$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: nrXgpRqcsOkKtdnkSC4+wQgYnAaMnR3sL5t0LKdjfG4= Subject key identifier: 8C:40:89:82:79:73:D8:D5:E7:B1:CB:F1:BE:9A:9E:DD:F9:3A:FE:13 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 34EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34C9 Signing time: Wed 18 Jun 2025 14:26:18 +0000 Manifest this update: Wed 18 Jun 2025 14:26:18 +0000 Manifest next update: Wed 25 Jun 2025 14:26:18 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: gEOFZScLp8xy/TVeyae+/TuFU50TyISQSmNYieFXgPE=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: /HE0+/UKz944jtczmVdL8xtwz3w/VhqI3+iHS/siDT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13551 (0x34ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Jun 18 14:26:18 2025 GMT Not After : Jun 25 14:26:18 2025 GMT Subject: CN=6852cc8a-529d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:cf:72:25:0b:03:31:ed:54:dd:63:8c:13:36: 54:23:b3:6b:7f:b4:41:f3:f7:dc:4e:f2:32:2b:90: 2d:49:24:ee:98:6c:a1:db:57:20:e4:15:e8:0a:68: c3:9a:2b:5c:11:7e:d6:01:d5:c2:97:85:1e:a7:49: 2d:50:3c:6f:5b:14:09:87:b7:29:73:48:91:33:66: bf:2e:7f:ec:ab:9d:19:79:ad:87:58:ed:e0:b0:e0: df:06:00:f1:d8:54:40:a4:32:07:94:60:3e:52:fd: 52:f2:2a:ac:80:dc:9e:54:e8:cc:fc:55:f9:5e:3b: 87:cd:07:8e:5e:0e:2c:05:c4:8d:50:2d:a4:0a:ba: d7:3a:80:f0:48:aa:73:8a:b9:ea:16:90:2d:73:c7: b4:84:7a:e9:b9:e0:8e:27:43:bc:12:04:09:55:51: 7e:d4:ab:44:70:b9:b8:5d:98:34:bb:f6:30:f5:27: 1c:32:f9:56:2f:a7:27:ee:25:77:6c:dc:92:df:f9: e4:8d:5b:28:f9:72:b7:8c:3b:c4:2b:70:7a:5b:99: fa:20:73:19:07:26:04:02:3a:11:27:9d:ee:23:26: 56:18:c8:fa:be:b1:29:08:63:85:ae:8c:34:5a:dd: b7:b2:1c:91:13:1f:d5:eb:58:aa:dd:df:66:5e:52: 04:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:40:89:82:79:73:D8:D5:E7:B1:CB:F1:BE:9A:9E:DD:F9:3A:FE:13 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:6f:c2:be:6b:34:d1:d0:36:1c:6f:5b:6a:9c:dc:56:d5:1b: 02:a8:b5:76:62:7f:8c:bc:7f:9b:bb:ff:d1:ed:55:6f:2d:60: 73:42:b9:ac:1f:36:42:04:75:aa:bf:c7:be:8d:eb:47:2e:a5: ab:f5:73:ee:c2:02:0a:2b:31:ae:8d:ba:fd:7a:34:a1:d1:55: d0:dc:c3:92:99:55:82:8d:5c:f8:05:2f:47:43:94:fb:02:35: 52:f4:43:68:22:6b:05:d8:1d:0b:ff:e5:f0:b0:86:8f:99:1f: 38:66:05:27:82:88:ac:f1:19:fe:a2:fa:0b:44:f1:77:8d:56: db:e1:65:f3:b2:4c:44:c4:4a:f9:57:62:0d:11:fc:e8:fe:b9: 86:1e:5a:01:63:97:52:d8:0b:c9:06:59:45:49:cf:71:ff:86: c7:44:1d:ba:49:c9:8c:79:ce:95:e9:0c:9f:65:69:f4:5c:88: f2:d4:cf:d8:09:12:a7:6e:28:da:6c:5d:27:e8:aa:12:4a:25: d8:27:00:d9:f5:c6:e1:e9:8a:af:c7:e4:dc:bf:a3:80:a7:72: 5f:67:7b:7c:ca:6b:52:7a:4f:46:95:4e:6a:cc:60:02:e3:6d: 35:bc:56:7e:c6:0a:5a:24:df:e1:54:5b:29:a9:46:89:70:42: 88:0b:32:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwNjE4MTQyNjE4WhcNMjUwNjI1MTQyNjE4WjAYMRYwFAYD VQQDEw02ODUyY2M4YS01MjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8c9yJQsDMe1U3WOMEzZUI7Nrf7RB8/fcTvIyK5AtSSTumGyh21cg5BXoCmjD mitcEX7WAdXCl4Uep0ktUDxvWxQJh7cpc0iRM2a/Ln/sq50Zea2HWO3gsODfBgDx 2FRApDIHlGA+Uv1S8iqsgNyeVOjM/FX5XjuHzQeOXg4sBcSNUC2kCrrXOoDwSKpz irnqFpAtc8e0hHrpueCOJ0O8EgQJVVF+1KtEcLm4XZg0u/Yw9SccMvlWL6cn7iV3 bNyS3/nkjVso+XK3jDvEK3B6W5n6IHMZByYEAjoRJ53uIyZWGMj6vrEpCGOFrow0 Wt23shyREx/V61iq3d9mXlIEkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxAiYJ5 c9jV57HL8b6ant35Ov4TMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQb8K+azTR0DYcb1tqnNxW1RsCqLV2Yn+MvH+bu//R7VVvLWBzQrms HzZCBHWqv8e+jetHLqWr9XPuwgIKKzGujbr9ejSh0VXQ3MOSmVWCjVz4BS9HQ5T7 AjVS9ENoImsF2B0L/+XwsIaPmR84ZgUngois8Rn+ovoLRPF3jVbb4WXzskxExEr5 V2INEfzo/rmGHloBY5dS2AvJBllFSc9x/4bHRB26ScmMec6V6QyfZWn0XIjy1M/Y CRKnbijabF0n6KoSSiXYJwDZ9cbh6Yqvx+Tcv6OAp3JfZ3t8ymtSek9GlU5qzGAC 4201vFZ+xgpaJN/hVFspqUaJcEKICzK3 -----END CERTIFICATE-----Generated at Thu Jun 19 11:01:14 2025 by rpki-client