$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft File: 08nS13n2aEMJcSuzDPoZkpDhuNY.mft (raw, json) Hash identifier: OzgFi4dJYwfn3Wct16q4fXv6SUWIYXNgvy9JkHGmdXs= Subject key identifier: A9:EB:44:ED:25:50:4E:77:C2:B7:B8:CD:17:5E:FB:8F:AE:FD:92:08 Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft Manifest number: 70 Signing time: Sun 15 Jun 2025 05:58:18 +0000 Manifest this update: Sun 15 Jun 2025 05:58:18 +0000 Manifest next update: Sun 22 Jun 2025 05:58:18 +0000 Files and hashes: 1: 08nS13n2aEMJcSuzDPoZkpDhuNY.crl (hash: GCEMI3xSVvA4VEwcdQ4u6VnY7Y2N3bh4yr9I5RrZZ9Y=) 2: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (hash: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F, serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: Jun 15 05:58:18 2025 GMT Not After : Jun 22 05:58:18 2025 GMT Subject: CN=684e60fa-0c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:5c:c5:e9:52:47:8a:4b:64:81:17:06:ea: 30:04:a8:58:2f:3a:69:84:a1:b2:7e:25:c7:af:42: a7:30:93:41:36:b1:db:51:5c:b9:5e:7e:3b:8b:e1: 63:37:1e:ca:37:5e:b0:2b:c1:c8:cc:a7:a6:e0:cb: 54:83:af:ec:83:ce:6c:f8:e6:d2:61:fc:2e:d6:71: 82:01:ff:de:65:cd:9e:a8:d8:be:d2:54:4f:79:2a: d6:7c:d1:4b:4b:2f:09:d7:a1:c6:a6:12:85:5f:c4: 24:6f:92:95:ff:45:95:5f:fa:a2:d5:e2:20:dc:3e: 27:02:2b:98:41:b8:18:33:8f:ad:4c:c5:55:66:e4: 56:b5:14:4b:98:3b:f2:37:ab:1d:be:4f:c3:6c:a2: bb:6e:ec:c0:79:11:fb:87:9a:d4:12:76:17:5c:8f: cf:4d:e6:ed:f9:b3:c4:6f:f4:10:86:60:49:47:a1: 06:b2:45:33:de:b7:f0:e8:51:22:a2:59:76:3c:7f: 92:0f:0e:16:34:14:12:0a:6b:5f:5d:c8:3a:a1:11: 40:47:bb:7b:7d:bd:bd:ae:7b:81:31:0b:6b:44:63: 26:41:3e:00:32:eb:f8:a4:f8:55:b0:db:09:17:7d: d4:1c:62:d4:b0:f1:ab:71:fa:d5:18:0f:1e:d8:c9: 3a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EB:44:ED:25:50:4E:77:C2:B7:B8:CD:17:5E:FB:8F:AE:FD:92:08 X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:75:80:ca:b4:9c:0a:f5:38:1a:b3:88:d6:d7:ed:4a:c1:9c: 02:3e:d4:99:63:63:24:06:b2:19:5b:b9:c9:f5:0c:68:4f:f6: 62:6f:e4:d6:6f:0a:84:c0:42:02:58:ec:79:ec:c4:16:f9:7f: ac:5f:9d:5a:15:80:19:e6:af:0c:14:9e:77:02:64:2b:59:fe: f6:ca:43:de:25:5f:6e:a2:03:ad:7a:9f:81:36:03:3e:83:b4: 93:07:3a:b3:1b:77:aa:27:c1:22:b0:bf:18:65:b6:a4:e7:cd: ab:93:16:0b:66:2c:64:e5:92:a7:c9:cd:ac:55:42:56:87:2a: 0e:28:3b:f1:2e:04:b7:78:26:c1:f4:0e:42:70:d9:09:c8:f3: 62:d8:02:21:ce:37:5d:ca:c4:d8:2a:39:9e:cd:23:9b:50:e1: 15:93:6b:09:8e:6a:e4:d9:5b:46:81:5e:5c:a2:31:57:7a:5c: 62:f8:e2:d8:4d:77:29:f3:dd:ac:e3:d1:41:7f:3d:56:35:bc: 3c:7c:4b:9f:b3:c9:e6:ee:8e:7d:5b:61:31:7b:4d:51:72:83: 99:8d:5c:95:ca:1e:2e:38:b2:37:49:61:e8:ec:9d:ab:75:7b: d5:73:76:19:e5:5f:88:b8:f0:28:09:04:91:71:03:78:0a:be: 75:7c:57:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU4RjExMC8GA1UEBRMoRDNDOUQyRDc3OUY2Njg0MzA5NzEyQkIzMENGQTE5OTI5 MEUxQjhENjAeFw0yNTA2MTUwNTU4MThaFw0yNTA2MjIwNTU4MThaMBgxFjAUBgNV BAMTDTY4NGU2MGZhLTBjM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB31zF6VJHiktkgRcG6jAEqFgvOmmEobJ+JcevQqcwk0E2sdtRXLlefjuL4WM3 Hso3XrArwcjMp6bgy1SDr+yDzmz45tJh/C7WcYIB/95lzZ6o2L7SVE95KtZ80UtL LwnXocamEoVfxCRvkpX/RZVf+qLV4iDcPicCK5hBuBgzj61MxVVm5Fa1FEuYO/I3 qx2+T8Nsortu7MB5EfuHmtQSdhdcj89N5u35s8Rv9BCGYElHoQayRTPet/DoUSKi WXY8f5IPDhY0FBIKa19dyDqhEUBHu3t9vb2ue4ExC2tEYyZBPgAy6/ik+FWw2wkX fdQcYtSw8atx+tUYDx7YyTqHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqetE7SVQ TnfCt7jNF177j679kggwHwYDVR0jBBgwFoAU08nS13n2aEMJcSuzDPoZkpDhuNYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERThGLzBCNTQzQjBBQTE0 NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVO WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDhuUzEzbjJhRU1KY1N1ekRQb1prcERodU5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RThGLzBCNTQzQjBBQTE0NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVN SmNTdXpEUG9aa3BEaHVOWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAd1gMq0nAr1OBqziNbX7UrBnAI+1JljYyQGshlbucn1DGhP9mJv5NZv CoTAQgJY7HnsxBb5f6xfnVoVgBnmrwwUnncCZCtZ/vbKQ94lX26iA616n4E2Az6D tJMHOrMbd6onwSKwvxhltqTnzauTFgtmLGTlkqfJzaxVQlaHKg4oO/EuBLd4JsH0 DkJw2QnI82LYAiHON13KxNgqOZ7NI5tQ4RWTawmOauTZW0aBXlyiMVd6XGL44thN dynz3azj0UF/PVY1vDx8S5+zyebujn1bYTF7TVFyg5mNXJXKHi44sjdJYejsnat1 e9VzdhnlX4i48CgJBJFxA3gKvnV8V9M= -----END CERTIFICATE-----Generated at Sun Jun 15 08:34:04 2025 by rpki-client