$ rpki-client -vvf rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft File: RS-rvfCd335V_Q-dvd1CePRPuIE.mft (raw, json) Hash identifier: b/mgJmzESBk2Flb/4j6qP1/Ssr6T/WDNv+RRo5PXZPk= Subject key identifier: 0A:A5:45:32:B3:D8:27:8C:52:32:DE:12:39:64:26:F8:66:32:03:C2 Authority key identifier: 45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 Certificate issuer: /CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Certificate serial: 0572 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft Manifest number: 0556 Signing time: Mon 16 Jun 2025 23:05:52 +0000 Manifest this update: Mon 16 Jun 2025 23:05:51 +0000 Manifest next update: Mon 23 Jun 2025 23:05:51 +0000 Files and hashes: 1: RS-rvfCd335V_Q-dvd1CePRPuIE.crl (hash: 5u2kv9xg5fkE07KYaBJod5EmuxIJfL/8YMBkX9jOQBQ=) 2: C54C42C04D7611EEA69CE262C4F9AE02.roa (hash: 3vGbgZeBX2ux3qD/sA/eOOnJkTBw50rlrCAjdQKlgEE=) 3: C611EE6CBCF711EEA90A1F1DC4F9AE02.roa (hash: i9dMAMF25KUvras5KvDG1QM1xBWeYt+C+ALZFoy+wTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E5DC, serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Validity Not Before: Jun 16 23:05:51 2025 GMT Not After : Jun 23 23:05:51 2025 GMT Subject: CN=6850a34f-c921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e2:fe:01:f2:eb:33:0e:d2:51:65:cb:ca:6a: ce:b8:0d:e9:32:15:61:25:55:90:12:ca:ed:42:13: 83:6b:9a:47:f8:dc:2d:ac:e2:b8:78:68:2b:5b:e9: bf:3d:af:f6:bf:07:89:62:c9:ba:d0:9d:0d:a0:3e: 15:45:78:76:e4:cb:d9:4c:4c:b8:b7:51:aa:bb:d7: 6c:b8:4c:c9:60:3f:db:d9:21:df:4c:96:de:65:c0: 54:c8:52:cc:2d:a9:63:e0:3f:eb:70:56:2e:3f:8d: 6f:81:31:e6:fb:14:5d:36:34:52:1c:52:23:a8:72: fb:b7:01:8f:39:78:68:87:b6:14:56:ad:7c:df:01: 6a:c5:7d:81:11:bd:1b:5d:e9:6a:73:41:1e:f9:3f: 98:bc:c5:2a:ec:63:b6:e3:9f:db:a7:eb:9f:6e:6d: 43:55:dd:3b:76:f8:8b:3a:0f:59:50:ce:2e:42:2c: f0:79:ff:f1:f5:ae:19:c8:6a:49:1e:62:cc:8f:d4: 28:b0:21:21:40:d4:42:f0:16:ba:36:61:84:14:8a: 52:c2:0f:9c:fb:4b:9e:92:ea:f9:2a:82:77:16:5a: 38:34:3d:70:57:89:e3:87:db:a8:65:70:4a:c3:42: ae:a1:a3:2d:84:a2:aa:93:6c:71:d5:04:30:e3:a6: f9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A5:45:32:B3:D8:27:8C:52:32:DE:12:39:64:26:F8:66:32:03:C2 X509v3 Authority Key Identifier: keyid:45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:7f:5d:7b:e8:12:c0:76:9b:b4:4e:6d:3c:e9:37:e7:4e:08: