$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: yl2m6eR3bxJyy5Ij1UUk78aChyzTr1qwQVIcThxv8Es= Subject key identifier: 8A:DC:09:24:04:00:6A:11:54:4C:12:19:BF:F8:DD:11:B1:97:9E:D9 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 34B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 34A2 Signing time: Sat 14 Jun 2025 14:45:39 +0000 Manifest this update: Sat 14 Jun 2025 14:45:39 +0000 Manifest next update: Sat 21 Jun 2025 14:45:39 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: qNx4KTW+LDqx2y0XBn46heNb4H0+ME1kbl7FUY+Q2a4=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: J0n8zynWewxBVfoDX3OB8RbfuIjzjZ2KDx4R2TodoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13493 (0x34b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Jun 14 14:45:39 2025 GMT Not After : Jun 21 14:45:39 2025 GMT Subject: CN=684d8b13-2972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ed:a0:60:4d:c5:26:3a:01:6c:f7:55:7b:cc: 34:5c:58:ac:e1:73:35:fd:18:ff:15:71:7c:5a:b6: 21:32:87:5c:bb:4a:bb:39:33:31:37:96:b8:12:88: 70:be:9d:c3:2d:9c:c1:5f:1f:78:c5:7f:7d:70:45: 44:19:7e:6f:40:30:a9:fd:02:a8:13:54:3a:be:75: 19:5b:d8:ad:4f:60:ba:5a:bd:69:ee:62:6f:df:53: 94:26:35:f1:b6:fa:2b:9f:24:b3:66:cf:78:b9:7f: 1e:7c:9d:23:14:7c:a2:63:3e:14:76:ae:ba:de:0c: 8c:3d:a3:45:89:09:9c:8a:e7:70:2c:78:4c:84:2e: ec:3c:6d:95:9a:a3:23:56:8e:e8:8b:8d:ce:4c:91: e6:1d:16:61:95:84:e0:e7:72:b5:bf:0f:60:ec:f4: 83:ae:01:c8:ac:ba:64:3b:19:e0:86:19:86:ea:43: cc:e9:cf:48:41:71:d4:b9:f6:99:17:79:c0:83:26: cf:5b:d0:bd:c0:0a:26:15:34:e2:7e:8c:6e:5c:ad: 3d:a7:1e:8c:27:4c:57:66:64:e8:2f:35:ec:ac:c5: 1d:59:27:e8:3e:29:d2:86:40:a3:0a:c1:c6:38:41: 3d:d2:61:d0:27:be:3f:78:c7:f1:31:27:2b:98:0c: 36:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:DC:09:24:04:00:6A:11:54:4C:12:19:BF:F8:DD:11:B1:97:9E:D9 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4d:51:bb:96:98:7a:d9:ef:ba:00:f9:24:33:34:27:13:67: f4:ee:7a:12:0c:0d:1f:ae:29:43:66:94:b8:7b:f5:00:52:e3: 49:e1:83:bb:18:39:59:93:5f:59:16:d8:f1:06:24:d0:9e:2a: a1:96:c1:ca:0a:68:6c:e3:1a:4d:fe:92:8f:b4:f7:23:63:73: 00:2b:aa:ed:01:75:d5:a9:98:9e:ac:d1:7c:10:5f:9b:a5:d0: a8:56:36:01:b8:d0:4b:a4:31:9f:1c:66:d1:3b:8f:09:65:7c: 02:d8:bb:7e:02:e6:b6:20:47:51:e8:2b:56:24:79:30:fc:a5: 30:f2:98:6a:c1:da:c4:4c:32:b4:0e:ef:b9:bd:76:39:fa:dc: d7:44:25:cb:3a:5d:4e:db:02:13:21:7c:d4:7d:0b:87:40:87: a4:a2:fd:b2:93:e9:29:30:11:82:8e:b2:2e:c7:d4:e4:51:4b: e0:5d:bf:83:c3:f8:76:44:84:16:f5:1e:7f:a9:67:6c:b5:e3: 4c:72:16:29:bf:8b:fc:2a:68:64:e4:76:bd:09:5c:05:00:5c: 90:81:a7:2f:e9:9d:7e:c2:23:bc:8c:1d:f2:98:6c:23:b9:6c: ce:1e:9b:28:c0:6e:be:0b:ea:b3:cc:d7:2c:7a:3b:0f:56:88: 3f:b2:c0:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUwNjE0MTQ0NTM5WhcNMjUwNjIxMTQ0NTM5WjAYMRYwFAYD VQQDEw02ODRkOGIxMy0yOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO2gYE3FJjoBbPdVe8w0XFis4XM1/Rj/FXF8WrYhModcu0q7OTMxN5a4Eohw vp3DLZzBXx94xX99cEVEGX5vQDCp/QKoE1Q6vnUZW9itT2C6Wr1p7mJv31OUJjXx tvornySzZs94uX8efJ0jFHyiYz4Udq663gyMPaNFiQmciudwLHhMhC7sPG2VmqMj Vo7oi43OTJHmHRZhlYTg53K1vw9g7PSDrgHIrLpkOxnghhmG6kPM6c9IQXHUufaZ F3nAgybPW9C9wAomFTTifoxuXK09px6MJ0xXZmToLzXsrMUdWSfoPinShkCjCsHG OEE90mHQJ74/eMfxMScrmAw2GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrcCSQE AGoRVEwSGb/43RGxl57ZMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeTVG7lph62e+6APkkMzQnE2f07noSDA0frilDZpS4e/UAUuNJ4YO7 GDlZk19ZFtjxBiTQniqhlsHKCmhs4xpN/pKPtPcjY3MAK6rtAXXVqZierNF8EF+b pdCoVjYBuNBLpDGfHGbRO48JZXwC2Lt+Aua2IEdR6CtWJHkw/KUw8phqwdrETDK0 Du+5vXY5+tzXRCXLOl1O2wITIXzUfQuHQIekov2yk+kpMBGCjrIux9TkUUvgXb+D w/h2RIQW9R5/qWdsteNMchYpv4v8Kmhk5Ha9CVwFAFyQgacv6Z1+wiO8jB3ymGwj uWzOHpsowG6+C+qzzNcsejsPVog/ssC9 -----END CERTIFICATE-----Generated at Mon Jun 16 10:38:18 2025 by rpki-client