjltgX/QM=) 2: 4720EB9ED60F11EFA2510540C4F9AE02.roa (hash: Q8ipP3E5cVxqpK+wwh4P32pECYgAwVU6B1+eB8QC8yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914459D, serialNumber=FB488568E7520BC782A119897629030ED0695CDB Validity Not Before: Jun 13 06:13:47 2025 GMT Not After : Jun 20 06:13:47 2025 GMT Subject: CN=684bc19c-6329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:bb:93:97:ac:9d:f3:57:2e:c8:46:a1:5e: bc:46:ba:38:31:01:24:9c:05:9c:4c:46:a0:d3:71: 99:cd:6d:63:80:1a:5b:10:3d:72:c0:12:c6:19:39: d9:f9:12:bc:01:f3:fa:a5:da:e0:08:36:a9:28:59: 31:b7:b8:55:6b:de:a8:a2:e9:e8:66:b0:4c:31:cb: 12:c1:c9:fd:8f:3c:44:d4:42:f6:eb:1d:d9:d2:f1: 75:7c:e6:12:ce:29:5d:6b:cf:13:dc:62:68:63:bf: d1:ef:80:57:d3:cf:30:e3:2b:e6:06:7b:dc:ac:cb: e8:79:cb:e2:31:6d:ad:da:05:cf:c3:10:dc:6b:88: 40:27:59:8b:67:6b:4d:c6:34:16:be:aa:8b:f0:87: 73:f7:89:a1:a2:af:ac:d1:d7:1b:f0:36:03:c4:4b: 54:73:18:a1:ef:cf:8d:af:e0:86:2a:ca:66:fe:bc: b0:7c:81:0e:f0:a6:f5:50:15:6d:72:62:2d:0b:d0: ee:8c:25:7b:f4:c8:43:4d:5e:76:3b:24:1d:68:bb: 03:37:e6:ee:d0:8b:69:48:de:90:6c:6f:90:56:3f: 40:d3:a0:d1:19:ca:33:e7:f3:a3:11:e7:b0:b0:f3: 7c:55:a9:14:a3:5c:82:3e:18:6f:67:ee:73:a2:7c: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A6:01:97:8D:A0:D6:6B:E8:01:D1:47:96:86:23:E9:6C:17:D5:99 X509v3 Authority Key Identifier: keyid:FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:fc:aa:bc:1c:c1:9e:28:49:f8:e1:c7:64:d0:b4:2c:9a:11: 0c:2b:af:47:19:bb:af:fe:f6:04:25:77:73:c0:9e:15:f9:e8: dd:41:10:29:44:cb:d5:3d:95:01:b4:b1:7c:4f:95:76:39:68: 77:be:57:ce:e2:7b:ac:61:fb:ef:ab:87:a5:5c:2d:e4:7b:64: ff:77:28:5e:77:1e:f8:0c:4c:c9:da:5d:fe:bf:7c:a9:32:79: 3e:59:83:cc:c0:1b:56:72:c8:ad:38:50:29:29:cf:ff:9a:ea: 55:ce:ff:27:c5:a7:20:36:37:95:33:d3:a3:0b:83:ff:96:bd: f6:1e:b1:6e:f5:ef:db:71:59:11:a0:08:b9:73:23:7a:56:f3: 85:a2:b4:ec:a4:25:6b:62:a1:15:a6:8c:7c:1f:e7:f3:46:dc: ec:eb:3a:9a:fe:ea:b0:7f:a3:e2:56:5e:c1:19:d7:51:5d:5c: fc:9f:f5:89:2d:d8:62:95:c3:1f:d0:c8:54:d5:39:1f:e1:40: 21:92:06:aa:bb:b5:45:8c:d3:6a:b1:5b:3d:e5:33:b1:78:65: 3c:55:3b:6d:df:66:0a:4f:72:e9:ae:4c:67:3a:9c:01:d8:c0: 80:ac:8f:21:e9:6b:26:f8:a5:40:6d:c5:b1:63:54:3f:0e:91: f5:1b:e4:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDU5RDExMC8GA1UEBRMoRkI0ODg1NjhFNzUyMEJDNzgyQTExOTg5NzYyOTAzMEVE MDY5NUNEQjAeFw0yNTA2MTMwNjEzNDdaFw0yNTA2MjAwNjEzNDdaMBgxFjAUBgNV BAMTDTY4NGJjMTljLTYzMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5fLuTl6yd81cuyEahXrxGujgxASScBZxMRqDTcZnNbWOAGlsQPXLAEsYZOdn5 ErwB8/ql2uAINqkoWTG3uFVr3qii6ehmsEwxyxLByf2PPETUQvbrHdnS8XV85hLO KV1rzxPcYmhjv9HvgFfTzzDjK+YGe9ysy+h5y+Ixba3aBc/DENxriEAnWYtna03G NBa+qovwh3P3iaGir6zR1xvwNgPES1RzGKHvz42v4IYqymb+vLB8gQ7wpvVQFW1y Yi0L0O6MJXv0yENNXnY7JB1ouwM35u7Qi2lI3pBsb5BWP0DToNEZyjPn86MR57Cw 83xVqRSjXII+GG9n7nOifJ61AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1aYBl42g 1mvoAdFHloYj6WwX1ZkwHwYDVR0jBBgwFoAU+0iFaOdSC8eCoRmJdikDDtBpXNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0NTlELzBCM0Y2NjVBRDYw RjExRUZCMEZBNTMzRkM0RjlBRTAyLy0waUZhT2RTQzhlQ29SbUpkaWtERHRCcFhO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTBpRmFPZFNDOGVDb1JtSmRpa0REdEJwWE5zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 NTlELzBCM0Y2NjVBRDYwRjExRUZCMEZBNTMzRkM0RjlBRTAyLy0waUZhT2RTQzhl Q29SbUpkaWtERHRCcFhOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG/8qrwcwZ4oSfjhx2TQtCyaEQwrr0cZu6/+9gQld3PAnhX56N1BEClE y9U9lQG0sXxPlXY5aHe+V87ie6xh+++rh6VcLeR7ZP93KF53HvgMTMnaXf6/fKky eT5Zg8zAG1ZyyK04UCkpz/+a6lXO/yfFpyA2N5Uz06MLg/+WvfYesW7179txWRGg CLlzI3pW84WitOykJWtioRWmjHwf5/NG3OzrOpr+6rB/o+JWXsEZ11FdXPyf9Ykt 2GKVwx/QyFTVOR/hQCGSBqq7tUWM02qxWz3lM7F4ZTxVO23fZgpPcumuTGc6nAHY wICsjyHpayb4pUBtxbFjVD8OkfUb5FQ= -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:22 2025 by rpki-client