$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: 3JMc8QvVcVXLUZGQnE91U5U88TYovW33QJHwtDryUAg= Subject key identifier: 0B:76:85:CE:62:F7:E8:A9:95:6F:B2:02:25:AB:7F:44:77:65:2B:74 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0140 Signing time: Wed 18 Jun 2025 19:10:51 +0000 Manifest this update: Wed 18 Jun 2025 19:10:50 +0000 Manifest next update: Wed 25 Jun 2025 19:10:50 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: f4adDRPGsUO4XKPZAGcwWfOc1HaiPyabJF/IsKKfT2s=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Jun 18 19:10:50 2025 GMT Not After : Jun 25 19:10:50 2025 GMT Subject: CN=68530f3a-dab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:af:58:96:bd:06:69:21:22:ac:1b:55:99:93: 2d:1e:bb:53:d2:61:94:00:01:45:9e:d6:fd:1e:4c: dd:a7:dc:63:96:64:8d:6b:9a:8a:d2:04:c5:44:be: e9:a1:da:e6:d6:ed:51:b1:06:9b:52:3d:4a:78:93: 56:1c:ca:2b:a1:ed:fe:fd:47:ae:77:d3:87:80:f5: 71:59:d8:c3:02:43:0b:07:19:e5:8d:62:05:99:c3: 0a:f4:ee:a2:fb:94:8b:ac:cc:77:b3:02:7a:4e:e3: 4b:ca:80:0a:cc:05:35:38:98:1c:f7:c9:af:05:b7: 95:f4:05:af:1a:86:c9:4f:4b:5f:20:72:a8:4a:39: 95:b3:6f:54:9f:e4:f4:95:aa:f7:be:fd:b0:32:e8: f8:86:6c:41:61:84:49:68:c5:ef:6f:7a:6d:44:a1: 2d:a9:ef:72:4c:0a:cc:73:b8:c9:fb:a4:b4:f1:d7: cd:49:07:37:60:57:51:b0:c7:83:99:73:e2:9b:8b: ec:fa:e9:5d:e8:87:a7:dc:31:50:d0:5f:f9:65:ec: 5b:21:3d:dc:11:86:f7:f9:63:68:da:83:0b:39:81: ac:2c:f3:98:b7:9a:4f:94:18:4d:7b:84:25:3b:8b: 80:b9:f3:e2:5f:01:d6:11:51:c9:db:66:73:5b:0e: 8e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:76:85:CE:62:F7:E8:A9:95:6F:B2:02:25:AB:7F:44:77:65:2B:74 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f7:4d:06:4b:7e:e0:43:0f:3d:19:57:45:4d:6f:bf:a6:b0: 67:62:98:39:6a:2b:d8:c3:fe:df:00:e5:12:64:f4:69:a5:c9: 3e:9a:ec:6c:fd:11:00:59:be:0d:21:03:35:22:8c:c5:d6:5b: 2f:13:dd:cf:e7:99:ca:88:93:9b:44:5b:ad:4e:14:e9:7e:93: cb:5c:02:1b:dd:2f:cd:d2:a7:48:8d:54:84:5f:72:3f:a8:f1: a0:22:16:62:00:5f:6d:57:b7:ff:28:7c:a6:b6:37:f0:d3:b1: a4:97:66:14:26:6f:c9:aa:9f:1d:25:3d:e3:fe:fd:10:36:d1: 72:79:0d:0a:0e:a6:04:c2:f9:f7:45:14:f6:0b:8d:91:86:63: 1a:8d:c0:c1:53:00:ee:66:cb:56:cd:37:e9:7f:9f:5d:56:a7: 0a:cb:17:80:a7:59:71:92:de:c2:98:8d:0b:58:31:e3:43:60: 23:aa:91:e2:75:21:8e:ea:0e:83:42:c2:55:42:4d:6b:0d:5a: cf:45:f8:1d:b4:89:85:19:d0:13:ed:ba:0c:49:e4:c0:56:c2: cb:32:af:a0:55:e1:dc:73:26:be:ee:37:06:d3:de:73:4b:60: 2c:57:c7:34:87:b6:44:6a:3f:78:b8:22:3e:cf:43:b8:60:d4: 0d:b2:22:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwNjE4MTkxMDUwWhcNMjUwNjI1MTkxMDUwWjAYMRYwFAYD VQQDEw02ODUzMGYzYS1kYWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK9Ylr0GaSEirBtVmZMtHrtT0mGUAAFFntb9Hkzdp9xjlmSNa5qK0gTFRL7p odrm1u1RsQabUj1KeJNWHMoroe3+/Ueud9OHgPVxWdjDAkMLBxnljWIFmcMK9O6i +5SLrMx3swJ6TuNLyoAKzAU1OJgc98mvBbeV9AWvGobJT0tfIHKoSjmVs29Un+T0 lar3vv2wMuj4hmxBYYRJaMXvb3ptRKEtqe9yTArMc7jJ+6S08dfNSQc3YFdRsMeD mXPim4vs+uld6Ien3DFQ0F/5ZexbIT3cEYb3+WNo2oMLOYGsLPOYt5pPlBhNe4Ql O4uAufPiXwHWEVHJ22ZzWw6OwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAt2hc5i 9+iplW+yAiWrf0R3ZSt0MB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ900GS37gQw89GVdFTW+/prBnYpg5aivYw/7fAOUSZPRppck+muxs /REAWb4NIQM1IozF1lsvE93P55nKiJObRFutThTpfpPLXAIb3S/N0qdIjVSEX3I/ qPGgIhZiAF9tV7f/KHymtjfw07Gkl2YUJm/Jqp8dJT3j/v0QNtFyeQ0KDqYEwvn3 RRT2C42RhmMajcDBUwDuZstWzTfpf59dVqcKyxeAp1lxkt7CmI0LWDHjQ2AjqpHi dSGO6g6DQsJVQk1rDVrPRfgdtImFGdAT7boMSeTAVsLLMq+gVeHccya+7jcG095z S2AsV8c0h7ZEaj94uCI+z0O4YNQNsiI1 -----END CERTIFICATE-----Generated at Thu Jun 19 09:54:15 2025 by rpki-client