$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft File: pbtkBP5TtawGtBCz1s2gNKITHpA.mft (raw, json) Hash identifier: 3b62WW8nomj9BitdA1o+JiwufIm6VLNZb1LHPfqvKe4= Subject key identifier: 71:2B:70:92:37:04:02:A1:42:7E:BD:56:C3:7A:9B:84:75:EA:7F:68 Authority key identifier: A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 Certificate issuer: /CN=A915DE6C/serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft Manifest number: 0E Signing time: Tue 01 Jul 2025 08:53:16 +0000 Manifest this update: Tue 01 Jul 2025 08:53:16 +0000 Manifest next update: Tue 08 Jul 2025 08:53:16 +0000 Files and hashes: 1: pbtkBP5TtawGtBCz1s2gNKITHpA.crl (hash: 5x7TkksTf7O8W7SJrRl1eyqFo/6tI4QisQvXoSYXkNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Validity Not Before: Jul 1 08:53:16 2025 GMT Not After : Jul 8 08:53:16 2025 GMT Subject: CN=6863a1fc-2a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1e:04:2d:28:47:c5:4b:8d:23:e2:64:08:dc: 60:f7:82:ee:55:7b:e2:9b:68:3b:f3:1a:0a:e0:3d: 51:24:68:38:d7:5a:5d:81:9e:01:6f:72:f6:b8:16: ca:b3:29:7e:26:94:ed:04:a1:70:fa:a2:f1:9a:8d: 68:ff:98:7d:f8:f1:fb:8a:f2:fe:ec:4d:3a:16:e7: bf:8f:9d:c6:ab:07:bb:3a:92:8b:e6:52:0c:d8:03: 16:e7:27:be:08:5f:f0:46:6a:48:20:aa:81:d7:1d: 4c:3c:7a:e7:42:a6:a7:56:7f:6f:7f:51:ab:51:37: 58:e0:1e:3d:ff:01:e9:fb:82:8a:58:24:d3:98:b0: ff:6e:07:fe:18:b9:0c:66:93:f4:6e:21:93:73:ae: 43:fe:0e:5f:36:22:4b:51:1b:9c:a2:d9:66:dd:cf: d2:64:cc:9f:34:67:3b:7d:e6:a5:42:6b:11:27:78: 93:c6:43:67:95:e6:c0:77:57:6c:2e:58:aa:cc:85: df:60:4f:08:c4:50:d0:18:7f:fc:91:9f:02:0c:c0: fb:cf:ba:87:97:8a:c4:f6:c9:9d:b0:97:9c:bd:fc: 8d:3e:be:94:91:59:3d:b8:13:94:c5:2f:5f:e3:07: e6:f3:93:51:67:69:ed:77:fe:2d:a9:cb:10:2c:09: ad:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2B:70:92:37:04:02:A1:42:7E:BD:56:C3:7A:9B:84:75:EA:7F:68 X509v3 Authority Key Identifier: keyid:A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:09:79:a6:a9:1e:ca:3c:d5:29:e7:6b:fb:37:9a:14:82:8b: 03:ce:5c:14:14:cb:9d:da:7d:8c:7a:fd:35:27:96:d5:55:17: ed:33:3c:f0:17:d3:12:ab:fe:62:5d:bc:ed:cd:1f:9a:cc:45: bb:d3:26:cf:33:41:b8:37:c2:2b:ba:2b:3b:e6:a2:36:1a:7a: 1a:5a:92:0a:7e:60:ab:25:0b:b1:fd:ef:2c:9b:2c:e9:5e:46: 04:bc:31:c1:b3:52:46:a3:b1:4f:19:c8:19:cc:8f:9e:40:cd: 3c:e8:76:97:c3:f2:8c:4f:fb:8f:4b:62:6f:30:39:14:e6:73: 2b:0d:44:71:17:2e:b3:f6:6b:bc:49:fe:9a:9a:b4:10:3d:56: 60:64:4f:7c:cc:44:b1:aa:38:8f:93:f4:cc:17:92:5a:d6:22: 04:9b:1d:3d:84:f8:67:38:e1:9e:8d:c6:0f:d4:26:2a:c5:9b: 9a:ea:e1:d2:95:d9:4d:53:4e:a9:bf:ca:52:69:0e:58:0b:80: e8:ea:09:f0:bf:69:4c:35:84:a9:b0:af:1f:1a:09:77:3a:3d: c0:cf:08:22:7b:62:10:80:17:1f:5b:b5:e1:6f:46:e9:48:23: fa:ee:0a:c6:a3:55:af:25:c4:02:0d:ce:0a:fa:e1:f2:df:c6: 9d:dd:41:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoQTVCQjY0MDRGRTUzQjVBQzA2QjQxMEIzRDZDREEwMzRB MjEzMUU5MDAeFw0yNTA3MDEwODUzMTZaFw0yNTA3MDgwODUzMTZaMBgxFjAUBgNV BAMTDTY4NjNhMWZjLTJhMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGHgQtKEfFS40j4mQI3GD3gu5Ve+KbaDvzGgrgPVEkaDjXWl2BngFvcva4Fsqz KX4mlO0EoXD6ovGajWj/mH348fuK8v7sTToW57+PncarB7s6kovmUgzYAxbnJ74I X/BGakggqoHXHUw8eudCpqdWf29/UatRN1jgHj3/Aen7gopYJNOYsP9uB/4YuQxm k/RuIZNzrkP+Dl82IktRG5yi2Wbdz9JkzJ80Zzt95qVCaxEneJPGQ2eV5sB3V2wu WKrMhd9gTwjEUNAYf/yRnwIMwPvPuoeXisT2yZ2wl5y9/I0+vpSRWT24E5TFL1/j B+bzk1Fnae13/i2pyxAsCa27AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcStwkjcE AqFCfr1Ww3qbhHXqf2gwHwYDVR0jBBgwFoAUpbtkBP5TtawGtBCz1s2gNKITHpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzc0RkJCM0Q2NDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3R3RCQ3oxczJnTktJVEhw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGJ0a0JQNVR0YXdHdEJDejFzMmdOS0lUSHBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzc0RkJCM0Q2NDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3 R3RCQ3oxczJnTktJVEhwQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAUJeaapHso81Snna/s3mhSCiwPOXBQUy53afYx6/TUnltVVF+0zPPAX 0xKr/mJdvO3NH5rMRbvTJs8zQbg3wiu6KzvmojYaehpakgp+YKslC7H97yybLOle RgS8McGzUkajsU8ZyBnMj55AzTzodpfD8oxP+49LYm8wORTmcysNRHEXLrP2a7xJ /pqatBA9VmBkT3zMRLGqOI+T9MwXklrWIgSbHT2E+Gc44Z6Nxg/UJirFm5rq4dKV 2U1TTqm/ylJpDlgLgOjqCfC/aUw1hKmwrx8aCXc6PcDPCCJ7YhCAFx9bteFvRulI I/ruCsajVa8lxAINzgr64fLfxp3dQbk= -----END CERTIFICATE-----Generated at Wed Jul 2 05:36:29 2025 by rpki-client