$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: KVvHbMHH6q6B3AbA/bc59lN0bs+1I4AIX6MgLnZgJ4s= Subject key identifier: 89:46:8F:CB:40:24:B8:9E:EE:A4:95:26:73:B0:21:6B:0A:B8:BC:10 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 0794 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 078F Signing time: Thu 12 Jun 2025 21:03:55 +0000 Manifest this update: Thu 12 Jun 2025 21:03:54 +0000 Manifest next update: Thu 19 Jun 2025 21:03:54 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: dU1uDGXLxKCQFHm2cQ0iuGfsD+JNWXgKnURBQqcFB04=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 0rr8K1LQ/thtLtkFZc4kC3SiEr3iL8XaKJgB3Bca1+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1940 (0x794) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Jun 12 21:03:54 2025 GMT Not After : Jun 19 21:03:54 2025 GMT Subject: CN=684b40ba-e7d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:dc:9c:64:4c:48:fd:60:47:4e:0a:e4:c4:c7: 62:b3:2c:4c:3e:c3:55:0d:91:10:96:29:15:10:68: bd:4b:10:89:f7:22:23:d4:1c:74:ed:10:68:21:14: b5:ee:e0:89:e0:05:ae:33:86:6b:f3:8d:37:09:72: e9:46:02:3c:25:ba:61:4f:95:d4:d7:e2:f3:36:e4: cb:58:fd:6a:ad:84:ee:ea:db:a3:e2:ac:37:3d:a6: 38:fb:7e:ca:03:33:cf:aa:b7:0d:a8:ba:10:9a:a7: 8b:72:c0:5f:3d:6f:c9:5c:df:3d:03:57:a9:3a:82: aa:9b:cb:4b:a3:da:de:88:39:e7:ca:7c:7a:5b:59: 39:5d:39:0f:c8:e1:72:a9:f9:a5:22:a1:3d:95:ec: ba:27:6b:8f:79:d6:86:12:df:41:10:6a:ef:81:7a: a3:50:c1:c4:c1:ff:93:b1:56:91:22:02:a7:24:d1: f3:7d:98:a1:74:ee:05:67:ee:21:80:9c:62:66:d3: 8e:f6:3a:48:40:31:5c:5d:82:8b:8b:6b:d7:4e:df: 79:8d:2c:49:83:2c:9d:2d:63:bb:21:23:bc:15:15: ec:a2:67:bc:13:ca:ad:8e:78:ba:69:84:70:bb:bf: 92:7e:ba:8b:ed:e4:8a:b7:08:c0:ba:4c:31:df:4c: 50:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:46:8F:CB:40:24:B8:9E:EE:A4:95:26:73:B0:21:6B:0A:B8:BC:10 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:cd:d1:3d:9a:16:9e:05:d3:d7:f9:47:c1:ea:bd:5f:79:07: 23:fd:2e:41:f5:61:05:02:89:af:cb:64:9d:b5:b6:17:2b:d2: 54:3d:0d:8a:ac:1c:d1:0e:56:bc:33:ad:a4:61:3e:3a:3c:45: 04:b6:52:5a:21:fc:cd:54:78:b5:ab:e7:6e:78:04:1f:50:d1: 6f:8b:20:aa:18:9f:a3:30:95:99:2f:29:a0:4e:81:fb:93:86: 62:d3:9b:28:8b:36:36:17:4f:3f:73:b3:f0:64:67:51:f7:56: 0f:e1:3f:d2:52:54:f2:7e:81:40:c7:79:39:61:e2:8c:6e:43: 37:cd:ed:06:9d:91:74:1c:87:9a:8d:60:77:73:f0:c6:4d:b3: bc:25:98:9e:08:5f:df:74:97:6d:af:19:a1:fb:8a:b9:16:06: 37:cb:af:b7:d3:38:30:9b:97:72:3d:66:4d:66:49:10:53:c8: 9d:e3:8d:5a:2c:e9:6a:bf:f0:bf:3c:bc:5b:19:5d:d8:f3:b6: 3e:e2:96:a6:bd:1a:07:71:d0:1a:6d:e1:7a:bd:ea:d6:be:02: b1:96:86:98:51:0c:a8:64:12:b6:cb:ec:37:80:3d:c3:0d:11: 2e:0b:61:32:4d:4d:2a:7d:3a:01:d1:21:ff:a4:92:0b:ce:99: 6f:f9:1c:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjUwNjEyMjEwMzU0WhcNMjUwNjE5MjEwMzU0WjAYMRYwFAYD VQQDEw02ODRiNDBiYS1lN2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlNycZExI/WBHTgrkxMdisyxMPsNVDZEQlikVEGi9SxCJ9yIj1Bx07RBoIRS1 7uCJ4AWuM4Zr8403CXLpRgI8JbphT5XU1+LzNuTLWP1qrYTu6tuj4qw3PaY4+37K AzPPqrcNqLoQmqeLcsBfPW/JXN89A1epOoKqm8tLo9reiDnnynx6W1k5XTkPyOFy qfmlIqE9ley6J2uPedaGEt9BEGrvgXqjUMHEwf+TsVaRIgKnJNHzfZihdO4FZ+4h gJxiZtOO9jpIQDFcXYKLi2vXTt95jSxJgyydLWO7ISO8FRXsome8E8qtjni6aYRw u7+SfrqL7eSKtwjAukwx30xQgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlGj8tA JLie7qSVJnOwIWsKuLwQMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvzdE9mhaeBdPX+UfB6r1feQcj/S5B9WEFAomvy2SdtbYXK9JUPQ2K rBzRDla8M62kYT46PEUEtlJaIfzNVHi1q+dueAQfUNFviyCqGJ+jMJWZLymgToH7 k4Zi05soizY2F08/c7PwZGdR91YP4T/SUlTyfoFAx3k5YeKMbkM3ze0GnZF0HIea jWB3c/DGTbO8JZieCF/fdJdtrxmh+4q5FgY3y6+30zgwm5dyPWZNZkkQU8id441a LOlqv/C/PLxbGV3Y87Y+4pamvRoHcdAabeF6verWvgKxloaYUQyoZBK2y+w3gD3D DREuC2EyTU0qfToB0SH/pJILzplv+RzX -----END CERTIFICATE-----Generated at Sat Jun 14 18:32:37 2025 by rpki-client