$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: EOOlI2mWX4WjyyxKgiEcAIZoSCOi0LY9ci7+kstOfl4= Subject key identifier: 93:79:7D:EE:CB:68:75:D0:82:51:7C:EA:BC:AD:AC:96:25:62:E0:8C Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0BBE Signing time: Sat 14 Jun 2025 18:45:49 +0000 Manifest this update: Sat 14 Jun 2025 18:45:48 +0000 Manifest next update: Sat 21 Jun 2025 18:45:48 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: YFvU004CeTQby8E7qHJ/0q4CSlDb1xd1J/rdmQun4WA=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: tRDPOuysTM3j6RUChVc/lZ1Ir+BGvYj0vPYVhGcTQNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Jun 14 18:45:48 2025 GMT Not After : Jun 21 18:45:48 2025 GMT Subject: CN=684dc35c-b612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:eb:35:89:61:e9:a2:76:36:35:c0:f8:ad:b9: 26:70:67:2b:17:b8:2a:b3:e4:7a:43:f5:ad:53:b6: c2:d1:88:20:d5:6a:2e:f7:60:c6:3c:6c:90:fc:38: 56:1d:00:f1:00:65:e9:d9:cd:ba:64:2b:09:88:82: d2:fe:ff:5f:ab:94:44:b1:f8:c0:53:cc:19:96:89: 5e:1a:ce:20:66:09:88:7a:57:b4:57:8c:f1:24:cf: 8e:4b:96:0b:29:8f:dc:af:4a:4c:07:cd:72:bd:1d: 3d:8f:84:2d:61:e7:69:4d:07:6e:67:2c:98:dd:b0: 77:09:e7:28:46:ec:2b:13:1b:dc:4b:06:05:15:f2: a3:71:3a:dd:31:9a:22:42:84:43:32:3d:b0:fb:86: c5:eb:41:89:69:c7:5e:5e:eb:a6:70:e9:a9:66:39: 76:e8:04:44:54:7f:d9:d4:ab:7b:00:77:a4:1a:19: db:a4:1b:43:45:4f:ec:f6:d5:d2:74:54:4e:a6:b8: 4a:cc:47:3d:5c:24:45:17:2e:e9:16:fa:8a:3a:77: ec:e5:10:c1:f2:2e:c4:01:f5:be:9f:00:c2:93:df: 3a:20:0d:a1:5b:02:12:7e:3d:1f:31:b0:e7:8a:9e: 16:17:83:a0:1b:a7:77:fd:ca:72:0a:8c:46:7d:f3: 21:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:79:7D:EE:CB:68:75:D0:82:51:7C:EA:BC:AD:AC:96:25:62:E0:8C X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a9:2b:28:50:c4:85:bd:ea:af:a1:9b:98:57:10:21:de:60: 29:11:48:81:93:52:7c:ae:cb:ab:25:3b:3a:b4:d5:35:6f:dd: b2:36:20:99:72:07:e7:05:03:9e:39:97:dc:25:18:79:24:66: 94:f0:18:1c:ed:98:d2:80:ff:f0:38:97:6b:4c:a4:90:db:cf: b2:63:a1:5e:1c:2f:25:b6:55:fa:28:b7:a3:ee:04:99:2b:3b: 98:fe:ba:45:2a:97:1d:fb:bb:2e:28:0b:d0:93:87:88:55:33: 84:f3:47:b6:fa:c9:c3:c3:17:e7:2b:24:98:50:b3:fc:f0:d7: b3:31:f9:c5:a3:99:32:33:10:50:b0:4b:9e:58:7a:d5:dd:45: 3f:48:e9:6a:2e:6e:66:b6:88:96:ac:4c:0e:16:d5:db:06:87: b3:c4:6a:f9:b9:32:c8:25:5d:c1:35:20:ca:b6:db:76:07:5c: 40:81:98:7a:d9:0d:7c:80:03:4d:f7:93:61:bf:70:60:9d:19: e3:1f:10:7b:df:14:9e:8f:6a:2b:fd:20:ed:d0:b5:e2:64:5c: c6:ea:f1:33:54:53:7f:6c:b0:c8:c5:4c:36:d0:e5:e0:d1:4a: fc:73:2c:25:ce:9d:6b:43:78:eb:26:e1:10:6e:1d:23:a2:0f: e0:2a:27:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUwNjE0MTg0NTQ4WhcNMjUwNjIxMTg0NTQ4WjAYMRYwFAYD VQQDEw02ODRkYzM1Yy1iNjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+s1iWHponY2NcD4rbkmcGcrF7gqs+R6Q/WtU7bC0Ygg1Wou92DGPGyQ/DhW HQDxAGXp2c26ZCsJiILS/v9fq5REsfjAU8wZloleGs4gZgmIele0V4zxJM+OS5YL KY/cr0pMB81yvR09j4QtYedpTQduZyyY3bB3CecoRuwrExvcSwYFFfKjcTrdMZoi QoRDMj2w+4bF60GJacdeXuumcOmpZjl26AREVH/Z1Kt7AHekGhnbpBtDRU/s9tXS dFROprhKzEc9XCRFFy7pFvqKOnfs5RDB8i7EAfW+nwDCk986IA2hWwISfj0fMbDn ip4WF4OgG6d3/cpyCoxGffMhNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJN5fe7L aHXQglF86rytrJYlYuCMMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8qSsoUMSFveqvoZuYVxAh3mApEUiBk1J8rsurJTs6tNU1b92yNiCZ cgfnBQOeOZfcJRh5JGaU8Bgc7ZjSgP/wOJdrTKSQ28+yY6FeHC8ltlX6KLej7gSZ KzuY/rpFKpcd+7suKAvQk4eIVTOE80e2+snDwxfnKySYULP88NezMfnFo5kyMxBQ sEueWHrV3UU/SOlqLm5mtoiWrEwOFtXbBoezxGr5uTLIJV3BNSDKttt2B1xAgZh6 2Q18gANN95Nhv3BgnRnjHxB73xSej2or/SDt0LXiZFzG6vEzVFN/bLDIxUw20OXg 0Ur8cywlzp1rQ3jrJuEQbh0jog/gKief -----END CERTIFICATE-----Generated at Sun Jun 15 10:17:42 2025 by rpki-client