$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: TOcpgjd7sWuegI5RWKamWzULGLNUOgOrC7qXic0R/GU= Subject key identifier: 03:DB:93:37:D3:36:A9:B1:D3:AB:67:CE:AF:8F:3C:40:66:C4:16:61 Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B11 Signing time: Sun 08 Jun 2025 19:03:23 +0000 Manifest this update: Sun 08 Jun 2025 19:03:22 +0000 Manifest next update: Sun 15 Jun 2025 19:03:22 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: dZpwv0tl6QPYJxMNNixJkq3VRRT4g+eq+R2969l/YT8=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 19:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Jun 8 19:03:22 2025 GMT Not After : Jun 15 19:03:22 2025 GMT Subject: CN=6845de7b-0ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:17:98:03:4d:c7:a7:10:a5:1a:85:db:82:ea: 68:30:40:e3:0f:7a:59:d1:e1:2e:30:08:aa:95:f5: 22:8e:60:29:1b:0e:25:32:a3:19:6c:44:70:f4:1b: 34:ce:7b:98:dc:29:e8:f3:70:b5:9c:f1:06:bb:f9: 61:af:0b:af:7f:23:6e:33:b9:ea:5b:cc:27:a6:c2: 58:d6:1a:92:b8:d6:49:56:c9:a6:d2:0c:c0:cf:c5: d6:44:14:9a:26:78:51:73:6b:31:4a:20:6d:ad:91: db:96:57:27:d3:3e:24:f0:7c:23:d6:37:a3:e5:65: 5a:6d:2a:f7:18:28:e1:68:b7:b0:5c:92:df:3f:7a: ad:72:e6:d1:13:90:c6:3a:82:b1:e5:33:15:3b:3a: 8e:f6:6b:af:97:20:4a:12:b8:b7:b4:c3:80:4a:d2: 2a:a3:8d:b6:e4:90:77:a3:e7:9b:54:1d:d4:2c:b4: 87:dd:7c:af:6e:87:a2:ad:5e:77:e8:d4:89:46:69: 56:71:f4:d8:84:20:28:3a:70:79:81:c4:26:c5:61: 15:10:11:8f:8f:77:a1:74:23:03:3c:0c:75:99:55: 0b:77:61:78:be:25:91:2b:ae:4c:fa:5c:31:58:3d: 13:a4:8f:d1:9d:53:d3:cd:e9:9c:db:e4:74:17:53: fc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:DB:93:37:D3:36:A9:B1:D3:AB:67:CE:AF:8F:3C:40:66:C4:16:61 X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e0:51:54:10:15:5c:2e:27:97:cb:83:1b:1e:a0:c7:3c:49: 8d:92:8f:83:45:a1:e8:fb:7d:58:20:f6:67:ad:23:96:ae:82: 92:14:20:cf:36:de:5a:66:f5:e9:23:ff:9f:41:cd:5d:85:42: 95:c9:0b:c8:6b:20:85:77:af:02:0f:40:c8:f9:76:f5:ed:78: b6:50:b5:d5:de:83:9e:6e:4b:f1:74:a4:28:35:07:07:b0:3b: ec:f4:2a:22:c2:7d:b3:52:ec:72:15:8b:78:c1:4c:8b:f5:3c: bd:4f:4b:68:b6:d4:ac:f5:20:c7:b4:69:d3:ae:14:11:05:a3: 9b:49:8e:d1:33:12:37:f7:1f:87:f5:d2:70:59:db:a5:96:7f: 48:74:44:1d:c6:42:e9:60:5e:27:be:23:25:de:29:96:e2:88: ee:1e:fb:28:a9:37:93:44:a1:f2:82:ee:88:22:1f:a2:9e:55: 66:b2:f0:2c:0c:6d:8a:85:55:e8:89:c1:03:f9:8a:65:9b:3d: 89:68:1f:5f:a3:0e:72:b2:85:a0:92:5b:05:b3:bf:f5:fe:84: 46:c8:b7:bb:44:11:84:ea:0f:bf:1d:1c:73:ec:5c:51:d3:5e: be:7c:9c:e5:91:81:9f:8d:29:49:6a:1f:93:ec:a3:c7:a6:45: 4a:95:87:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwNjA4MTkwMzIyWhcNMjUwNjE1MTkwMzIyWjAYMRYwFAYD VQQDEw02ODQ1ZGU3Yi0wYWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BeYA03HpxClGoXbgupoMEDjD3pZ0eEuMAiqlfUijmApGw4lMqMZbERw9Bs0 znuY3Cno83C1nPEGu/lhrwuvfyNuM7nqW8wnpsJY1hqSuNZJVsmm0gzAz8XWRBSa JnhRc2sxSiBtrZHbllcn0z4k8Hwj1jej5WVabSr3GCjhaLewXJLfP3qtcubRE5DG OoKx5TMVOzqO9muvlyBKEri3tMOAStIqo4225JB3o+ebVB3ULLSH3XyvboeirV53 6NSJRmlWcfTYhCAoOnB5gcQmxWEVEBGPj3ehdCMDPAx1mVULd2F4viWRK65M+lwx WD0TpI/RnVPTzemc2+R0F1P8RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPbkzfT Nqmx06tnzq+PPEBmxBZhMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS4FFUEBVcLieXy4MbHqDHPEmNko+DRaHo+31YIPZnrSOWroKSFCDP Nt5aZvXpI/+fQc1dhUKVyQvIayCFd68CD0DI+Xb17Xi2ULXV3oOebkvxdKQoNQcH sDvs9Coiwn2zUuxyFYt4wUyL9Ty9T0tottSs9SDHtGnTrhQRBaObSY7RMxI39x+H 9dJwWdulln9IdEQdxkLpYF4nviMl3imW4ojuHvsoqTeTRKHygu6IIh+inlVmsvAs DG2KhVXoicED+Yplmz2JaB9fow5ysoWgklsFs7/1/oRGyLe7RBGE6g+/HRxz7FxR 016+fJzlkYGfjSlJah+T7KPHpkVKlYdK -----END CERTIFICATE-----Generated at Mon Jun 9 10:45:25 2025 by rpki-client