$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft File: h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft (raw, json) Hash identifier: jFtmcYO931u30dbuBPmrlY6ptCiXQpCtvqgkzQnYYxU= Subject key identifier: B3:7B:C5:8B:6C:DD:4F:8B:B6:27:CD:D1:5E:0F:FE:CE:1F:62:F7:2B Authority key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C Certificate issuer: /CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Certificate serial: 122A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft Manifest number: 121B Signing time: Fri 20 Jun 2025 17:09:34 +0000 Manifest this update: Fri 20 Jun 2025 17:09:33 +0000 Manifest next update: Fri 27 Jun 2025 17:09:33 +0000 Files and hashes: 1: h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl (hash: yRVmjvvb6snyGr/0d97IXquD/yuzQTqf0oCWd2547gY=) 2: 698B3FA6986011EE969A225FC4F9AE02.roa (hash: IPMaIsA9uRnd6F5Aml0jreWHK2WPPMV0a6PLoDBBAuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 17:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4650 (0x122a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Validity Not Before: Jun 20 17:09:33 2025 GMT Not After : Jun 27 17:09:33 2025 GMT Subject: CN=685595ce-605c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:57:14:69:77:b2:ef:9b:40:d1:d4:1c:b2:e5: 3f:c7:9e:83:cd:c2:d6:73:f7:d7:3e:1c:6a:68:7f: 97:4a:1d:d1:1a:e9:e7:f6:13:85:9b:4f:18:e2:49: 19:30:ce:53:05:70:13:06:7d:07:45:70:e3:c8:f8: 5b:5e:e3:e0:5e:36:cb:0d:22:fc:08:c6:2a:ab:35: 3f:e3:e3:1a:17:85:d5:2d:91:3c:ed:60:12:b1:47: c5:20:f2:11:a3:0a:db:06:02:f2:78:33:69:d4:db: 70:2f:89:7b:e8:28:61:c5:90:35:b9:ff:c8:6d:b8: 9b:9f:4c:7f:50:fc:72:9e:63:7d:90:39:d7:c3:a1: 33:65:d5:7d:8d:62:5b:79:c3:7c:e5:a3:2d:6d:47: 4e:93:fa:11:97:27:9b:01:37:f9:cc:39:a5:0d:d5: d6:57:a2:b1:b7:e8:1b:f5:74:0a:d1:7f:89:ef:d8: d1:73:03:bd:6e:41:77:bb:a5:65:c0:8f:a3:f7:29: cc:37:75:fb:16:5a:09:34:99:46:af:1c:7a:5b:23: c9:5c:bf:64:3a:3b:ac:8d:3b:4d:71:63:df:92:6e: ef:54:2f:1a:bc:8f:48:0d:78:46:fe:46:6f:4d:65: 26:23:83:b4:09:06:05:be:cb:c7:67:19:d2:85:3d: 05:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:7B:C5:8B:6C:DD:4F:8B:B6:27:CD:D1:5E:0F:FE:CE:1F:62:F7:2B X509v3 Authority Key Identifier: keyid:87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:22:e6:0a:6e:9f:05:a2:13:ca:08:dc:b4:1e:85:7f:82:e7: f1:4d:7e:f2:e4:89:5d:4e:e6:a4:08:57:dd:31:46:14:82:79: 67:d6:fb:0f:72:bf:ad:90:13:0a:60:5b:cd:9e:18:77:95:b8: 6b:96:14:a2:03:cd:10:5b:c5:96:34:72:0f:1d:60:3e:9b:03: 72:ef:fc:a0:44:df:fc:c6:2f:6b:03:85:11:23:2f:6d:8e:34: 14:ab:8a:f9:72:92:e6:ef:05:b9:dc:05:91:64:54:6b:9f:53: 8c:48:6f:d8:30:b8:0a:2e:a5:07:22:08:d2:ba:55:be:c0:e3: a9:fa:d4:55:d5:50:23:26:43:e9:a1:72:90:7b:31:ff:92:56: 04:94:f4:67:30:70:1b:6b:d4:92:3b:ba:97:59:97:ad:a4:21: 2c:eb:fc:23:00:a9:df:d6:5b:54:92:16:34:df:6b:fd:97:b0: e6:7f:97:79:7f:84:16:7f:96:55:34:81:87:6f:40:23:15:64: da:ad:dd:c7:d0:67:aa:3f:6f:8e:63:ce:3c:eb:7c:4f:3c:6c: a8:b0:05:f0:c7:2e:03:8a:0a:c4:05:4b:5e:e1:42:5c:cf:67: 69:da:5e:65:6d:1a:c2:ac:d8:88:f5:21:2e:76:ea:2e:2e:ef: 53:9b:8b:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDg3OTU0QzAyMzFDQUFDQjJCRTJERkRCNTY3Qzc0QUY1 RUNCNzVCMEMwHhcNMjUwNjIwMTcwOTMzWhcNMjUwNjI3MTcwOTMzWjAYMRYwFAYD VQQDEw02ODU1OTVjZS02MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVcUaXey75tA0dQcsuU/x56DzcLWc/fXPhxqaH+XSh3RGunn9hOFm08Y4kkZ MM5TBXATBn0HRXDjyPhbXuPgXjbLDSL8CMYqqzU/4+MaF4XVLZE87WASsUfFIPIR owrbBgLyeDNp1NtwL4l76ChhxZA1uf/Ibbibn0x/UPxynmN9kDnXw6EzZdV9jWJb ecN85aMtbUdOk/oRlyebATf5zDmlDdXWV6Kxt+gb9XQK0X+J79jRcwO9bkF3u6Vl wI+j9ynMN3X7FloJNJlGrxx6WyPJXL9kOjusjTtNcWPfkm7vVC8avI9IDXhG/kZv TWUmI4O0CQYFvsvHZxnShT0FLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLN7xYts 3U+LtifN0V4P/s4fYvcrMB8GA1UdIwQYMBaAFIeVTAIxyqyyvi39tWfHSvXst1sM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9FQ0UwRkJFNkUz NkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JMSy1MZjIxWjhkSzlleTNX d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2g1Vk1BakhLckxLLUxmMjFaOGRLOWV5M1d3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9FQ0UwRkJFNkUzNkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JM Sy1MZjIxWjhkSzlleTNXd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtIuYKbp8FohPKCNy0HoV/gufxTX7y5IldTuakCFfdMUYUgnln1vsP cr+tkBMKYFvNnhh3lbhrlhSiA80QW8WWNHIPHWA+mwNy7/ygRN/8xi9rA4URIy9t jjQUq4r5cpLm7wW53AWRZFRrn1OMSG/YMLgKLqUHIgjSulW+wOOp+tRV1VAjJkPp oXKQezH/klYElPRnMHAba9SSO7qXWZetpCEs6/wjAKnf1ltUkhY032v9l7Dmf5d5 f4QWf5ZVNIGHb0AjFWTard3H0GeqP2+OY84863xPPGyosAXwxy4DigrEBUte4UJc z2dp2l5lbRrCrNiI9SEuduouLu9Tm4uZ -----END CERTIFICATE-----Generated at Sat Jun 21 05:02:03 2025 by rpki-client