$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: esgWG1L4uF1oemZ/UnklJtumyFyUXVS5c0++YXSSZxc= Subject key identifier: 8A:A9:4F:8C:20:BC:B9:A1:5C:22:3A:E8:BA:9E:90:51:9C:BD:23:FA Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 10CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 10B3 Signing time: Sat 14 Jun 2025 17:15:39 +0000 Manifest this update: Sat 14 Jun 2025 17:15:39 +0000 Manifest next update: Sat 21 Jun 2025 17:15:39 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: YGaHe4rheY+rnd5KupYWmeRXXo4WQA4yodVnLhbScTU=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: lCmO2moRnEyFjHn2T0RrSpJHfoRMsDo8flibJ/q1im8=) 3: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: tpKBG2KlXfT/Zt122B62y1RWSYubHmXeyHELnt2EtS4=) 4: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: IHi+IFG70AY+pGCPcqa0F+qxqcr2LZY1LLXZfYW/jkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4302 (0x10ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Jun 14 17:15:39 2025 GMT Not After : Jun 21 17:15:39 2025 GMT Subject: CN=684dae3b-6dde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2b:ce:b4:b1:e6:02:06:6e:38:ab:0f:40:b4: f6:34:d5:25:9f:9f:3d:3c:80:8d:09:e6:10:8f:f9: f3:f8:7d:7b:e8:b5:9c:57:3f:a3:a0:30:d3:7b:ab: 1d:bd:14:ab:15:87:74:3b:90:f5:da:f6:dc:0c:af: 22:7c:ae:c8:de:d3:06:0d:c9:1f:f5:19:e1:51:da: 49:89:a4:90:55:95:bb:e0:52:86:cc:8e:65:c1:70: f3:b5:b0:f8:f3:53:9f:44:f5:20:de:b9:12:4f:4a: 45:93:ca:ad:a5:05:78:07:10:d2:36:c8:4f:a8:79: 88:dc:c9:01:07:1e:97:28:60:c0:4e:8d:dd:7b:97: d0:94:76:2d:20:cb:1d:66:a8:b8:14:80:dd:16:c2: ce:10:01:b4:ae:55:96:cc:95:d9:e9:21:40:4a:20: 9b:5b:38:1c:93:8e:91:c1:4f:15:eb:68:f6:eb:04: f5:c4:64:58:10:6b:65:c9:67:17:35:cd:6b:d2:41: 64:df:e1:bf:24:83:b2:2f:49:d6:3c:79:b3:fa:15: 20:53:0e:41:e7:77:8a:c7:e9:e2:03:b8:f7:82:4c: 0b:fc:cc:83:f5:a5:8d:0b:15:98:bb:e6:7a:b4:32: 49:bf:df:e7:34:d4:18:54:e1:3b:70:4d:04:f6:06: 2e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A9:4F:8C:20:BC:B9:A1:5C:22:3A:E8:BA:9E:90:51:9C:BD:23:FA X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:84:88:e7:26:4c:ba:32:f0:b4:7e:06:d1:50:9e:ad:99:64: d3:8c:22:54:be:d2:cf:e9:0f:8d:0d:80:70:71:83:49:4d:00: 41:d1:18:48:c2:e1:d1:54:82:52:55:ae:8c:74:7b:62:da:0c: c5:43:0e:33:c4:34:f6:41:90:bd:ed:9a:9d:c0:f9:56:e3:7f: 60:08:92:9d:97:cf:f3:7c:b1:42:b3:e1:d4:d1:57:fd:80:01: 8c:66:b8:cd:ee:82:65:11:e3:84:92:8c:f3:0b:ce:44:81:ed: 6d:05:08:7d:fc:f4:ac:21:9e:19:30:03:91:58:0d:cd:fc:90: 69:b9:2f:17:34:05:25:b8:74:8b:31:af:91:ea:58:b0:00:72: 96:35:cb:30:c7:da:2f:69:90:e5:d9:6f:e6:36:29:a0:bf:da: 6c:b7:f0:a7:ae:c6:9b:70:89:2f:5e:4f:3b:74:23:85:9f:87: 24:ee:8d:2d:90:4b:19:9d:d6:4a:d9:44:72:c4:0d:18:d4:cc: 71:85:57:53:96:18:ad:c2:35:4b:0e:d8:ad:9c:e1:36:63:02: 99:cf:84:fc:f7:bf:27:ae:31:5d:4a:30:f5:cc:eb:b1:73:81: 7a:10:d4:04:e8:ec:ef:21:df:34:ff:4e:78:6e:a5:85:62:03: 3b:e1:d4:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjUwNjE0MTcxNTM5WhcNMjUwNjIxMTcxNTM5WjAYMRYwFAYD VQQDEw02ODRkYWUzYi02ZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSvOtLHmAgZuOKsPQLT2NNUln589PICNCeYQj/nz+H176LWcVz+joDDTe6sd vRSrFYd0O5D12vbcDK8ifK7I3tMGDckf9RnhUdpJiaSQVZW74FKGzI5lwXDztbD4 81OfRPUg3rkST0pFk8qtpQV4BxDSNshPqHmI3MkBBx6XKGDATo3de5fQlHYtIMsd Zqi4FIDdFsLOEAG0rlWWzJXZ6SFASiCbWzgck46RwU8V62j26wT1xGRYEGtlyWcX Nc1r0kFk3+G/JIOyL0nWPHmz+hUgUw5B53eKx+niA7j3gkwL/MyD9aWNCxWYu+Z6 tDJJv9/nNNQYVOE7cE0E9gYuLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqpT4wg vLmhXCI66LqekFGcvSP6MB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBThIjnJky6MvC0fgbRUJ6tmWTTjCJUvtLP6Q+NDYBwcYNJTQBB0RhI wuHRVIJSVa6MdHti2gzFQw4zxDT2QZC97ZqdwPlW439gCJKdl8/zfLFCs+HU0Vf9 gAGMZrjN7oJlEeOEkozzC85Ege1tBQh9/PSsIZ4ZMAORWA3N/JBpuS8XNAUluHSL Ma+R6liwAHKWNcswx9ovaZDl2W/mNimgv9pst/CnrsabcIkvXk87dCOFn4ck7o0t kEsZndZK2URyxA0Y1MxxhVdTlhitwjVLDtitnOE2YwKZz4T8978nrjFdSjD1zOux c4F6ENQE6OzvId80/054bqWFYgM74dRi -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:46 2025 by rpki-client