$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: ghgJ7L4Q5bEbENZ5hRXC+4qg9Weh0hx2kRgixE5p1OM= Subject key identifier: 4D:21:8E:6B:94:50:D8:1B:AC:53:3D:EF:BC:6A:BF:8D:27:A6:5C:F0 Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0B29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0B1C Signing time: Sat 14 Jun 2025 19:06:27 +0000 Manifest this update: Sat 14 Jun 2025 19:06:27 +0000 Manifest next update: Sat 21 Jun 2025 19:06:27 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: O2Hghg1k5i8xuVYGrnNFxSvojyaXtaYepHMC765in94=) 2: 26010A0605EF11F09181F913C4F9AE02.roa (hash: N9/aRucZG0vkV0NK+baiZCaCBLLblOnkOGbPF5TkJk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2857 (0xb29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016, serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: Jun 14 19:06:27 2025 GMT Not After : Jun 21 19:06:27 2025 GMT Subject: CN=684dc833-ea9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f7:ff:c5:b8:d4:a3:be:9c:ca:bc:a1:fb:2b: f6:3c:bb:08:a0:7d:ca:b0:52:de:85:c4:7c:df:6f: 7b:08:ce:b8:50:42:7b:c4:7e:6e:34:9e:6b:a5:e1: fc:19:06:dd:e7:98:ed:33:8c:76:fd:47:c6:23:50: c2:e3:9d:92:11:76:ba:57:74:34:10:63:99:c8:32: 9d:48:6c:4a:12:93:b9:4b:1a:9a:83:e9:18:ee:09: 0f:df:8a:50:d0:ae:59:e9:d7:7f:99:aa:54:f3:57: ab:9c:17:6c:8a:51:8b:92:d8:06:d4:9b:12:60:a7: fa:6e:54:c5:07:b6:a6:ac:7a:97:1c:d1:58:aa:75: c4:2d:c6:f8:85:d8:60:8d:b1:ea:0b:c4:a8:09:46: 12:1e:ec:df:af:92:b0:b5:d6:e9:60:f3:21:2c:6f: 65:1c:24:2b:48:d6:f8:a1:48:4e:60:e1:52:84:c0: 96:fd:ea:da:64:30:63:75:ed:bc:aa:e3:55:a6:97: 36:05:d4:f8:22:00:f9:b4:4b:9d:a8:f1:5a:15:fe: 8e:a0:98:30:1b:0b:d4:93:22:70:6b:02:e6:f5:67: 5c:34:12:56:a9:85:82:d3:cd:bd:57:00:d9:9c:9b: ff:73:fe:c8:d0:01:b6:aa:0c:9c:01:c7:4d:21:f1: ea:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:21:8E:6B:94:50:D8:1B:AC:53:3D:EF:BC:6A:BF:8D:27:A6:5C:F0 X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b2:16:01:b6:65:30:e8:1b:30:2e:cc:cf:21:0f:7e:c2:33: 3b:77:24:b4:dd:c7:8f:c2:05:02:0b:f5:41:9d:11:0a:ae:d2: eb:5d:e3:2a:b1:43:00:d2:0b:4b:30:73:b8:33:45:f6:76:e4: ba:11:62:57:10:9e:a9:01:52:0c:48:75:18:6e:64:4b:16:c6: 7e:ca:5f:7f:fa:51:a8:8d:7a:e7:95:88:4c:9d:7b:1a:65:a8: bb:cb:ec:f5:c6:a3:37:57:9e:e5:8a:cb:f1:12:72:3c:a2:80: b5:fd:20:33:c4:88:1c:f6:a5:e9:e0:ee:e3:9e:8f:11:b4:64: 54:fd:a3:b6:c4:2e:48:68:36:67:43:32:ea:c5:39:72:98:8a: c7:ff:92:dc:8d:3a:b1:4d:34:e5:24:c1:b9:ad:59:97:a2:fb: 63:58:4d:4d:67:39:80:fd:ff:2e:0d:8a:58:d4:ae:71:f4:8e: 07:df:8e:7a:cf:3f:27:74:7f:79:8f:98:05:a5:47:fa:9c:cb: d3:ed:8a:b4:23:3c:11:74:25:7a:34:c3:35:e2:73:9c:d7:24: 6a:52:1f:a9:39:0c:bd:c4:3f:c9:2a:71:e1:a4:f4:c4:38:d7: b6:fc:cb:29:2a:48:f7:22:39:9d:92:9a:5b:b2:5d:b7:06:c4: 71:e7:d7:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjUwNjE0MTkwNjI3WhcNMjUwNjIxMTkwNjI3WjAYMRYwFAYD VQQDEw02ODRkYzgzMy1lYTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/f/xbjUo76cyryh+yv2PLsIoH3KsFLehcR83297CM64UEJ7xH5uNJ5rpeH8 GQbd55jtM4x2/UfGI1DC452SEXa6V3Q0EGOZyDKdSGxKEpO5Sxqag+kY7gkP34pQ 0K5Z6dd/mapU81ernBdsilGLktgG1JsSYKf6blTFB7amrHqXHNFYqnXELcb4hdhg jbHqC8SoCUYSHuzfr5KwtdbpYPMhLG9lHCQrSNb4oUhOYOFShMCW/eraZDBjde28 quNVppc2BdT4IgD5tEudqPFaFf6OoJgwGwvUkyJwawLm9WdcNBJWqYWC0829VwDZ nJv/c/7I0AG2qgycAcdNIfHqjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0hjmuU UNgbrFM977xqv40nplzwMB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBishYBtmUw6BswLszPIQ9+wjM7dyS03cePwgUCC/VBnREKrtLrXeMq sUMA0gtLMHO4M0X2duS6EWJXEJ6pAVIMSHUYbmRLFsZ+yl9/+lGojXrnlYhMnXsa Zai7y+z1xqM3V57lisvxEnI8ooC1/SAzxIgc9qXp4O7jno8RtGRU/aO2xC5IaDZn QzLqxTlymIrH/5LcjTqxTTTlJMG5rVmXovtjWE1NZzmA/f8uDYpY1K5x9I4H3456 zz8ndH95j5gFpUf6nMvT7Yq0IzwRdCV6NMM14nOc1yRqUh+pOQy9xD/JKnHhpPTE ONe2/MspKkj3Ijmdkppbsl23BsRx59d8 -----END CERTIFICATE-----Generated at Sun Jun 15 08:37:21 2025 by rpki-client