$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: /qZmPo4PKQ9jLwEpskL/l1+JCosm2lfyO6KMr6FBXWA= Subject key identifier: 54:79:46:7E:D5:60:4D:28:A5:9A:7B:F7:4B:1A:B5:D2:9A:22:20:F7 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0AEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0AD3 Signing time: Sat 31 May 2025 19:30:53 +0000 Manifest this update: Sat 31 May 2025 19:30:53 +0000 Manifest next update: Sat 07 Jun 2025 19:30:53 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: AZKdx17ByVCrivJ4CtnKRsJJpp/LazJ7Y8ZohqbuEng=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2795 (0xaeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: May 31 19:30:53 2025 GMT Not After : Jun 7 19:30:53 2025 GMT Subject: CN=683b58ed-71d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a2:a2:e6:d1:cf:f3:63:89:38:93:2c:2a:c3: 2a:5c:4c:20:30:36:40:6f:d6:e0:2e:3b:68:ca:2c: 23:97:25:38:4c:88:0e:5f:49:bb:24:76:31:40:19: 9c:05:66:cc:22:81:ca:e9:c0:4c:ec:ec:ca:d1:69: b5:04:72:66:1c:12:68:b7:01:9c:80:8f:03:cd:e6: 67:28:b1:06:80:71:da:be:4b:f2:5c:0b:30:bd:e3: 9a:65:c7:0f:d0:0c:0d:e0:fd:e8:0b:41:9d:50:cb: 04:a2:ba:38:dc:a6:ba:b5:c2:01:65:8c:28:79:41: 65:c5:70:2a:16:42:e4:02:05:92:45:81:e9:3d:0e: 33:cd:f5:e3:1d:18:11:f0:77:5b:0b:17:8a:0e:2a: 27:7b:e8:a0:a8:87:8e:0b:90:73:ee:ff:64:bb:6b: 05:e7:4b:97:7c:7c:6d:97:02:5b:90:7c:17:55:88: 42:57:9e:21:49:05:6f:82:35:f7:37:0d:93:56:60: 71:c9:25:8c:2d:bc:00:e6:e6:4f:75:37:8c:b7:72: 5d:87:16:06:d3:3c:4e:4f:24:fc:ef:45:23:24:4f: 1d:31:b2:13:21:92:47:24:e8:11:41:92:98:15:88: 9c:74:7c:9d:ff:e1:33:11:4a:fd:dc:a3:53:b6:08: df:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:79:46:7E:D5:60:4D:28:A5:9A:7B:F7:4B:1A:B5:D2:9A:22:20:F7 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:6a:85:c9:1f:45:0a:2a:27:12:79:45:06:6d:8e:17:1c:1d: 28:bb:9e:c5:e9:b5:ea:02:8c:da:93:0e:24:15:60:a6:8f:9b: ca:fb:61:21:3f:26:0e:91:76:40:00:d2:bb:17:44:7f:9a:80: 69:23:df:a3:0d:ee:ed:e3:8c:ca:4c:17:c1:f3:9a:d4:08:97: d1:d5:30:82:bf:44:4e:e5:27:66:dc:2a:fe:82:a3:84:69:c2: 8d:c8:a5:63:c6:03:4d:91:3e:a7:b7:e9:95:d2:46:ff:3a:4a: 28:a9:4d:de:91:e2:99:08:b3:9f:bc:7e:40:7e:df:5d:64:a3: dd:2e:02:c9:33:0b:70:f3:2a:8f:4b:14:c9:f1:74:c7:7f:59: 26:c3:13:e4:e4:7a:9e:d7:0c:0c:08:4e:c8:27:7c:d8:24:27: 06:ba:cf:1a:11:0b:f0:53:65:ff:af:fd:43:af:0b:f5:5b:af: b4:59:a2:76:ed:3d:6c:63:d5:b9:f3:90:84:66:89:74:1c:ab: 22:e0:85:29:24:19:71:5d:b2:df:c7:98:7f:3a:9f:62:43:2a: c4:a7:58:3c:d9:57:20:1f:98:50:53:06:e3:6f:0e:b9:be:b4: 47:95:bb:f1:f7:e1:40:a1:26:74:e9:ca:5a:68:59:16:a4:fd: 88:54:1f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUwNTMxMTkzMDUzWhcNMjUwNjA3MTkzMDUzWjAYMRYwFAYD VQQDEw02ODNiNThlZC03MWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk6Ki5tHP82OJOJMsKsMqXEwgMDZAb9bgLjtoyiwjlyU4TIgOX0m7JHYxQBmc BWbMIoHK6cBM7OzK0Wm1BHJmHBJotwGcgI8DzeZnKLEGgHHavkvyXAswveOaZccP 0AwN4P3oC0GdUMsEoro43Ka6tcIBZYwoeUFlxXAqFkLkAgWSRYHpPQ4zzfXjHRgR 8HdbCxeKDione+igqIeOC5Bz7v9ku2sF50uXfHxtlwJbkHwXVYhCV54hSQVvgjX3 Nw2TVmBxySWMLbwA5uZPdTeMt3JdhxYG0zxOTyT870UjJE8dMbITIZJHJOgRQZKY FYicdHyd/+EzEUr93KNTtgjfvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR5Rn7V YE0opZp790satdKaIiD3MB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnaoXJH0UKKicSeUUGbY4XHB0ou57F6bXqAozakw4kFWCmj5vK+2Eh PyYOkXZAANK7F0R/moBpI9+jDe7t44zKTBfB85rUCJfR1TCCv0RO5Sdm3Cr+gqOE acKNyKVjxgNNkT6nt+mV0kb/OkooqU3ekeKZCLOfvH5Aft9dZKPdLgLJMwtw8yqP SxTJ8XTHf1kmwxPk5Hqe1wwMCE7IJ3zYJCcGus8aEQvwU2X/r/1Drwv1W6+0WaJ2 7T1sY9W585CEZol0HKsi4IUpJBlxXbLfx5h/Op9iQyrEp1g82VcgH5hQUwbjbw65 vrRHlbvx9+FAoSZ06cpaaFkWpP2IVB82 -----END CERTIFICATE-----Generated at Mon Jun 2 07:19:39 2025 by rpki-client