$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft File: Rm8RJELF0C5g8kaZGTriFRlbO6k.mft (raw, json) Hash identifier: tqUOt12u70oB23ab9hm0DKAWp2ImDWwRFWzW6ylG/Ac= Subject key identifier: FC:35:A3:08:A8:CC:F5:B8:68:0E:D1:72:E1:E8:AF:93:DB:B2:DE:26 Authority key identifier: 46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 Certificate issuer: /CN=A915F89C/serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Certificate serial: 0DA2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft Manifest number: 0D83 Signing time: Wed 18 Jun 2025 14:22:17 +0000 Manifest this update: Wed 18 Jun 2025 14:22:17 +0000 Manifest next update: Wed 25 Jun 2025 14:22:17 +0000 Files and hashes: 1: Rm8RJELF0C5g8kaZGTriFRlbO6k.crl (hash: AXvA5MGtCgIm0PRkxNP5gOnc25cdl9l7xq6Om+MCbx8=) 2: 266ABA161E5811EF89038F3BC4F9AE02.roa (hash: p/azHtFptIXURVSRFgPxqoeDhngoYTd2NG88s2QFFzY=) 3: 1D3D0DC21E5811EFAC23683BC4F9AE02.roa (hash: 9l1Haea64b2aYD99677ab4KdKZDozQlY1l2PmY/FJ1w=) 4: 91CA6CBC740111EFB5E97021C4F9AE02.roa (hash: 7OpoMhu5yrBYJukUqf3gKs+QCXSGnK6psVOlWcESVPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3490 (0xda2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C, serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Validity Not Before: Jun 18 14:22:17 2025 GMT Not After : Jun 25 14:22:17 2025 GMT Subject: CN=6852cb99-3ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:ee:41:84:a8:6c:5d:bb:43:57:51:e9:c3: 4f:cd:ec:e3:26:4d:ff:03:83:0b:68:5b:e0:26:61: c9:5f:97:e2:13:9d:fe:fb:cd:3a:9c:83:28:d9:64: 41:28:c7:84:9d:bf:39:ad:a2:62:1d:99:66:0e:d2: 0e:8c:c5:2c:40:c8:9a:49:9d:ce:fd:34:ed:ff:e9: 80:ab:94:72:ae:4b:4b:98:99:be:2a:1e:40:07:70: 18:69:3b:f8:ea:f6:13:48:0f:66:60:1a:94:13:ea: cb:06:10:5b:88:c2:45:10:e9:f9:01:81:fa:ab:cf: 16:af:0b:1a:bd:f9:60:7c:16:2b:28:91:e2:8a:83: 84:51:27:75:d4:99:1f:06:f0:ef:91:7f:91:0f:fc: f2:51:d3:db:ff:4d:3a:01:11:70:91:6a:63:11:94: 5e:db:9d:64:b0:ba:99:95:6c:fc:c6:d2:c9:35:a6: 90:bd:96:b9:c7:d4:ce:fd:5b:cb:da:a6:a9:85:f0: 3f:90:40:be:06:3d:11:21:b3:ca:64:48:4c:8d:f0: 77:3c:7b:ef:a6:69:de:d4:67:14:de:7d:b9:d6:cc: d7:25:db:f2:5e:89:b7:3c:46:56:5a:58:7b:6a:a9: c3:43:bc:7b:3b:e2:8f:ef:5c:75:e6:f0:c0:15:7c: da:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:35:A3:08:A8:CC:F5:B8:68:0E:D1:72:E1:E8:AF:93:DB:B2:DE:26 X509v3 Authority Key Identifier: