$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: Ark02q23Pty1+Qerf1ZYYSRUB0+TtYy59nZFRFerPrU= Subject key identifier: 38:E6:9C:40:9A:53:28:98:BF:92:96:F8:D8:65:9D:E9:CA:08:CB:4D Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B12 Signing time: Tue 10 Jun 2025 19:11:17 +0000 Manifest this update: Tue 10 Jun 2025 19:11:16 +0000 Manifest next update: Tue 17 Jun 2025 19:11:16 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: cJTSewIwY9pCejFQbb9qvRFAnpwuP2a/3d73yTTn+tc=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 19:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Jun 10 19:11:16 2025 GMT Not After : Jun 17 19:11:16 2025 GMT Subject: CN=68488354-7514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0f:d1:f1:97:ad:9f:f5:39:18:08:4d:09:53: 0f:8d:47:ce:4a:95:ea:5c:d1:5f:c1:b6:4a:49:48: fe:3e:cc:97:c7:08:f6:2b:47:2f:dd:48:71:a3:5f: c2:97:ad:2b:2f:97:12:30:e9:12:92:29:f1:46:f7: 52:f0:a6:47:0b:23:e5:22:ef:7c:ec:8a:e4:a9:47: cf:4f:42:a9:92:db:20:4b:70:3d:5f:8e:c6:31:cc: 87:a5:ad:c7:0c:2c:73:be:50:d3:8c:91:42:40:6e: fd:c3:61:1d:05:55:64:77:81:7e:70:9d:a2:88:cd: b5:1c:ae:95:6e:b6:35:00:0d:d8:1d:a2:03:99:55: a5:02:e9:07:33:1c:19:cf:30:85:00:ae:29:bf:53: a2:59:c8:f2:11:cd:cb:89:21:b1:83:71:59:1f:ee: a9:ec:cf:d3:4c:64:12:66:dd:4a:cf:72:59:e4:43: 4e:1d:b1:67:2f:e0:80:85:89:d6:98:10:70:db:c3: 51:da:69:81:8f:d8:72:63:2f:a4:cc:45:a4:64:c5: 3e:80:4d:43:a4:15:5a:22:d5:56:e6:61:53:1b:ca: 51:4c:74:65:b7:5f:c7:19:22:ec:ae:49:dd:23:56: 1f:9b:d1:ad:d0:8f:04:db:a6:53:83:16:a0:ef:24: 52:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E6:9C:40:9A:53:28:98:BF:92:96:F8:D8:65:9D:E9:CA:08:CB:4D X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:a9:e2:7a:b3:e5:58:88:c6:5e:c0:ec:ac:83:a8:4d:46:a9: 79:3b:85:50:c6:d1:ec:ff:68:50:c3:a2:64:b4:99:e5:98:db: 3f:f9:4a:bf:0f:bb:d6:a6:3e:a7:4e:84:4e:8c:af:9f:f1:4d: ee:ae:71:16:e9:e6:56:83:1f:5c:8d:47:dc:4d:63:55:d8:30: 16:16:7c:e1:33:f8:75:33:69:9e:bc:39:f1:46:b2:68:8b:29: af:eb:e1:b1:a2:25:22:09:34:58:ae:2e:26:43:e8:e8:33:a9: cb:e1:14:ac:eb:92:8d:bc:ce:40:f2:ec:0d:63:b4:98:09:2e: 2a:57:89:3b:44:33:ec:ad:61:23:e6:a4:e9:e9:ed:c6:5f:c1: ee:69:ec:bb:dd:44:e1:c1:54:1f:d5:ec:74:c1:8b:c1:57:7a: cb:9d:aa:c8:ef:cf:2d:52:69:44:46:41:df:43:d5:ee:42:ea: cb:98:94:50:ec:36:42:8f:58:52:5c:34:b6:31:02:dd:57:ca: 27:bd:d3:d9:17:74:00:b2:ac:85:44:44:7d:7e:19:6d:82:82: fb:52:13:b5:d9:22:85:74:15:e2:d7:03:2a:90:ee:af:60:3c: 6a:7f:b2:3b:ad:9f:27:c8:07:ef:fd:40:6a:f1:fc:6c:d8:12: ee:cf:38:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwNjEwMTkxMTE2WhcNMjUwNjE3MTkxMTE2WjAYMRYwFAYD VQQDEw02ODQ4ODM1NC03NTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2A/R8Zetn/U5GAhNCVMPjUfOSpXqXNFfwbZKSUj+PsyXxwj2K0cv3Uhxo1/C l60rL5cSMOkSkinxRvdS8KZHCyPlIu987IrkqUfPT0KpktsgS3A9X47GMcyHpa3H DCxzvlDTjJFCQG79w2EdBVVkd4F+cJ2iiM21HK6VbrY1AA3YHaIDmVWlAukHMxwZ zzCFAK4pv1OiWcjyEc3LiSGxg3FZH+6p7M/TTGQSZt1Kz3JZ5ENOHbFnL+CAhYnW mBBw28NR2mmBj9hyYy+kzEWkZMU+gE1DpBVaItVW5mFTG8pRTHRlt1/HGSLsrknd I1Yfm9Gt0I8E26ZTgxag7yRS2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjmnECa UyiYv5KW+NhlnenKCMtNMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3qeJ6s+VYiMZewOysg6hNRql5O4VQxtHs/2hQw6JktJnlmNs/+Uq/ D7vWpj6nToROjK+f8U3urnEW6eZWgx9cjUfcTWNV2DAWFnzhM/h1M2mevDnxRrJo iymv6+GxoiUiCTRYri4mQ+joM6nL4RSs65KNvM5A8uwNY7SYCS4qV4k7RDPsrWEj 5qTp6e3GX8Huaey73UThwVQf1ex0wYvBV3rLnarI788tUmlERkHfQ9XuQurLmJRQ 7DZCj1hSXDS2MQLdV8onvdPZF3QAsqyFRER9fhltgoL7UhO12SKFdBXi1wMqkO6v YDxqf7I7rZ8nyAfv/UBq8fxs2BLuzziS -----END CERTIFICATE-----Generated at Wed Jun 11 09:23:30 2025 by rpki-client