$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft File: cLDwRtLzp0OW6Cx56OPazyYLOe4.mft (raw, json) Hash identifier: b/bWpfbgw+FthRJpR2NNRlZmtUlYGS7bCEskHKqZK0M= Subject key identifier: 89:3C:AC:02:08:72:8C:3F:C9:E1:2A:48:28:BB:64:58:01:1E:B7:A8 Authority key identifier: 70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE Certificate issuer: /CN=A916B6AA/serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Certificate serial: 24A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft Manifest number: 2464 Signing time: Sat 14 Jun 2025 15:45:55 +0000 Manifest this update: Sat 14 Jun 2025 15:45:54 +0000 Manifest next update: Sat 21 Jun 2025 15:45:54 +0000 Files and hashes: 1: cLDwRtLzp0OW6Cx56OPazyYLOe4.crl (hash: VU0NtrTJHKvt0PCloYF6w62o8hKMPT9y6a+0HnNrJnw=) 2: 83684F548DF411E7A230506DC4F9AE02.roa (hash: 7rwSXJvv/HshNFddgboHnncSidkclYa/NvGMbxx8LFA=) 3: 1A8324E28DF311E7B616ED66C4F9AE02.roa (hash: nq0Uzk8SuEDu3ZbDp3B41hYz4SbibvM9axOdjGoUmDE=) 4: E080F3508DFC11E7A7F08785C4F9AE02.roa (hash: 4MVhPeL89L4iqif2jjx8A1Zl5rTPkTTCl8RIrLHaD+o=) 5: 19C92BC88DF311E7B616ED66C4F9AE02.roa (hash: aaC6AltbMVKLhQjXZ7dpspAxhJD3m7klJ08VK8NpfEI=) 6: B2ED9AEE913311E79B98C45BC4F9AE02.roa (hash: RYNGA3H5ydUqwQnOMshPikkHHM7bQr9sFSWMotIy4S0=) 7: 5C9B073691CD11E7AD932563C4F9AE02.roa (hash: +cU9ydF4cWSQqI/mYS8fYBUIoo4803uhA7oc0s3jgaU=) 8: 027532E6385F11EAA879692AC4F9AE02.roa (hash: CM6RIxM9JHHGhZC10urcCuophC6TNcTlTYu0C+8d5wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9383 (0x24a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Validity Not Before: Jun 14 15:45:54 2025 GMT Not After : Jun 21 15:45:54 2025 GMT Subject: CN=684d9932-9a94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:46:4f:1d:24:6f:4b:3c:b9:22:a7:aa:60:ea: 0c:48:60:0b:96:56:90:1d:6b:c5:aa:dc:9a:04:27: d4:18:85:04:91:ed:2d:7b:b8:25:b6:7d:1b:cc:60: 01:17:7a:c7:d9:a9:52:78:13:ad:74:6c:ba:a7:b7: 49:aa:66:fe:53:75:d7:78:5d:47:f5:32:0b:57:5d: 49:9a:04:60:34:fc:1c:b5:08:d5:d1:11:8d:03:b1: 4d:85:d6:aa:59:f8:60:d8:ef:cf:97:85:0e:f0:19: 12:c8:b1:da:df:51:f0:41:2e:99:76:d2:21:41:6a: 5a:6c:a6:7c:7f:23:3f:9b:e5:4d:61:a8:62:4b:01: 09:d0:50:39:fa:80:55:56:9f:c4:84:b5:8f:1a:49: 3e:ce:48:47:ef:d9:83:28:87:67:f0:ee:9f:ec:8a: f9:f5:fb:67:51:63:5d:bd:49:5d:24:10:fc:ac:0e: b8:97:12:7b:41:30:9b:7e:ff:76:fb:35:4e:63:72: a1:c6:e1:76:8f:0c:98:8f:b9:5f:b4:e8:fd:29:a5: b0:d8:36:83:5c:6a:48:74:2f:4b:52:cd:1d:3e:ba: 7e:e7:2e:65:58:a6:c9:83:e4:bc:92:16:d7:71:3a: a3:26:aa:24:bf:6a:c8:a8:c6:41:a8:4f:5a:83:e9: