$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft File: C7AFcf321rzGNEbrOmSR-uqpCG8.mft (raw, json) Hash identifier: Q0rjthfJ/P6w6cXBqvbC9Mwh0p8b+crzgT4m0Fzyn1U= Subject key identifier: E1:7B:E7:7A:2A:DB:E3:5F:91:03:3A:30:C3:C4:A5:5C:BC:A2:F2:CF Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 054E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft Manifest number: 0549 Signing time: Mon 30 Jun 2025 23:50:00 +0000 Manifest this update: Mon 30 Jun 2025 23:49:59 +0000 Manifest next update: Mon 07 Jul 2025 23:49:59 +0000 Files and hashes: 1: C7AFcf321rzGNEbrOmSR-uqpCG8.crl (hash: lyZw27aQTO/XlnfsQhpzecljH6qWz4tQPUg35uC96ZM=) 2: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (hash: gIqEUytD692JqpeV91M06iKGJH68vEW3s4YtICieKE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1358 (0x54e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83, serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: Jun 30 23:49:59 2025 GMT Not After : Jul 7 23:49:59 2025 GMT Subject: CN=686322a8-67e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:45:f9:b9:8c:87:9b:6b:81:f4:92:00:a6:55: ec:77:0c:0d:52:ac:1c:ba:e7:bf:d8:5e:3a:19:79: f9:08:4a:ad:85:42:48:cb:55:91:84:ce:26:89:c2: f7:9a:dd:7d:f7:ca:56:69:e0:56:68:2a:9b:c2:f4: 61:93:05:35:32:5e:5c:dd:8c:8e:cc:b4:05:63:66: 8d:fa:2f:b7:ab:40:d6:2f:16:8a:be:d2:26:b7:47: 85:d6:0d:9f:15:a9:df:82:f9:f3:30:92:f5:96:20: 5e:cf:ec:06:2e:98:c1:70:cd:9c:c3:57:2a:a4:78: 2d:c0:26:93:ab:1c:a0:9e:ca:80:22:33:35:00:e5: c6:be:de:ac:5e:56:4c:8d:6d:f9:47:3f:a6:02:38: 61:de:67:9f:09:bb:64:c2:79:f2:c5:5b:40:3d:8f: 6b:45:2b:60:04:77:64:08:6e:1f:fd:6e:0e:f0:33: 40:43:b7:28:06:6a:0b:b6:56:14:f7:b8:46:29:b4: 73:c0:98:4d:1a:11:82:22:30:fd:1c:d0:8c:1a:24: 7c:2a:2d:2d:03:35:c8:21:d2:a4:f3:bd:58:41:68: ba:04:ed:d8:e1:aa:69:06:e9:9d:ed:dc:ad:96:f2: 0a:5f:52:3d:be:25:ba:da:fe:9f:6d:30:a8:17:5f: 89:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:7B:E7:7A:2A:DB:E3:5F:91:03:3A:30:C3:C4:A5:5C:BC:A2:F2:CF X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:aa:0f:67:30:74:48:08:32:1f:a1:25:5b:fd:bb:d5:b7:40: 50:df:af:fb:02:50:87:25:65:c5:00:dc:ca:10:33:8f:2d:f6: e3:18:be:16:60:29:be:85:2e:44:38:da:16:9f:e1:c6:84:59: 0f:46:f1:62:ca:b5:a0:73:26:d2:bb:a3:98:a1:26:b5:33:c4: 52:46:02:2d:7a:9b:67:5a:5a:9a:f6:51:0c:85:d5:e2:8f:b0: db:64:4d:3b:d3:28:de:c1:28:7b:67:05:ba:5b:fe:b8:2c:75: 36:d1:78:8d:c8:fa:57:7d:71:29:49:1d:1d:f8:cd:26:23:cb: e7:e7:f3:55:60:c0:66:9d:58:78:4a:eb:00:39:af:b1:85:00: e8:16:a1:aa:03:dd:6a:38:5b:8b:18:9d:5a:62:14:d8:48:6f: a0:0d:3a:84:29:ab:67:8b:bb:ff:3f:69:a5:0a:6c:69:43:ca: d9:c9:e3:bd:6f:86:54:12:b9:ce:8c:05:ba:c1:dc:dc:82:1a: c9:06:0c:e7:60:46:89:26:51:82:68:62:0c:6f:aa:2d:eb:4f: f1:a4:92:3d:18:a6:95:63:51:39:dd:a2:9a:e1:27:d4:ea:3d: 86:83:ec:d5:80:d7:b0:6f:4b:0c:06:a3:87:5e:05:0b:d3:ec: 2c:01:cb:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjUwNjMwMjM0OTU5WhcNMjUwNzA3MjM0OTU5WjAYMRYwFAYD VQQDEw02ODYzMjJhOC02N2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUX5uYyHm2uB9JIAplXsdwwNUqwcuue/2F46GXn5CEqthUJIy1WRhM4micL3 mt1998pWaeBWaCqbwvRhkwU1Ml5c3YyOzLQFY2aN+i+3q0DWLxaKvtImt0eF1g2f FanfgvnzMJL1liBez+wGLpjBcM2cw1cqpHgtwCaTqxygnsqAIjM1AOXGvt6sXlZM jW35Rz+mAjhh3mefCbtkwnnyxVtAPY9rRStgBHdkCG4f/W4O8DNAQ7coBmoLtlYU 97hGKbRzwJhNGhGCIjD9HNCMGiR8Ki0tAzXIIdKk871YQWi6BO3Y4appBumd7dyt lvIKX1I9viW62v6fbTCoF1+J4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOF753oq 2+NfkQM6MMPEpVy8ovLPMB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM4My80QkFGQjExOEY3NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFy ekdORWJyT21TUi11cXBDRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9qg9nMHRICDIfoSVb/bvVt0BQ36/7AlCHJWXFANzKEDOPLfbjGL4W YCm+hS5EONoWn+HGhFkPRvFiyrWgcybSu6OYoSa1M8RSRgIteptnWlqa9lEMhdXi j7DbZE070yjewSh7ZwW6W/64LHU20XiNyPpXfXEpSR0d+M0mI8vn5/NVYMBmnVh4 SusAOa+xhQDoFqGqA91qOFuLGJ1aYhTYSG+gDTqEKatni7v/P2mlCmxpQ8rZyeO9 b4ZUErnOjAW6wdzcghrJBgznYEaJJlGCaGIMb6ot60/xpJI9GKaVY1E53aKa4SfU 6j2Gg+zVgNewb0sMBqOHXgUL0+wsAcsS -----END CERTIFICATE-----Generated at Tue Jul 1 19:27:35 2025 by rpki-client