$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: dsuKjxObZdlKQV6OVQNI3HGEMutEkUY2uo+G+jBnI94= Subject key identifier: 4C:69:2A:8B:CB:C9:6A:F0:2A:B1:46:77:7D:D5:8B:F8:05:16:2E:05 Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0CED Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0CE2 Signing time: Mon 16 Jun 2025 15:38:41 +0000 Manifest this update: Mon 16 Jun 2025 15:38:40 +0000 Manifest next update: Mon 23 Jun 2025 15:38:40 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: /YesloltuRgVjDQh4RgX81h3S+dLBE1z+2kYiYKSUsc=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: lu8oWRNPgJxFZ7Lozlet3TlMRukqbbGr2PrraLSuCsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 14:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3309 (0xced) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Jun 16 15:38:40 2025 GMT Not After : Jun 23 15:38:40 2025 GMT Subject: CN=68503a81-2702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9c:9c:4b:12:7d:9c:3c:43:e1:89:33:c5:cf: 49:27:db:43:ed:7b:e7:c3:88:e9:23:e9:1f:c9:55: 94:86:bc:ff:20:4f:8f:c5:42:0e:52:d6:1b:16:75: 83:ad:99:a9:6d:ee:ac:f0:99:21:80:e4:0e:20:7d: bb:d8:1e:2b:6f:9c:79:47:52:ab:81:f4:63:0d:ca: d6:44:33:50:4a:66:0d:75:c7:a9:53:02:6b:06:c0: a6:90:ff:6a:d3:8c:87:b4:b7:51:27:8c:7d:c0:9f: 58:b7:83:bb:58:0f:68:2b:87:14:d2:98:29:19:f4: 7f:17:e0:77:ab:01:ea:ad:ed:5d:93:73:d9:e7:82: 68:ea:b7:f0:cc:54:b9:a8:b6:c5:1a:e0:14:f4:76: ad:69:5d:bb:08:00:3a:a3:58:40:c1:ca:b9:a3:04: fe:be:86:c2:ba:d5:a0:78:30:fd:2d:a1:82:10:78: 58:1d:50:2c:2a:3f:06:78:ed:83:22:c0:64:a2:98: 27:db:ac:96:ae:52:b7:95:05:2a:d0:30:a5:0d:a8: c6:ca:ad:0b:65:e1:17:90:d4:ec:b1:6e:c6:c5:68: 21:af:1f:b4:0c:ba:e1:de:34:1f:f4:1b:c1:b8:7b: 54:7e:d4:7c:e2:1c:59:71:bc:33:76:bf:09:d9:89: fa:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:69:2A:8B:CB:C9:6A:F0:2A:B1:46:77:7D:D5:8B:F8:05:16:2E:05 X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:6b:9a:df:b4:bb:5b:cb:05:cc:eb:28:46:55:87:c1:f1:5c: c0:83:42:6a:77:c7:57:e8:93:1a:30:51:ea:47:61:da:f9:97: 17:89:ab:5e:51:af:c9:af:74:1d:96:9e:11:ed:e2:ba:30:31: be:2e:f7:c7:74:e7:f3:95:9c:e7:26:a5:3b:9e:1d:11:6a:e3: 7e:19:3c:9a:e4:4d:5c:be:ab:ce:66:fc:cb:ff:1a:c9:53:77: d2:c2:f6:4f:f9:84:27:66:30:aa:1a:44:b5:ff:53:8e:02:98: cb:12:94:5c:12:54:ac:c3:42:ac:5f:4b:ac:30:e7:47:bf:e7: 08:c1:93:d4:7d:0b:d7:ba:d7:e4:19:2d:4a:88:36:9f:b6:b7: ba:cc:0a:e7:3b:57:d3:b4:49:af:0c:95:c9:f5:87:cf:34:7c: 0e:c2:68:1e:35:df:1d:40:d8:d3:a5:e1:09:3d:91:97:ab:be: ed:05:22:56:38:c4:08:02:28:e3:24:71:e6:3f:b8:f2:18:98: 27:af:c2:ea:00:bc:65:63:2f:2f:ba:f3:78:ed:16:78:79:9f: 7f:bd:c5:36:af:fe:dd:69:0f:d8:68:55:ba:e8:d3:30:4e:8a: 46:fe:89:c4:a4:8f:db:54:8d:68:99:b8:c2:97:b5:f7:bc:99: f4:5c:36:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUwNjE2MTUzODQwWhcNMjUwNjIzMTUzODQwWjAYMRYwFAYD VQQDEw02ODUwM2E4MS0yNzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZycSxJ9nDxD4Ykzxc9JJ9tD7Xvnw4jpI+kfyVWUhrz/IE+PxUIOUtYbFnWD rZmpbe6s8JkhgOQOIH272B4rb5x5R1KrgfRjDcrWRDNQSmYNdcepUwJrBsCmkP9q 04yHtLdRJ4x9wJ9Yt4O7WA9oK4cU0pgpGfR/F+B3qwHqre1dk3PZ54Jo6rfwzFS5 qLbFGuAU9HataV27CAA6o1hAwcq5owT+vobCutWgeDD9LaGCEHhYHVAsKj8GeO2D IsBkopgn26yWrlK3lQUq0DClDajGyq0LZeEXkNTssW7GxWghrx+0DLrh3jQf9BvB uHtUftR84hxZcbwzdr8J2Yn6lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExpKovL yWrwKrFGd33Vi/gFFi4FMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+a5rftLtbywXM6yhGVYfB8VzAg0Jqd8dX6JMaMFHqR2Ha+ZcXiate Ua/Jr3Qdlp4R7eK6MDG+LvfHdOfzlZznJqU7nh0RauN+GTya5E1cvqvOZvzL/xrJ U3fSwvZP+YQnZjCqGkS1/1OOApjLEpRcElSsw0KsX0usMOdHv+cIwZPUfQvXutfk GS1KiDaftre6zArnO1fTtEmvDJXJ9YfPNHwOwmgeNd8dQNjTpeEJPZGXq77tBSJW OMQIAijjJHHmP7jyGJgnr8LqALxlYy8vuvN47RZ4eZ9/vcU2r/7daQ/YaFW66NMw TopG/onEpI/bVI1ombjCl7X3vJn0XDYu -----END CERTIFICATE-----Generated at Mon Jun 16 19:25:10 2025 by rpki-client