$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft File: MLwu5bdWT-D98gDnibI6LA2OkiQ.mft (raw, json) Hash identifier: zPWZAIF3SSHs8RfXuBbImGgloz3NiKUaC1VcoeBUn9Y= Subject key identifier: 43:C2:B3:E7:77:6E:03:DC:99:D0:EC:16:38:64:56:02:25:67:DD:7B Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0C61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft Manifest number: 0C5A Signing time: Mon 16 Jun 2025 18:17:43 +0000 Manifest this update: Mon 16 Jun 2025 18:17:42 +0000 Manifest next update: Mon 23 Jun 2025 18:17:42 +0000 Files and hashes: 1: MLwu5bdWT-D98gDnibI6LA2OkiQ.crl (hash: 50K9c2/IQFHHcYUOqfeKUPK+Bvdi2ZsQz11OXVk29hM=) 2: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (hash: LXTrgQN3T+0OVcDzvaM6T5a0p0NXB+0zRwSrfQRhFSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3169 (0xc61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7, serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: Jun 16 18:17:42 2025 GMT Not After : Jun 23 18:17:42 2025 GMT Subject: CN=68505fc6-761f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1f:b1:a1:fa:5c:b4:3d:7c:f3:01:c8:64:4c: 7d:e3:95:fa:82:92:8e:99:e2:2e:f5:01:11:78:9c: 64:aa:fe:af:55:40:63:96:c6:d1:91:4a:48:7b:a0: 9b:10:63:d4:26:4d:15:23:72:85:26:cc:91:f3:3e: a2:dc:e0:37:38:58:35:cc:51:52:6a:76:7e:88:a9: 59:e0:0d:71:6b:4b:42:6d:d5:a9:95:ec:c9:5d:ea: 3a:b1:9a:63:e7:af:65:0a:71:12:a1:e5:03:5a:0a: 5c:d8:a0:ad:dc:35:dc:9a:7e:0c:a7:98:3a:4d:ff: 7f:2c:9c:dc:be:7b:9c:91:30:6f:78:b0:ec:b7:42: 2e:4c:79:f7:a0:a1:d8:04:7c:be:9e:56:73:2f:1a: 62:29:16:dc:4e:ce:e6:72:96:fb:f7:97:72:11:59: 2d:a6:dc:9a:ad:2c:75:e2:52:1e:8a:d4:6f:9a:80: bc:2b:55:f1:c4:11:6c:2c:4c:00:74:2a:02:0a:e3: 83:55:06:fb:26:b0:d4:1e:9e:9e:fc:3c:b8:b1:7e: 12:a5:74:88:01:bc:ad:ce:88:62:f9:e5:31:44:fb: ba:89:cd:00:eb:a5:f3:60:3c:32:4b:82:a6:c9:74: 13:15:58:74:17:04:7f:da:73:53:30:4d:98:e8:7f: fb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C2:B3:E7:77:6E:03:DC:99:D0:EC:16:38:64:56:02:25:67:DD:7B X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:37:74:2c:02:24:f5:88:bb:93:01:0f:d7:51:b4:0a:95:69: 1f:ee:0a:67:43:13:be:6a:b7:51:6b:8b:7d:9b:fe:8c:47:d5: 78:f0:33:d4:9e:84:20:ad:8f:39:e6:63:fe:2d:6c:61:af:a2: 96:84:6d:64:91:73:80:73:0a:5d:52:c7:a5:36:2c:1d:7a:00: 01:1b:2f:bd:ab:3e:22:15:8b:a4:fd:0d:0b:7f:7a:fe:6f:ca: d9:c0:a7:d6:3d:73:39:c2:28:2c:00:46:14:21:7b:5c:80:1b: 03:41:6f:5c:3d:af:b3:a0:58:03:95:88:31:39:b2:ce:c1:59: e2:85:e9:b1:fd:d3:a4:3f:f1:6e:ea:50:88:79:c1:fc:eb:2c: 08:32:b3:7d:1f:67:6b:a3:4d:1e:b1:54:2d:12:02:90:b0:20: 70:68:38:15:87:58:0b:26:48:1d:00:03:dc:e0:d6:f5:71:87: f3:36:82:ae:5e:c4:fd:d2:c4:a0:50:8d:10:fe:83:40:ed:3d: 6e:9b:ca:07:76:3a:c7:14:63:80:56:05:9c:ea:1e:73:83:4a: ef:96:2b:94:0d:30:9e:9b:ba:f5:5e:61:5c:07:70:e3:31:df: 64:41:4c:cf:68:fc:e0:0c:c6:d8:32:d2:ac:d0:64:1a:55:b5: 7f:fe:f4:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjUwNjE2MTgxNzQyWhcNMjUwNjIzMTgxNzQyWjAYMRYwFAYD VQQDEw02ODUwNWZjNi03NjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4R+xofpctD188wHIZEx945X6gpKOmeIu9QEReJxkqv6vVUBjlsbRkUpIe6Cb EGPUJk0VI3KFJsyR8z6i3OA3OFg1zFFSanZ+iKlZ4A1xa0tCbdWplezJXeo6sZpj 569lCnESoeUDWgpc2KCt3DXcmn4Mp5g6Tf9/LJzcvnuckTBveLDst0IuTHn3oKHY BHy+nlZzLxpiKRbcTs7mcpb795dyEVktptyarSx14lIeitRvmoC8K1XxxBFsLEwA dCoCCuODVQb7JrDUHp6e/Dy4sX4SpXSIAbytzohi+eUxRPu6ic0A66XzYDwyS4Km yXQTFVh0FwR/2nNTME2Y6H/78wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPCs+d3 bgPcmdDsFjhkVgIlZ917MB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0FDNy9DMTM5REFCQTAyMkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1Qt RDk4Z0RuaWJJNkxBMk9raVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7N3QsAiT1iLuTAQ/XUbQKlWkf7gpnQxO+ardRa4t9m/6MR9V48DPU noQgrY855mP+LWxhr6KWhG1kkXOAcwpdUselNiwdegABGy+9qz4iFYuk/Q0Lf3r+ b8rZwKfWPXM5wigsAEYUIXtcgBsDQW9cPa+zoFgDlYgxObLOwVnihemx/dOkP/Fu 6lCIecH86ywIMrN9H2dro00esVQtEgKQsCBwaDgVh1gLJkgdAAPc4Nb1cYfzNoKu XsT90sSgUI0Q/oNA7T1um8oHdjrHFGOAVgWc6h5zg0rvliuUDTCem7r1XmFcB3Dj Md9kQUzPaPzgDMbYMtKs0GQaVbV//vTo -----END CERTIFICATE-----Generated at Mon Jun 16 20:15:55 2025 by rpki-client