$ rpki-client -vvf rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft File: 0N7PEI0mgBt8l-NJAprx_PkKhV4.mft (raw, json) Hash identifier: uU5GNuvZPyWH56QqvS8MJEouf9QnmYZAfB0+ov+K6yc= Subject key identifier: F4:DF:1C:CD:BD:CD:D3:F4:3D:05:46:DB:BA:20:F8:D8:6C:59:BF:4A Authority key identifier: D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E Certificate issuer: /CN=A915408A/serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft Manifest number: CF Signing time: Thu 19 Jun 2025 04:53:49 +0000 Manifest this update: Thu 19 Jun 2025 04:53:49 +0000 Manifest next update: Thu 26 Jun 2025 04:53:49 +0000 Files and hashes: 1: 0N7PEI0mgBt8l-NJAprx_PkKhV4.crl (hash: 6dxXXNfi/NU4gTj6P6uK5AIK/o601Low6/le4Sr+1Yo=) 2: 421FF25E18AD11EF99EAA661C4F9AE02.roa (hash: 9jOhdF/kHfoeUCq9Rv7j7FuoVMJgstRNSAmVQVVYx6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915408A, serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Validity Not Before: Jun 19 04:53:49 2025 GMT Not After : Jun 26 04:53:49 2025 GMT Subject: CN=685397dd-c2a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:18:67:f3:c4:2c:18:99:f9:22:dc:e4:4d:78: d3:f0:86:2f:5e:7b:33:0f:c1:90:9f:8a:d5:e0:bb: ba:a7:b4:41:ac:ff:a7:33:bf:ec:a0:6b:97:57:3c: 1d:83:76:4f:56:e8:a2:b7:cb:d2:a1:a7:bc:e7:b0: f7:08:fb:a3:eb:01:4a:6e:4c:c0:84:c9:5c:a5:28: d9:48:c5:ef:db:3d:d2:af:33:47:4e:a4:ad:b5:fb: 5f:83:7d:10:ae:cc:4e:bb:38:56:68:f0:a0:e9:fa: d8:5c:af:a2:dd:1f:73:d8:f7:b4:5f:d1:43:72:3f: 95:e3:00:8f:6b:37:21:87:31:7d:ec:9d:39:37:b0: f0:39:cc:48:e0:22:7b:d1:1e:85:90:cd:0c:c2:44: 50:9a:20:8b:f6:6e:2e:40:9e:37:e5:91:0f:14:b9: ad:86:97:37:a9:94:9e:2a:13:65:4d:cf:01:34:92: ea:17:ea:19:9c:2e:f1:1d:95:f4:3b:98:e7:3f:aa: 07:ee:60:04:31:d0:d4:2d:cf:cb:07:70:77:98:ae: 95:9d:c0:2b:a3:0c:9b:60:e9:6c:49:24:8d:ad:d7: c8:1d:e7:6c:32:3d:f3:e5:29:44:04:ab:44:43:d9: 53:b0:60:d5:0f:d4:05:25:a7:91:3f:f6:7e:24:0f: 6e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DF:1C:CD:BD:CD:D3:F4:3D:05:46:DB:BA:20:F8:D8:6C:59:BF:4A X509v3 Authority Key Identifier: keyid:D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:1f:e9:5b:fc:fb:2a:64:16:3e:b1:b4:20:a7:3e:d2:cc:cb: a9:34:3e:8a:60:e1:6b:f3:68:73:3a:ff:44:3f:ff:00:0b:58: 85:83:65:ff:c8:21:db:4e:08:8a:91:ba:54:2f:8c:36:13:74: c1:d0:04:44:92:39:0b:9c:84:2c:91:13:a8:db:10:11:9a:1f: d6:4b:6c:f4:b0:f3:57:b3:4a:f4:cf:49:ce:ae:49:fc:2e:f7: d1:ee:91:36:52:eb:3d:69:89:10:20:0b:24:29:cf:25:f8:2c: d3:b3:0a:05:b3:64:10:c5:e9:c9:b1:d4:d2:c4:e5:2b:48:cd: fb:a4:4d:74:ed:46:86:df:df:99:ba:af:68:ba:c6:ce:da:1a: 74:3a:16:59:90:18:b5:14:96:38:9b:63:77:e3:c1:a3:1f:c8: da:87:e4:c2:c4:e5:f4:e3:76:de:16:28:92:2b:ea:b0:c7:a6: 1e:02:4f:f0:6d:15:60:7c:c7:50:9c:de:d0:15:e6:d9:9c:95: 0c:24:80:b9:88:0c:fe:4e:b3:b8:2f:b0:63:84:db:20:79:4d: 4e:ec:37:2b:45:06:04:73:91:e0:d7:1d:d0:fd:97:61:98:e1: 53:7e:61:b5:50:45:88:97:90:c3:6d:b8:41:15:20:d2:ea:7b: d2:7b:b5:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQwOEExMTAvBgNVBAUTKEQwREVDRjEwOEQyNjgwMUI3Qzk3RTM0OTAyOUFGMUZD RjkwQTg1NUUwHhcNMjUwNjE5MDQ1MzQ5WhcNMjUwNjI2MDQ1MzQ5WjAYMRYwFAYD VQQDEw02ODUzOTdkZC1jMmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Rhn88QsGJn5ItzkTXjT8IYvXnszD8GQn4rV4Lu6p7RBrP+nM7/soGuXVzwd g3ZPVuiit8vSoae857D3CPuj6wFKbkzAhMlcpSjZSMXv2z3SrzNHTqSttftfg30Q rsxOuzhWaPCg6frYXK+i3R9z2Pe0X9FDcj+V4wCPazchhzF97J05N7DwOcxI4CJ7 0R6FkM0MwkRQmiCL9m4uQJ435ZEPFLmthpc3qZSeKhNlTc8BNJLqF+oZnC7xHZX0 O5jnP6oH7mAEMdDULc/LB3B3mK6VncArowybYOlsSSSNrdfIHedsMj3z5SlEBKtE Q9lTsGDVD9QFJaeRP/Z+JA9uswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTfHM29 zdP0PQVG27og+NhsWb9KMB8GA1UdIwQYMBaAFNDezxCNJoAbfJfjSQKa8fz5CoVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDA4QS8xODg0NUY2QzE4 QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdCdDhsLU5KQXByeF9Qa0to VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBON1BFSTBtZ0J0OGwtTkpBcHJ4X1BrS2hWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDA4QS8xODg0NUY2QzE4QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdC dDhsLU5KQXByeF9Qa0toVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUH+lb/PsqZBY+sbQgpz7SzMupND6KYOFr82hzOv9EP/8AC1iFg2X/ yCHbTgiKkbpUL4w2E3TB0AREkjkLnIQskROo2xARmh/WS2z0sPNXs0r0z0nOrkn8 LvfR7pE2Uus9aYkQIAskKc8l+CzTswoFs2QQxenJsdTSxOUrSM37pE107UaG39+Z uq9ousbO2hp0OhZZkBi1FJY4m2N348GjH8jah+TCxOX043beFiiSK+qwx6YeAk/w bRVgfMdQnN7QFebZnJUMJIC5iAz+TrO4L7BjhNsgeU1O7DcrRQYEc5Hg1x3Q/Zdh mOFTfmG1UEWIl5DDbbhBFSDS6nvSe7UG -----END CERTIFICATE-----Generated at Fri Jun 20 11:39:22 2025 by rpki-client