$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft File: MsAhMRti_kUAvI5OD0hSxkvF2ss.mft (raw, json) Hash identifier: AaT3UjydSwtxP7bA77WnJavkOxCsoLZa8yR58fQ4Y7Q= Subject key identifier: 68:30:58:50:DF:BC:8D:F6:8B:66:5B:7F:17:FB:00:2C:64:97:19:A3 Authority key identifier: 32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB Certificate issuer: /CN=A915D8F3/serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft Manifest number: 78 Signing time: Thu 19 Jun 2025 04:43:35 +0000 Manifest this update: Thu 19 Jun 2025 04:43:35 +0000 Manifest next update: Thu 26 Jun 2025 04:43:35 +0000 Files and hashes: 1: MsAhMRti_kUAvI5OD0hSxkvF2ss.crl (hash: xNqo1zJbDf2GBqWMe4Rv19UoLZu+xgwgLkN/C+8MH2M=) 2: 37DEC83C9DEC11EFB004850FC4F9AE02.roa (hash: AzFl0RFcs8OJznRZfBYgmDybc5F7V12CS5camGFMWxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3, serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Validity Not Before: Jun 19 04:43:35 2025 GMT Not After : Jun 26 04:43:35 2025 GMT Subject: CN=68539577-11e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:91:ff:b9:f7:94:2e:57:49:e9:0d:02:92: 80:23:0e:65:47:a5:90:b6:93:4a:f7:c0:da:f6:05: 05:0d:ff:14:54:0d:7a:b5:0a:f6:b9:cf:67:09:86: ba:ec:06:df:65:54:96:c8:bb:e8:05:5b:d9:47:70: b5:a0:2f:af:44:7f:83:d5:3b:7b:bc:b1:e7:e8:0c: dd:27:14:80:13:29:81:6e:31:d9:01:b7:af:98:8b: fa:4b:d5:4b:96:bd:b5:87:f5:bc:86:49:df:6d:75: f5:50:d0:dd:cc:15:a8:7b:0f:b1:17:72:d7:8d:2e: fd:a8:6e:de:ac:5d:88:ac:e0:63:66:c5:12:09:df: 38:df:61:ed:ba:cb:78:b7:ed:a7:26:db:85:a9:ae: 03:b9:cd:33:3b:a7:76:22:e5:43:2e:d7:69:8e:bf: 98:5b:31:18:ae:9f:58:58:e3:15:2b:5e:2d:81:3c: 54:21:81:f2:29:eb:01:07:f5:4e:f2:b5:19:8b:11: 11:a5:f0:73:5d:e6:de:64:6f:98:77:74:6f:f2:15: f7:8c:5a:d8:74:15:e6:56:57:54:4d:d7:bd:9f:28: d1:b8:49:d1:92:a7:d9:ce:05:8c:6e:0f:d8:8b:22: ed:f8:df:3f:48:d1:23:d5:21:5b:eb:87:46:0b:bf: e0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:30:58:50:DF:BC:8D:F6:8B:66:5B:7F:17:FB:00:2C:64:97:19:A3 X509v3 Authority Key Identifier: keyid:32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:ae:5d:75:08:6c:70:05:4d:c7:99:85:b2:5e:89:02:a6:50: 06:1f:e3:10:72:bb:f7:87:05:01:20:f9:1b:c7:1d:f7:60:55: 83:69:2f:5b:d4:4b:53:8b:c9:0a:38:0f:60:89:37:c2:87:32: a8:52:84:32:c7:74:b7:15:f1:f7:cd:ab:19:c2:9a:d9:75:fa: 0e:e8:7e:7b:9a:13:32:69:3a:1e:c0:d2:c3:57:68:fe:a2:b5: 98:d2:53:7c:d6:cd:5b:fd:73:db:a2:42:e5:72:9a:b0:d2:54: 73:48:d5:bf:d8:09:e3:a7:ee:6b:21:7e:6b:52:88:10:be:d4: 69:48:21:c6:bb:36:ad:c0:2e:b9:3b:c4:df:ab:a9:84:fa:86: e9:61:f9:30:fa:39:ea:f3:f8:4e:18:af:1b:fb:c8:7e:9b:f9: a4:b8:e6:52:21:75:9e:45:5e:69:7c:cb:6f:ee:75:f0:c0:78: 33:ac:22:2c:2f:d5:6a:2f:6e:9e:df:a6:4a:ad:f1:b8:4d:e3: 48:bc:b1:7b:42:8f:21:9f:a9:37:cc:a1:32:17:12:a2:30:5d: 0f:15:c9:1b:46:5e:03:49:83:f8:43:08:cc:b6:82:0e:c9:22: 6a:75:8a:44:bf:0e:25:d3:37:3e:ac:83:fb:d5:e1:28:7d:07: c6:1d:c7:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RDhGMzExMC8GA1UEBRMoMzJDMDIxMzExQjYyRkU0NTAwQkM4RTRFMEY0ODUyQzY0 QkM1REFDQjAeFw0yNTA2MTkwNDQzMzVaFw0yNTA2MjYwNDQzMzVaMBgxFjAUBgNV BAMTDTY4NTM5NTc3LTExZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDETJH/ufeULldJ6Q0CkoAjDmVHpZC2k0r3wNr2BQUN/xRUDXq1Cva5z2cJhrrs Bt9lVJbIu+gFW9lHcLWgL69Ef4PVO3u8sefoDN0nFIATKYFuMdkBt6+Yi/pL1UuW vbWH9byGSd9tdfVQ0N3MFah7D7EXcteNLv2obt6sXYis4GNmxRIJ3zjfYe26y3i3 7acm24WprgO5zTM7p3Yi5UMu12mOv5hbMRiun1hY4xUrXi2BPFQhgfIp6wEH9U7y tRmLERGl8HNd5t5kb5h3dG/yFfeMWth0FeZWV1RN172fKNG4SdGSp9nOBYxuD9iL Iu343z9I0SPVIVvrh0YLv+A/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaDBYUN+8 jfaLZlt/F/sALGSXGaMwHwYDVR0jBBgwFoAUMsAhMRti/kUAvI5OD0hSxkvF2ssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVEOEYzL0M1N0YyM0FFOUIw NzExRUY4MzdFQTAxMkM0RjlBRTAyL01zQWhNUnRpX2tVQXZJNU9EMGhTeGt2RjJz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTXNBaE1SdGlfa1VBdkk1T0QwaFN4a3ZGMnNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE OEYzL0M1N0YyM0FFOUIwNzExRUY4MzdFQTAxMkM0RjlBRTAyL01zQWhNUnRpX2tV QXZJNU9EMGhTeGt2RjJzcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEWuXXUIbHAFTceZhbJeiQKmUAYf4xByu/eHBQEg+RvHHfdgVYNpL1vU S1OLyQo4D2CJN8KHMqhShDLHdLcV8ffNqxnCmtl1+g7ofnuaEzJpOh7A0sNXaP6i tZjSU3zWzVv9c9uiQuVymrDSVHNI1b/YCeOn7mshfmtSiBC+1GlIIca7Nq3ALrk7 xN+rqYT6hulh+TD6Oerz+E4Yrxv7yH6b+aS45lIhdZ5FXml8y2/udfDAeDOsIiwv 1Wovbp7fpkqt8bhN40i8sXtCjyGfqTfMoTIXEqIwXQ8VyRtGXgNJg/hDCMy2gg7J Imp1ikS/DiXTNz6sg/vV4Sh9B8Ydx+M= -----END CERTIFICATE-----Generated at Sat Jun 21 02:11:04 2025 by rpki-client