keyid:46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:3f:d8:0f:95:e5:d9:f9:21:b2:f2:14:dd:28:d6:3b:7b:fe: 0d:02:b1:37:a6:17:72:71:cd:81:f3:cd:49:69:c6:20:43:95: 1d:f8:bc:18:88:d0:87:80:56:3e:a0:7f:d0:ae:0b:9e:cc:af: 21:c8:a7:a1:00:da:94:bc:85:a2:03:9a:f8:a7:4f:78:67:c3: 9d:72:e4:0b:40:d8:6c:27:61:15:cf:11:42:fb:7d:a1:eb:88: 8a:1d:3c:32:69:e5:63:a8:b6:69:f7:63:0f:63:74:39:28:06: 5b:57:79:29:8e:68:d1:88:15:dc:e6:28:1c:53:75:ca:fe:1d: 2c:76:e5:33:65:5c:1b:1d:7a:46:0b:b0:0c:ae:a5:7d:fa:b9: 51:65:bc:9c:39:c2:4b:60:c5:96:bd:3b:ba:e2:07:9c:e0:c6: d1:45:63:71:68:1c:3a:f8:ef:3a:c6:b1:46:42:d8:82:b0:64: 8d:46:19:f9:93:09:c6:70:16:60:db:80:95:80:3e:3b:18:7a: 6a:2f:4b:dd:5a:89:d8:2e:64:d5:8f:0e:09:2f:37:ed:bd:a3: d4:aa:d2:f7:ea:51:7d:f7:38:63:90:3a:20:d5:1f:e8:94:92: 67:92:0b:fc:f8:34:70:76:33:be:74:59:d0:cd:ed:a5:49:0c: 98:91:44:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKDQ2NkYxMTI0NDJDNUQwMkU2MEYyNDY5OTE5M0FFMjE1 MTk1QjNCQTkwHhcNMjUwNjE4MTQyMjE3WhcNMjUwNjI1MTQyMjE3WjAYMRYwFAYD VQQDEw02ODUyY2I5OS0zYWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaDuQYSobF27Q1dR6cNPzezjJk3/A4MLaFvgJmHJX5fiE53++806nIMo2WRB KMeEnb85raJiHZlmDtIOjMUsQMiaSZ3O/TTt/+mAq5RyrktLmJm+Kh5AB3AYaTv4 6vYTSA9mYBqUE+rLBhBbiMJFEOn5AYH6q88WrwsavflgfBYrKJHiioOEUSd11Jkf BvDvkX+RD/zyUdPb/006ARFwkWpjEZRe251ksLqZlWz8xtLJNaaQvZa5x9TO/VvL 2qaphfA/kEC+Bj0RIbPKZEhMjfB3PHvvpmne1GcU3n251szXJdvyXom3PEZWWlh7 aqnDQ7x7O+KP71x15vDAFXzacwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw1owio zPW4aA7RcuHor5Pbst4mMB8GA1UdIwQYMBaAFEZvESRCxdAuYPJGmRk64hUZWzup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy8wMUIwNjlGNkNF QkIxMUU5OUIxRjdEM0VDNEY5QUUwMi9SbThSSkVMRjBDNWc4a2FaR1RyaUZSbGJP NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JtOFJKRUxGMEM1ZzhrYVpHVHJpRlJsYk82ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Rjg5Qy8wMUIwNjlGNkNFQkIxMUU5OUIxRjdEM0VDNEY5QUUwMi9SbThSSkVMRjBD NWc4a2FaR1RyaUZSbGJPNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4P9gPleXZ+SGy8hTdKNY7e/4NArE3phdycc2B881JacYgQ5Ud+LwY iNCHgFY+oH/QrguezK8hyKehANqUvIWiA5r4p094Z8OdcuQLQNhsJ2EVzxFC+32h 64iKHTwyaeVjqLZp92MPY3Q5KAZbV3kpjmjRiBXc5igcU3XK/h0sduUzZVwbHXpG C7AMrqV9+rlRZbycOcJLYMWWvTu64gec4MbRRWNxaBw6+O86xrFGQtiCsGSNRhn5 kwnGcBZg24CVgD47GHpqL0vdWonYLmTVjw4JLzftvaPUqtL36lF99zhjkDog1R/o lJJnkgv8+DRwdjO+dFnQze2lSQyYkUTV -----END CERTIFICATE-----Generated at Thu Jun 19 18:04:30 2025 by rpki-client