$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: K4xV3DLhajoK8FwGiXh3AO64ngMJ+IC+MUR9WGzFau0= Subject key identifier: A6:2D:4C:F1:F3:9C:3F:EF:0D:7F:03:6D:17:89:B1:77:B9:9A:11:83 Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 220B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 21FB Signing time: Mon 16 Jun 2025 15:57:28 +0000 Manifest this update: Mon 16 Jun 2025 15:57:28 +0000 Manifest next update: Mon 23 Jun 2025 15:57:28 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: qSSj2QqAI2SAqS4/LtM27p5+wind0CAQAT4nH/Q1Lz4=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8715 (0x220b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Jun 16 15:57:28 2025 GMT Not After : Jun 23 15:57:28 2025 GMT Subject: CN=68503ee8-28ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:e2:07:07:ee:f8:c3:3f:ec:c6:1a:9d:52: c0:2a:f2:d4:1f:05:13:46:e3:dc:17:0e:f3:e3:cb: 4c:84:03:71:be:ac:49:13:5d:2b:73:fe:ae:e4:40: b6:b8:c2:e4:43:a5:0f:de:e9:48:bf:45:7d:43:8d: d0:0d:6c:99:9b:e7:31:36:e5:f9:8c:77:15:ab:43: f8:f4:46:57:18:51:15:e1:33:24:96:f1:56:b5:b6: 1b:3e:61:a3:bf:65:5f:f7:d7:fb:ce:24:b8:08:c6: 2c:da:d9:4c:b1:b0:64:ed:c9:76:da:97:0d:56:7f: ac:c4:7c:3a:12:45:80:7d:18:d8:7a:32:ac:99:98: 5f:b5:cf:56:96:90:7e:cd:95:20:e3:d2:27:c8:79: a8:37:62:c1:8e:0b:10:4c:2a:10:56:d5:78:20:2d: 0d:e0:a1:68:5b:93:ca:a6:c2:c8:5d:4b:c4:66:13: c7:76:eb:a4:9d:27:06:f7:80:9c:bd:3d:dc:f4:b7: f6:de:c1:f2:b3:a8:5a:7f:77:6d:0b:3d:1b:ec:97: 18:aa:e8:e9:5c:ce:a5:3e:95:00:ca:67:2b:e4:15: c5:71:a6:7e:97:01:84:bf:a7:80:17:1a:eb:37:6e: a9:bd:39:ee:fc:3e:2a:fd:50:61:bb:7b:ae:77:c4: ce:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:2D:4C:F1:F3:9C:3F:EF:0D:7F:03:6D:17:89:B1:77:B9:9A:11:83 X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:99:e6:b2:9c:2b:1b:49:fb:f5:0f:9f:32:e0:5e:35:d0:2f: a4:04:6e:9f:ad:f0:70:ce:e1:58:36:88:41:5a:b6:aa:3d:65: 60:02:49:e3:05:bc:bf:c4:3c:b6:43:41:e4:4a:09:3f:55:c2: 0f:99:c7:63:4c:c0:78:df:ff:08:0d:6f:b8:65:55:d7:46:fa: 09:ea:60:96:64:fd:96:40:0a:fa:20:eb:dd:ee:44:94:dd:a4: c8:28:0c:fe:f4:93:91:32:1b:48:00:f4:af:ae:d5:5c:ea:7d: da:bc:b2:a2:0c:e0:49:af:12:6f:9d:16:2a:ed:2c:92:e2:09: 38:34:52:40:6a:4f:3b:85:ac:97:86:d3:84:d8:c1:ce:e8:0a: e5:0b:29:cc:9a:de:a8:67:96:fa:85:f8:92:af:f6:3f:c3:6d: af:cc:64:18:7e:fd:88:04:e1:96:72:30:35:dd:80:4d:a7:3a: c8:d9:c4:14:77:32:48:6a:cf:dc:b8:a8:85:82:71:e8:ce:e2: 26:11:9a:75:ca:21:ca:f0:a7:ba:21:d4:56:c3:1f:96:a6:cc: ca:fa:06:91:a1:26:89:71:a2:ba:f5:9c:3e:08:29:34:64:7a: 11:27:64:cf:4e:96:08:8b:db:74:2f:29:dd:f5:4c:7f:65:94: 1e:16:d5:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUwNjE2MTU1NzI4WhcNMjUwNjIzMTU1NzI4WjAYMRYwFAYD VQQDEw02ODUwM2VlOC0yOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHbiBwfu+MM/7MYanVLAKvLUHwUTRuPcFw7z48tMhANxvqxJE10rc/6u5EC2 uMLkQ6UP3ulIv0V9Q43QDWyZm+cxNuX5jHcVq0P49EZXGFEV4TMklvFWtbYbPmGj v2Vf99f7ziS4CMYs2tlMsbBk7cl22pcNVn+sxHw6EkWAfRjYejKsmZhftc9WlpB+ zZUg49InyHmoN2LBjgsQTCoQVtV4IC0N4KFoW5PKpsLIXUvEZhPHduuknScG94Cc vT3c9Lf23sHys6haf3dtCz0b7JcYqujpXM6lPpUAymcr5BXFcaZ+lwGEv6eAFxrr N26pvTnu/D4q/VBhu3uud8TOuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYtTPHz nD/vDX8DbReJsXe5mhGDMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6meaynCsbSfv1D58y4F410C+kBG6frfBwzuFYNohBWraqPWVgAknj Bby/xDy2Q0HkSgk/VcIPmcdjTMB43/8IDW+4ZVXXRvoJ6mCWZP2WQAr6IOvd7kSU 3aTIKAz+9JORMhtIAPSvrtVc6n3avLKiDOBJrxJvnRYq7SyS4gk4NFJAak87hayX htOE2MHO6ArlCynMmt6oZ5b6hfiSr/Y/w22vzGQYfv2IBOGWcjA13YBNpzrI2cQU dzJIas/cuKiFgnHozuImEZp1yiHK8Ke6IdRWwx+WpszK+gaRoSaJcaK69Zw+CCk0 ZHoRJ2TPTpYIi9t0Lynd9Ux/ZZQeFtUG -----END CERTIFICATE-----Generated at Wed Jun 18 05:05:18 2025 by rpki-client