$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: Q1J+ZKdQySIUCqu46D65TSPre3ZhXPNTonPoJZRb4Z8= Subject key identifier: 3C:E5:31:59:B2:6A:1A:F7:81:70:F2:73:93:EA:91:E9:F9:2F:87:F3 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C1A Signing time: Thu 12 Jun 2025 18:32:42 +0000 Manifest this update: Thu 12 Jun 2025 18:32:42 +0000 Manifest next update: Thu 19 Jun 2025 18:32:42 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: ourUnYvTt/WynyQXEEok1nhYzS6bQXw5N6tWs1isfC8=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3133 (0xc3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Jun 12 18:32:42 2025 GMT Not After : Jun 19 18:32:42 2025 GMT Subject: CN=684b1d4a-3547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6c:9d:f9:dc:fd:de:2b:34:12:a1:f9:08:7c: 81:0b:7d:43:eb:8f:f5:1c:8b:6f:22:b2:44:ec:f5: 50:bb:ef:24:cc:28:c5:33:1a:43:f2:ab:56:c6:e7: b6:0c:58:c3:67:3b:bd:78:ce:77:57:b7:9c:2b:0a: 01:59:d3:3b:68:85:f7:7a:4f:2a:e4:cb:0f:0c:b0: 27:f0:5f:67:ed:93:ae:c1:99:21:06:25:76:47:83: 69:12:93:18:33:b5:18:b3:d8:4b:ae:cf:08:56:dd: 85:3f:5a:64:53:b9:cf:bf:ce:9b:75:9b:bb:a9:34: 5a:80:39:67:89:1f:30:d2:6f:a7:b2:9b:fa:96:67: d8:b5:2f:65:de:cc:08:0e:c3:e4:90:0f:d8:fb:09: da:48:98:4f:7f:37:e1:19:2d:fd:04:96:e7:db:a0: 69:80:9d:90:11:8b:b9:b8:aa:64:bb:7b:c8:8c:90: 82:a0:f2:a6:d6:14:cc:3b:f1:bd:07:3a:8b:09:b9: c5:c5:dd:16:3c:93:02:64:10:90:7d:a7:99:1e:38: 90:5b:aa:aa:63:a7:be:ab:9e:a9:7b:b8:f1:33:6c: 43:cb:de:4a:5b:03:af:ce:ac:0f:20:37:95:70:0d: ce:46:61:6e:09:aa:62:d7:68:ce:38:c8:99:88:c8: 62:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E5:31:59:B2:6A:1A:F7:81:70:F2:73:93:EA:91:E9:F9:2F:87:F3 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:73:28:b5:79:8e:65:a8:3a:95:a4:fc:46:0d:d2:4c:e1:99: 97:a6:0a:90:93:13:a8:17:43:5f:63:7c:7b:17:9e:15:15:0f: 90:75:04:cb:53:44:96:dc:f2:a2:93:a5:36:17:29:73:81:72: 3d:9d:88:03:15:df:d8:7c:e6:9d:15:71:02:29:80:e6:c5:74: 5e:e1:55:df:a0:4f:c1:d6:84:51:f5:7a:ce:d0:c4:27:aa:f8: db:0b:ba:30:06:e0:c3:46:18:24:38:f5:f1:d7:b0:c1:04:b7: 83:57:5f:d5:91:87:96:f7:ee:fe:cd:a2:12:4b:78:f6:4b:8c: 5f:0d:7f:c8:3f:1a:86:5c:75:50:33:4f:35:96:ae:0f:37:01: 66:90:7f:40:12:ae:4f:99:43:cd:b9:af:7d:c3:73:64:8a:18: d3:46:39:4b:f1:7f:32:50:0e:55:b1:d9:0a:27:b7:05:ef:1b: b3:fa:93:77:c3:a3:fe:23:ca:18:d3:8d:57:40:10:70:15:69: 81:04:87:d7:71:5c:9e:3c:ba:6b:85:48:3e:b9:a8:57:a4:d2: 64:1d:97:6b:50:a2:fc:20:d8:06:d3:b0:2c:5f:ac:db:eb:35: 01:84:4e:77:a3:c9:f4:79:4c:73:dd:cc:4c:c9:ce:8a:60:78: 4d:b0:e2:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUwNjEyMTgzMjQyWhcNMjUwNjE5MTgzMjQyWjAYMRYwFAYD VQQDEw02ODRiMWQ0YS0zNTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmyd+dz93is0EqH5CHyBC31D64/1HItvIrJE7PVQu+8kzCjFMxpD8qtWxue2 DFjDZzu9eM53V7ecKwoBWdM7aIX3ek8q5MsPDLAn8F9n7ZOuwZkhBiV2R4NpEpMY M7UYs9hLrs8IVt2FP1pkU7nPv86bdZu7qTRagDlniR8w0m+nspv6lmfYtS9l3swI DsPkkA/Y+wnaSJhPfzfhGS39BJbn26BpgJ2QEYu5uKpku3vIjJCCoPKm1hTMO/G9 BzqLCbnFxd0WPJMCZBCQfaeZHjiQW6qqY6e+q56pe7jxM2xDy95KWwOvzqwPIDeV cA3ORmFuCapi12jOOMiZiMhiNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzlMVmy ahr3gXDyc5Pqken5L4fzMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtcyi1eY5lqDqVpPxGDdJM4ZmXpgqQkxOoF0NfY3x7F54VFQ+QdQTL U0SW3PKik6U2FylzgXI9nYgDFd/YfOadFXECKYDmxXRe4VXfoE/B1oRR9XrO0MQn qvjbC7owBuDDRhgkOPXx17DBBLeDV1/VkYeW9+7+zaISS3j2S4xfDX/IPxqGXHVQ M081lq4PNwFmkH9AEq5PmUPNua99w3NkihjTRjlL8X8yUA5VsdkKJ7cF7xuz+pN3 w6P+I8oY041XQBBwFWmBBIfXcVyePLprhUg+uahXpNJkHZdrUKL8INgG07AsX6zb 6zUBhE53o8n0eUxz3cxMyc6KYHhNsOKy -----END CERTIFICATE-----Generated at Sat Jun 14 18:37:36 2025 by rpki-client