$ rpki-client -vvf rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft File: f30yDyoH5DPdvf4oV_XTGTVFF7k.mft (raw, json) Hash identifier: 5eoKBpzTelyifcdWu+rL0ZHp+s5+PpeuHI2WQbwLTZw= Subject key identifier: 47:5B:E5:6E:9A:BA:D4:E1:36:6E:99:E5:8B:8F:0A:6F:ED:4C:22:36 Authority key identifier: 7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 Certificate issuer: /CN=A914877B/serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Certificate serial: 0BD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft Manifest number: 0BD2 Signing time: Thu 12 Jun 2025 18:39:33 +0000 Manifest this update: Thu 12 Jun 2025 18:39:33 +0000 Manifest next update: Thu 19 Jun 2025 18:39:33 +0000 Files and hashes: 1: f30yDyoH5DPdvf4oV_XTGTVFF7k.crl (hash: lAv7712YA1MZJ6DkPfejxCh55jDKx3NTxrfVDQksWH4=) 2: 800676321BD311EAA341A62DC4F9AE02.roa (hash: RHZCYYPvQQbME4QEcXK5NVornLFSgAMnD5MRoiwlBuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914877B, serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Validity Not Before: Jun 12 18:39:33 2025 GMT Not After : Jun 19 18:39:33 2025 GMT Subject: CN=684b1ee5-bd7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fd:05:a2:6f:3f:ca:1a:e0:87:b6:7b:d1:51: 98:b1:41:68:ba:95:29:82:26:2f:dd:64:fc:cf:34: 2f:9d:7a:f6:97:9f:c8:1d:2c:e0:46:0d:b5:db:99: 24:a8:ac:b5:46:14:5c:8f:4a:ee:25:8d:f2:f5:71: d6:97:79:c4:36:ed:fe:6e:24:60:2c:45:ce:f7:ed: e5:f7:a7:bd:30:96:2c:3c:30:ba:f5:fc:11:e6:c1: 75:a5:d3:00:dc:d7:27:0d:82:93:ce:7f:21:50:d5: ba:d2:8a:d0:7d:2f:b2:89:f9:39:69:69:28:6f:55: 8d:df:f6:69:89:c0:0a:00:ed:e8:23:f4:41:2e:de: 44:3f:c5:4a:b9:ff:cf:fb:d2:1c:64:d8:59:09:f8: ec:c5:24:42:19:33:d1:65:bb:29:99:f4:2f:f0:63: 07:8e:e6:0b:39:f0:84:5b:c9:88:66:17:ea:d5:e6: 1d:cf:39:1d:6e:c2:c6:71:bc:0d:55:f8:29:a1:e1: e1:86:8f:f8:0b:01:f3:19:02:42:ea:a0:e0:0a:bc: 5a:a7:b6:8f:e6:3e:f3:af:9d:ad:18:63:30:e2:c9: 0e:db:79:04:7d:68:18:f8:28:99:7a:c6:fb:82:05: 81:d3:a4:20:ed:72:e0:83:5c:f5:b8:a4:1a:c0:e2: 1b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5B:E5:6E:9A:BA:D4:E1:36:6E:99:E5:8B:8F:0A:6F:ED:4C:22:36 X509v3 Authority Key Identifier: keyid:7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:9d:9a:e9:f7:31:14:99:ca:84:12:c7:c6:83:d1:06:ce:7a: 84:d9:ee:bc:a0:46:75:1c:1d:ec:94:05:a4:d4:66:e0:18:fb: 70:6d:e0:f8:26:d7:3b:2d:59:c0:42:fd:c6:1f:cd:be:9d:7c: a9:34:f2:7b:ce:b5:55:93:0c:8f:0a:dc:64:1d:34:8e:bb:67: 52:22:ef:04:e9:1c:32:58:47:f7:df:12:8a:33:cb:cd:e8:66: 6c:ea:64:9d:2d:cb:df:af:6b:1a:e5:bf:8f:c9:17:6d:f7:e2: b9:9f:fd:a6:ed:fb:b7:cb:9b:11:9d:30:40:2a:e2:2d:38:77: 0e:23:a4:4f:43:f5:d9:65:21:02:cf:68:1b:01:79:1f:06:99: 4c:68:63:f6:e3:92:55:54:fc:8c:2d:00:45:72:93:56:87:1c: 2e:ad:86:e9:9e:5f:54:e7:97:39:4f:61:94:ef:db:fe:c0:d3: a9:57:5b:ae:69:88:e7:87:25:6d:9b:ed:86:ee:0e:3e:c6:24: 2b:ff:f3:c0:c9:98:41:f9:63:9d:46:58:c6:03:74:52:c3:f7: b5:73:de:d2:eb:83:4f:09:c1:c7:17:ff:18:7c:3e:8d:05:20: a2:5b:76:ae:cd:8b:80:75:3e:30:40:46:ec:8c:d5:96:cc:55: 3b:b8:5d:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3N0IxMTAvBgNVBAUTKDdGN0QzMjBGMkEwN0U0MzNEREJERkUyODU3RjVEMzE5 MzU0NTE3QjkwHhcNMjUwNjEyMTgzOTMzWhcNMjUwNjE5MTgzOTMzWjAYMRYwFAYD VQQDEw02ODRiMWVlNS1iZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnf0Fom8/yhrgh7Z70VGYsUFoupUpgiYv3WT8zzQvnXr2l5/IHSzgRg2125kk qKy1RhRcj0ruJY3y9XHWl3nENu3+biRgLEXO9+3l96e9MJYsPDC69fwR5sF1pdMA 3NcnDYKTzn8hUNW60orQfS+yifk5aWkob1WN3/ZpicAKAO3oI/RBLt5EP8VKuf/P +9IcZNhZCfjsxSRCGTPRZbspmfQv8GMHjuYLOfCEW8mIZhfq1eYdzzkdbsLGcbwN VfgpoeHhho/4CwHzGQJC6qDgCrxap7aP5j7zr52tGGMw4skO23kEfWgY+CiZesb7 ggWB06Qg7XLgg1z1uKQawOIbdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdb5W6a utThNm6Z5YuPCm/tTCI2MB8GA1UdIwQYMBaAFH99Mg8qB+Qz3b3+KFf10xk1RRe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODc3Qi8yNTkxMDExRTFC RDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVEUGR2ZjRvVl9YVEdUVkZG N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzMHlEeW9INURQZHZmNG9WX1hUR1RWRkY3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODc3Qi8yNTkxMDExRTFCRDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVE UGR2ZjRvVl9YVEdUVkZGN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwnZrp9zEUmcqEEsfGg9EGznqE2e68oEZ1HB3slAWk1GbgGPtwbeD4 Jtc7LVnAQv3GH82+nXypNPJ7zrVVkwyPCtxkHTSOu2dSIu8E6RwyWEf33xKKM8vN 6GZs6mSdLcvfr2sa5b+PyRdt9+K5n/2m7fu3y5sRnTBAKuItOHcOI6RPQ/XZZSEC z2gbAXkfBplMaGP245JVVPyMLQBFcpNWhxwurYbpnl9U55c5T2GU79v+wNOpV1uu aYjnhyVtm+2G7g4+xiQr//PAyZhB+WOdRljGA3RSw/e1c97S64NPCcHHF/8YfD6N BSCiW3auzYuAdT4wQEbsjNWWzFU7uF2N -----END CERTIFICATE-----Generated at Sat Jun 14 18:25:36 2025 by rpki-client