$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: LQnCuG0U1SAkOHs0KxoIHyd5/COBGiN7Cjv9MZkNiis= Subject key identifier: 5E:47:10:EA:74:6D:77:C6:C7:D0:3F:49:B4:C1:CF:1C:D3:A3:2E:D0 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 065C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 0655 Signing time: Wed 18 Jun 2025 22:23:20 +0000 Manifest this update: Wed 18 Jun 2025 22:23:19 +0000 Manifest next update: Wed 25 Jun 2025 22:23:19 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: OiU2Dlkq5qPGd2ptYpbxDhWwbqg9U7fmx+9niqXwUHA=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 1444bb5xjFLOm1pP6Amz/K/2h6LYyRRZNFd2Apyax+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Jun 18 22:23:19 2025 GMT Not After : Jun 25 22:23:19 2025 GMT Subject: CN=68533c57-6927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d0:75:c2:51:b8:1d:93:cf:ab:b6:5f:64:8d: 47:63:2f:34:b0:3e:2a:e1:60:72:d7:2d:17:31:12: 22:8c:60:e2:dd:62:50:0e:ad:1a:54:04:0b:10:36: 8a:f8:6d:68:9a:82:c3:cc:fb:d5:64:48:39:b2:bb: 50:10:a4:0d:21:36:43:41:23:56:4a:ed:50:bb:ac: d5:78:7c:7e:07:3d:ff:7a:4e:b9:44:7c:86:91:49: f3:17:38:aa:9c:a0:e7:a4:f5:61:5c:d8:f2:96:d4: 76:43:3e:bb:4a:28:bb:b4:d1:4f:78:e1:7c:0d:0e: 9d:cd:f1:71:a5:9b:8c:b0:19:51:b4:6b:d8:3f:f2: 2f:02:30:03:45:ff:c2:4d:fd:06:6b:4f:b0:c1:38: 03:ff:17:9d:93:90:4c:8a:10:56:66:f8:8d:05:fc: 59:53:37:69:6a:38:96:27:bc:49:f3:54:03:a0:c5: 64:25:40:da:85:56:67:80:d4:d3:4d:00:99:f2:51: 65:8f:d6:48:a2:43:26:3f:75:63:bc:ae:30:3a:b0: c6:be:5c:50:ec:e8:ce:6d:1c:2b:5b:d3:07:a3:2f: 71:af:d6:ee:d3:e5:b1:1b:eb:de:28:de:e3:2f:84: 3d:da:ad:34:73:49:17:63:d3:12:84:d3:b3:1e:ad: 90:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:47:10:EA:74:6D:77:C6:C7:D0:3F:49:B4:C1:CF:1C:D3:A3:2E:D0 X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:ea:5d:cf:a6:63:be:82:b0:d0:2b:ff:fd:19:fa:1a:d1:ff: 8e:57:4c:7f:c4:0d:dc:20:3d:d2:3e:be:f4:9f:4f:15:4c:61: ba:0b:f1:e7:1b:68:0c:d0:7c:24:62:a2:8c:29:e1:e9:29:79: ba:da:b5:d7:89:48:de:3e:56:0c:47:64:2e:3c:55:79:6b:0c: 29:2a:d7:2d:be:bd:5e:0e:4a:db:0b:32:8a:c5:5a:30:15:32: b1:36:62:7a:95:2a:ac:df:7d:e6:e1:84:f3:b1:26:b9:1d:76: b1:42:b7:57:6b:6e:f3:79:5c:1d:f2:cf:2e:d2:b1:bc:29:cc: e0:c2:1c:b2:c5:c0:d8:d4:b9:86:2c:ed:b2:15:91:f3:73:f3: ef:1d:6c:ff:b2:93:1c:84:b8:43:51:06:80:80:62:34:32:2f: 5d:64:4a:7d:b3:95:39:30:66:a7:61:97:8b:b5:3a:ad:1e:c6: 9d:db:37:34:17:12:26:5d:64:df:b2:78:60:b7:ba:59:a7:8d: 69:10:e0:c4:5b:07:76:bf:cd:54:36:96:0c:bd:2d:e2:06:c0: 21:a8:a5:3a:5e:8d:f9:ed:cc:e4:d4:b8:13:c3:02:1a:7d:a1: 9e:25:9a:a0:7b:fa:31:66:bf:dc:55:3e:6b:f6:fa:c2:74:9e: ad:64:30:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUwNjE4MjIyMzE5WhcNMjUwNjI1MjIyMzE5WjAYMRYwFAYD VQQDEw02ODUzM2M1Ny02OTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydB1wlG4HZPPq7ZfZI1HYy80sD4q4WBy1y0XMRIijGDi3WJQDq0aVAQLEDaK +G1omoLDzPvVZEg5srtQEKQNITZDQSNWSu1Qu6zVeHx+Bz3/ek65RHyGkUnzFziq nKDnpPVhXNjyltR2Qz67Sii7tNFPeOF8DQ6dzfFxpZuMsBlRtGvYP/IvAjADRf/C Tf0Ga0+wwTgD/xedk5BMihBWZviNBfxZUzdpajiWJ7xJ81QDoMVkJUDahVZngNTT TQCZ8lFlj9ZIokMmP3VjvK4wOrDGvlxQ7OjObRwrW9MHoy9xr9bu0+WxG+veKN7j L4Q92q00c0kXY9MShNOzHq2QDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5HEOp0 bXfGx9A/SbTBzxzToy7QMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC6l3PpmO+grDQK//9Gfoa0f+OV0x/xA3cID3SPr70n08VTGG6C/Hn G2gM0HwkYqKMKeHpKXm62rXXiUjePlYMR2QuPFV5awwpKtctvr1eDkrbCzKKxVow FTKxNmJ6lSqs333m4YTzsSa5HXaxQrdXa27zeVwd8s8u0rG8KczgwhyyxcDY1LmG LO2yFZHzc/PvHWz/spMchLhDUQaAgGI0Mi9dZEp9s5U5MGanYZeLtTqtHsad2zc0 FxImXWTfsnhgt7pZp41pEODEWwd2v81UNpYMvS3iBsAhqKU6Xo357czk1LgTwwIa faGeJZqge/oxZr/cVT5r9vrCdJ6tZDAN -----END CERTIFICATE-----Generated at Fri Jun 20 02:35:32 2025 by rpki-client