$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft File: CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json) Hash identifier: sKs8iRaZ8TywvFbVHfmCEetN9A5npKSHzSGWWYwFxjA= Subject key identifier: 20:22:23:1F:58:F2:7F:DE:1E:09:75:9C:F0:9A:E3:E6:B4:6A:28:19 Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B Certificate issuer: /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft Manifest number: 4C Signing time: Sat 14 Jun 2025 23:06:41 +0000 Manifest this update: Sat 14 Jun 2025 23:06:41 +0000 Manifest next update: Sat 21 Jun 2025 23:06:41 +0000 Files and hashes: 1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: gUZHEMh/eCLhxtbATDQEhq677dwpUBh5ruSRXIJf1zY=) 2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: MAjR+6vV6kQAbBvReYR67qji2ZeC3+thGK+jJVjSbNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Validity Not Before: Jun 14 23:06:41 2025 GMT Not After : Jun 21 23:06:41 2025 GMT Subject: CN=684e0081-ced2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5e:77:bb:fc:a2:9e:e2:c0:ce:e7:8d:e0:32: fb:37:5c:05:6e:c9:80:29:0e:9d:3a:e4:ae:6e:78: 74:ec:30:93:31:cd:99:58:5a:1f:e0:2b:c9:fc:f6: fd:70:b8:1a:bc:c8:76:bb:67:04:b7:a1:18:d1:be: 43:0c:49:60:7f:b7:50:54:bd:94:26:85:95:c1:e5: ac:10:f9:1e:91:65:48:9b:4e:c5:c2:b0:ef:fb:f1: e9:be:da:d5:cf:7f:fd:3a:e8:e6:b9:a7:f0:16:03: 4c:26:f7:1b:bb:e1:48:d6:64:6f:33:54:a0:23:59: 72:84:4e:1f:db:77:28:32:d1:57:2b:b1:9f:ec:e7: c5:d9:78:ae:a3:2f:6b:ff:39:29:1f:fc:cf:df:b4: 45:c6:e1:59:cc:80:5e:6d:85:39:e6:eb:88:72:1d: e6:4b:78:d6:88:65:d5:10:da:91:4d:dc:7a:22:86: ba:51:c1:5e:a3:4a:62:4c:8f:59:83:cc:1a:34:1a: fb:18:8c:5e:01:e8:75:c5:93:84:04:b2:2e:ec:24: 2b:fe:04:0a:a8:23:fc:4a:83:84:b2:fc:b8:54:06: 7f:85:c3:54:1d:a8:92:0c:cd:85:78:28:72:0b:44: b4:7e:6e:14:da:99:16:f8:a2:46:97:13:d8:08:1a: 48:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:22:23:1F:58:F2:7F:DE:1E:09:75:9C:F0:9A:E3:E6:B4:6A:28:19 X509v3 Authority Key Identifier: keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:b3:48:db:dc:f0:9e:d6:4c:40:b8:da:86:18:97:37:e7:23: 35:63:94:7a:a9:64:4b:3e:a5:58:8f:8e:ce:cb:ae:ee:e8:56: f9:44:85:4c:3a:83:6a:e5:48:08:59:0e:c8:3a:a5:0a:f4:9d: 34:31:b6:96:41:e2:57:78:b3:74:39:61:9f:8c:d0:42:c0:c3: 5a:b5:51:5e:6e:fd:f5:74:f2:0a:c6:e4:0f:2a:de:c7:ec:2c: 81:c6:3a:1a:44:2b:b0:3c:14:1e:82:94:0f:5e:c4:72:4d:6d: 8a:42:8f:5c:7b:4b:fc:9f:b4:35:37:25:bf:87:af:8c:3e:c2: fb:2c:ae:a4:38:75:f5:03:c0:7a:82:e8:f0:f6:59:de:c3:ff: 4e:75:b9:19:c9:ef:8d:8f:1a:7a:15:01:ed:a0:7d:74:9a:a5: 23:bb:09:80:f9:74:e6:1c:1c:ee:da:ae:00:51:da:3d:8a:a4: e1:0c:e4:1b:df:7e:76:96:66:9b:4f:17:b0:5c:56:51:d8:54: 23:c4:8e:62:84:c0:9e:08:d9:2d:40:41:4f:55:1e:11:f8:f6: b1:89:61:f6:5f:b0:34:78:ed:9b:67:75:ad:16:49:07:18:d3: 0c:78:03:5c:d2:37:78:34:ac:59:01:0f:ad:cc:36:36:3a:bf: a7:9b:ba:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTAwRjExMC8GA1UEBRMoMDgzNTg3NDk3OEJBMzA5RUQ3REE0NjczRTc3MzlEOTMy MkYyNjI5QjAeFw0yNTA2MTQyMzA2NDFaFw0yNTA2MjEyMzA2NDFaMBgxFjAUBgNV BAMTDTY4NGUwMDgxLWNlZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlXne7/KKe4sDO543gMvs3XAVuyYApDp065K5ueHTsMJMxzZlYWh/gK8n89v1w uBq8yHa7ZwS3oRjRvkMMSWB/t1BUvZQmhZXB5awQ+R6RZUibTsXCsO/78em+2tXP f/066Oa5p/AWA0wm9xu74UjWZG8zVKAjWXKETh/bdygy0VcrsZ/s58XZeK6jL2v/ OSkf/M/ftEXG4VnMgF5thTnm64hyHeZLeNaIZdUQ2pFN3HoihrpRwV6jSmJMj1mD zBo0GvsYjF4B6HXFk4QEsi7sJCv+BAqoI/xKg4Sy/LhUBn+Fw1QdqJIMzYV4KHIL RLR+bhTamRb4okaXE9gIGkgzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUICIjH1jy f94eCXWc8Jrj5rRqKBkwHwYDVR0jBBgwFoAUCDWHSXi6MJ7X2kZz53OdkyLyYpsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMDBGLzdEMkIxREYwRDdE MDExRUY5RUZDOTEwREM0RjlBRTAyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0RXSFNYaTZNSjdYMmtaejUzT2RreUx5WXBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MDBGLzdEMkIxREYwRDdEMDExRUY5RUZDOTEwREM0RjlBRTAyL0NEV0hTWGk2TUo3 WDJrWno1M09ka3lMeVlwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAezSNvc8J7WTEC42oYYlzfnIzVjlHqpZEs+pViPjs7Lru7oVvlEhUw6 g2rlSAhZDsg6pQr0nTQxtpZB4ld4s3Q5YZ+M0ELAw1q1UV5u/fV08grG5A8q3sfs LIHGOhpEK7A8FB6ClA9exHJNbYpCj1x7S/yftDU3Jb+Hr4w+wvssrqQ4dfUDwHqC 6PD2Wd7D/051uRnJ742PGnoVAe2gfXSapSO7CYD5dOYcHO7argBR2j2KpOEM5Bvf fnaWZptPF7BcVlHYVCPEjmKEwJ4I2S1AQU9VHhH49rGJYfZfsDR47Ztnda0WSQcY 0wx4A1zSN3g0rFkBD63MNjY6v6ebuqI= -----END CERTIFICATE-----Generated at Mon Jun 16 22:05:10 2025 by rpki-client