$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft File: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft (raw, json) Hash identifier: H/h/yYyMApD2bUadXQS092QwfZWHdlZFyYDlEFAETWQ= Subject key identifier: 0A:E4:17:CD:5B:8A:AC:55:0B:25:2D:33:55:5C:CB:71:21:54:A8:E6 Authority key identifier: B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 Certificate issuer: /CN=A918E85E/serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft Manifest number: DF Signing time: Sun 15 Jun 2025 04:36:17 +0000 Manifest this update: Sun 15 Jun 2025 04:36:16 +0000 Manifest next update: Sun 22 Jun 2025 04:36:16 +0000 Files and hashes: 1: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl (hash: HIcc15jMHUdawPjUIiJdHytEAt18tpDrqioT8EmunRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Validity Not Before: Jun 15 04:36:16 2025 GMT Not After : Jun 22 04:36:16 2025 GMT Subject: CN=684e4dc0-c41f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:dd:16:84:2e:e2:72:7d:86:2b:2a:4f:81:84: 5a:1b:75:9a:20:9d:b0:e7:82:b9:7d:98:60:29:ce: c6:f7:03:3e:67:7c:d2:bc:c3:0c:a3:c8:19:ce:0e: 34:7a:3a:85:56:8c:f7:f5:2d:d8:be:69:97:38:4f: 87:8b:54:e5:e0:a0:58:9e:42:1f:88:3b:38:f0:d8: f3:15:92:9e:02:17:e2:ca:44:75:59:ed:aa:a5:e9: 48:b4:5e:32:f5:eb:23:af:ee:fb:49:31:9c:d4:3a: e2:c4:82:5c:d9:ae:df:34:17:7f:94:e0:02:66:42: e1:99:7e:fd:7e:4e:d2:be:50:70:60:2c:85:62:c5: 4c:4e:59:db:20:2c:ff:ec:4d:61:30:e9:f9:47:b1: 3d:f7:7e:10:86:bf:29:c8:71:f9:47:e3:89:b9:1c: 66:d0:76:f0:d1:0e:3f:4d:23:41:8d:66:6b:85:16: 12:f7:c9:0d:1c:0a:f2:07:00:8b:20:ce:06:e6:1b: ca:af:6a:cc:77:b3:b4:05:ce:f4:c8:c2:0a:0b:39: ea:b9:8b:ed:9a:95:17:17:48:1c:8f:8f:5a:e5:50: 04:a1:1b:d0:7e:75:21:3c:f8:5d:48:69:ab:13:c7: 9b:97:d0:62:3b:8e:07:db:a6:a1:db:d4:60:10:3f: dd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E4:17:CD:5B:8A:AC:55:0B:25:2D:33:55:5C:CB:71:21:54:A8:E6 X509v3 Authority Key Identifier: keyid:B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:1a:ec:ce:69:08:30:f9:6c:c5:9c:47:dc:5f:de:f5:2a:42: 4c:de:6e:97:2c:ac:89:58:96:38:3f:81:3b:06:49:13:77:c5: 4a:74:cf:07:2a:56:8b:69:15:98:5a:58:d4:b1:b3:b2:83:7a: a9:69:3f:9d:8f:63:0d:d0:09:bb:eb:d6:39:19:b6:0a:be:fc: ac:6a:ba:e0:b5:56:1b:6d:36:ec:8a:83:ca:0d:b6:6d:df:d5: 05:b6:43:7e:8b:74:0b:87:51:f9:26:fb:4e:9c:dd:ec:9b:db: b9:52:84:74:43:d5:44:d1:4e:eb:4c:6f:2e:39:37:82:0a:db: 33:39:e8:b3:5b:ff:18:ef:50:5e:cc:2e:ee:1c:54:7f:50:cf: 00:e7:82:a0:75:7a:7a:bc:c8:b1:37:44:25:94:07:ce:4a:e7: 57:a1:cd:b1:43:0a:dc:ae:17:fd:8f:97:11:84:0e:d7:65:fb: b8:ac:9f:e7:bb:84:00:df:7c:9d:c9:cf:47:1a:24:27:22:ff: c4:6e:82:78:6b:cd:be:13:f2:19:4b:f5:e4:43:84:55:6b:12: 86:16:52:41:33:45:39:93:31:d7:93:84:78:5d:e6:e2:72:b1: 24:4b:4f:79:a9:85:cd:03:18:ca:d1:9f:d5:4c:ac:8e:69:ae: b6:14:eb:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKEI1M0JDRTE2MUFDRjYzMDVFQzA1NUM1OUE4OTFFODIy QTExRUY4MDQwHhcNMjUwNjE1MDQzNjE2WhcNMjUwNjIyMDQzNjE2WjAYMRYwFAYD VQQDEw02ODRlNGRjMC1jNDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3t0WhC7icn2GKypPgYRaG3WaIJ2w54K5fZhgKc7G9wM+Z3zSvMMMo8gZzg40 ejqFVoz39S3YvmmXOE+Hi1Tl4KBYnkIfiDs48NjzFZKeAhfiykR1We2qpelItF4y 9esjr+77STGc1DrixIJc2a7fNBd/lOACZkLhmX79fk7SvlBwYCyFYsVMTlnbICz/ 7E1hMOn5R7E9934Qhr8pyHH5R+OJuRxm0Hbw0Q4/TSNBjWZrhRYS98kNHAryBwCL IM4G5hvKr2rMd7O0Bc70yMIKCznquYvtmpUXF0gcj49a5VAEoRvQfnUhPPhdSGmr E8ebl9BiO44H26ah29RgED/d2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArkF81b iqxVCyUtM1Vcy3EhVKjmMB8GA1UdIwQYMBaAFLU7zhYaz2MF7AVcWaiR6CKhHvgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS82NTlFOTAxMEVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi90VHZPRmhyUFl3WHNCVnhacUpIb0lxRWUt QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RUdk9GaHJQWXdYc0JWeFpxSkhvSXFFZS1BUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS82NTlFOTAxMEVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi90VHZPRmhyUFl3 WHNCVnhacUpIb0lxRWUtQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASGuzOaQgw+WzFnEfcX971KkJM3m6XLKyJWJY4P4E7BkkTd8VKdM8H KlaLaRWYWljUsbOyg3qpaT+dj2MN0Am769Y5GbYKvvysarrgtVYbbTbsioPKDbZt 39UFtkN+i3QLh1H5JvtOnN3sm9u5UoR0Q9VE0U7rTG8uOTeCCtszOeizW/8Y71Be zC7uHFR/UM8A54KgdXp6vMixN0QllAfOSudXoc2xQwrcrhf9j5cRhA7XZfu4rJ/n u4QA33ydyc9HGiQnIv/EboJ4a82+E/IZS/XkQ4RVaxKGFlJBM0U5kzHXk4R4Xebi crEkS095qYXNAxjK0Z/VTKyOaa62FOug -----END CERTIFICATE-----Generated at Sun Jun 15 10:04:36 2025 by rpki-client