$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: +rOAIymELbI31mxYbYQROTbApQeGK/v0Dg+UBPTI26A= Subject key identifier: 30:05:20:F9:35:55:28:44:D4:AF:BF:6C:3B:ED:54:45:86:B8:62:4C Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0A8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0A84 Signing time: Fri 20 Jun 2025 19:30:22 +0000 Manifest this update: Fri 20 Jun 2025 19:30:22 +0000 Manifest next update: Fri 27 Jun 2025 19:30:22 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: 4XQ+2+znbFI0APb+uYWM1rzrFN+OS84TegCERIxFbKk=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Jun 20 19:30:22 2025 GMT Not After : Jun 27 19:30:22 2025 GMT Subject: CN=6855b6ce-b553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:76:c9:4c:10:f8:3f:a9:14:48:d2:8f:ed:21: ad:61:fa:ff:4d:e7:14:a7:da:46:75:d7:e1:9f:20: 18:b2:8d:dd:7a:2c:d1:78:48:20:ff:de:9f:05:6a: e0:b9:4a:5d:5b:4f:f8:8b:9c:99:06:22:38:d8:f4: 3e:21:65:63:c1:bd:a0:27:4b:06:92:00:bd:18:1c: d4:0b:70:fb:b2:67:90:1f:76:b0:c0:a8:ea:46:90: 9c:1f:a7:be:12:00:fe:c6:11:e8:cc:f3:06:32:06: e0:3a:74:7d:e7:ef:36:89:64:99:93:4b:94:d9:c7: d6:93:cc:29:55:7e:08:70:91:ed:0f:ff:14:35:94: 41:a5:73:15:06:55:fc:ef:36:0f:ed:02:6d:ff:83: 89:d6:6b:32:cb:02:f6:cd:de:0a:55:d6:46:66:01: 29:a1:09:5c:3c:8b:ea:f9:06:53:93:64:74:9c:9d: 5e:6b:5f:2c:f3:9c:5a:cb:dd:8b:87:6b:3e:56:f6: d6:bb:8d:69:4d:b6:c2:80:99:6e:0d:8b:11:d2:52: 78:d3:eb:b6:86:37:87:eb:6e:d0:64:d3:e0:7c:0a: 6a:79:fa:6b:4a:42:98:fe:1a:4f:5c:8d:3e:bf:c9: 76:e6:f4:13:ed:ce:31:79:28:c9:38:df:03:32:d1: 8f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:05:20:F9:35:55:28:44:D4:AF:BF:6C:3B:ED:54:45:86:B8:62:4C X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:ee:7f:5f:6e:58:3e:2c:5a:30:42:85:26:ac:5b:3b:84:46: 7c:b8:63:4d:8b:33:a4:5b:ef:f9:47:4f:0a:ae:62:86:79:f2: ee:7c:44:67:a7:a4:5e:89:b5:3f:3d:31:2d:f4:ef:09:5a:5c: 00:d6:2d:fd:14:bb:b7:bb:64:19:42:69:6e:7f:d1:25:55:53: 25:9a:fd:31:c1:db:74:98:02:25:44:56:9c:0d:97:46:a7:12: 7a:23:fa:34:85:b7:0e:a4:48:50:c2:8b:b3:d7:4f:a9:2f:6f: 9e:89:c9:e5:21:3d:4b:de:8f:74:2b:27:45:74:ab:20:b4:4a: fc:5c:f7:32:16:1f:c3:82:fb:83:29:27:1d:92:da:51:6a:e7: 0b:87:24:c1:b1:e9:4a:fd:bd:0e:a0:f6:d1:9c:d4:05:41:74: f1:99:c9:4e:07:ea:d7:11:c3:8d:8f:df:4a:b6:c0:0f:c3:bc: 6f:ff:f7:38:66:b9:64:51:ad:79:ae:f2:a9:21:e9:2d:2b:e3: 14:0c:e1:fa:b2:10:d6:a5:bc:48:66:18:56:fd:c3:f9:1e:b6: df:68:17:b2:41:fe:32:f3:16:60:fe:02:32:d5:37:10:04:d6: 95:d3:24:4a:12:ff:fe:b3:2e:e0:4a:db:f0:81:30:8e:e1:45: 2c:0b:2c:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUwNjIwMTkzMDIyWhcNMjUwNjI3MTkzMDIyWjAYMRYwFAYD VQQDEw02ODU1YjZjZS1iNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HbJTBD4P6kUSNKP7SGtYfr/TecUp9pGddfhnyAYso3deizReEgg/96fBWrg uUpdW0/4i5yZBiI42PQ+IWVjwb2gJ0sGkgC9GBzUC3D7smeQH3awwKjqRpCcH6e+ EgD+xhHozPMGMgbgOnR95+82iWSZk0uU2cfWk8wpVX4IcJHtD/8UNZRBpXMVBlX8 7zYP7QJt/4OJ1msyywL2zd4KVdZGZgEpoQlcPIvq+QZTk2R0nJ1ea18s85xay92L h2s+VvbWu41pTbbCgJluDYsR0lJ40+u2hjeH627QZNPgfApqefprSkKY/hpPXI0+ v8l25vQT7c4xeSjJON8DMtGPYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAFIPk1 VShE1K+/bDvtVEWGuGJMMB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX7n9fblg+LFowQoUmrFs7hEZ8uGNNizOkW+/5R08KrmKGefLufERn p6ReibU/PTEt9O8JWlwA1i39FLu3u2QZQmluf9ElVVMlmv0xwdt0mAIlRFacDZdG pxJ6I/o0hbcOpEhQwouz10+pL2+eicnlIT1L3o90KydFdKsgtEr8XPcyFh/DgvuD KScdktpRaucLhyTBselK/b0OoPbRnNQFQXTxmclOB+rXEcONj99KtsAPw7xv//c4 ZrlkUa15rvKpIektK+MUDOH6shDWpbxIZhhW/cP5HrbfaBeyQf4y8xZg/gIy1TcQ BNaV0yRKEv/+sy7gStvwgTCO4UUsCyyH -----END CERTIFICATE-----Generated at Fri Jun 20 22:32:12 2025 by rpki-client