$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft File: plb2DT8RZBpXG9H_rSRg3UV2My0.mft (raw, json) Hash identifier: nV00dg+pfV1gzwyrSQ22B7iqJ0nnvQOeVAbY5y8Qpv4= Subject key identifier: 54:33:B5:07:62:8C:39:92:33:D5:D1:B2:BB:DE:68:3A:67:E7:2A:91 Authority key identifier: A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D Certificate issuer: /CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Certificate serial: 2828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft Manifest number: 2823 Signing time: Sat 14 Jun 2025 15:35:15 +0000 Manifest this update: Sat 14 Jun 2025 15:35:15 +0000 Manifest next update: Sat 21 Jun 2025 15:35:15 +0000 Files and hashes: 1: plb2DT8RZBpXG9H_rSRg3UV2My0.crl (hash: WYyIzAwyLIndQdCPcJ2fVasiPZkE7rhJ29xVbmhIdiM=) 2: 27F621183B5D11EB97506B7AC4F9AE02.roa (hash: +GMl4Xu8VPkNDBOVR1baOfDzoyBidluum1AgF508r2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10280 (0x2828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Validity Not Before: Jun 14 15:35:15 2025 GMT Not After : Jun 21 15:35:15 2025 GMT Subject: CN=684d96b3-94d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2a:b0:d5:06:c0:eb:85:73:ff:10:e4:ec:45: 12:95:9c:e2:44:6c:9e:7f:68:b5:27:2a:4c:65:fb: 1a:9b:7b:0a:1f:0f:0e:ba:e4:27:5c:5f:1e:01:a2: 8d:64:8e:cc:d8:4e:7f:21:f0:24:93:ae:ab:c1:2f: 76:5c:fb:1e:2f:1b:1e:91:ee:e2:b6:c1:fb:55:21: 8d:ce:0e:62:50:8c:81:68:12:90:6e:44:a9:d6:a1: 90:90:d0:21:d8:38:bc:ff:1c:50:20:a1:4d:37:08: 50:5d:94:99:0d:f9:8f:ba:ae:9b:2a:a4:93:b6:bd: d3:b5:0d:a6:34:3c:ee:c2:59:29:b1:b7:68:c2:d6: ca:8b:da:e7:2e:24:71:cc:66:7f:1a:20:bd:2d:e9: c0:58:20:9e:d8:2e:a9:f1:b1:79:72:ef:e6:a7:de: 0c:3b:ee:5d:7a:8c:74:58:e7:46:8c:37:8f:64:ee: 4d:63:07:c0:e3:5b:64:44:5b:b5:63:3c:d9:a3:8b: cb:ab:9e:4e:50:dc:85:a9:41:ff:b6:ff:34:6a:39: e6:89:ae:b8:79:d2:ba:4e:a5:a1:c3:81:3d:51:33: 64:dc:fe:21:79:b4:37:86:1e:4b:59:e5:dc:36:03: 19:8c:bb:91:d2:f2:3a:e9:0f:de:7c:ed:8c:d2:c0: 9a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:33:B5:07:62:8C:39:92:33:D5:D1:B2:BB:DE:68:3A:67:E7:2A:91 X509v3 Authority Key Identifier: keyid:A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:f0:a6:2f:fd:7c:83:49:0a:fc:ba:74:7e:63:de:2f:6c:c5: fd:8b:fb:a3:73:2d:81:91:c4:8d:51:76:0c:9c:68:8a:0a:e4: ee:71:cc:19:88:e0:7a:f6:02:fd:2a:8f:5a:2b:42:eb:80:66: 42:56:57:09:4b:c7:d3:6c:fb:32:9e:29:d9:07:d7:20:d2:57: 9e:cb:e7:82:c4:3b:13:aa:54:aa:d1:0e:42:99:47:03:c3:3f: c7:a2:38:43:f3:19:97:16:49:c0:bf:1e:35:45:f0:27:87:c8: ab:a2:e4:59:15:ff:7d:9d:b7:29:7d:dc:8f:ef:5f:99:10:c3: 00:9c:7a:89:5f:ee:2d:f1:29:35:a9:da:21:31:7e:64:fe:41: 07:51:c3:f1:40:15:06:7a:03:eb:a0:68:33:e5:78:06:de:36: e0:a9:2e:69:2a:ef:76:2b:4e:7d:81:a0:5d:0c:8c:42:ae:ea: 15:ff:0c:ef:b3:20:73:bc:18:60:a3:21:30:8e:2d:87:3b:4b: 01:b5:1a:17:8f:39:2d:de:72:22:e7:de:6b:17:ed:5b:f8:f2: a0:3f:c4:64:22:4e:ca:74:b5:7a:48:ee:2e:df:1f:ff:59:ab: da:5f:52:13:19:c4:b4:69:1e:cb:90:07:b8:5f:53:c2:d0:73: 8c:ed:82:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKEE2NTZGNjBEM0YxMTY0MUE1NzFCRDFGRkFEMjQ2MERE NDU3NjMzMkQwHhcNMjUwNjE0MTUzNTE1WhcNMjUwNjIxMTUzNTE1WjAYMRYwFAYD VQQDEw02ODRkOTZiMy05NGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriqw1QbA64Vz/xDk7EUSlZziRGyef2i1JypMZfsam3sKHw8OuuQnXF8eAaKN ZI7M2E5/IfAkk66rwS92XPseLxseke7itsH7VSGNzg5iUIyBaBKQbkSp1qGQkNAh 2Di8/xxQIKFNNwhQXZSZDfmPuq6bKqSTtr3TtQ2mNDzuwlkpsbdowtbKi9rnLiRx zGZ/GiC9LenAWCCe2C6p8bF5cu/mp94MO+5deox0WOdGjDePZO5NYwfA41tkRFu1 YzzZo4vLq55OUNyFqUH/tv80ajnmia64edK6TqWhw4E9UTNk3P4hebQ3hh5LWeXc NgMZjLuR0vI66Q/efO2M0sCaOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQztQdi jDmSM9XRsrveaDpn5yqRMB8GA1UdIwQYMBaAFKZW9g0/EWQaVxvR/60kYN1FdjMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9FQzg3MEI4NjhG MkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpCcFhHOUhfclNSZzNVVjJN eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BsYjJEVDhSWkJwWEc5SF9yU1JnM1VWMk15MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9FQzg3MEI4NjhGMkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpC cFhHOUhfclNSZzNVVjJNeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb8KYv/XyDSQr8unR+Y94vbMX9i/ujcy2BkcSNUXYMnGiKCuTuccwZ iOB69gL9Ko9aK0LrgGZCVlcJS8fTbPsyninZB9cg0leey+eCxDsTqlSq0Q5CmUcD wz/HojhD8xmXFknAvx41RfAnh8irouRZFf99nbcpfdyP71+ZEMMAnHqJX+4t8Sk1 qdohMX5k/kEHUcPxQBUGegProGgz5XgG3jbgqS5pKu92K059gaBdDIxCruoV/wzv syBzvBhgoyEwji2HO0sBtRoXjzkt3nIi595rF+1b+PKgP8RkIk7KdLV6SO4u3x// WavaX1ITGcS0aR7LkAe4X1PC0HOM7YJv -----END CERTIFICATE-----Generated at Sun Jun 15 08:05:48 2025 by rpki-client