$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: /KijJYaMi2cnreN0lGVDg2qB3XI6yBlrN2EHRm12KcI= Subject key identifier: 4E:E6:64:E9:B2:8A:52:68:CF:A7:23:0F:CE:12:3F:56:0D:5B:23:D2 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0ABB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 132B Signing time: Wed 18 Jun 2025 19:20:28 +0000 Manifest this update: Wed 18 Jun 2025 19:20:27 +0000 Manifest next update: Wed 25 Jun 2025 19:20:27 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: MIJa2MykfkzU2ssY6eEe2IltvxS76va1DLaI/oaUnHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2747 (0xabb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Jun 18 19:20:27 2025 GMT Not After : Jun 25 19:20:27 2025 GMT Subject: CN=6853117c-837e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3e:f1:e8:e7:ce:80:49:b9:d0:7c:62:3b:25: 7f:e1:77:aa:17:6b:32:4b:3e:a5:e4:ae:d0:b4:ba: 08:75:e9:50:8b:90:0a:f7:b1:9d:db:de:a3:92:a7: 1d:6e:2d:48:82:80:70:4b:94:54:dd:e7:20:49:a7: 47:c3:f7:0d:be:40:3a:33:86:83:d9:72:1d:82:a2: 76:cd:5a:37:db:61:2b:65:9c:93:ee:df:8d:90:b9: 94:35:9f:d0:4a:99:34:16:a2:5a:c2:d3:3e:5a:38: 41:43:44:c7:ee:40:c4:34:b9:87:2f:dc:37:20:64: 94:e8:02:02:63:80:c0:08:92:97:fd:85:5d:ac:95: a1:5f:03:af:bb:23:f0:f1:49:10:78:27:99:e8:f7: 2c:d3:52:20:a6:d8:22:0d:a9:f8:ee:be:fa:da:1b: 59:35:5c:93:9d:65:98:4b:91:09:11:4a:06:2e:10: 11:e8:76:3e:1c:7e:44:ff:58:10:16:34:1c:55:bf: a2:cf:d1:86:2b:f0:6b:ec:0c:58:a7:fc:a6:ae:66: a0:60:f9:61:22:f1:04:97:5a:cc:67:f9:4d:1f:d2: 06:94:56:04:27:83:94:c0:aa:cb:82:ff:22:fc:88: d7:65:b5:cd:91:60:22:5c:3c:4e:80:ab:90:09:3a: 1f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E6:64:E9:B2:8A:52:68:CF:A7:23:0F:CE:12:3F:56:0D:5B:23:D2 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:ec:5d:f0:b2:c2:ef:b2:5f:da:b9:87:62:82:a4:71:41:d5: eb:9a:50:4a:3f:36:1f:7a:bf:ac:dc:cf:24:bd:f8:36:0b:5d: 16:99:0a:39:12:a2:4a:b0:eb:d0:e3:ec:60:fa:60:14:94:e6: ca:55:4a:97:be:26:c7:e5:b4:70:bf:da:02:86:ad:86:3e:a5: b6:4a:1c:65:ef:4c:23:75:c5:dc:57:55:3a:78:58:c8:ca:13: 59:3d:6f:3f:ff:25:bb:95:19:66:42:26:71:b9:65:30:74:69: e5:70:45:db:f5:f8:68:01:db:80:6f:19:56:80:3a:48:d7:ee: d0:f3:b2:e0:28:f3:a2:43:db:c5:ac:4f:84:5b:4d:11:a5:15: 7f:ec:59:94:ad:d2:3f:59:b2:3b:26:6e:8a:1f:0a:33:72:cc: a6:b7:9c:aa:c4:03:50:48:78:fa:35:5e:62:ed:f5:e0:0a:07: 32:08:84:3c:18:67:07:55:f7:6a:2f:a8:8d:73:1d:b0:86:ae: 07:5a:c6:50:39:66:89:1a:64:58:e6:91:ca:07:bd:aa:a5:6c: 99:f7:c2:6e:35:1d:53:09:d4:56:5f:f8:f8:69:00:a7:2b:57: c8:28:41:39:c4:12:2f:85:2b:5a:b9:25:a3:58:98:64:7c:9c: fb:b8:67:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUwNjE4MTkyMDI3WhcNMjUwNjI1MTkyMDI3WjAYMRYwFAYD VQQDEw02ODUzMTE3Yy04MzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvT7x6OfOgEm50HxiOyV/4XeqF2sySz6l5K7QtLoIdelQi5AK97Gd296jkqcd bi1IgoBwS5RU3ecgSadHw/cNvkA6M4aD2XIdgqJ2zVo322ErZZyT7t+NkLmUNZ/Q Spk0FqJawtM+WjhBQ0TH7kDENLmHL9w3IGSU6AICY4DACJKX/YVdrJWhXwOvuyPw 8UkQeCeZ6Pcs01IgptgiDan47r762htZNVyTnWWYS5EJEUoGLhAR6HY+HH5E/1gQ FjQcVb+iz9GGK/Br7AxYp/ymrmagYPlhIvEEl1rMZ/lNH9IGlFYEJ4OUwKrLgv8i /IjXZbXNkWAiXDxOgKuQCTofjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7mZOmy ilJoz6cjD84SP1YNWyPSMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ7F3wssLvsl/auYdigqRxQdXrmlBKPzYfer+s3M8kvfg2C10WmQo5 EqJKsOvQ4+xg+mAUlObKVUqXvibH5bRwv9oChq2GPqW2Shxl70wjdcXcV1U6eFjI yhNZPW8//yW7lRlmQiZxuWUwdGnlcEXb9fhoAduAbxlWgDpI1+7Q87LgKPOiQ9vF rE+EW00RpRV/7FmUrdI/WbI7Jm6KHwozcsymt5yqxANQSHj6NV5i7fXgCgcyCIQ8 GGcHVfdqL6iNcx2whq4HWsZQOWaJGmRY5pHKB72qpWyZ98JuNR1TCdRWX/j4aQCn K1fIKEE5xBIvhStauSWjWJhkfJz7uGcQ -----END CERTIFICATE-----Generated at Fri Jun 20 21:24:09 2025 by rpki-client