$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft File: 64P0iA8jV15XUXhcbgqyvgskm8M.mft (raw, json) Hash identifier: unuxIioWyhYeeJkDKE8g1DtXTY2h0P6MBFXW1ef3us4= Subject key identifier: 5C:79:7C:CE:B0:D7:5C:61:61:3C:C6:11:08:76:44:22:43:8B:F9:9C Authority key identifier: EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3 Certificate issuer: /CN=A917C0F3/serialNumber=EB83F4880F23575E5751785C6E0AB2BE0B249BC3 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft Manifest number: 49 Signing time: Sun 01 Jun 2025 07:04:34 +0000 Manifest this update: Sun 01 Jun 2025 07:04:34 +0000 Manifest next update: Sun 08 Jun 2025 07:04:34 +0000 Files and hashes: 1: 64P0iA8jV15XUXhcbgqyvgskm8M.crl (hash: 9sI3S1NUwdGje0dnbgXYTpSLQwamiTNgWjg9Vi8hTCU=) 2: 028452F0D0BA11EFA8B5A526C4F9AE02.roa (hash: IREGMcYzyBbo6wcvGexVHMAjLf7W6LD1j2SfUrLribg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=EB83F4880F23575E5751785C6E0AB2BE0B249BC3 Validity Not Before: Jun 1 07:04:34 2025 GMT Not After : Jun 8 07:04:34 2025 GMT Subject: CN=683bfb82-c868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:6d:81:f0:74:46:5d:70:a7:57:26:00:a4: 9c:53:b3:52:62:87:08:4a:be:95:86:98:39:38:d0: b3:39:ed:1c:3c:61:46:9e:f8:07:32:24:9f:04:71: a5:71:71:51:9c:24:87:7b:a9:ae:79:c3:bc:f7:fe: f2:85:bd:5f:56:c7:ca:08:b6:63:2f:d4:69:cd:3b: d3:4c:02:33:da:d0:b8:ce:c6:f4:fb:6d:d4:4e:b3: 55:8d:bf:12:d4:0b:0e:a7:ee:69:f5:04:cd:d5:2d: 7c:fa:61:d3:5d:b9:59:52:35:4f:60:3b:e7:fd:08: bd:c5:30:fe:4b:ca:6c:20:56:06:07:5c:9f:26:c7: 73:62:07:74:47:41:57:70:9f:85:47:a5:6c:2b:aa: 4c:47:4e:03:6c:fa:fa:4a:c5:36:ca:aa:b1:22:f2: f6:75:d6:dc:00:39:3a:53:cf:04:ff:c0:8f:1b:77: f1:ee:38:09:d8:14:c2:e7:e1:f7:21:4d:9a:ef:a4: df:68:27:88:80:69:df:17:b7:39:09:c4:21:a4:58: 68:ae:21:a9:9d:2e:07:c2:b1:9d:9f:0c:d5:69:0d: b9:19:f4:2a:9f:eb:2e:5e:eb:91:86:4f:05:0b:9f: c7:d8:68:b2:e5:e9:87:d0:37:59:d6:1e:11:cb:ea: 93:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:79:7C:CE:B0:D7:5C:61:61:3C:C6:11:08:76:44:22:43:8B:F9:9C X509v3 Authority Key Identifier: keyid:EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:0c:3b:c9:4d:23:f0:70:82:36:9a:d3:c5:98:ff:a7:eb:f3: 2a:0a:07:c8:c8:cf:8a:e8:6e:2f:21:5d:47:c7:84:59:c1:2e: 99:2a:ef:2b:23:55:95:85:12:ac:45:17:c2:84:e0:7f:4f:0d: f3:c2:0e:8a:42:84:bc:43:b3:40:13:0c:2b:13:25:d5:da:54: 64:4c:e2:8f:1e:f2:32:72:6a:b9:35:ae:48:83:16:39:0d:6a: a1:a9:4e:7b:a1:30:f0:bb:a6:17:d7:d3:af:ff:0d:f0:2c:e4: bf:bf:d3:4c:6b:66:78:08:e2:87:9b:cd:59:27:c9:ea:75:4c: 29:07:35:13:59:e2:2d:02:5a:e1:a2:f4:6a:b7:e3:00:f0:b7: 68:47:db:c4:68:95:bc:05:0e:65:8b:3c:b1:14:b0:2a:fc:68: e4:ec:5a:d8:13:8b:b9:fe:f6:71:45:96:b9:c4:08:97:f4:8d: 5d:ba:9f:6c:28:eb:55:04:36:73:d5:5f:9f:e2:18:53:94:be: 41:ee:f2:94:b7:47:24:d8:c1:73:54:0c:2b:52:7b:bb:70:fe: bc:55:a7:88:8c:83:f0:85:10:c6:4a:94:86:1d:de:98:79:9a: f7:a5:8b:7b:38:d3:3c:1b:ef:51:4a:1c:7b:80:02:2a:ba:51: d1:19:e2:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoRUI4M0Y0ODgwRjIzNTc1RTU3NTE3ODVDNkUwQUIyQkUw QjI0OUJDMzAeFw0yNTA2MDEwNzA0MzRaFw0yNTA2MDgwNzA0MzRaMBgxFjAUBgNV BAMTDTY4M2JmYjgyLWM4NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPu22B8HRGXXCnVyYApJxTs1JihwhKvpWGmDk40LM57Rw8YUae+AcyJJ8EcaVx cVGcJId7qa55w7z3/vKFvV9Wx8oItmMv1GnNO9NMAjPa0LjOxvT7bdROs1WNvxLU Cw6n7mn1BM3VLXz6YdNduVlSNU9gO+f9CL3FMP5LymwgVgYHXJ8mx3NiB3RHQVdw n4VHpWwrqkxHTgNs+vpKxTbKqrEi8vZ11twAOTpTzwT/wI8bd/HuOAnYFMLn4fch TZrvpN9oJ4iAad8XtzkJxCGkWGiuIamdLgfCsZ2fDNVpDbkZ9Cqf6y5e65GGTwUL n8fYaLLl6YfQN1nWHhHL6pNnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXHl8zrDX XGFhPMYRCHZEIkOL+ZwwHwYDVR0jBBgwFoAU64P0iA8jV15XUXhcbgqyvgskm8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzU4RkU3NEFFRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyLzY0UDBpQThqVjE1WFVYaGNiZ3F5dmdza204 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNjRQMGlBOGpWMTVYVVhoY2JncXl2Z3NrbThNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzU4RkU3NEFFRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyLzY0UDBpQThqVjE1 WFVYaGNiZ3F5dmdza204TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKsMO8lNI/Bwgjaa08WY/6fr8yoKB8jIz4robi8hXUfHhFnBLpkq7ysj VZWFEqxFF8KE4H9PDfPCDopChLxDs0ATDCsTJdXaVGRM4o8e8jJyark1rkiDFjkN aqGpTnuhMPC7phfX06//DfAs5L+/00xrZngI4oebzVknyep1TCkHNRNZ4i0CWuGi 9Gq34wDwt2hH28RolbwFDmWLPLEUsCr8aOTsWtgTi7n+9nFFlrnECJf0jV26n2wo 61UENnPVX5/iGFOUvkHu8pS3RyTYwXNUDCtSe7tw/rxVp4iMg/CFEMZKlIYd3ph5 mveli3s40zwb71FKHHuAAiq6UdEZ4n4= -----END CERTIFICATE-----Generated at Mon Jun 2 20:59:52 2025 by rpki-client