$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: +EZG+w3vonRLJyPKBKK4fhaPIJb0U74jj5eM87/bBuU= Subject key identifier: 93:B7:4C:23:AC:3A:59:37:3B:F0:B6:92:63:E3:24:0F:03:3C:17:3F Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 049E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 0488 Signing time: Wed 18 Jun 2025 23:54:35 +0000 Manifest this update: Wed 18 Jun 2025 23:54:34 +0000 Manifest next update: Wed 25 Jun 2025 23:54:34 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: wrsi3INv09swlUvN0fysZpNLNgf+19vAZ/SdDeV2cwI=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 01FpccdP/MsW2CvA7hmJMpiDNjJ1dNkKkLEpim6H7/0=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: qr8b4jL6pkulS0zDMbButEnYyv8gZUas09Wk3ymII28=) 4: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: TI6U5DDyMx2oNjPAY1onItBRjW+RoIBeg5nOMGrAMag=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: hL3IFyg9Xwqq4SM4WYiBZDcso6a27q9sQZQ/dFLeUNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Jun 18 23:54:34 2025 GMT Not After : Jun 25 23:54:34 2025 GMT Subject: CN=685351ba-eb0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:69:0c:af:c8:a6:88:a7:be:5b:1e:85:d2:84: 6e:2f:55:bb:6b:f3:41:19:90:d9:a6:72:65:cb:d3: 21:b7:b9:ff:77:3d:0e:0f:c1:8c:39:79:99:ee:f4: 2f:d0:1d:01:40:7a:a9:f7:f2:34:aa:5e:ea:75:f1: 7a:16:76:2a:42:b5:f9:65:45:b4:eb:4b:4a:12:ad: 41:d3:84:29:03:ee:fb:2b:6f:5e:55:fb:81:42:9b: 1e:72:9f:1a:3f:70:8a:e1:ea:09:e0:ae:cb:ab:eb: fa:eb:df:7f:6d:46:45:da:ee:fe:57:90:7a:7a:17: 7c:e2:9f:80:84:24:1a:34:b8:de:8b:d9:85:16:2d: 7a:75:20:e2:2b:12:e6:2f:32:f0:ab:0f:76:9e:5a: e3:98:48:8a:d6:b8:c2:96:69:1a:1b:f2:a5:2d:1d: da:41:12:e0:57:9a:02:d5:2f:1c:ff:4d:da:09:22: d7:f0:03:99:bb:cf:b7:60:eb:2d:b3:cf:00:27:e6: 0f:4f:62:fc:a8:5d:0b:e6:64:3b:71:0b:e3:33:6b: 56:26:a4:32:fa:8b:f9:34:3f:cc:a4:6f:e0:7e:91: 26:f7:69:e5:92:37:98:fd:77:b4:02:36:e9:d2:6b: db:36:92:36:7f:1e:62:d4:3f:63:3f:e5:9c:51:04: 8e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B7:4C:23:AC:3A:59:37:3B:F0:B6:92:63:E3:24:0F:03:3C:17:3F X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:c8:84:49:bc:c0:94:c2:74:f8:25:65:de:95:66:50:a2:88: b7:4a:2c:03:30:13:53:58:56:82:fb:83:44:bb:0b:8c:a9:14: 97:ac:af:57:ac:a5:a1:cc:61:b7:e6:02:70:47:10:0e:61:9d: 39:45:30:b1:37:bb:c9:33:17:38:62:4c:8e:d2:b3:cb:8c:08: fc:46:e3:36:e9:b6:bb:e7:5d:b8:7b:db:36:83:bc:91:27:bc: e7:bb:a9:07:51:15:88:10:30:51:c3:78:2a:8c:c9:fb:e3:84: bd:c0:cc:25:f2:a4:e9:fa:dc:5c:ef:4d:ce:b1:28:6b:79:55: 8c:18:11:68:6f:b5:80:c2:0e:f2:13:7e:65:c7:7f:d4:dd:13: 34:9b:99:36:c6:c5:19:a8:85:e9:35:a2:c3:4c:69:44:95:73: 5c:9c:38:99:d4:e6:92:03:8a:e7:a1:f0:50:d4:0c:4f:24:aa: 9c:95:5b:92:13:ff:19:4e:5c:82:52:35:c9:53:9a:67:4a:66: 96:ba:f9:5c:cc:94:49:12:d0:c4:60:55:50:04:e6:22:d1:cf: ca:15:99:d4:f6:6c:91:19:5e:85:c1:01:5b:ee:7c:76:68:fa: 39:a9:63:87:83:56:e1:92:94:5a:06:cf:7f:cb:84:26:72:99: b5:bb:6a:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUwNjE4MjM1NDM0WhcNMjUwNjI1MjM1NDM0WjAYMRYwFAYD VQQDEw02ODUzNTFiYS1lYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWkMr8imiKe+Wx6F0oRuL1W7a/NBGZDZpnJly9Mht7n/dz0OD8GMOXmZ7vQv 0B0BQHqp9/I0ql7qdfF6FnYqQrX5ZUW060tKEq1B04QpA+77K29eVfuBQpsecp8a P3CK4eoJ4K7Lq+v6699/bUZF2u7+V5B6ehd84p+AhCQaNLjei9mFFi16dSDiKxLm LzLwqw92nlrjmEiK1rjClmkaG/KlLR3aQRLgV5oC1S8c/03aCSLX8AOZu8+3YOst s88AJ+YPT2L8qF0L5mQ7cQvjM2tWJqQy+ov5ND/MpG/gfpEm92nlkjeY/Xe0Ajbp 0mvbNpI2fx5i1D9jP+WcUQSOnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJO3TCOs Olk3O/C2kmPjJA8DPBc/MB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMyIRJvMCUwnT4JWXelWZQooi3SiwDMBNTWFaC+4NEuwuMqRSXrK9X rKWhzGG35gJwRxAOYZ05RTCxN7vJMxc4YkyO0rPLjAj8RuM26ba75124e9s2g7yR J7znu6kHURWIEDBRw3gqjMn744S9wMwl8qTp+txc703OsShreVWMGBFob7WAwg7y E35lx3/U3RM0m5k2xsUZqIXpNaLDTGlElXNcnDiZ1OaSA4rnofBQ1AxPJKqclVuS E/8ZTlyCUjXJU5pnSmaWuvlczJRJEtDEYFVQBOYi0c/KFZnU9myRGV6FwQFb7nx2 aPo5qWOHg1bhkpRaBs9/y4Qmcpm1u2rD -----END CERTIFICATE-----Generated at Thu Jun 19 02:59:42 2025 by rpki-client