f8:3f:08:f4:34:5f:07:25:57:b4:cc:5f:50:ea:59:fb:74:4d: 4d:f0:2b:ad:58:a0:88:3e:84:cd:69:e4:0f:0e:41:dd:1f:da: 0f:70:1e:a3:f0:4e:69:51:2d:95:48:c8:b5:67:b6:8c:31:c0: e7:a4:a5:e0:ec:ce:2b:0b:e0:a7:ff:f1:fb:2c:8a:ef:a6:b1: 66:fb:f7:b3:08:e8:29:0e:1c:37:13:d8:5d:3c:87:94:7c:67: 1b:6f:df:bb:9f:bf:dc:95:0f:0f:96:b0:b5:c2:2b:2e:7a:bb: bf:7d:1b:4d:7e:9e:2f:7f:df:82:88:cd:bb:8f:2b:1d:0f:e8: 08:e5:a9:a8:3a:f8:64:c8:a4:57:50:c9:a1:fe:02:8c:18:05: a6:bc:ad:0d:21:b6:cb:ef:9f:d2:ae:ad:09:69:bd:3f:52:58: 40:ad:e8:f4:be:52:00:9c:4a:9d:4c:b6:ae:c1:60:86:d6:97: 03:28:f3:bc:3a:14:a0:d2:97:e8:6b:b9:c4:87:f2:99:b3:1d: 12:83:96:ef:78:54:5c:a4:6b:a9:be:ba:37:2e:be:8c:84:a9: 4f:2d:47:86:7a:9a:61:12:b8:5b:e6:c7:55:de:f2:90:65:3a: 55:25:04:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U1REMxMTAvBgNVBAUTKDQ1MkZBQkJERjA5RERGN0U1NUZEMEY5REJEREQ0Mjc4 RjQ0RkI4ODEwHhcNMjUwNjE2MjMwNTUxWhcNMjUwNjIzMjMwNTUxWjAYMRYwFAYD VQQDEw02ODUwYTM0Zi1jOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eL+AfLrMw7SUWXLymrOuA3pMhVhJVWQEsrtQhODa5pH+NwtrOK4eGgrW+m/ Pa/2vweJYsm60J0NoD4VRXh25MvZTEy4t1Gqu9dsuEzJYD/b2SHfTJbeZcBUyFLM Lalj4D/rcFYuP41vgTHm+xRdNjRSHFIjqHL7twGPOXhoh7YUVq183wFqxX2BEb0b Xelqc0Ee+T+YvMUq7GO245/bp+ufbm1DVd07dviLOg9ZUM4uQizwef/x9a4ZyGpJ HmLMj9QosCEhQNRC8Ba6NmGEFIpSwg+c+0uekur5KoJ3Flo4ND1wV4njh9uoZXBK w0KuoaMthKKqk2xx1QQw46b5BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqlRTKz 2CeMUjLeEjlkJvhmMgPCMB8GA1UdIwQYMBaAFEUvq73wnd9+Vf0Pnb3dQnj0T7iB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTVEQy9CQkUyQjUwMkY4 RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMzNVZfUS1kdmQxQ2VQUlB1 SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTLXJ2ZkNkMzM1Vl9RLWR2ZDFDZVBSUHVJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTVEQy9CQkUyQjUwMkY4RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMz NVZfUS1kdmQxQ2VQUlB1SUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgf1176BLAdpu0Tm086TfnTgj4Pwj0NF8HJVe0zF9Q6ln7dE1N8Cut WKCIPoTNaeQPDkHdH9oPcB6j8E5pUS2VSMi1Z7aMMcDnpKXg7M4rC+Cn//H7LIrv prFm+/ezCOgpDhw3E9hdPIeUfGcbb9+7n7/clQ8PlrC1wisueru/fRtNfp4vf9+C iM27jysdD+gI5amoOvhkyKRXUMmh/gKMGAWmvK0NIbbL75/Srq0Jab0/UlhArej0 vlIAnEqdTLauwWCG1pcDKPO8OhSg0pfoa7nEh/KZsx0Sg5bveFRcpGupvro3Lr6M hKlPLUeGepphErhb5sdV3vKQZTpVJQSf -----END CERTIFICATE-----Generated at Tue Jun 17 10:43:09 2025 by rpki-client