$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: IhRY7Ovy1ebo4KC24WYXFR/AfATkZdFhywu5zUU38a0= Subject key identifier: 79:97:2A:E7:A1:8E:52:69:42:18:D4:60:F2:6D:71:E5:48:75:89:E5 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: E3 Signing time: Sat 21 Jun 2025 04:32:42 +0000 Manifest this update: Sat 21 Jun 2025 04:32:41 +0000 Manifest next update: Sat 28 Jun 2025 04:32:41 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: vj5JsqR1tno2/rIdRONtzsHbx77Dj2s1h2lIRuyes3Q=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 04:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Jun 21 04:32:41 2025 GMT Not After : Jun 28 04:32:41 2025 GMT Subject: CN=685635e9-e78b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:02:63:29:c3:e2:69:9b:d5:10:4b:04:e1:d9: 08:00:ac:17:0e:d7:5a:0a:b2:67:bb:f9:b1:a4:c6: 70:d2:d6:7d:fc:7d:93:b2:76:18:b7:ea:33:95:88: 0c:2f:25:a9:d7:17:49:40:88:37:6b:9d:c4:05:aa: ac:b9:bd:4a:f3:c5:cc:8c:aa:df:08:ad:d8:91:c4: 22:44:c0:53:64:40:3f:a7:e1:b8:ae:b8:dc:b3:f8: ac:4e:c1:df:ac:39:b9:0a:f5:a5:e5:cf:36:ba:b1: 7a:38:90:e5:46:88:f7:5f:ca:e6:5d:bf:25:54:fa: e7:c6:cf:20:08:a6:ea:f3:6e:76:64:a5:bd:62:58: 00:05:fb:59:2e:fc:e4:c2:fe:66:63:0a:f9:25:6e: 03:d6:7b:29:67:30:8b:c4:d6:d2:d0:19:02:3e:05: 47:f0:8e:02:33:d1:dd:e5:30:98:40:b8:cc:f4:34: 20:69:27:c8:c5:42:5f:c4:47:27:81:93:ec:9e:99: 4c:d8:5e:a5:55:7a:a3:7d:01:b7:63:8b:2f:c8:f1: ff:2d:b8:f6:21:6a:3f:e8:83:6d:b5:28:c0:7c:88: 7d:28:e8:85:ce:41:47:75:69:13:b9:ca:11:a0:19: b4:f1:f1:20:b4:68:74:70:c4:44:08:72:b8:fc:66: 82:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:97:2A:E7:A1:8E:52:69:42:18:D4:60:F2:6D:71:E5:48:75:89:E5 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:9d:b8:dd:0b:7f:bb:8c:01:6b:e3:73:ad:8b:30:1d:26:d8: 57:6c:16:81:85:e9:dd:c5:3a:00:ab:0d:30:13:59:08:04:c8: 85:e3:7d:29:91:e0:d8:af:7f:ae:f9:58:57:44:f2:e9:d6:64: 4a:48:87:c5:d2:fe:21:9a:85:57:9e:8a:d7:31:62:ea:9f:da: 70:ac:ea:94:79:a8:04:6d:61:c1:77:7b:d9:59:6d:f1:b4:5c: ec:be:ef:a3:b9:8d:a7:21:21:b5:82:91:e6:02:94:c4:81:3b: a1:88:d0:d9:3e:cc:37:ad:28:43:22:ec:cb:dc:82:c7:de:eb: e6:c5:62:98:9e:c0:45:12:4f:4c:89:df:ed:de:0d:e1:00:7c: c5:31:eb:5f:ce:b7:93:57:49:7f:eb:45:06:db:73:4f:44:99: 2b:30:0e:30:85:e8:2a:d3:fb:1a:b9:28:90:50:9f:83:f5:40: 59:c9:fe:4a:50:80:16:61:f2:af:2e:88:8d:0c:18:e0:52:e4: 80:0c:d6:f5:a8:22:1c:18:3e:a7:f5:c0:03:f2:f8:02:8d:d7: fa:39:7f:b3:37:7c:e7:21:96:d1:8a:be:95:49:73:4a:79:97: 33:37:1d:02:77:d9:3a:d4:0e:d9:ef:ae:04:93:b2:1d:0d:9a: 9d:ea:13:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwNjIxMDQzMjQxWhcNMjUwNjI4MDQzMjQxWjAYMRYwFAYD VQQDEw02ODU2MzVlOS1lNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAJjKcPiaZvVEEsE4dkIAKwXDtdaCrJnu/mxpMZw0tZ9/H2TsnYYt+ozlYgM LyWp1xdJQIg3a53EBaqsub1K88XMjKrfCK3YkcQiRMBTZEA/p+G4rrjcs/isTsHf rDm5CvWl5c82urF6OJDlRoj3X8rmXb8lVPrnxs8gCKbq8252ZKW9YlgABftZLvzk wv5mYwr5JW4D1nspZzCLxNbS0BkCPgVH8I4CM9Hd5TCYQLjM9DQgaSfIxUJfxEcn gZPsnplM2F6lVXqjfQG3Y4svyPH/Lbj2IWo/6INttSjAfIh9KOiFzkFHdWkTucoR oBm08fEgtGh0cMRECHK4/GaCOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmXKueh jlJpQhjUYPJtceVIdYnlMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGnbjdC3+7jAFr43OtizAdJthXbBaBhendxToAqw0wE1kIBMiF430p keDYr3+u+VhXRPLp1mRKSIfF0v4hmoVXnorXMWLqn9pwrOqUeagEbWHBd3vZWW3x tFzsvu+juY2nISG1gpHmApTEgTuhiNDZPsw3rShDIuzL3ILH3uvmxWKYnsBFEk9M id/t3g3hAHzFMetfzreTV0l/60UG23NPRJkrMA4whegq0/sauSiQUJ+D9UBZyf5K UIAWYfKvLoiNDBjgUuSADNb1qCIcGD6n9cAD8vgCjdf6OX+zN3znIZbRir6VSXNK eZczNx0Cd9k61A7Z764Ek7IdDZqd6hP5 -----END CERTIFICATE-----Generated at Sat Jun 21 19:10:34 2025 by rpki-client