$ rpki-client -vvf rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft File: rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft (raw, json) Hash identifier: pfAlw9Yu3wWxDpxjrSWjxfmT2rQbLQdDxkT5VQc4occ= Subject key identifier: 75:3F:06:8C:CF:9A:CF:2E:A5:47:2D:67:3D:15:2E:8A:F8:58:4F:BC Authority key identifier: AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F Certificate issuer: /CN=A918EBC3/serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft Manifest number: 0862 Signing time: Thu 12 Jun 2025 20:26:09 +0000 Manifest this update: Thu 12 Jun 2025 20:26:09 +0000 Manifest next update: Thu 19 Jun 2025 20:26:09 +0000 Files and hashes: 1: rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl (hash: lR55c6T2QDkBNLFjqJUr6taIQ2/oPnNKqt47IRJM69M=) 2: 7CDBE740C7FD11EAB795396AC4F9AE02.roa (hash: p0a0nQBisH4VKwtpLEiKDNLpUVAu9yIvpOIZZoB51RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EBC3, serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Validity Not Before: Jun 12 20:26:09 2025 GMT Not After : Jun 19 20:26:09 2025 GMT Subject: CN=684b37e1-ebb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7b:cd:b9:59:9d:c2:d0:30:11:fe:3a:e4:67: fe:86:d8:a1:ea:e7:8a:9d:23:cb:59:94:25:49:fa: cf:01:46:6e:cc:40:7b:b6:e0:34:8f:67:87:ff:53: 83:4b:cb:c1:59:2d:be:af:45:9d:dc:2b:b3:12:b6: 7e:a6:66:26:29:af:64:e8:cd:a1:a7:56:85:4f:98: bd:7a:2e:ce:40:68:d9:8b:ad:4b:90:18:c2:2b:34: 27:6b:3c:fd:15:74:25:b2:4c:26:ac:bb:f3:27:02: 62:78:2e:57:68:25:0a:c9:d2:8d:e1:f2:fa:94:9f: fd:1f:87:4e:4b:70:dd:bc:9f:9a:b2:38:52:0e:7f: 05:19:0b:61:82:34:51:44:93:eb:4f:64:b3:3d:78: ac:e6:83:36:32:01:a4:1e:37:f1:6b:ea:de:d1:83: 06:fb:f3:a1:fd:b9:e4:41:11:73:19:36:a1:82:7b: 01:ec:54:69:0e:01:85:49:2b:e0:5d:91:a1:3b:46: 5d:f8:7a:dd:c9:47:76:7b:56:e7:eb:15:00:b6:cd: 74:66:93:63:43:d2:3f:ef:54:7b:9b:85:99:06:d5: 79:ef:f9:d7:55:d0:81:34:95:bd:2f:e6:80:e0:9c: 8d:83:b4:4e:75:3b:11:f2:b8:1e:11:20:c4:b1:0f: 2f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3F:06:8C:CF:9A:CF:2E:A5:47:2D:67:3D:15:2E:8A:F8:58:4F:BC X509v3 Authority Key Identifier: keyid:AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:29:65:88:e6:2e:8f:5f:1d:16:d1:6b:50:9f:8c:98:38:fb: 59:89:c9:ef:c2:8e:bf:4b:e6:ab:91:73:21:11:74:dd:fd:2c: 78:e3:c2:2f:2b:8f:de:1a:27:3b:68:c0:42:37:ae:1a:71:fe: 75:f7:18:43:7a:ae:69:e4:24:d3:4c:5a:a3:b8:89:8d:e5:b4: f6:26:f0:03:52:d7:bb:57:bb:f3:95:15:d5:76:a0:a7:ac:d1: 8f:e8:8b:cd:a6:93:3e:d2:ac:56:44:d7:40:be:47:4c:3c:9e: 6d:96:5a:c8:6b:a3:11:2b:25:46:ff:8f:08:93:63:49:fd:86: 7b:9d:6a:fa:cb:02:69:f6:79:1a:10:0d:24:8c:96:b1:70:5b: eb:5f:6b:3a:c7:96:d5:ef:d2:62:ef:62:63:29:68:a6:3d:29: ca:a5:09:cd:f8:69:60:85:fe:07:0f:f8:b1:42:7d:8c:6c:09: a2:96:5b:b3:70:e2:74:b8:34:b3:b9:38:50:cc:82:a0:15:a2: 63:8d:dc:41:cd:db:5a:f9:66:e2:4c:33:5a:ec:47:b7:c1:9c: b5:74:ae:22:20:ce:cd:e1:8b:e3:51:42:76:0a:8d:20:a7:a5: b2:4c:42:6d:d4:02:c2:1a:03:9d:50:64:85:e0:f3:b8:7c:b8: 41:17:3b:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVCQzMxMTAvBgNVBAUTKEFDNTYwNzBEQkU1RUU2REJCRjY3MTE5NzM4NDcyMzMx Mjc5MTdBMkYwHhcNMjUwNjEyMjAyNjA5WhcNMjUwNjE5MjAyNjA5WjAYMRYwFAYD VQQDEw02ODRiMzdlMS1lYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXvNuVmdwtAwEf465Gf+htih6ueKnSPLWZQlSfrPAUZuzEB7tuA0j2eH/1OD S8vBWS2+r0Wd3CuzErZ+pmYmKa9k6M2hp1aFT5i9ei7OQGjZi61LkBjCKzQnazz9 FXQlskwmrLvzJwJieC5XaCUKydKN4fL6lJ/9H4dOS3DdvJ+asjhSDn8FGQthgjRR RJPrT2SzPXis5oM2MgGkHjfxa+re0YMG+/Oh/bnkQRFzGTahgnsB7FRpDgGFSSvg XZGhO0Zd+HrdyUd2e1bn6xUAts10ZpNjQ9I/71R7m4WZBtV57/nXVdCBNJW9L+aA 4JyNg7ROdTsR8rgeESDEsQ8vlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHU/BozP ms8upUctZz0VLor4WE+8MB8GA1UdIwQYMBaAFKxWBw2+Xubbv2cRlzhHIzEnkXov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUJDMy8wRDQxRkU1Q0M3 RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0dV9aeEdYT0Vjak1TZVJl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWUhEYjVlNXR1X1p4R1hPRWNqTVNlUmVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUJDMy8wRDQxRkU1Q0M3RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0 dV9aeEdYT0Vjak1TZVJlaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7KWWI5i6PXx0W0WtQn4yYOPtZicnvwo6/S+arkXMhEXTd/Sx448Iv K4/eGic7aMBCN64acf519xhDeq5p5CTTTFqjuImN5bT2JvADUte7V7vzlRXVdqCn rNGP6IvNppM+0qxWRNdAvkdMPJ5tllrIa6MRKyVG/48Ik2NJ/YZ7nWr6ywJp9nka EA0kjJaxcFvrX2s6x5bV79Ji72JjKWimPSnKpQnN+Glghf4HD/ixQn2MbAmilluz cOJ0uDSzuThQzIKgFaJjjdxBzdta+WbiTDNa7Ee3wZy1dK4iIM7N4YvjUUJ2Co0g p6WyTEJt1ALCGgOdUGSF4PO4fLhBFzti -----END CERTIFICATE-----Generated at Sat Jun 14 19:29:27 2025 by rpki-client