$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: rzak9Hax2K+566Fj7+2U7yrT8vxCnz2DMUbuhxoA/vE= Subject key identifier: 58:62:F8:28:58:1B:FB:0C:62:F4:50:DA:D1:01:69:9B:40:9E:40:71 Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0AC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AC3 Signing time: Fri 06 Jun 2025 19:30:37 +0000 Manifest this update: Fri 06 Jun 2025 19:30:36 +0000 Manifest next update: Fri 13 Jun 2025 19:30:36 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: ApXA3I/Sw4TLE5PjhEWXWVfKb32DF2D2Q0eC1qPTErg=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: 41cjFQ4140Z5h4e8/b+EfKqx6IFO/VtjT/VMpvwFsdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 19:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2761 (0xac9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Jun 6 19:30:36 2025 GMT Not After : Jun 13 19:30:36 2025 GMT Subject: CN=684341dd-c909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2a:79:a0:13:b4:c4:4e:0a:fa:77:79:d3:62: 09:0f:50:65:ce:44:fe:bb:ce:cd:04:ac:bf:b0:26: a4:f2:21:e9:ff:1d:5f:e3:38:de:96:a7:bd:6d:c1: 7f:4e:01:53:b4:b0:ff:e1:b1:ef:54:11:ce:09:b2: 32:97:66:79:bc:e4:75:a2:a4:3d:70:43:71:e9:a0: 16:22:ce:d5:12:6a:e8:37:44:b4:17:03:06:39:e6: b2:a5:c6:24:7d:55:cc:ab:17:b2:b9:aa:52:e5:ba: 01:d4:26:9d:6b:6a:55:7f:4c:32:02:ce:e6:70:42: 1c:b0:cc:3e:40:5f:ce:b8:32:36:1a:79:1f:3e:ea: d0:96:d8:b4:86:d2:26:ef:63:da:45:da:02:73:34: a4:26:77:bc:a7:60:bd:4a:dc:3b:16:3b:ee:33:bd: 6f:b2:cb:c4:f6:06:b5:78:05:63:4d:a5:7a:ef:95: 6c:8e:98:b3:90:65:f4:c9:7c:e1:85:42:5c:e6:36: 97:72:f5:ee:b1:91:b3:87:9f:b4:2b:41:26:d6:37: 53:76:53:f3:fe:33:65:b3:6e:e8:66:0c:32:06:0b: 71:6d:d5:73:2b:0c:d8:74:2b:19:e5:eb:f8:f8:ba: 45:4e:41:8f:07:ae:12:38:d0:50:25:46:59:57:5d: 6c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:62:F8:28:58:1B:FB:0C:62:F4:50:DA:D1:01:69:9B:40:9E:40:71 X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:3a:3b:61:14:1a:90:30:16:44:02:7c:44:30:e9:bb:d3:97: ff:f1:3f:db:ca:a0:d5:bc:ce:fb:0d:34:f1:bb:36:5e:f9:86: 74:31:92:5f:5a:1a:29:1c:b7:1d:c2:a0:ad:df:5e:93:87:ae: 04:46:bc:9c:b8:c5:39:06:16:76:c1:d7:d6:bf:9e:c0:60:cc: bc:39:cc:33:ed:e0:e7:4e:83:13:f2:de:91:2a:3d:9c:c4:de: ce:40:20:ed:7e:da:35:15:c5:0a:7b:d7:1d:04:ff:84:10:ae: a2:dc:26:dc:1e:9d:19:c2:bd:0e:37:4d:7c:9c:4e:09:f0:46: c3:f3:b3:2a:fc:60:0c:ba:38:fb:c8:68:bb:30:bc:fe:ce:8d: 60:e8:0b:ac:d4:b2:a2:0d:ac:8e:bc:3f:6f:b9:cf:2c:99:b1: be:16:a1:38:d1:63:14:fb:80:64:85:10:3d:81:4f:71:14:1e: b7:40:60:b2:17:2d:dd:c6:31:94:1a:c6:27:2a:6d:98:1c:cb: ba:93:5b:d6:40:68:22:5a:bb:e2:e2:8d:32:00:be:4f:eb:b3: d5:11:ad:79:4e:da:6d:36:a4:58:80:94:1c:ab:b6:1b:c3:8d: da:7c:02:b1:20:2a:cb:d2:d2:9a:2d:e1:79:c6:e7:3c:a8:f9: 20:2b:59:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwNjA2MTkzMDM2WhcNMjUwNjEzMTkzMDM2WjAYMRYwFAYD VQQDEw02ODQzNDFkZC1jOTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSp5oBO0xE4K+nd502IJD1BlzkT+u87NBKy/sCak8iHp/x1f4zjelqe9bcF/ TgFTtLD/4bHvVBHOCbIyl2Z5vOR1oqQ9cENx6aAWIs7VEmroN0S0FwMGOeaypcYk fVXMqxeyuapS5boB1Cada2pVf0wyAs7mcEIcsMw+QF/OuDI2GnkfPurQlti0htIm 72PaRdoCczSkJne8p2C9Stw7FjvuM71vssvE9ga1eAVjTaV675VsjpizkGX0yXzh hUJc5jaXcvXusZGzh5+0K0Em1jdTdlPz/jNls27oZgwyBgtxbdVzKwzYdCsZ5ev4 +LpFTkGPB64SONBQJUZZV11scwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhi+ChY G/sMYvRQ2tEBaZtAnkBxMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/OjthFBqQMBZEAnxEMOm705f/8T/byqDVvM77DTTxuzZe+YZ0MZJf WhopHLcdwqCt316Th64ERrycuMU5BhZ2wdfWv57AYMy8Ocwz7eDnToMT8t6RKj2c xN7OQCDtfto1FcUKe9cdBP+EEK6i3CbcHp0Zwr0ON018nE4J8EbD87Mq/GAMujj7 yGi7MLz+zo1g6Aus1LKiDayOvD9vuc8smbG+FqE40WMU+4BkhRA9gU9xFB63QGCy Fy3dxjGUGsYnKm2YHMu6k1vWQGgiWrvi4o0yAL5P67PVEa15TtptNqRYgJQcq7Yb w43afAKxICrL0tKaLeF5xuc8qPkgK1l8 -----END CERTIFICATE-----Generated at Sat Jun 7 05:24:50 2025 by rpki-client