$ rpki-client -vvf rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft File: k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft (raw, json) Hash identifier: at9HGFhk5VmbTaE5g/eWBiVrPPqsWd/RYzoa9wxwxOM= Subject key identifier: ED:08:A5:E4:62:25:DF:CF:FC:58:81:BA:29:20:06:EA:6F:01:08:1B Authority key identifier: 93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 Certificate issuer: /CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Certificate serial: 053F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft Manifest number: 053B Signing time: Mon 16 Jun 2025 23:06:34 +0000 Manifest this update: Mon 16 Jun 2025 23:06:34 +0000 Manifest next update: Mon 23 Jun 2025 23:06:34 +0000 Files and hashes: 1: k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl (hash: YyA8fNiM6WIaTKe7LmzK5RJuw03proE+gexdYw2jgMA=) 2: CE00DA34FF4411EBAD3A632AC4F9AE02.roa (hash: gsNxtD+HCrA+T6b9YqONqQ4jv3lalAETh9MJihh24Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1343 (0x53f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917584F, serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Validity Not Before: Jun 16 23:06:34 2025 GMT Not After : Jun 23 23:06:34 2025 GMT Subject: CN=6850a37a-e5d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:58:59:b3:5d:54:b5:5c:e9:ac:62:67:b7:e9: d3:89:d8:0e:4c:b9:f7:96:aa:75:0e:53:50:43:de: be:45:d3:9a:e9:e5:5c:0c:0b:35:00:bf:cb:98:c9: a2:0d:38:0d:05:ac:10:87:b8:23:e2:aa:d4:a6:6a: 7f:8d:8c:82:3e:8b:de:5d:fd:05:00:46:91:94:52: e1:f3:3d:e4:e9:67:6c:f1:7f:68:61:ec:ab:5b:85: b0:4a:ed:6c:ad:cd:96:47:b0:b2:62:09:26:f1:f0: 0f:3a:92:87:13:7d:e4:70:69:0f:b6:ce:99:ec:b1: 3f:1e:e7:5e:64:37:6a:7f:f5:17:2b:33:73:c7:f2: a8:50:11:7b:55:c8:38:ca:be:5e:87:a0:13:90:59: f5:09:6c:85:1a:33:0d:c4:85:c8:11:74:fd:87:2b: e7:5e:b1:ad:4a:e3:92:2c:be:a8:17:7f:e8:b5:b0: 77:e4:68:e2:a4:33:5b:0a:62:23:d0:cb:db:be:5b: 64:b1:be:5d:70:e9:c8:db:ba:3d:a1:e1:9e:e5:65: 7d:77:96:ff:e8:ed:c6:d4:1e:0d:e5:aa:b1:20:30: d1:27:af:8b:53:ad:95:de:6e:b1:c5:62:82:2f:c1: 70:ee:c1:51:db:2c:eb:70:1a:1b:c8:f1:00:3c:a1: cb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:08:A5:E4:62:25:DF:CF:FC:58:81:BA:29:20:06:EA:6F:01:08:1B X509v3 Authority Key Identifier: keyid:93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:b0:28:b3:dc:42:3e:4f:70:a2:b0:7a:34:f3:bf:eb:6e:cb: f9:d6:bd:ab:f9:25:6e:6b:ca:55:c5:10:5c:05:0e:1b:a5:c0: 75:6d:60:aa:b1:6a:bc:7b:78:4f:4c:8f:80:ab:c2:3c:e6:7f: b6:18:22:1b:eb:9f:b0:8a:43:a2:95:a2:00:f0:1c:ef:07:36: b1:e7:55:86:7d:b5:10:a4:d8:12:85:5a:0c:d1:63:cf:7f:01: 06:03:53:94:44:ca:cf:24:b4:10:39:82:de:62:f9:6b:4e:29: b2:ff:e4:51:88:f2:34:d5:52:6b:74:22:bb:82:c6:35:e1:d9: 87:00:34:f2:0f:01:0c:33:09:41:e3:1d:be:88:82:e6:4a:b3: 38:37:cc:6d:7e:cd:eb:9d:fb:0f:3d:42:57:0e:39:c0:fd:39: ee:3e:5d:4e:6c:c1:73:09:fc:83:7b:17:ca:d5:11:46:be:9c: d6:8a:87:47:bd:29:ad:8e:7a:58:07:61:80:bc:ba:85:2f:3f: a9:48:a3:fe:ae:37:17:0b:4b:7a:c0:df:9e:80:2b:3f:8a:cc: 3b:ea:5c:32:4f:8b:bc:f0:55:df:c9:b0:c0:a7:50:60:be:1f: c6:aa:2a:6b:78:4e:24:28:a3:13:47:9e:d4:38:49:e0:7c:51: 6f:fe:ab:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NEYxMTAvBgNVBAUTKDkzNEFERkI5NEEzOUEwQzM3Qjc3Rjk3OTAzNzA2QjYx RjBCRUZFRTcwHhcNMjUwNjE2MjMwNjM0WhcNMjUwNjIzMjMwNjM0WjAYMRYwFAYD VQQDEw02ODUwYTM3YS1lNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FhZs11UtVzprGJnt+nTidgOTLn3lqp1DlNQQ96+RdOa6eVcDAs1AL/LmMmi DTgNBawQh7gj4qrUpmp/jYyCPoveXf0FAEaRlFLh8z3k6Wds8X9oYeyrW4WwSu1s rc2WR7CyYgkm8fAPOpKHE33kcGkPts6Z7LE/HudeZDdqf/UXKzNzx/KoUBF7Vcg4 yr5eh6ATkFn1CWyFGjMNxIXIEXT9hyvnXrGtSuOSLL6oF3/otbB35GjipDNbCmIj 0Mvbvltksb5dcOnI27o9oeGe5WV9d5b/6O3G1B4N5aqxIDDRJ6+LU62V3m6xxWKC L8Fw7sFR2yzrcBobyPEAPKHL8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0IpeRi Jd/P/FiBuikgBupvAQgbMB8GA1UdIwQYMBaAFJNK37lKOaDDe3f5eQNwa2Hwvv7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg0Ri9ERDcyQ0U1OEY5 QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9NTjdkX2w1QTNCcllmQy1f dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swcmZ1VW81b01ON2RfbDVBM0JyWWZDLV91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTg0Ri9ERDcyQ0U1OEY5QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9N TjdkX2w1QTNCcllmQy1fdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlsCiz3EI+T3CisHo087/rbsv51r2r+SVua8pVxRBcBQ4bpcB1bWCq sWq8e3hPTI+Aq8I85n+2GCIb65+wikOilaIA8BzvBzax51WGfbUQpNgShVoM0WPP fwEGA1OURMrPJLQQOYLeYvlrTimy/+RRiPI01VJrdCK7gsY14dmHADTyDwEMMwlB 4x2+iILmSrM4N8xtfs3rnfsPPUJXDjnA/TnuPl1ObMFzCfyDexfK1RFGvpzWiodH vSmtjnpYB2GAvLqFLz+pSKP+rjcXC0t6wN+egCs/isw76lwyT4u88FXfybDAp1Bg vh/GqipreE4kKKMTR57UOEngfFFv/quU -----END CERTIFICATE-----Generated at Tue Jun 17 07:55:28 2025 by rpki-client