$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: BjIU/D6yoCKo7xFwxd2MlO2m6HZOdZUcOFjCgZDnNNU= Subject key identifier: 9E:1B:7B:77:96:44:5A:EC:36:A1:F0:38:F6:1D:33:EE:CD:E1:34:BA Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 06BA Signing time: Fri 30 May 2025 22:22:55 +0000 Manifest this update: Fri 30 May 2025 22:22:54 +0000 Manifest next update: Fri 06 Jun 2025 22:22:54 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: xrVWlgobZwqLwhQ5fSgAzlO+bqsWAxsv2nDw6J9GnKE=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: ZoyzDGshP3Xcoohd0LXUFxcHdBCls9Mtr+7VfTCfHng=) 3: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: CV9Xtt4wpYX39ZMKm/6DqIr00Lo5ro8Eb2RI05UQ11M=) 4: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: Ugt+4UcuNweFOll74GevcYAxRnvyyr25SWxXtIDRBOs=) 5: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: OJZvptd+tocMmJD9s/jElE2hQgWZLbxuwcVBqNbj/eE=) 6: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 5HCOc9+lcCKuixbrdeM973cbz14gTLhtEdJh3Ihte7k=) 7: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: Aj0XMuYXgKOkJrvVAWJwZ355fHJjhadv4AzfTIK8zF0=) 8: 34956990D75511EF80E68A39C4F9AE02.roa (hash: h81pLQ3f9taD4ZqBYBRt4RndKbd9f7ld0NnWuyDorBE=) 9: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: atNvogMajVgrPoutiUYnbQeZE/aQ+6Wia9GfoJ31M8o=) 10: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: KBvqkQdj5OAEkzL6ogJ3+9HoBsBkMOAMwsqEyeP/iq8=) 11: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: +GfFG8a92/6/e1SPONilMIvPHcJ1t193OnonNOBg/KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: May 30 22:22:54 2025 GMT Not After : Jun 6 22:22:54 2025 GMT Subject: CN=683a2fbf-38ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:92:17:8a:ac:a7:35:54:16:d4:95:60:30: 7b:5d:98:3b:c8:f2:e0:1d:c2:fe:1f:4f:8e:75:7c: 5e:5b:e7:2f:46:04:e2:f6:f3:28:dc:8f:31:4e:58: 54:ca:a0:58:17:26:55:a3:d0:75:0d:56:ae:12:26: 30:be:24:fb:c2:54:39:36:36:04:cb:6b:66:60:c5: 99:7d:85:45:af:a3:5c:35:b8:ae:b3:46:af:a0:d2: 9d:47:1d:bc:0b:b4:4c:bc:6d:af:d0:c9:8e:39:01: 5d:b3:ac:c5:36:71:88:d6:de:d1:32:2b:ed:48:6a: 8a:a1:f1:e2:d6:80:79:1b:54:fe:31:cd:c7:19:c5: 5a:16:de:9e:32:bf:0c:9b:d7:c1:2d:15:17:44:c0: 72:c1:0f:c5:5c:4a:f6:f7:73:9d:a2:92:03:a8:c9: 87:10:8e:50:75:3b:8e:59:5f:d2:83:e6:c5:54:34: 00:8d:f0:1d:73:9a:46:41:9c:34:31:8a:e1:5d:fe: ef:da:82:27:01:fe:a4:4d:c1:11:16:05:0d:4a:ea: 25:52:da:b7:b7:e5:1c:97:91:36:66:81:36:1d:8a: d0:65:5b:eb:8a:25:92:64:c7:f7:c7:1f:72:fc:90: 49:56:4f:14:02:99:5c:e8:67:af:d9:16:f6:7b:d3: d0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1B:7B:77:96:44:5A:EC:36:A1:F0:38:F6:1D:33:EE:CD:E1:34:BA X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:70:a0:da:a8:df:71:a7:31:40:ac:7f:5a:57:78:29:b7:26: c9:28:75:6f:57:8f:cb:ab:f8:35:51:8f:d7:d2:43:d1:62:be: e6:d1:a3:40:7a:f8:86:d5:3d:37:75:05:48:47:92:05:ad:2c: 68:2d:94:27:80:62:3f:8a:58:98:25:66:d7:28:44:17:6c:96: e9:93:e2:12:5e:52:7f:1b:7d:74:41:40:2d:7e:61:ed:2c:4a: 2b:d6:38:15:ef:cd:c6:40:da:c5:bf:03:9e:30:51:15:0a:0d: e4:9e:0f:ec:23:c1:0d:fb:97:b5:a1:2b:ae:2a:bb:bd:5c:da: 9b:88:b6:db:7b:6f:77:23:6b:8c:c4:72:df:8b:87:b4:c8:52: 4d:1f:27:fb:65:0d:8b:cf:27:4a:a0:7e:b1:25:e6:f1:25:0c: 0d:74:d1:af:7e:f4:2f:1a:90:5c:2e:25:60:c8:96:d0:95:fc: 48:cf:7b:62:dc:90:5d:9f:f6:3c:57:52:15:f0:9d:30:55:8e: 02:82:9f:ec:45:1b:0f:f4:5d:6e:39:2b:71:dc:87:8f:58:2f: 01:01:09:e7:5d:52:3d:fd:36:b0:c4:9c:5b:28:00:31:0d:2c: 5e:82:0d:7d:42:e9:e8:08:db:bc:5c:7e:b7:46:0d:ce:c9:5c: 2a:51:bb:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNTMwMjIyMjU0WhcNMjUwNjA2MjIyMjU0WjAYMRYwFAYD VQQDEw02ODNhMmZiZi0zOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7WSF4qspzVUFtSVYDB7XZg7yPLgHcL+H0+OdXxeW+cvRgTi9vMo3I8xTlhU yqBYFyZVo9B1DVauEiYwviT7wlQ5NjYEy2tmYMWZfYVFr6NcNbius0avoNKdRx28 C7RMvG2v0MmOOQFds6zFNnGI1t7RMivtSGqKofHi1oB5G1T+Mc3HGcVaFt6eMr8M m9fBLRUXRMBywQ/FXEr293OdopIDqMmHEI5QdTuOWV/Sg+bFVDQAjfAdc5pGQZw0 MYrhXf7v2oInAf6kTcERFgUNSuolUtq3t+Ucl5E2ZoE2HYrQZVvriiWSZMf3xx9y /JBJVk8UAplc6Gev2Rb2e9PQewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4be3eW RFrsNqHwOPYdM+7N4TS6MB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAecKDaqN9xpzFArH9aV3gptybJKHVvV4/Lq/g1UY/X0kPRYr7m0aNA eviG1T03dQVIR5IFrSxoLZQngGI/iliYJWbXKEQXbJbpk+ISXlJ/G310QUAtfmHt LEor1jgV783GQNrFvwOeMFEVCg3kng/sI8EN+5e1oSuuKru9XNqbiLbbe293I2uM xHLfi4e0yFJNHyf7ZQ2LzydKoH6xJebxJQwNdNGvfvQvGpBcLiVgyJbQlfxIz3ti 3JBdn/Y8V1IV8J0wVY4Cgp/sRRsP9F1uOStx3IePWC8BAQnnXVI9/TawxJxbKAAx DSxegg19QunoCNu8XH63Rg3OyVwqUbuA -----END CERTIFICATE-----Generated at Sat May 31 17:10:16 2025 by rpki-client