$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft File: u3QQVrccdV0D-5zyFKQSTKTzdgw.mft (raw, json) Hash identifier: cHHLaxBNvXGuWeuHEPNpnX2QOrjfoTwPh4ghUDGskbQ= Subject key identifier: D4:1E:39:73:4B:6B:58:A6:01:4C:0E:CB:F2:93:80:2F:FA:DC:E3:93 Authority key identifier: BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C Certificate issuer: /CN=A916A0AA/serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Certificate serial: 0C1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft Manifest number: 0C14 Signing time: Sat 14 Jun 2025 18:31:48 +0000 Manifest this update: Sat 14 Jun 2025 18:31:48 +0000 Manifest next update: Sat 21 Jun 2025 18:31:48 +0000 Files and hashes: 1: u3QQVrccdV0D-5zyFKQSTKTzdgw.crl (hash: LmwDQ/PIngtCEh8F45u8IcQ0irKE0dPoGRhS137zzfA=) 2: 5AD6AAFE0F1111EA932F3E45C4F9AE02.roa (hash: fVpTiz95zT96q52Sv8C+QJmIZKHHi2b0N2xlEcRtgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3101 (0xc1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AA, serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Validity Not Before: Jun 14 18:31:48 2025 GMT Not After : Jun 21 18:31:48 2025 GMT Subject: CN=684dc014-94e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3c:32:e1:47:ad:f8:cb:b0:72:6e:e7:71:0a: db:bd:ee:20:62:94:7a:1f:d6:2b:a5:31:c5:ca:50: 5f:47:19:18:77:66:2a:e3:09:0a:2d:a6:0e:69:75: df:4f:31:7a:e7:01:4e:60:72:e4:4f:33:e3:cc:09: f1:4b:fc:53:10:30:a8:72:ba:85:66:1d:d6:cf:2c: 4a:70:f7:0a:29:83:09:68:1e:c3:6f:e3:3f:b9:33: c9:ff:e1:9b:45:0f:1b:6d:23:0b:d8:c8:4c:10:c0: 4f:a4:8a:d1:fb:f4:63:ec:33:26:f3:be:6a:74:15: 9e:85:97:d6:ce:57:47:05:4b:b8:69:ca:6a:d5:b8: e2:2c:6e:99:ee:91:a5:89:f4:73:6d:4c:e5:7f:ce: 01:fc:d3:e1:ee:bd:d5:23:f4:b3:3d:26:41:72:b4: 6d:c1:81:77:10:e8:c4:30:40:19:f9:01:e7:1f:d7: da:ec:d2:dd:94:62:78:92:f6:0f:38:4c:51:1f:1e: 16:43:60:0b:a5:86:95:bf:5b:99:5c:dc:11:ec:d6: 7f:23:4d:02:ed:3e:65:6e:ba:2e:2c:9c:ac:27:ef: 94:4e:c6:37:28:82:74:70:d6:1c:0d:4b:5f:95:06: 32:9a:46:bc:7b:21:96:a6:d9:92:0f:d2:dc:c3:c6: 02:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1E:39:73:4B:6B:58:A6:01:4C:0E:CB:F2:93:80:2F:FA:DC:E3:93 X509v3 Authority Key Identifier: keyid:BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:e1:c2:40:61:aa:0a:d0:9e:c5:ff:be:77:80:b8:5f:f3:ef: be:9b:e5:8c:a7:a5:a5:70:41:e7:41:a9:e1:ea:4c:f8:03:3b: 17:1b:86:71:94:b9:f1:b4:1b:94:e0:65:96:bc:60:cc:46:ed: eb:5e:11:0a:fe:80:96:4d:26:3e:5d:cc:19:88:f6:3a:25:9c: 92:36:78:00:ec:44:aa:3b:b1:8b:9c:cc:47:df:83:7b:6b:c8: 77:3c:eb:9f:34:df:b3:d5:e9:8e:36:78:5c:df:f5:20:9e:f7: a4:28:77:91:22:12:8c:80:56:40:9f:42:41:d9:34:41:18:1a: 80:de:eb:2d:3b:05:a2:3f:01:2a:bd:a1:cd:b5:8f:d1:35:8f: 38:62:c9:a1:83:0a:46:35:a9:3a:a9:5c:1d:b8:d0:04:c7:3c: 7d:ae:df:86:a8:90:dc:98:bf:1d:08:54:d1:3d:d7:0a:6e:84: 08:47:c1:6c:d1:d9:99:49:05:85:d1:4e:6f:63:2b:77:c0:55: 01:70:d1:2a:4a:bf:b6:39:08:a0:0f:c7:6c:41:c1:92:95:a9: ba:19:7d:fe:61:46:b9:fb:a8:2d:f6:b8:6c:70:cf:ea:34:dd: f7:14:e2:9b:ff:77:76:6f:2c:6a:4a:cd:09:b6:4c:4d:9b:13: 2c:cb:e7:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUExMTAvBgNVBAUTKEJCNzQxMDU2QjcxQzc1NUQwM0ZCOUNGMjE0QTQxMjRD QTRGMzc2MEMwHhcNMjUwNjE0MTgzMTQ4WhcNMjUwNjIxMTgzMTQ4WjAYMRYwFAYD VQQDEw02ODRkYzAxNC05NGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dwy4Uet+Muwcm7ncQrbve4gYpR6H9YrpTHFylBfRxkYd2Yq4wkKLaYOaXXf TzF65wFOYHLkTzPjzAnxS/xTEDCocrqFZh3WzyxKcPcKKYMJaB7Db+M/uTPJ/+Gb RQ8bbSML2MhMEMBPpIrR+/Rj7DMm875qdBWehZfWzldHBUu4acpq1bjiLG6Z7pGl ifRzbUzlf84B/NPh7r3VI/SzPSZBcrRtwYF3EOjEMEAZ+QHnH9fa7NLdlGJ4kvYP OExRHx4WQ2ALpYaVv1uZXNwR7NZ/I00C7T5lbrouLJysJ++UTsY3KIJ0cNYcDUtf lQYymka8eyGWptmSD9Lcw8YC1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQeOXNL a1imAUwOy/KTgC/63OOTMB8GA1UdIwQYMBaAFLt0EFa3HHVdA/uc8hSkEkyk83YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBQS82QTRGRkM3QTBG MTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RWMEQtNXp5RktRU1RLVHpk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzUVFWcmNjZFYwRC01enlGS1FTVEtUemRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBQS82QTRGRkM3QTBGMTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RW MEQtNXp5RktRU1RLVHpkZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg4cJAYaoK0J7F/753gLhf8+++m+WMp6WlcEHnQanh6kz4AzsXG4Zx lLnxtBuU4GWWvGDMRu3rXhEK/oCWTSY+XcwZiPY6JZySNngA7ESqO7GLnMxH34N7 a8h3POufNN+z1emONnhc3/UgnvekKHeRIhKMgFZAn0JB2TRBGBqA3ustOwWiPwEq vaHNtY/RNY84YsmhgwpGNak6qVwduNAExzx9rt+GqJDcmL8dCFTRPdcKboQIR8Fs 0dmZSQWF0U5vYyt3wFUBcNEqSr+2OQigD8dsQcGSlam6GX3+YUa5+6gt9rhscM/q NN33FOKb/3d2byxqSs0JtkxNmxMsy+d1 -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:36 2025 by rpki-client