$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: hifVg1CiA/BSKbITQIEUsICJrA0kpH6xJVXZW4Pi/Vo= Subject key identifier: 48:9B:0D:4C:08:CC:52:09:F4:90:B5:B5:9B:AF:D7:94:BE:DF:2B:C2 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 064C Signing time: Wed 18 Jun 2025 19:30:34 +0000 Manifest this update: Wed 18 Jun 2025 19:30:33 +0000 Manifest next update: Wed 25 Jun 2025 19:30:33 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: OyM6h4sRamq8LQFSE1wKZZXUxKvdyxZETUbVJMPRDHw=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: c7+1xl97Qj2WBa7uEaRi3C9ZQy4QYdknXZBQu0sbmag=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: nh7VvVbwlcEI7LPWlEzxHGSM7ZH4CPOm9G5I1MGrFHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Jun 18 19:30:33 2025 GMT Not After : Jun 25 19:30:33 2025 GMT Subject: CN=685313d9-33fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0c:0a:04:de:d6:50:07:3e:ff:4a:56:37:8e: 8b:a4:47:9b:8d:fa:41:ac:79:ed:c4:3a:fc:99:5a: 4a:ca:59:49:d7:4b:98:2a:6e:80:09:14:1c:6f:39: 19:dd:9d:00:e5:6d:82:68:71:6a:06:94:39:d1:3a: 04:b5:56:81:53:39:e4:9b:06:1e:85:9f:95:20:64: f3:3b:4e:53:a5:8c:2d:e4:cb:ad:0d:1c:8a:14:1c: 79:da:fa:c1:ac:4d:22:8e:38:ab:7c:be:7a:99:0c: 7d:74:14:be:06:7b:08:e3:c5:94:e7:2c:5b:a2:2d: fe:f4:e7:ad:a5:cb:cc:08:f4:03:23:19:df:da:23: 1f:c0:ab:a0:51:f3:f1:2b:4b:d0:b5:b2:7a:f9:64: 65:94:8e:05:f7:60:75:f7:a5:75:6f:87:c0:a7:1f: 48:9f:60:9a:48:79:70:19:a1:56:bd:b8:0c:a7:f5: ac:8d:0b:9a:c4:6e:0d:8a:e3:86:35:98:85:cd:60: 28:bc:80:0e:db:68:21:7e:d8:c4:de:66:06:26:80: aa:76:ac:f9:32:10:6c:d3:26:3e:88:a1:d1:2e:6b: a1:0f:25:cc:f9:0c:1c:e1:6e:69:b7:80:16:a4:bc: 47:af:d1:68:d3:07:44:fc:43:1d:fb:01:75:54:c8: c6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9B:0D:4C:08:CC:52:09:F4:90:B5:B5:9B:AF:D7:94:BE:DF:2B:C2 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:9b:6b:06:b5:08:e8:4a:a3:cf:3b:38:2b:8b:4b:4e:b7:d4: ac:9a:02:d4:b9:9d:8a:79:a6:70:f3:2a:8f:d1:53:00:db:07: 34:e0:97:21:fd:33:1f:a8:b1:04:c0:48:3d:4c:7d:f4:dc:e7: 47:c8:dc:4c:db:94:7b:7a:01:ed:c8:0c:75:39:f0:f8:a7:3a: 12:90:0e:a4:be:7f:4a:90:12:27:57:ad:f9:5e:48:00:f9:ed: ad:f9:38:bb:50:04:f3:4c:06:df:30:f2:c2:eb:c1:a7:1e:51: 31:7b:b4:cb:b8:dd:c3:ba:94:fd:0a:54:f1:5a:cf:63:14:77: 64:a8:f8:51:70:9d:bc:c9:c1:bc:69:57:82:62:af:27:42:07: 05:14:9a:a5:ee:d2:2c:10:26:d0:e4:cf:b2:b0:41:74:b2:29: ac:e6:c9:ad:a1:9d:23:82:cd:3b:51:84:6b:49:7b:58:9a:78: 44:06:83:92:6d:fd:7e:ac:87:53:1d:01:0e:1d:75:38:a3:cf: 78:14:bd:3b:ba:f9:9a:fc:d9:89:d8:d3:a1:a3:c6:08:d1:42: bd:fc:f9:b8:72:3d:fa:7b:87:d7:db:66:e8:35:1d:fb:b2:7c: 8a:9b:db:00:23:87:74:45:94:52:e6:e3:fa:4c:f7:7b:fc:b8: f9:7e:26:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUwNjE4MTkzMDMzWhcNMjUwNjI1MTkzMDMzWjAYMRYwFAYD VQQDEw02ODUzMTNkOS0zM2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AwKBN7WUAc+/0pWN46LpEebjfpBrHntxDr8mVpKyllJ10uYKm6ACRQcbzkZ 3Z0A5W2CaHFqBpQ50ToEtVaBUznkmwYehZ+VIGTzO05TpYwt5MutDRyKFBx52vrB rE0ijjirfL56mQx9dBS+BnsI48WU5yxboi3+9OetpcvMCPQDIxnf2iMfwKugUfPx K0vQtbJ6+WRllI4F92B196V1b4fApx9In2CaSHlwGaFWvbgMp/WsjQuaxG4NiuOG NZiFzWAovIAO22ghftjE3mYGJoCqdqz5MhBs0yY+iKHRLmuhDyXM+Qwc4W5pt4AW pLxHr9Fo0wdE/EMd+wF1VMjGEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEibDUwI zFIJ9JC1tZuv15S+3yvCMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnm2sGtQjoSqPPOzgri0tOt9SsmgLUuZ2KeaZw8yqP0VMA2wc04Jch /TMfqLEEwEg9TH303OdHyNxM25R7egHtyAx1OfD4pzoSkA6kvn9KkBInV635XkgA +e2t+Ti7UATzTAbfMPLC68GnHlExe7TLuN3DupT9ClTxWs9jFHdkqPhRcJ28ycG8 aVeCYq8nQgcFFJql7tIsECbQ5M+ysEF0sims5smtoZ0jgs07UYRrSXtYmnhEBoOS bf1+rIdTHQEOHXU4o894FL07uvma/NmJ2NOho8YI0UK9/Pm4cj36e4fX22boNR37 snyKm9sAI4d0RZRS5uP6TPd7/Lj5fiYL -----END CERTIFICATE-----Generated at Fri Jun 20 18:48:46 2025 by rpki-client