a8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3C:AC:02:08:72:8C:3F:C9:E1:2A:48:28:BB:64:58:01:1E:B7:A8 X509v3 Authority Key Identifier: keyid:70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:a0:a5:74:bf:2f:2f:4e:e6:72:72:f1:44:0b:10:68:0c:45: 0a:60:0e:ef:31:1b:18:c4:5b:ad:d8:e4:4d:bc:ff:7b:13:8b: 43:cf:ad:1d:95:6e:ad:ac:98:8b:a8:97:35:8c:26:f0:0c:bb: ad:4e:8d:18:b0:fe:89:66:6d:bf:80:98:a3:fc:8c:35:a6:83: b5:5f:11:30:5f:64:f5:f4:0d:de:73:22:c9:e0:ee:29:1a:15: ec:8f:2e:c0:09:38:29:5f:29:57:c9:84:d7:19:c8:7f:09:7b: 98:92:e3:cc:4a:6d:ac:57:ca:da:1f:5d:0c:1e:f4:36:34:1e: 0a:b2:0f:ef:59:b6:e0:54:8a:44:28:fb:fe:80:8f:0a:a9:a6: 47:06:d5:01:2b:48:eb:52:d7:59:4f:97:5e:7e:25:d5:95:ec: 8b:35:a9:3b:53:ab:63:29:6e:4f:4b:63:c2:6e:1c:ec:15:13: 3a:0a:f5:84:86:cb:4c:50:69:94:25:73:a2:76:80:72:49:55: 4d:5b:27:07:bc:df:2a:36:4d:de:be:a8:26:cf:c7:a7:f4:16: 14:eb:56:30:b7:35:ec:b4:3f:f5:67:25:ad:0d:87:90:3d:ef: 74:7b:2c:3a:74:bb:46:82:57:56:3f:b3:0a:89:c0:3e:b3:90: 61:e6:d7:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKDcwQjBGMDQ2RDJGM0E3NDM5NkU4MkM3OUU4RTNEQUNG MjYwQjM5RUUwHhcNMjUwNjE0MTU0NTU0WhcNMjUwNjIxMTU0NTU0WjAYMRYwFAYD VQQDEw02ODRkOTkzMi05YTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0ZPHSRvSzy5IqeqYOoMSGALllaQHWvFqtyaBCfUGIUEke0te7gltn0bzGAB F3rH2alSeBOtdGy6p7dJqmb+U3XXeF1H9TILV11JmgRgNPwctQjV0RGNA7FNhdaq Wfhg2O/Pl4UO8BkSyLHa31HwQS6ZdtIhQWpabKZ8fyM/m+VNYahiSwEJ0FA5+oBV Vp/EhLWPGkk+zkhH79mDKIdn8O6f7Ir59ftnUWNdvUldJBD8rA64lxJ7QTCbfv92 +zVOY3KhxuF2jwyYj7lftOj9KaWw2DaDXGpIdC9LUs0dPrp+5y5lWKbJg+S8khbX cTqjJqokv2rIqMZBqE9ag+molQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIk8rAII cow/yeEqSCi7ZFgBHreoMB8GA1UdIwQYMBaAFHCw8EbS86dDlugseejj2s8mCznu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS80NkM3RjE3MjRG MTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAwT1c2Q3g1Nk9QYXp5WUxP ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMRHdSdEx6cDBPVzZDeDU2T1BhenlZTE9lNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS80NkM3RjE3MjRGMTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAw T1c2Q3g1Nk9QYXp5WUxPZTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGoKV0vy8vTuZycvFECxBoDEUKYA7vMRsYxFut2ORNvP97E4tDz60d lW6trJiLqJc1jCbwDLutTo0YsP6JZm2/gJij/Iw1poO1XxEwX2T19A3ecyLJ4O4p GhXsjy7ACTgpXylXyYTXGch/CXuYkuPMSm2sV8raH10MHvQ2NB4Ksg/vWbbgVIpE KPv+gI8KqaZHBtUBK0jrUtdZT5defiXVleyLNak7U6tjKW5PS2PCbhzsFRM6CvWE hstMUGmUJXOidoBySVVNWycHvN8qNk3evqgmz8en9BYU61YwtzXstD/1ZyWtDYeQ Pe90eyw6dLtGgldWP7MKicA+s5Bh5tee -----END CERTIFICATE-----Generated at Sun Jun 15 09:37:51 2025 by rpki-client