$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft File: sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft (raw, json) Hash identifier: oWj6Bi//mrV3T3xmWGLmez03tEeTSFEOHKlXD12XQ/s= Subject key identifier: 8D:CB:08:DE:4E:C4:C8:BB:05:5D:E6:45:71:2D:98:24:EF:C0:21:12 Authority key identifier: B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 Certificate issuer: /CN=A911C53A/serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft Manifest number: 0F Signing time: Tue 01 Jul 2025 08:53:24 +0000 Manifest this update: Tue 01 Jul 2025 08:53:24 +0000 Manifest next update: Tue 08 Jul 2025 08:53:24 +0000 Files and hashes: 1: sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl (hash: epopgY6Qu7tjVqtIJoM6pmR8VAKQyejC5Olpdk2b8GE=) 2: BDF659C4445111F0945A7E49C4F9AE02.roa (hash: NrM1GT0GOIEPUd0x6/lOomv0lodf7Nxw+vo5Gb1q27Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53A, serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Validity Not Before: Jul 1 08:53:24 2025 GMT Not After : Jul 8 08:53:24 2025 GMT Subject: CN=6863a204-a841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:11:88:3b:36:8a:d5:72:4e:d8:a0:88:08:5e: 9e:85:06:68:f8:68:62:de:6f:e3:d1:b0:4b:9f:0a: 6e:97:77:4a:8e:18:1b:c9:b9:2a:da:60:52:1d:2c: f1:6f:df:81:be:92:18:38:d6:aa:0f:bc:0b:e8:bf: c3:b3:a0:a9:30:61:75:0a:ad:63:bf:74:36:b8:06: 15:60:f7:39:d1:bd:8e:39:c4:cc:6d:46:63:b9:c5: cb:a6:f8:3c:b1:eb:9c:dd:d5:71:00:13:fd:a0:21: 43:f1:64:1d:ee:c3:77:ee:24:ed:11:9e:bd:33:89: da:4c:ed:af:5a:a6:2b:5b:27:01:92:12:89:1c:b4: de:8a:84:85:71:81:9f:8f:99:c0:17:93:39:f9:6b: 50:06:fa:00:1b:72:7f:9f:ca:c9:9b:cf:21:53:52: a1:2b:51:91:2a:4a:ee:d6:12:2c:61:ba:12:f8:34: d3:1d:ec:f1:6d:4c:e6:4f:31:a1:5d:66:32:8b:38: 8f:ec:18:27:76:91:c8:88:ae:5b:7b:58:90:d0:a4: 71:5d:db:c7:4f:7b:e0:a2:c7:37:6b:ce:1b:7f:85: 6e:f3:61:f9:b1:d8:06:97:be:52:69:f3:42:5c:74: 49:31:e1:54:a0:3e:e8:64:cc:22:a7:f8:0d:bf:55: 96:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CB:08:DE:4E:C4:C8:BB:05:5D:E6:45:71:2D:98:24:EF:C0:21:12 X509v3 Authority Key Identifier: keyid:B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:74:b6:ec:27:cc:ce:c3:97:99:82:52:90:b3:b5:a8:76:4e: 85:c7:55:db:26:85:4a:04:46:6a:91:30:33:8d:46:88:ff:8b: 3e:88:08:29:7e:e3:15:7e:c2:9e:6c:a1:5b:75:88:5b:04:3a: cf:e3:4b:fa:5d:8a:86:ae:31:f8:3d:0b:50:cc:10:5a:d9:4a: 9c:30:4f:68:e2:33:f6:66:78:6b:e3:fa:ed:00:34:b3:56:d4: a4:50:44:62:df:8a:83:6e:69:c7:14:9d:88:1b:ab:76:87:79: c6:f2:e8:cb:7e:e4:48:00:45:09:bb:71:c8:dd:6c:2a:b5:fd: d9:e6:10:1b:fb:6b:bf:3b:72:84:26:18:b5:93:14:36:4f:8e: 10:c3:2b:0f:f2:bf:54:53:2a:b2:32:fd:e7:f9:51:ef:94:fc: 9d:ae:b8:91:fb:f3:5b:92:c6:08:5a:74:f5:cc:2c:5f:60:43: 15:b2:00:fb:55:61:47:31:93:29:47:9b:ac:16:4d:41:06:6b: 73:73:49:cb:78:1e:23:70:3d:c3:ae:fd:bb:2f:fb:4f:79:4a: ce:8e:52:a4:bb:fb:a6:6b:a9:8d:6b:c9:dd:d2:20:a3:ed:09: 96:f4:6b:b6:cd:47:33:b1:2b:b6:f3:d9:0b:35:b9:96:b2:d1: 13:da:56:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzUzQTExMC8GA1UEBRMoQjA4QjU5RTVEMTA3MDVDNUNCMkQzQ0RCODU2NUIzMjhE NTAyRjU1MDAeFw0yNTA3MDEwODUzMjRaFw0yNTA3MDgwODUzMjRaMBgxFjAUBgNV BAMTDTY4NjNhMjA0LWE4NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6EYg7NorVck7YoIgIXp6FBmj4aGLeb+PRsEufCm6Xd0qOGBvJuSraYFIdLPFv 34G+khg41qoPvAvov8OzoKkwYXUKrWO/dDa4BhVg9znRvY45xMxtRmO5xcum+Dyx 65zd1XEAE/2gIUPxZB3uw3fuJO0Rnr0zidpM7a9apitbJwGSEokctN6KhIVxgZ+P mcAXkzn5a1AG+gAbcn+fysmbzyFTUqErUZEqSu7WEixhuhL4NNMd7PFtTOZPMaFd ZjKLOI/sGCd2kciIrlt7WJDQpHFd28dPe+Cixzdrzht/hW7zYfmx2AaXvlJp80Jc dEkx4VSgPuhkzCKn+A2/VZYXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjcsI3k7E yLsFXeZFcS2YJO/AIRIwHwYDVR0jBBgwFoAUsItZ5dEHBcXLLTzbhWWzKNUC9VAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDNTNBLzQ3NDUwNTZFNDQ1 MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNYTExUemJoV1d6S05VQzlW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0l0WjVkRUhCY1hMTFR6YmhXV3pLTlVDOVZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD NTNBLzQ3NDUwNTZFNDQ1MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNY TExUemJoV1d6S05VQzlWQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADt0tuwnzM7Dl5mCUpCztah2ToXHVdsmhUoERmqRMDONRoj/iz6ICCl+ 4xV+wp5soVt1iFsEOs/jS/pdioauMfg9C1DMEFrZSpwwT2jiM/ZmeGvj+u0ANLNW 1KRQRGLfioNuaccUnYgbq3aHecby6Mt+5EgARQm7ccjdbCq1/dnmEBv7a787coQm GLWTFDZPjhDDKw/yv1RTKrIy/ef5Ue+U/J2uuJH781uSxghadPXMLF9gQxWyAPtV YUcxkylHm6wWTUEGa3NzSct4HiNwPcOu/bsv+095Ss6OUqS7+6ZrqY1ryd3SIKPt CZb0a7bNRzOxK7bz2Qs1uZay0RPaVvw= -----END CERTIFICATE-----Generated at Tue Jul 1 19:52:10 2025 by rpki-client