$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: tNl0qgwS3vDDAP9hsz8nNLHqdGRRIfBeb+ZH5d/zZLY= Subject key identifier: 8F:7B:4E:C4:FE:E3:F1:8F:AC:CB:C0:78:B0:82:E5:A2:8B:83:FC:7D Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 0720 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 0714 Signing time: Mon 02 Jun 2025 22:08:59 +0000 Manifest this update: Mon 02 Jun 2025 22:08:59 +0000 Manifest next update: Mon 09 Jun 2025 22:08:59 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: SO2hFj4Q6HMFif0TpZOYcjyG7+hGzethojB+bGQu3UM=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: H0CS/wDvj/j+OGq6CMvz4MaVZLlE1z8NE8iE80Ojvas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1824 (0x720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Jun 2 22:08:59 2025 GMT Not After : Jun 9 22:08:59 2025 GMT Subject: CN=683e20fb-a6da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5e:65:83:af:f5:8d:97:dd:2d:5e:35:e7:03: 8a:71:07:8f:05:ce:e9:72:03:c3:4f:1f:08:2e:3a: f2:9f:78:57:51:89:1b:48:44:ed:be:dc:38:a5:56: 4e:61:59:1b:4f:48:6c:48:8a:b2:eb:5c:8b:a3:80: cd:e2:6d:e6:4e:e9:b9:30:50:14:68:21:60:55:5a: ea:da:16:0e:66:03:03:81:1e:ca:57:98:3d:87:84: 15:e2:a0:72:4e:e3:ab:25:6a:db:10:bf:8f:cd:5e: a8:f8:af:91:fa:43:58:4a:12:32:64:8e:aa:2f:9e: 8a:aa:32:5a:2c:3c:40:2c:b4:43:27:23:69:ce:16: bd:b1:03:72:f3:80:27:ee:95:60:72:3e:75:97:c8: 96:4e:ff:01:8b:09:db:7e:f5:e1:e5:87:a0:50:b3: c1:de:47:db:f2:4d:c3:88:d8:85:89:4e:ef:27:6d: de:23:7c:3d:49:f5:be:ec:6b:42:df:ea:b2:c7:cb: 67:82:bf:09:c3:50:54:a9:e9:41:e7:6d:ca:34:54: b8:50:7d:55:73:00:ec:e1:cd:e3:f7:cd:cf:5a:ca: 1c:0f:00:9a:94:07:8a:b0:1f:43:52:ee:ec:d0:af: 2c:f3:96:43:e7:d6:a1:cc:f0:ea:4a:bc:11:72:25: c4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7B:4E:C4:FE:E3:F1:8F:AC:CB:C0:78:B0:82:E5:A2:8B:83:FC:7D X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:20:63:46:b7:50:18:64:15:af:c2:8f:47:e3:b4:87:83:f6: d5:d6:88:16:dc:af:ea:5b:90:09:60:72:dc:6b:5e:d5:66:4f: b2:d7:3b:6e:28:55:6d:16:bf:31:83:e8:4e:51:71:d4:ca:d2: d9:72:cb:ea:5d:b8:f2:ec:24:f9:4b:04:82:db:3a:a3:a9:62: 2b:66:40:ce:84:49:dc:06:b1:d7:99:f2:04:0d:24:9c:ce:14: 1c:45:a3:ea:c1:85:ce:0f:8b:23:db:5e:56:76:df:86:31:e2: cd:bd:c2:32:07:4a:30:79:18:69:1d:19:ec:fb:94:af:00:89: d4:9c:31:2e:44:d6:ca:12:76:38:93:0c:6e:b3:86:50:c2:b4: b8:da:54:79:e3:62:c7:9d:8e:c4:f6:40:36:cf:46:bd:d1:fd: da:3d:f3:c7:1f:3b:01:ec:e1:ac:10:44:69:fd:ab:43:ba:e8: 6e:5c:30:de:44:6f:d4:79:9e:64:5b:14:1d:38:73:00:d1:59: 1e:67:3c:64:02:cf:e4:50:63:97:43:35:b0:80:8c:7c:21:ee: 40:7a:68:33:fb:ba:05:83:06:9d:67:36:1c:87:49:00:9c:00: 41:c6:6f:d5:1b:3d:b0:44:09:4b:90:8b:fc:b3:d8:08:4a:92: 9c:f1:33:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjUwNjAyMjIwODU5WhcNMjUwNjA5MjIwODU5WjAYMRYwFAYD VQQDEw02ODNlMjBmYi1hNmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV5lg6/1jZfdLV415wOKcQePBc7pcgPDTx8ILjryn3hXUYkbSETtvtw4pVZO YVkbT0hsSIqy61yLo4DN4m3mTum5MFAUaCFgVVrq2hYOZgMDgR7KV5g9h4QV4qBy TuOrJWrbEL+PzV6o+K+R+kNYShIyZI6qL56KqjJaLDxALLRDJyNpzha9sQNy84An 7pVgcj51l8iWTv8BiwnbfvXh5YegULPB3kfb8k3DiNiFiU7vJ23eI3w9SfW+7GtC 3+qyx8tngr8Jw1BUqelB523KNFS4UH1VcwDs4c3j983PWsocDwCalAeKsB9DUu7s 0K8s85ZD59ahzPDqSrwRciXEBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI97TsT+ 4/GPrMvAeLCC5aKLg/x9MB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsIGNGt1AYZBWvwo9H47SHg/bV1ogW3K/qW5AJYHLca17VZk+y1ztu KFVtFr8xg+hOUXHUytLZcsvqXbjy7CT5SwSC2zqjqWIrZkDOhEncBrHXmfIEDSSc zhQcRaPqwYXOD4sj215Wdt+GMeLNvcIyB0oweRhpHRns+5SvAInUnDEuRNbKEnY4 kwxus4ZQwrS42lR542LHnY7E9kA2z0a90f3aPfPHHzsB7OGsEERp/atDuuhuXDDe RG/UeZ5kWxQdOHMA0VkeZzxkAs/kUGOXQzWwgIx8Ie5Aemgz+7oFgwadZzYch0kA nABBxm/VGz2wRAlLkIv8s9gISpKc8TPB -----END CERTIFICATE-----Generated at Wed Jun 4 00:13:39 2025 by rpki-client