$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft File: ADiahleuCYgERy-OaNcF4u_b18A.mft (raw, json) Hash identifier: 10MJ1hDOoJsE+aUUIZihRBHKn+l5QpChOLxlh8gPUKE= Subject key identifier: BB:C3:39:1D:70:ED:F7:AD:76:7F:69:37:F8:54:2E:9D:22:AB:D4:5B Authority key identifier: 00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0 Certificate issuer: /CN=A914FA25/serialNumber=00389A8657AE098804472F8E68D705E2EFDBD7C0 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft Manifest number: 0DE8 Signing time: Sat 14 Jun 2025 18:44:47 +0000 Manifest this update: Sat 14 Jun 2025 18:44:47 +0000 Manifest next update: Sat 21 Jun 2025 18:44:47 +0000 Files and hashes: 1: ADiahleuCYgERy-OaNcF4u_b18A.crl (hash: OR8hYoew0lOCLRmQDZ8W3Ez0fv72ZtMU1LWk3gV8bXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.crl rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA25, serialNumber=00389A8657AE098804472F8E68D705E2EFDBD7C0 Validity Not Before: Jun 14 18:44:47 2025 GMT Not After : Jun 21 18:44:47 2025 GMT Subject: CN=684dc31f-ad78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8f:fd:22:71:a9:f0:41:ce:00:8d:96:c8:ee: de:ba:2c:9e:cd:9a:c7:11:eb:b4:c2:15:7a:54:48: 49:a3:d3:3b:86:fb:f9:65:60:03:a1:40:fe:89:bb: 29:60:ce:ef:2c:6c:74:3c:7e:f1:ee:0c:4d:d1:21: 54:08:d8:01:5a:60:f9:98:ef:5b:59:13:f1:f3:48: 17:00:35:b5:a8:2b:25:63:9f:44:53:80:ba:44:f4: 7f:c0:5b:d0:85:9b:f8:17:be:66:6e:00:cd:12:dd: 97:33:e0:08:4b:81:04:1c:2d:12:37:ba:ec:ce:31: 21:11:ab:c6:53:e3:60:02:d2:ba:e7:eb:7a:8c:c2: a4:d9:a1:c0:88:c2:5c:73:bd:de:ef:47:8c:01:d1: ae:bd:b4:74:5a:7a:92:5f:57:03:f3:24:8c:f0:98: 5f:48:90:6e:bd:36:17:2d:54:d0:12:48:07:ee:8e: bb:d8:7c:7b:eb:df:75:52:b0:32:be:d5:84:9f:68: 0a:3d:83:23:b8:20:ee:9b:56:3e:6e:c1:ea:4d:2c: bc:26:ae:ef:71:7f:f2:d0:f7:51:32:c3:e4:d3:4a: a8:66:7f:f4:be:84:11:6d:72:56:8c:f4:1c:d3:cf: 5e:27:2e:ae:fd:d9:f4:f1:bc:54:6b:39:08:aa:8c: 34:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C3:39:1D:70:ED:F7:AD:76:7F:69:37:F8:54:2E:9D:22:AB:D4:5B X509v3 Authority Key Identifier: keyid:00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d3:de:4f:f0:1c:e2:de:4b:bd:f9:02:6f:e0:14:9f:fc:36: 13:be:b1:24:44:e9:36:06:4c:4d:bc:d0:89:cf:1e:d5:3a:87: 33:61:10:78:84:cc:c7:93:45:62:0b:03:f5:2b:58:4f:df:7c: 40:b6:c8:78:90:5d:89:d4:48:29:d2:32:1e:6d:6f:f7:92:fc: 0b:85:d5:a2:0d:79:c0:62:25:96:94:ab:cc:de:70:9b:7c:b2: 57:97:69:78:07:fe:8d:bd:ec:16:3e:1f:a5:5b:6d:3f:fb:89: 27:8d:31:85:73:a4:33:c1:2a:5c:00:99:48:1c:e2:26:85:29: d2:ec:b1:cf:bd:3a:41:bb:26:99:4c:02:bc:0f:b4:d1:c7:c7: 47:55:d6:ce:3f:aa:64:e5:6f:0d:58:2a:df:5e:65:36:c0:7c: 79:53:59:6b:b0:c1:fa:95:59:8f:be:e4:d3:f6:79:93:ff:bf: d6:0e:8e:b6:84:b0:7d:68:20:05:23:2c:ca:92:09:d0:31:44: 9e:cb:1e:b6:40:44:13:b5:10:00:09:de:3f:56:e0:21:43:75: a8:10:13:be:b8:ce:1f:18:15:ea:da:d6:a4:9d:70:d1:fe:48: 28:09:c7:32:af:9b:19:ad:b9:fc:93:7c:2e:e2:bb:88:cf:52: 65:ba:11:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZBMjUxMTAvBgNVBAUTKDAwMzg5QTg2NTdBRTA5ODgwNDQ3MkY4RTY4RDcwNUUy RUZEQkQ3QzAwHhcNMjUwNjE0MTg0NDQ3WhcNMjUwNjIxMTg0NDQ3WjAYMRYwFAYD VQQDEw02ODRkYzMxZi1hZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4/9InGp8EHOAI2WyO7euiyezZrHEeu0whV6VEhJo9M7hvv5ZWADoUD+ibsp YM7vLGx0PH7x7gxN0SFUCNgBWmD5mO9bWRPx80gXADW1qCslY59EU4C6RPR/wFvQ hZv4F75mbgDNEt2XM+AIS4EEHC0SN7rszjEhEavGU+NgAtK65+t6jMKk2aHAiMJc c73e70eMAdGuvbR0WnqSX1cD8ySM8JhfSJBuvTYXLVTQEkgH7o672Hx76991UrAy vtWEn2gKPYMjuCDum1Y+bsHqTSy8Jq7vcX/y0PdRMsPk00qoZn/0voQRbXJWjPQc 089eJy6u/dn08bxUazkIqow0AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvDOR1w 7fetdn9pN/hULp0iq9RbMB8GA1UdIwQYMBaAFAA4moZXrgmIBEcvjmjXBeLv29fA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkEyNS8yQkJDQkNBQTFE QUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9BRGlhaGxldUNZZ0VSeS1PYU5jRjR1X2Ix OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FEaWFobGV1Q1lnRVJ5LU9hTmNGNHVfYjE4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkEyNS8yQkJDQkNBQTFEQUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9BRGlhaGxldUNZ Z0VSeS1PYU5jRjR1X2IxOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw095P8Bzi3ku9+QJv4BSf/DYTvrEkROk2BkxNvNCJzx7VOoczYRB4 hMzHk0ViCwP1K1hP33xAtsh4kF2J1Egp0jIebW/3kvwLhdWiDXnAYiWWlKvM3nCb fLJXl2l4B/6NvewWPh+lW20/+4knjTGFc6QzwSpcAJlIHOImhSnS7LHPvTpBuyaZ TAK8D7TRx8dHVdbOP6pk5W8NWCrfXmU2wHx5U1lrsMH6lVmPvuTT9nmT/7/WDo62 hLB9aCAFIyzKkgnQMUSeyx62QEQTtRAACd4/VuAhQ3WoEBO+uM4fGBXq2taknXDR /kgoCccyr5sZrbn8k3wu4ruIz1JluhEl -----END CERTIFICATE-----Generated at Sun Jun 15 09:35:08 2025 by rpki-client