$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft File: P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft (raw, json) Hash identifier: SMB701V2t2M+Jw6p5ViT37sES5alta8JZrXHoecdOZM= Subject key identifier: AE:99:6F:A2:97:3A:4E:7C:C4:CB:DD:41:C4:CB:D2:59:C3:BE:E9:C6 Authority key identifier: 3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18 Certificate issuer: /CN=A917357E/serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18 Certificate serial: 044D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft Manifest number: 0657 Signing time: Thu 19 Jun 2025 00:07:06 +0000 Manifest this update: Thu 19 Jun 2025 00:07:05 +0000 Manifest next update: Thu 26 Jun 2025 00:07:05 +0000 Files and hashes: 1: P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl (hash: Z7qvbZHGCC7gtoYQezRt8se0x7Pw7Ee29BaE1ZrWfRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1101 (0x44d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18 Validity Not Before: Jun 19 00:07:05 2025 GMT Not After : Jun 26 00:07:05 2025 GMT Subject: CN=685354a9-7fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:11:1e:48:44:10:44:6d:78:d1:2e:f0:14:54: 87:3e:37:ce:a2:76:50:77:0a:b8:e0:f2:fc:e5:06: c8:d3:23:97:9b:e6:fe:11:c4:71:f0:47:d6:b4:a4: 0b:44:fd:e6:d5:9c:af:07:fc:1d:c2:56:37:16:66: d2:48:14:eb:d0:98:e0:54:43:2f:63:f7:d4:6b:80: 06:2f:04:86:96:8c:21:5b:2a:46:ec:39:db:6d:19: 58:30:9d:b4:a7:70:e8:18:d5:a4:28:47:01:e5:ee: 1a:1a:92:4c:54:81:d1:0b:7d:23:73:08:0c:45:c1: 59:ae:fa:44:d5:af:72:50:03:18:4b:d9:32:c3:f8: 27:04:d6:b7:d8:6c:a7:c9:a8:eb:53:2a:52:ae:8c: f1:e3:b7:8c:00:9e:11:f6:60:4d:c6:fc:c5:0d:34: 10:b9:e8:dd:c3:8a:e9:29:74:1b:6b:74:69:61:94: 8e:a1:84:7b:43:f6:e7:aa:82:bd:be:97:f6:e9:ef: d4:bb:4d:9a:f1:35:11:2c:67:e7:dc:bf:43:b9:47: 33:37:dd:a8:18:f9:43:d3:91:0f:20:cd:82:44:b7: d7:17:23:d5:a6:9f:03:5b:c2:4f:82:0b:d7:2c:67: b1:e4:63:2b:76:48:ef:c2:70:c6:90:e7:79:8d:2d: 0f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:99:6F:A2:97:3A:4E:7C:C4:CB:DD:41:C4:CB:D2:59:C3:BE:E9:C6 X509v3 Authority Key Identifier: keyid:3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:53:af:c4:97:d3:69:78:b1:1d:9c:e8:83:c4:d7:74:10:4e: ac:4f:07:0a:4b:44:74:d9:00:1a:c5:d8:08:42:64:55:a7:12: 01:1e:46:10:14:cb:3d:b5:ff:4d:57:fe:55:19:6f:82:45:eb: e9:c4:e3:5f:f2:64:de:43:74:d5:79:2c:83:ae:18:10:47:97: 75:65:7a:39:4c:58:49:0a:07:0f:34:0d:18:d5:69:11:63:b4: 0a:32:c6:87:e3:d2:cf:4b:5a:38:3b:6e:be:a3:df:35:b7:ef: 2c:3f:a4:91:42:dd:c7:e6:e4:0f:f9:9d:c8:57:e1:3b:79:da: 5b:15:94:50:34:23:c4:a4:9d:1c:62:d0:25:03:a6:ca:f6:aa: 5b:35:25:93:8a:68:eb:f4:b4:e2:86:8e:48:ed:29:7b:1a:e5: 0b:9c:b9:ea:50:28:4b:91:d2:de:d3:ff:12:f1:1c:9c:ac:1c: 94:2b:71:1f:b8:0b:a5:41:69:97:5f:d1:08:9d:04:50:26:3b: a3:96:09:de:2d:34:da:b6:25:9e:7e:be:b7:2d:27:c9:d9:d7: f7:a7:b7:a1:ec:18:5f:8e:42:12:af:c3:13:a4:77:62:d8:e1: 9f:3e:76:50:da:c6:ca:af:28:b0:0e:d4:97:1f:d3:8a:48:65: 32:7c:c1:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDNGQzE3MEU4REY1QURCRkExQjYzNzBCNzQ1MEYyOEZB RTBCMzVBMTgwHhcNMjUwNjE5MDAwNzA1WhcNMjUwNjI2MDAwNzA1WjAYMRYwFAYD VQQDEw02ODUzNTRhOS03ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhEeSEQQRG140S7wFFSHPjfOonZQdwq44PL85QbI0yOXm+b+EcRx8EfWtKQL RP3m1ZyvB/wdwlY3FmbSSBTr0JjgVEMvY/fUa4AGLwSGlowhWypG7DnbbRlYMJ20 p3DoGNWkKEcB5e4aGpJMVIHRC30jcwgMRcFZrvpE1a9yUAMYS9kyw/gnBNa32Gyn yajrUypSrozx47eMAJ4R9mBNxvzFDTQQuejdw4rpKXQba3RpYZSOoYR7Q/bnqoK9 vpf26e/Uu02a8TURLGfn3L9DuUczN92oGPlD05EPIM2CRLfXFyPVpp8DW8JPggvX LGex5GMrdkjvwnDGkOd5jS0PAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6Zb6KX Ok58xMvdQcTL0lnDvunGMB8GA1UdIwQYMBaAFD/BcOjfWtv6G2Nwt0UPKPrgs1oY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9QOEZ3Nk45YTJfb2JZM0MzUlE4by11Q3pX aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A4Rnc2TjlhMl9vYlkzQzNSUThvLXVDeldoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9QOEZ3Nk45YTJf b2JZM0MzUlE4by11Q3pXaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvU6/El9NpeLEdnOiDxNd0EE6sTwcKS0R02QAaxdgIQmRVpxIBHkYQ FMs9tf9NV/5VGW+CRevpxONf8mTeQ3TVeSyDrhgQR5d1ZXo5TFhJCgcPNA0Y1WkR Y7QKMsaH49LPS1o4O26+o981t+8sP6SRQt3H5uQP+Z3IV+E7edpbFZRQNCPEpJ0c YtAlA6bK9qpbNSWTimjr9LTiho5I7Sl7GuULnLnqUChLkdLe0/8S8RycrByUK3Ef uAulQWmXX9EInQRQJjujlgneLTTatiWefr63LSfJ2df3p7eh7BhfjkISr8MTpHdi 2OGfPnZQ2sbKryiwDtSXH9OKSGUyfMEz -----END CERTIFICATE-----Generated at Thu Jun 19 07:34:26 2025 by rpki-client