$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft File: 8kxEMhD3QcvlnQFOum7pcrXN2uc.mft (raw, json) Hash identifier: cWo4oEziJvIHYZQO/4FEu3NIcoCqLv2OjT9zX2C/5Oc= Subject key identifier: 65:5E:72:4B:AA:B5:58:88:29:4E:0D:D9:44:8C:D3:73:86:45:00:34 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft Manifest number: B5 Signing time: Sat 21 Jun 2025 05:01:21 +0000 Manifest this update: Sat 21 Jun 2025 05:01:21 +0000 Manifest next update: Sat 28 Jun 2025 05:01:21 +0000 Files and hashes: 1: 8kxEMhD3QcvlnQFOum7pcrXN2uc.crl (hash: 1tUMLASof9VGIRLTI1qyls029i+hYP7EE2RY8GMuPZc=) 2: 20A6C35C37AF11EF844EC638C4F9AE02.roa (hash: SBjUcQwgq8eYibunzuM6B0MYbh92vDqaJjZbumGPIz4=) 3: 2117AE6E37AF11EF844EC638C4F9AE02.roa (hash: rxylyIaFWofGp8fi7f1ysoxvtfFGdtzKVIc05XTsdvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Jun 21 05:01:21 2025 GMT Not After : Jun 28 05:01:21 2025 GMT Subject: CN=68563ca1-b67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:21:d4:65:20:b8:da:d2:46:13:b0:9d:f3:e5: 11:b5:0f:07:c8:d8:d6:a2:d0:07:eb:25:13:11:05: de:d5:5d:eb:b5:73:62:af:70:b1:32:43:6d:e0:72: 18:7c:15:0c:8e:c9:2c:8c:ca:97:f0:fb:02:78:cd: 51:77:bc:2d:f2:ea:50:f8:cf:74:9c:89:5b:64:dc: dc:20:ec:78:26:25:44:90:5e:38:9a:38:7e:7c:4b: 9a:ce:f5:34:ab:9d:7a:0a:28:7f:08:c0:95:c5:48: b1:3b:41:b1:a8:fe:1c:3b:e7:17:f1:ea:19:cb:3a: 88:ba:7f:8a:65:6c:36:66:6a:a8:8d:94:24:b2:26: 00:b8:1b:da:72:be:42:ef:8e:09:6e:a4:69:7d:0d: c2:7c:35:fa:2f:b6:94:82:5d:f4:c3:f4:70:6e:79: a6:b8:dc:c2:28:97:00:b8:f6:51:b0:27:8c:5a:01: 68:99:7b:36:8b:79:86:04:1e:6b:2b:dc:7d:28:9c: c8:34:ee:28:00:75:5f:b0:21:84:22:12:10:f3:c4: e3:5f:1e:1e:c4:9d:6a:3c:5a:ed:c1:10:8f:cc:3d: ac:f9:3f:7c:d2:c7:03:de:19:0c:b0:d7:26:e2:f4: c4:42:bd:b8:fd:52:20:4d:3d:4d:61:4c:b7:c6:c6: 92:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:5E:72:4B:AA:B5:58:88:29:4E:0D:D9:44:8C:D3:73:86:45:00:34 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:2b:80:e6:01:52:80:a9:0f:07:98:77:55:b8:0e:88:78:0e: 0c:2b:13:07:5a:89:01:e3:08:c9:60:7b:fe:be:70:0a:37:d9: 84:71:e5:ac:b6:21:4f:ab:a9:17:07:f1:1f:1c:96:86:3c:b1: b2:28:3f:c4:a0:06:ba:64:78:90:d5:90:d3:21:49:c8:4a:38: f5:1a:e2:ce:c4:86:2e:55:3e:39:f3:e6:3f:96:79:3a:5a:a3: 48:95:a9:98:4d:b5:ae:f0:38:31:60:0f:2d:b2:ff:b4:f3:cd: 09:b5:b5:da:ee:35:33:36:c7:f2:7c:88:c4:8b:a6:07:67:6b: d0:95:ef:72:4d:17:63:45:23:75:0b:f4:40:06:0c:9f:16:18: 9f:78:c3:2f:a6:d9:e6:f8:70:31:7c:ba:0b:00:73:d7:07:8e: d2:18:61:7d:8a:df:12:7b:5b:fd:a3:de:a4:aa:c4:0c:8e:1f: 78:7c:ea:b2:6a:6f:15:e2:5a:3f:d8:bd:92:6b:e2:79:e5:2f: 27:73:8e:4d:d3:c3:ad:65:f3:19:f7:f5:2c:19:24:40:95:3b: a3:d2:90:eb:89:f1:41:69:7d:55:3a:b9:dd:0b:45:6a:35:cb: bb:c7:4d:92:e0:3a:d0:cc:c4:a1:9a:9c:c0:4f:c4:17:6c:45: 76:35:1b:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjUwNjIxMDUwMTIxWhcNMjUwNjI4MDUwMTIxWjAYMRYwFAYD VQQDEw02ODU2M2NhMS1iNjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSHUZSC42tJGE7Cd8+URtQ8HyNjWotAH6yUTEQXe1V3rtXNir3CxMkNt4HIY fBUMjsksjMqX8PsCeM1Rd7wt8upQ+M90nIlbZNzcIOx4JiVEkF44mjh+fEuazvU0 q516Cih/CMCVxUixO0GxqP4cO+cX8eoZyzqIun+KZWw2ZmqojZQksiYAuBvacr5C 744JbqRpfQ3CfDX6L7aUgl30w/RwbnmmuNzCKJcAuPZRsCeMWgFomXs2i3mGBB5r K9x9KJzINO4oAHVfsCGEIhIQ88TjXx4exJ1qPFrtwRCPzD2s+T980scD3hkMsNcm 4vTEQr24/VIgTT1NYUy3xsaS7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVeckuq tViIKU4N2USM03OGRQA0MB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1Fj dmxuUUZPdW03cGNyWE4ydWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACK4DmAVKAqQ8HmHdVuA6IeA4MKxMHWokB4wjJYHv+vnAKN9mEceWs tiFPq6kXB/EfHJaGPLGyKD/EoAa6ZHiQ1ZDTIUnISjj1GuLOxIYuVT458+Y/lnk6 WqNIlamYTbWu8DgxYA8tsv+0880JtbXa7jUzNsfyfIjEi6YHZ2vQle9yTRdjRSN1 C/RABgyfFhifeMMvptnm+HAxfLoLAHPXB47SGGF9it8Se1v9o96kqsQMjh94fOqy am8V4lo/2L2Sa+J55S8nc45N08OtZfMZ9/UsGSRAlTuj0pDrifFBaX1VOrndC0Vq Ncu7x02S4DrQzMShmpzAT8QXbEV2NRt+ -----END CERTIFICATE-----Generated at Sat Jun 21 07:12:42 2025 by rpki-client