$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: 88rM+XndjkRqgh2pZvVc2fWezGg948fLGx7YKnB6a1o= Subject key identifier: 7E:3B:A8:C8:65:79:35:DB:B5:E4:FA:2E:65:FA:8C:B0:85:1F:6B:17 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0A61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0A4C Signing time: Fri 30 May 2025 19:55:17 +0000 Manifest this update: Fri 30 May 2025 19:55:16 +0000 Manifest next update: Fri 06 Jun 2025 19:55:16 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: u0Fb2wPhbZlJs6fwmW6ctBawAZayUtL+nVNtjgSZtRc=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:55:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2657 (0xa61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: May 30 19:55:16 2025 GMT Not After : Jun 6 19:55:16 2025 GMT Subject: CN=683a0d24-43fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c0:d6:b5:aa:b3:de:57:74:82:7e:98:bd:b8: 6f:ec:40:ee:67:34:2d:e1:4a:84:4a:3b:88:5c:2b: df:66:39:d4:21:52:3f:42:11:39:c9:7e:cb:62:9b: 25:23:ce:48:a3:76:3b:36:a5:ff:b9:e8:f2:67:ea: c4:3e:41:70:a1:1a:cc:ff:b4:ef:2b:54:83:4a:92: 4f:b8:50:c1:67:be:5f:02:d7:d7:f8:7d:d6:6e:07: e3:e5:cd:03:4b:68:92:ff:09:af:89:7e:17:aa:67: 81:a6:10:ec:0e:87:98:ae:b5:7d:1c:f5:7a:f4:ec: c8:e9:d5:44:ae:2d:f0:be:24:e7:4c:25:5b:a1:24: 6b:21:ff:53:36:4b:a5:62:af:b2:30:0e:9c:06:7e: 3e:b0:da:03:b7:bb:aa:e7:27:2b:4b:9f:74:45:ad: 90:e4:9a:08:9d:2a:36:4e:93:18:39:da:9d:20:07: c6:19:e3:83:1b:c9:50:be:d5:c5:6d:65:df:40:29: 68:eb:22:6e:75:57:c9:42:c6:ca:33:57:23:cb:70: c0:ab:fc:fd:11:e4:4f:40:39:fa:ba:d3:0e:2f:fa: 6b:30:14:4e:37:8a:d1:f2:79:25:ee:0b:22:51:82: f9:25:c5:07:83:e4:93:da:22:7a:62:65:d6:17:84: f8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3B:A8:C8:65:79:35:DB:B5:E4:FA:2E:65:FA:8C:B0:85:1F:6B:17 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:93:fe:32:3f:73:25:09:a2:69:67:e1:20:d3:5d:55:68:4c: b7:9c:57:fb:9f:d3:ad:52:7d:d7:32:ea:90:e3:36:de:14:a7: ce:08:7d:6c:c9:90:7a:de:8b:64:6d:12:50:0c:6d:ee:98:37: 42:7d:ac:36:ff:4e:0f:30:0f:64:a4:b6:b8:f5:14:0c:0c:fb: 25:98:a1:a9:de:b0:1d:f4:ac:69:d1:0b:c5:a2:c8:2d:21:d1: b8:18:80:b0:e4:2f:15:ff:82:3d:c0:82:f1:60:f4:72:c4:2b: 8a:39:be:df:07:da:a0:81:df:e6:19:60:70:ea:f5:a2:44:ab: 62:f0:c2:a0:a6:14:06:2d:ae:fa:bd:2d:49:a5:ae:90:5d:6a: 9e:e2:7a:b1:a4:aa:c7:0b:ea:f9:cc:ce:c0:e0:3c:47:60:e3: b1:ab:5c:34:15:4c:3e:ed:7e:40:87:30:86:0b:1a:f7:8a:e5: 12:c1:fd:a6:e7:f8:c7:01:7b:5d:16:55:4d:02:80:0f:da:2e: 3e:c0:d3:e5:53:86:06:de:25:c2:5b:c1:5f:8e:d6:60:4d:2c: 27:dd:96:21:db:71:5d:2e:47:f7:20:02:42:73:f5:9f:5d:52: a5:c5:0d:f2:a1:d3:6e:6e:d4:60:6b:c4:8e:d4:31:04:39:31: a5:e3:12:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUwNTMwMTk1NTE2WhcNMjUwNjA2MTk1NTE2WjAYMRYwFAYD VQQDEw02ODNhMGQyNC00M2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucDWtaqz3ld0gn6Yvbhv7EDuZzQt4UqESjuIXCvfZjnUIVI/QhE5yX7LYpsl I85Io3Y7NqX/uejyZ+rEPkFwoRrM/7TvK1SDSpJPuFDBZ75fAtfX+H3Wbgfj5c0D S2iS/wmviX4XqmeBphDsDoeYrrV9HPV69OzI6dVEri3wviTnTCVboSRrIf9TNkul Yq+yMA6cBn4+sNoDt7uq5ycrS590Ra2Q5JoInSo2TpMYOdqdIAfGGeODG8lQvtXF bWXfQClo6yJudVfJQsbKM1cjy3DAq/z9EeRPQDn6utMOL/prMBRON4rR8nkl7gsi UYL5JcUHg+ST2iJ6YmXWF4T4xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH47qMhl eTXbteT6LmX6jLCFH2sXMB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7k/4yP3MlCaJpZ+Eg011VaEy3nFf7n9OtUn3XMuqQ4zbeFKfOCH1s yZB63otkbRJQDG3umDdCfaw2/04PMA9kpLa49RQMDPslmKGp3rAd9Kxp0QvFosgt IdG4GICw5C8V/4I9wILxYPRyxCuKOb7fB9qggd/mGWBw6vWiRKti8MKgphQGLa76 vS1Jpa6QXWqe4nqxpKrHC+r5zM7A4DxHYOOxq1w0FUw+7X5AhzCGCxr3iuUSwf2m 5/jHAXtdFlVNAoAP2i4+wNPlU4YG3iXCW8FfjtZgTSwn3ZYh23FdLkf3IAJCc/Wf XVKlxQ3yodNubtRga8SO1DEEOTGl4xKY -----END CERTIFICATE-----Generated at Sat May 31 17:03:30 2025 by rpki-client