$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: PNIjGjdPBHkuQAPnVOUlUmCa8tRUbIarm7BYpYLX9eE= Subject key identifier: B7:74:64:25:16:3D:F8:C7:7B:EC:E3:8E:D9:0E:11:4A:2A:AD:F7:79 Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0ACD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AC7 Signing time: Sat 14 Jun 2025 19:17:13 +0000 Manifest this update: Sat 14 Jun 2025 19:17:12 +0000 Manifest next update: Sat 21 Jun 2025 19:17:12 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: CpLVg+/+2BR/CL64zMXQvfDnDuBUzGftzZ1bPf8p39s=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: 41cjFQ4140Z5h4e8/b+EfKqx6IFO/VtjT/VMpvwFsdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Jun 14 19:17:12 2025 GMT Not After : Jun 21 19:17:12 2025 GMT Subject: CN=684dcab9-431f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:55:cb:e1:e9:a5:30:cc:b8:79:fa:2f:dc:8b: 95:53:92:b7:86:19:fe:65:d4:1f:32:f6:9b:d5:7f: 76:1a:0d:00:a0:13:b3:e2:c1:97:5c:32:f7:ea:84: a0:c1:67:6a:82:d2:6f:75:94:37:ba:eb:90:24:8c: ad:9f:9e:b2:69:fe:a3:90:a0:f1:03:80:b3:7a:52: 9e:a2:19:ca:fd:ce:fb:2e:73:81:35:0f:97:41:68: 8b:7a:b7:c1:18:a0:1e:ae:eb:55:eb:26:ec:57:86: be:39:70:52:30:06:d6:48:09:7e:d2:66:c9:f1:15: 45:a8:35:05:81:c3:59:64:84:c1:9b:88:4d:50:1e: fb:cc:54:38:69:c4:96:6b:77:b9:53:d7:d7:2c:d1: 33:1d:61:43:d6:53:36:0c:f1:3d:80:cc:ef:45:36: ff:a4:39:64:2e:7b:d3:a1:d7:4a:9f:a9:04:80:84: ef:3d:7e:4e:fd:c8:af:8c:83:cc:29:a4:4b:6b:af: 10:ff:b7:d5:59:8b:23:47:54:72:d9:2b:12:fa:78: df:85:69:62:74:f3:91:c8:03:28:38:4c:06:6b:63: 7a:fb:fe:8f:60:24:62:45:c8:2e:bb:2e:d2:91:b3: ab:c6:e4:5c:4e:53:4e:06:6e:e7:81:9a:d0:72:0e: 8f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:74:64:25:16:3D:F8:C7:7B:EC:E3:8E:D9:0E:11:4A:2A:AD:F7:79 X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:23:7d:b2:45:11:0b:a4:8d:9b:d2:ae:ea:bc:04:31:f6:2b: 8a:bb:8f:db:d9:34:99:16:3c:56:c7:cd:40:27:57:ae:b6:29: 46:a8:da:5c:09:e4:38:d5:b3:0f:69:63:64:f8:57:90:e6:6e: 2a:b8:e6:f3:f9:ba:41:69:88:7a:c5:8a:c2:7b:b3:7c:f1:9d: 48:21:0a:8d:39:d3:8b:74:37:c0:45:70:5e:47:43:06:26:74: 63:6c:74:eb:09:d5:0a:76:5e:b1:93:27:ea:fa:e3:40:71:aa: b3:f7:a7:9a:c3:f4:cb:1f:a9:31:3d:4e:56:d1:7f:2e:fe:e6: 51:3a:1c:d6:68:22:4b:83:e5:b1:a0:60:40:3c:c5:54:57:b5: c9:1b:92:6a:bf:20:13:d4:8b:32:13:95:44:ef:6c:61:6b:a8: e2:82:a7:6e:4f:95:c0:6b:d0:f5:f2:b3:b9:51:8f:ce:93:c7: 35:d4:54:b8:9d:74:b1:d5:b2:23:82:8c:7c:bd:e8:4a:67:ef: 14:a7:5d:d6:5f:94:3f:a2:e1:5e:5a:82:ac:11:9a:f1:e9:81: bb:54:e1:88:f9:13:91:de:c0:09:44:bc:c3:3f:97:2f:5e:db: f2:ae:24:a4:be:24:b9:2a:06:99:47:89:b8:e8:e7:2e:01:b9: 3f:63:52:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwNjE0MTkxNzEyWhcNMjUwNjIxMTkxNzEyWjAYMRYwFAYD VQQDEw02ODRkY2FiOS00MzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FXL4emlMMy4efov3IuVU5K3hhn+ZdQfMvab1X92Gg0AoBOz4sGXXDL36oSg wWdqgtJvdZQ3uuuQJIytn56yaf6jkKDxA4CzelKeohnK/c77LnOBNQ+XQWiLerfB GKAerutV6ybsV4a+OXBSMAbWSAl+0mbJ8RVFqDUFgcNZZITBm4hNUB77zFQ4acSW a3e5U9fXLNEzHWFD1lM2DPE9gMzvRTb/pDlkLnvToddKn6kEgITvPX5O/civjIPM KaRLa68Q/7fVWYsjR1Ry2SsS+njfhWlidPORyAMoOEwGa2N6+/6PYCRiRcguuy7S kbOrxuRcTlNOBm7ngZrQcg6PwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLd0ZCUW PfjHe+zjjtkOEUoqrfd5MB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADI32yRRELpI2b0q7qvAQx9iuKu4/b2TSZFjxWx81AJ1eutilGqNpc CeQ41bMPaWNk+FeQ5m4quObz+bpBaYh6xYrCe7N88Z1IIQqNOdOLdDfARXBeR0MG JnRjbHTrCdUKdl6xkyfq+uNAcaqz96eaw/TLH6kxPU5W0X8u/uZROhzWaCJLg+Wx oGBAPMVUV7XJG5JqvyAT1IsyE5VE72xha6jigqduT5XAa9D18rO5UY/Ok8c11FS4 nXSx1bIjgox8vehKZ+8Up13WX5Q/ouFeWoKsEZrx6YG7VOGI+ROR3sAJRLzDP5cv XtvyriSkviS5KgaZR4m46OcuAbk/Y1KR -----END CERTIFICATE-----Generated at Sun Jun 15 07:21:37 2025 by rpki-client