$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: tZ6YIQ12bELqDTjZzGanWR2SikUBy0L7iCglQuPrwQM= Subject key identifier: FA:FC:65:3A:D9:4D:33:18:C4:F9:58:20:6C:0C:C4:1B:E8:D5:1E:34 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 34E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34C0 Signing time: Sat 31 May 2025 14:26:48 +0000 Manifest this update: Sat 31 May 2025 14:26:48 +0000 Manifest next update: Sat 07 Jun 2025 14:26:48 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: 0cxQy8KdhZFXQXJmwQYe4H6NfnJAeIXeUjULcXxSD+M=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: /HE0+/UKz944jtczmVdL8xtwz3w/VhqI3+iHS/siDT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: May 31 14:26:48 2025 GMT Not After : Jun 7 14:26:48 2025 GMT Subject: CN=683b11a8-5aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:35:59:68:d8:7c:18:e0:a7:a1:dc:14:85:6f: 65:ae:b1:38:a3:60:5f:3c:a9:f9:02:22:89:f3:bb: 01:0d:e6:70:27:da:c4:26:c0:b9:c3:b4:05:06:b9: 7f:f8:61:17:a7:0a:04:96:e3:4b:23:07:99:f6:81: 6a:29:d9:a0:1d:d0:ba:98:86:39:ca:b0:e6:0e:51: 4c:bd:c3:2c:77:e3:28:c9:b9:0e:52:6e:fc:ff:63: 53:96:a1:32:fd:68:b1:1a:3d:5f:aa:f6:95:89:a5: c0:82:8d:8c:9c:6a:41:60:52:ca:c8:30:06:84:36: fe:7f:6f:3f:51:b4:e5:39:a1:8a:74:72:bf:fd:4a: 52:30:81:da:1e:4a:02:84:13:69:31:5c:81:3f:f8: c4:c8:6d:66:34:47:5c:62:20:04:27:c0:1c:73:6c: 5f:fb:bb:cb:2a:5f:ac:c5:a9:34:4a:d2:36:28:56: 92:88:96:33:34:0a:f7:2b:60:f7:b2:49:74:e4:df: b3:4d:12:fe:29:ea:e2:51:54:b4:da:61:ba:f9:15: 9e:1f:69:97:ce:c0:bc:fb:4d:35:08:05:6c:3f:0b: 7b:2e:65:a1:f7:90:8a:7d:27:ca:1c:10:8e:ff:07: 21:f6:da:bd:38:c3:6e:08:bf:d9:85:19:19:03:6d: 85:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:FC:65:3A:D9:4D:33:18:C4:F9:58:20:6C:0C:C4:1B:E8:D5:1E:34 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ad:fc:ad:66:10:e4:e1:39:40:7e:25:50:f3:ab:d2:9d:b2: 55:46:26:93:75:60:03:6d:d3:ea:e0:c2:c8:9e:c7:07:fc:1e: ac:79:a5:d7:41:c9:db:cd:36:72:b9:88:32:32:b7:32:68:c3: 7b:40:8e:f5:a2:95:f3:c4:d3:dc:6a:e6:ab:aa:13:e0:b5:dc: 5f:6f:cd:71:23:7f:80:cf:3b:73:a1:44:4a:ab:d5:65:30:db: 3d:13:93:b9:08:8a:54:a7:83:f8:be:5f:59:92:a2:f2:16:92: 39:0d:8f:32:ac:b7:f8:f5:c9:05:71:6e:33:da:79:ad:bb:26: b6:ef:a7:f2:af:74:72:19:79:5b:bb:96:8e:c4:ad:ed:ab:ce: d9:c4:2d:1b:73:f7:0c:f6:80:75:d4:05:e0:1a:57:0a:f3:88: e1:34:72:ae:dd:7f:ac:89:c9:94:e9:2d:a0:31:43:e3:57:30: ad:26:55:75:98:9c:bf:c8:28:e4:93:f4:8d:59:e5:4a:d9:ca: 24:b1:a1:43:0d:d3:40:16:54:98:47:1f:96:44:7d:85:f7:51: 05:0f:19:87:c9:c1:71:a2:b1:ec:73:e4:72:00:ed:ed:35:2c: d3:55:e3:28:9e:81:50:37:6c:e0:41:3e:4f:86:36:e4:1b:69: 4a:91:ad:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwNTMxMTQyNjQ4WhcNMjUwNjA3MTQyNjQ4WjAYMRYwFAYD VQQDEw02ODNiMTFhOC01YWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzVZaNh8GOCnodwUhW9lrrE4o2BfPKn5AiKJ87sBDeZwJ9rEJsC5w7QFBrl/ +GEXpwoEluNLIweZ9oFqKdmgHdC6mIY5yrDmDlFMvcMsd+MoybkOUm78/2NTlqEy /WixGj1fqvaViaXAgo2MnGpBYFLKyDAGhDb+f28/UbTlOaGKdHK//UpSMIHaHkoC hBNpMVyBP/jEyG1mNEdcYiAEJ8Acc2xf+7vLKl+sxak0StI2KFaSiJYzNAr3K2D3 skl05N+zTRL+KeriUVS02mG6+RWeH2mXzsC8+001CAVsPwt7LmWh95CKfSfKHBCO /wch9tq9OMNuCL/ZhRkZA22FxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPr8ZTrZ TTMYxPlYIGwMxBvo1R40MB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWrfytZhDk4TlAfiVQ86vSnbJVRiaTdWADbdPq4MLInscH/B6seaXX QcnbzTZyuYgyMrcyaMN7QI71opXzxNPcauarqhPgtdxfb81xI3+AzztzoURKq9Vl MNs9E5O5CIpUp4P4vl9ZkqLyFpI5DY8yrLf49ckFcW4z2nmtuya276fyr3RyGXlb u5aOxK3tq87ZxC0bc/cM9oB11AXgGlcK84jhNHKu3X+sicmU6S2gMUPjVzCtJlV1 mJy/yCjkk/SNWeVK2coksaFDDdNAFlSYRx+WRH2F91EFDxmHycFxorHsc+RyAO3t NSzTVeMonoFQN2zgQT5PhjbkG2lKka3E -----END CERTIFICATE-----Generated at Sat May 31 16:45:42 2025 by rpki-client