$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft File: 2DvcT6zNnbegvEa0JE6jEHBgS5c.mft (raw, json) Hash identifier: 1HK4F/PCy6Lm1lljkZBrNOP6QqlpXVXZkiVBbPuBE3I= Subject key identifier: 7F:28:1A:18:A6:4D:03:F9:9A:EF:1A:D9:16:8B:4A:58:98:3A:D6:BB Authority key identifier: D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 Certificate issuer: /CN=A914F870/serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft Manifest number: 4C Signing time: Tue 17 Jun 2025 06:13:12 +0000 Manifest this update: Tue 17 Jun 2025 06:13:11 +0000 Manifest next update: Tue 24 Jun 2025 06:13:11 +0000 Files and hashes: 1: 2DvcT6zNnbegvEa0JE6jEHBgS5c.crl (hash: BzHzyfEuE9weo5YxCGMfaWcXeSAOKjExlM5tC7fsFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Validity Not Before: Jun 17 06:13:11 2025 GMT Not After : Jun 24 06:13:11 2025 GMT Subject: CN=68510777-b44f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:50:37:1c:11:86:d5:5b:21:ab:58:3b:6d:dc: e2:0d:75:30:45:c1:cf:26:9b:29:98:d7:de:78:94: dc:64:ce:58:1a:ee:6a:d7:62:6d:4b:7c:4f:ed:6d: bb:e7:dc:e8:0a:a2:fc:ba:d9:f5:b9:ad:f1:23:8e: 9a:ca:76:ed:58:ea:a2:33:c1:fc:01:2a:2b:ee:4d: 8e:24:76:7e:bb:76:99:bd:f0:c3:0b:ae:09:e7:cf: d8:28:c1:f6:f6:b8:3d:3b:4d:2b:4d:5c:dd:44:4a: 2f:f3:f9:9e:51:e5:fd:15:e2:53:77:a4:b9:82:cb: 45:3c:ff:13:2f:d4:af:8d:47:ac:65:30:7c:86:c3: 01:a5:11:ed:87:4e:4f:e7:f7:5f:5a:5a:d8:df:d9: d5:43:c7:cd:34:59:4c:9a:f8:bf:0e:e2:48:f5:ea: 9a:fe:ac:d0:10:b0:99:a2:f9:cc:2b:04:67:a7:fc: 0f:41:42:4b:ba:57:89:75:c9:71:d0:b8:0c:2e:8b: ab:be:48:4b:08:44:08:bb:e0:1b:55:e5:20:80:0a: 76:0f:19:8b:63:ee:80:01:e9:c1:53:3e:43:1f:57: 96:5a:9a:40:73:bb:10:c0:b3:fb:dd:57:91:b0:78: 95:37:48:81:fa:53:88:c5:1c:dd:a0:67:55:cc:1b: aa:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:28:1A:18:A6:4D:03:F9:9A:EF:1A:D9:16:8B:4A:58:98:3A:D6:BB X509v3 Authority Key Identifier: keyid:D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:d4:52:90:30:2d:44:b7:fb:9b:2b:8c:ea:2e:b0:42:ed:3f: a0:64:66:c4:3b:a4:e3:c4:00:66:58:8e:22:00:9a:0f:6e:0b: 48:6c:e8:b6:b5:70:f7:60:cd:47:6f:b1:f9:e5:8a:21:c5:6d: 6a:c8:31:12:59:8d:bb:07:64:3d:8a:f6:9f:4a:ab:02:12:3b: 4c:24:08:ab:a6:d0:fd:8a:51:bf:ef:ea:bc:7a:48:43:4b:b1: 75:00:3c:7b:12:97:9f:7f:1c:b4:8d:32:56:81:f4:2e:ef:a3: 24:09:0b:6f:ab:1b:dc:e4:c0:80:c8:d4:21:32:71:db:fb:fb: 2e:cb:a4:43:dd:81:24:bb:ae:04:b4:8c:ae:3e:42:ee:3e:9c: e2:d2:80:0a:47:a5:6f:3b:ce:cb:65:72:3f:32:41:c6:09:de: 99:0e:fa:ce:b9:6c:69:86:dd:04:47:aa:e4:bc:84:4a:84:b4: 03:0d:5e:ec:fd:f7:ad:f4:20:1c:0f:7a:2d:f5:1e:71:83:02: c2:f3:7e:98:c2:28:b9:b1:b9:ff:8f:69:27:11:29:86:88:75: 6f:da:1f:ce:b2:8e:2f:4e:08:10:08:36:30:44:58:7d:34:65: 6c:b8:45:ba:79:5a:67:e0:9b:ba:fa:3d:c0:9f:7c:fe:3a:02: 1d:b3:04:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoRDgzQkRDNEZBQ0NEOURCN0EwQkM0NkI0MjQ0RUEzMTA3 MDYwNEI5NzAeFw0yNTA2MTcwNjEzMTFaFw0yNTA2MjQwNjEzMTFaMBgxFjAUBgNV BAMTDTY4NTEwNzc3LWI0NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgUDccEYbVWyGrWDtt3OINdTBFwc8mmymY1954lNxkzlga7mrXYm1LfE/tbbvn 3OgKovy62fW5rfEjjprKdu1Y6qIzwfwBKivuTY4kdn67dpm98MMLrgnnz9gowfb2 uD07TStNXN1ESi/z+Z5R5f0V4lN3pLmCy0U8/xMv1K+NR6xlMHyGwwGlEe2HTk/n 919aWtjf2dVDx800WUya+L8O4kj16pr+rNAQsJmi+cwrBGen/A9BQku6V4l1yXHQ uAwui6u+SEsIRAi74BtV5SCACnYPGYtj7oAB6cFTPkMfV5ZamkBzuxDAs/vdV5Gw eJU3SIH6U4jFHN2gZ1XMG6r/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfygaGKZN A/ma7xrZFotKWJg61rswHwYDVR0jBBgwFoAU2DvcT6zNnbegvEa0JE6jEHBgS5cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0QyRTI0Qzk4RDdF MjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJlZ3ZFYTBKRTZqRUhCZ1M1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkR2Y1Q2ek5uYmVndkVhMEpFNmpFSEJnUzVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0QyRTI0Qzk4RDdFMjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJl Z3ZFYTBKRTZqRUhCZ1M1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEvUUpAwLUS3+5srjOousELtP6BkZsQ7pOPEAGZYjiIAmg9uC0hs6La1 cPdgzUdvsfnliiHFbWrIMRJZjbsHZD2K9p9KqwISO0wkCKum0P2KUb/v6rx6SENL sXUAPHsSl59/HLSNMlaB9C7voyQJC2+rG9zkwIDI1CEycdv7+y7LpEPdgSS7rgS0 jK4+Qu4+nOLSgApHpW87zstlcj8yQcYJ3pkO+s65bGmG3QRHquS8hEqEtAMNXuz9 9630IBwPei31HnGDAsLzfpjCKLmxuf+PaScRKYaIdW/aH86yji9OCBAINjBEWH00 ZWy4Rbp5Wmfgm7r6PcCffP46Ah2zBKQ= -----END CERTIFICATE-----Generated at Wed Jun 18 04:51:23 2025 by rpki-client