$ rpki-client -vvf rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft File: vY9TgeGI5FgPskcsJxoFQp4tXCI.mft (raw, json) Hash identifier: qx2QhntyGdTdeKrwuybXc+V5N64y/buzePgPOkOuV5Q= Subject key identifier: 0F:AB:84:08:F6:57:7E:B3:3A:55:63:8C:BB:03:EC:2E:C5:05:2F:5C Authority key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 Certificate issuer: /CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Certificate serial: 1B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft Manifest number: 1AFD Signing time: Wed 18 Jun 2025 16:19:08 +0000 Manifest this update: Wed 18 Jun 2025 16:19:07 +0000 Manifest next update: Wed 25 Jun 2025 16:19:07 +0000 Files and hashes: 1: vY9TgeGI5FgPskcsJxoFQp4tXCI.crl (hash: 6lOHuLOFrRAyZGwUu8WRLzpp+qb34nXNk7YeubGiwGU=) 2: 59029A32233A11E78D48837AC4F9AE02.roa (hash: XfYeKxfatX6id5bBv2XHc88RkA9A8XtPbM07HmC0bY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6920 (0x1b08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Validity Not Before: Jun 18 16:19:07 2025 GMT Not After : Jun 25 16:19:07 2025 GMT Subject: CN=6852e6fc-4062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a1:10:d7:60:4d:62:f0:b4:86:d4:7a:61:b0: ed:74:b8:44:59:4f:f4:16:ab:07:a3:cf:90:2c:07: 2c:86:8e:8d:59:96:56:1b:47:bc:11:ce:f3:1f:c3: 6e:22:9a:cc:3d:85:a3:e4:25:85:8a:d5:f1:6f:c8: cd:e1:14:5e:1c:56:7c:91:5d:b6:2e:2d:ac:81:73: 3d:f2:07:95:8a:cc:46:1f:03:64:60:5d:bb:e2:fb: ab:f5:bd:b3:8c:d4:cd:28:11:94:4b:21:4a:16:df: 4d:f7:5a:03:e1:de:41:44:64:71:f5:29:4b:1a:24: 58:9a:5a:d9:d8:16:b9:cf:2c:bf:e0:92:6b:1f:b4: 1d:29:f1:ff:a7:29:ec:81:28:4d:71:d7:91:d1:eb: 55:bc:3a:d4:7b:eb:c4:93:c5:f8:c8:e0:e4:a7:e3: 29:9a:b7:76:02:de:7b:73:75:19:6b:9e:54:b0:d7: 8f:32:94:2a:a6:5e:2b:88:88:39:6a:7e:b5:a5:06: 08:db:64:2d:73:fa:c1:1c:3a:ae:39:21:52:ea:42: fa:1f:d3:7d:69:1d:27:57:4b:36:f6:d6:4a:25:c7: 53:9a:5b:b9:09:cf:4a:57:ea:98:d2:25:0b:f4:cd: 88:58:18:dc:af:bd:de:93:4b:92:da:0a:9f:e7:c4: 62:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AB:84:08:F6:57:7E:B3:3A:55:63:8C:BB:03:EC:2E:C5:05:2F:5C X509v3 Authority Key Identifier: keyid:BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f0:44:ea:9c:c9:9c:36:a8:a5:79:e8:5b:39:55:e7:db:2e: ad:1b:86:a6:42:02:11:35:b3:86:d2:b1:5e:d4:86:af:1e:38: 53:ff:26:0d:f7:89:6c:5f:f1:be:68:34:73:53:d9:cf:91:a7: 8f:e2:8c:a7:04:e4:7c:b6:fb:50:e0:d4:e7:98:19:5c:e8:12: 11:0a:74:dd:1f:0f:45:e5:3c:67:0c:b3:53:8b:43:20:a9:8e: 34:c0:58:ea:15:77:98:3c:2c:bd:c3:b8:51:1c:70:b0:ae:ac: c9:08:27:43:90:5f:3c:40:06:93:84:bd:96:b1:d7:27:dd:20: a6:07:84:6b:c0:e3:c4:7f:fc:9f:08:bb:69:fb:a5:c5:0f:81: cc:29:c9:3d:3c:13:5e:4b:17:85:c0:c7:88:7d:ff:bc:f5:ff: 35:65:ba:3b:6e:b2:1b:69:bb:f7:2d:23:db:71:95:55:83:e0: d5:e8:0e:26:88:6a:3c:23:b4:82:08:42:b0:77:2d:33:5b:28: e7:a8:6f:b6:fc:af:2e:ca:09:da:5b:d0:a0:a3:f9:94:30:9f: 52:de:81:fe:fb:14:e9:88:4e:cf:87:5b:2e:7d:ca:e5:ff:0a: b5:80:79:c4:b9:87:50:57:12:7f:53:82:18:5e:d7:dc:b4:e8: c7:ed:ed:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NkQxMTAvBgNVBAUTKEJEOEY1MzgxRTE4OEU0NTgwRkIyNDcyQzI3MUEwNTQy OUUyRDVDMjIwHhcNMjUwNjE4MTYxOTA3WhcNMjUwNjI1MTYxOTA3WjAYMRYwFAYD VQQDEw02ODUyZTZmYy00MDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KEQ12BNYvC0htR6YbDtdLhEWU/0FqsHo8+QLAcsho6NWZZWG0e8Ec7zH8Nu IprMPYWj5CWFitXxb8jN4RReHFZ8kV22Li2sgXM98geVisxGHwNkYF274vur9b2z jNTNKBGUSyFKFt9N91oD4d5BRGRx9SlLGiRYmlrZ2Ba5zyy/4JJrH7QdKfH/pyns gShNcdeR0etVvDrUe+vEk8X4yODkp+Mpmrd2At57c3UZa55UsNePMpQqpl4riIg5 an61pQYI22Qtc/rBHDquOSFS6kL6H9N9aR0nV0s29tZKJcdTmlu5Cc9KV+qY0iUL 9M2IWBjcr73ek0uS2gqf58Ri0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+rhAj2 V36zOlVjjLsD7C7FBS9cMB8GA1UdIwQYMBaAFL2PU4HhiORYD7JHLCcaBUKeLVwi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY2RC8xRUIwOTI1NDIz MzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVGZ1Bza2NzSnhvRlFwNHRY Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZOVRnZUdJNUZnUHNrY3NKeG9GUXA0dFhDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDY2RC8xRUIwOTI1NDIzMzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVG Z1Bza2NzSnhvRlFwNHRYQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM8ETqnMmcNqileehbOVXn2y6tG4amQgIRNbOG0rFe1IavHjhT/yYN 94lsX/G+aDRzU9nPkaeP4oynBOR8tvtQ4NTnmBlc6BIRCnTdHw9F5TxnDLNTi0Mg qY40wFjqFXeYPCy9w7hRHHCwrqzJCCdDkF88QAaThL2Wsdcn3SCmB4RrwOPEf/yf CLtp+6XFD4HMKck9PBNeSxeFwMeIff+89f81Zbo7brIbabv3LSPbcZVVg+DV6A4m iGo8I7SCCEKwdy0zWyjnqG+2/K8uygnaW9Cgo/mUMJ9S3oH++xTpiE7Ph1sufcrl /wq1gHnEuYdQVxJ/U4IYXtfctOjH7e1k -----END CERTIFICATE-----Generated at Thu Jun 19 02:40:19 2025 by rpki-client