$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft File: h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft (raw, json) Hash identifier: lgss/rJfMc24mJ+aZ/4rGw5jJHx/i1GaVbJM1JTKqeo= Subject key identifier: C0:B8:B0:98:FD:B9:5A:BC:FE:97:92:26:38:68:7D:87:D3:7C:12:A3 Authority key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C Certificate issuer: /CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Certificate serial: 1221 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft Manifest number: 1212 Signing time: Mon 02 Jun 2025 17:20:39 +0000 Manifest this update: Mon 02 Jun 2025 17:20:39 +0000 Manifest next update: Mon 09 Jun 2025 17:20:39 +0000 Files and hashes: 1: h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl (hash: p7w0pzzWkpdTQ5DRVRGdrOsadLfSlvPlKHfgoC5Bmxs=) 2: 698B3FA6986011EE969A225FC4F9AE02.roa (hash: IPMaIsA9uRnd6F5Aml0jreWHK2WPPMV0a6PLoDBBAuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4641 (0x1221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Validity Not Before: Jun 2 17:20:39 2025 GMT Not After : Jun 9 17:20:39 2025 GMT Subject: CN=683ddd67-785c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:89:3a:12:bc:67:cc:65:8e:16:a8:79:a3:94: 18:5d:50:19:a6:63:c8:d0:51:4e:2b:e2:48:cc:a9: ba:7c:06:3a:d3:96:8a:05:5b:b1:d9:ef:74:28:52: a4:6c:ac:2c:ea:f8:b7:0a:5f:e1:2d:7c:a3:51:7c: e5:a3:57:79:db:17:ea:0b:9a:10:20:99:27:d8:15: 7a:4a:0e:b6:69:ff:04:67:53:c0:4a:cb:3e:57:ce: 88:ec:f2:74:53:40:0b:db:c5:9c:0c:5f:4a:8d:83: 9a:cc:c9:51:3a:66:3a:a3:f9:63:c9:9c:58:84:25: d7:68:29:7e:83:39:7c:0c:20:6a:29:96:8f:74:2e: 96:62:46:4f:6a:5c:10:ba:e1:86:02:f7:f1:2f:7c: 7a:81:28:48:1b:b8:a7:2c:8d:d2:06:42:f4:c4:d5: b6:2a:f4:a0:58:8a:48:5f:c5:e7:d7:1d:d8:5a:0a: a3:a5:87:88:7b:c3:b2:cf:e5:3c:8f:d6:7e:50:36: d6:bf:af:5d:6c:b0:18:d9:34:f1:c3:66:ad:fb:25: 6a:7a:7f:78:4a:ba:4d:1c:e6:4b:a0:72:5a:53:26: b4:4f:27:72:b1:a9:e9:e0:66:dd:6a:82:62:fb:42: 15:3f:04:77:be:d4:10:d8:98:61:5d:ec:a1:5d:93: 12:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B8:B0:98:FD:B9:5A:BC:FE:97:92:26:38:68:7D:87:D3:7C:12:A3 X509v3 Authority Key Identifier: keyid:87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:9b:45:b8:5c:27:5c:1f:2c:a0:9e:2f:46:33:b4:7b:b9:2e: 9e:5a:98:e1:dd:1e:c7:c6:10:4c:f4:80:f5:89:b9:6a:1a:3e: 09:2a:78:16:88:d9:76:3f:04:24:f5:09:f3:7d:a3:98:4c:29: 55:1c:c4:b0:a5:54:8d:f0:4e:45:45:64:d1:84:af:09:90:e7: 8b:63:64:a6:18:1f:7b:82:2a:af:e9:30:fb:76:b9:b6:df:4c: 38:be:5d:fb:23:17:7a:da:8d:96:df:9c:76:be:5a:ee:ce:a1: c1:e9:3a:17:cf:d5:0e:3a:68:80:91:39:fc:c3:95:55:b7:78: e6:7f:58:2d:bf:8d:90:54:b5:89:f9:da:26:32:a3:ba:8c:cb: e3:51:e9:17:6d:68:6f:6e:07:50:b2:22:d8:d2:75:41:38:c0: d8:fe:6d:f8:17:4c:03:db:92:77:6b:a2:8f:61:6c:c4:e4:df: 3e:9b:a3:e4:28:a7:d9:92:fc:e1:7f:33:c9:d3:a7:39:4f:d2: c4:2d:34:95:b2:10:ec:c9:57:e5:b4:43:ab:ac:d6:43:dd:6e: 6d:a7:2b:28:6b:e4:4f:71:07:2a:85:20:d8:83:5c:66:a1:3c: f9:35:c6:bf:11:95:20:64:01:50:dd:ba:df:35:bc:25:a5:35: 24:0e:0f:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDg3OTU0QzAyMzFDQUFDQjJCRTJERkRCNTY3Qzc0QUY1 RUNCNzVCMEMwHhcNMjUwNjAyMTcyMDM5WhcNMjUwNjA5MTcyMDM5WjAYMRYwFAYD VQQDEw02ODNkZGQ2Ny03ODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ik6ErxnzGWOFqh5o5QYXVAZpmPI0FFOK+JIzKm6fAY605aKBVux2e90KFKk bKws6vi3Cl/hLXyjUXzlo1d52xfqC5oQIJkn2BV6Sg62af8EZ1PASss+V86I7PJ0 U0AL28WcDF9KjYOazMlROmY6o/ljyZxYhCXXaCl+gzl8DCBqKZaPdC6WYkZPalwQ uuGGAvfxL3x6gShIG7inLI3SBkL0xNW2KvSgWIpIX8Xn1x3YWgqjpYeIe8Oyz+U8 j9Z+UDbWv69dbLAY2TTxw2at+yVqen94SrpNHOZLoHJaUya0Tydysanp4GbdaoJi +0IVPwR3vtQQ2JhhXeyhXZMSUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMC4sJj9 uVq8/peSJjhofYfTfBKjMB8GA1UdIwQYMBaAFIeVTAIxyqyyvi39tWfHSvXst1sM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9FQ0UwRkJFNkUz NkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JMSy1MZjIxWjhkSzlleTNX d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2g1Vk1BakhLckxLLUxmMjFaOGRLOWV5M1d3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9FQ0UwRkJFNkUzNkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JM Sy1MZjIxWjhkSzlleTNXd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALm0W4XCdcHyygni9GM7R7uS6eWpjh3R7HxhBM9ID1iblqGj4JKngW iNl2PwQk9QnzfaOYTClVHMSwpVSN8E5FRWTRhK8JkOeLY2SmGB97giqv6TD7drm2 30w4vl37Ixd62o2W35x2vlruzqHB6ToXz9UOOmiAkTn8w5VVt3jmf1gtv42QVLWJ +domMqO6jMvjUekXbWhvbgdQsiLY0nVBOMDY/m34F0wD25J3a6KPYWzE5N8+m6Pk KKfZkvzhfzPJ06c5T9LELTSVshDsyVfltEOrrNZD3W5tpysoa+RPcQcqhSDYg1xm oTz5Nca/EZUgZAFQ3brfNbwlpTUkDg+k -----END CERTIFICATE-----Generated at Mon Jun 2 22:09:00 2025 by rpki-client