$ rpki-client -vvf rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft File: jLK71ktqd04WwQ_cplCnrcWzjXg.mft (raw, json) Hash identifier: uutyr6h7lh5NSB+e00m8vN0JjEkvNIPbyDNzedkSFOM= Subject key identifier: 83:F5:53:B1:87:15:81:D2:6B:E8:61:11:A8:1A:46:2C:B7:24:75:D6 Authority key identifier: 8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 Certificate issuer: /CN=A914749C/serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Certificate serial: 1C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft Manifest number: 1C03 Signing time: Sat 14 Jun 2025 16:10:33 +0000 Manifest this update: Sat 14 Jun 2025 16:10:32 +0000 Manifest next update: Sat 21 Jun 2025 16:10:32 +0000 Files and hashes: 1: jLK71ktqd04WwQ_cplCnrcWzjXg.crl (hash: IGApjhYUGklIXQqzudy1YdHvH2WAwYpct6MZo+hV4aM=) 2: 433FBBECF1A511E6BE0A844EC4F9AE02.roa (hash: UTjSg2cr4EOymY78oxKDbnxxdk7LUhNg4mssHXCS3hY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7195 (0x1c1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914749C, serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Validity Not Before: Jun 14 16:10:32 2025 GMT Not After : Jun 21 16:10:32 2025 GMT Subject: CN=684d9ef8-68dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bb:27:e5:e8:63:a9:26:cc:74:eb:50:13:d2: fe:75:66:3f:18:c1:a2:dc:24:cd:89:b4:7b:1c:61: fa:45:c4:a4:21:65:6c:43:ef:ea:52:c6:e8:15:52: da:1d:87:25:a3:6c:e1:06:db:88:b7:57:a4:c5:21: 81:2f:83:09:66:66:b0:98:08:25:1a:5a:dc:39:34: f7:68:ee:4a:47:9a:d3:e6:cc:c8:24:b8:4b:e6:f2: b9:c6:49:b5:7e:be:74:cf:22:6f:d2:7a:eb:12:5b: fc:e4:9f:b1:4c:4c:e4:6d:5c:e0:2c:9c:c8:b1:74: 5d:53:fb:0e:a7:d0:a4:bd:ab:09:80:c5:ff:41:ed: 26:80:29:31:3a:aa:ca:2f:2b:ee:31:7a:9b:f5:c7: ff:ae:14:85:06:ae:30:40:1f:76:56:1d:ec:3d:48: 11:6d:d7:da:94:09:84:4b:08:68:db:8c:d0:28:20: 55:8c:93:48:71:9c:e0:9a:1a:5b:b8:af:b1:10:1b: c3:45:97:be:b8:27:8b:d3:d7:ba:5a:36:68:c3:9f: d7:f7:c3:e4:a9:f2:ef:3c:d3:d5:ba:19:f1:de:fb: b2:ec:08:42:a9:93:2b:3a:cb:2e:e1:3e:08:0b:3b: e2:c8:17:63:9e:df:3e:79:c7:98:98:dd:1f:45:9b: 7f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F5:53:B1:87:15:81:D2:6B:E8:61:11:A8:1A:46:2C:B7:24:75:D6 X509v3 Authority Key Identifier: keyid:8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:cc:cc:30:f4:2e:65:12:44:ff:4b:2f:77:e1:59:4c:29:f2: b0:2d:3f:56:3a:1f:02:45:86:3d:01:17:9b:d4:35:c8:81:04: 05:45:8d:91:d4:35:25:61:8f:cd:5c:99:e9:35:91:db:ba:76: a9:e6:22:9c:ae:b1:b9:68:18:b4:39:16:b4:09:e8:54:f4:1f: f7:ac:8c:ab:f6:5c:5e:11:36:c4:17:d0:1c:36:bc:2f:5b:b7: 45:d6:2a:13:2d:a9:82:a4:d1:f8:7d:84:a7:5e:84:e1:47:c0: 98:dd:cd:55:3c:41:36:60:68:3e:e7:c6:8f:d2:9d:56:55:b9: 10:89:f9:b9:62:9d:b5:6e:cd:78:8e:bf:14:30:46:83:06:a0: 4d:9e:21:33:6c:ce:c9:e0:32:fd:0c:ac:26:3c:ed:2a:90:ae: 27:dd:a5:d9:f1:d2:d9:3c:09:53:e7:22:c9:db:66:f2:1f:37: 1e:41:7c:a6:ab:51:63:cc:12:b0:f3:71:c0:e3:ad:f8:72:23: 89:27:0f:1b:e6:4f:66:07:46:7f:e4:a7:23:26:2a:55:32:d6: 8f:b8:c0:fc:ef:22:b8:06:12:cc:49:fa:05:a4:1d:1a:d9:4e: 33:10:c7:b2:4a:7e:82:87:c0:81:a5:8c:63:12:5a:c0:68:f2: 4a:80:12:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0OUMxMTAvBgNVBAUTKDhDQjJCQkQ2NEI2QTc3NEUxNkMxMEZEQ0E2NTBBN0FE QzVCMzhENzgwHhcNMjUwNjE0MTYxMDMyWhcNMjUwNjIxMTYxMDMyWjAYMRYwFAYD VQQDEw02ODRkOWVmOC02OGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47sn5ehjqSbMdOtQE9L+dWY/GMGi3CTNibR7HGH6RcSkIWVsQ+/qUsboFVLa HYclo2zhBtuIt1ekxSGBL4MJZmawmAglGlrcOTT3aO5KR5rT5szIJLhL5vK5xkm1 fr50zyJv0nrrElv85J+xTEzkbVzgLJzIsXRdU/sOp9CkvasJgMX/Qe0mgCkxOqrK LyvuMXqb9cf/rhSFBq4wQB92Vh3sPUgRbdfalAmESwho24zQKCBVjJNIcZzgmhpb uK+xEBvDRZe+uCeL09e6WjZow5/X98PkqfLvPNPVuhnx3vuy7AhCqZMrOssu4T4I CzviyBdjnt8+eceYmN0fRZt/kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIP1U7GH FYHSa+hhEagaRiy3JHXWMB8GA1UdIwQYMBaAFIyyu9ZLandOFsEP3KZQp63Fs414 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ5Qy84RDc4RTU3RUYx QTIxMUU2OTQyMUI1NDVDNEY5QUUwMi9qTEs3MWt0cWQwNFd3UV9jcGxDbnJjV3pq WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pMSzcxa3RxZDA0V3dRX2NwbENucmNXempYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzQ5Qy84RDc4RTU3RUYxQTIxMUU2OTQyMUI1NDVDNEY5QUUwMi9qTEs3MWt0cWQw NFd3UV9jcGxDbnJjV3pqWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCozMww9C5lEkT/Sy934VlMKfKwLT9WOh8CRYY9AReb1DXIgQQFRY2R 1DUlYY/NXJnpNZHbunap5iKcrrG5aBi0ORa0CehU9B/3rIyr9lxeETbEF9AcNrwv W7dF1ioTLamCpNH4fYSnXoThR8CY3c1VPEE2YGg+58aP0p1WVbkQifm5Yp21bs14 jr8UMEaDBqBNniEzbM7J4DL9DKwmPO0qkK4n3aXZ8dLZPAlT5yLJ22byHzceQXym q1FjzBKw83HA4634ciOJJw8b5k9mB0Z/5KcjJipVMtaPuMD87yK4BhLMSfoFpB0a 2U4zEMeySn6Ch8CBpYxjElrAaPJKgBKP -----END CERTIFICATE-----Generated at Sun Jun 15 09:47:10 2025 by rpki-client