$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: vX/1XxZSaQ5HsKSXlY22eyAfV5Zs4r4Tp66Vk4tZsl8= Subject key identifier: 63:3E:10:F7:DA:F2:7B:04:E4:07:C4:11:10:73:01:2A:C3:20:46:7D Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 013E Signing time: Sat 14 Jun 2025 19:08:53 +0000 Manifest this update: Sat 14 Jun 2025 19:08:53 +0000 Manifest next update: Sat 21 Jun 2025 19:08:53 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: 3kmveIa9D4RncrCHdJ/nzkh6HPmynA3vKZlKxOFhsuQ=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Jun 14 19:08:53 2025 GMT Not After : Jun 21 19:08:53 2025 GMT Subject: CN=684dc8c5-e3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bf:3e:f8:7f:56:66:73:a1:ae:e4:df:06:2a: 82:a2:46:5c:e0:80:c2:7a:ad:b6:7a:88:35:0e:f4: 6a:47:da:bc:b8:87:79:08:85:fc:5e:49:0b:11:a4: 30:c0:1b:b1:dd:b9:0f:06:95:2a:7a:c0:75:66:35: 1b:00:90:57:24:07:d8:1e:c3:7b:55:08:fc:be:cc: 09:97:9f:4a:ad:37:d8:a8:c0:8a:b5:ec:6b:20:3c: ba:b5:61:e8:24:4a:dd:42:b3:5e:aa:c5:d3:e6:bb: 45:d5:4c:2e:95:2b:fa:e2:9a:04:f6:8e:93:7e:16: df:44:d7:c1:c6:a0:dd:9f:dd:cd:a9:f7:08:92:50: f5:eb:3b:9e:81:b2:1d:5a:4b:60:e4:63:c4:9d:46: 28:9b:12:7f:b4:33:d0:91:a2:5c:d0:09:f9:a0:93: d6:09:4e:da:8c:03:d8:54:c7:8c:b8:11:bc:07:f8: 9f:fa:b6:c0:3a:e7:54:bd:e2:a4:f5:ce:8b:fb:3f: 22:97:e1:8a:1c:1d:45:9f:fc:ec:8e:2d:68:f7:cb: fd:9f:cd:6b:d9:3d:fd:7a:b2:c8:28:f3:c4:82:16: ef:84:2c:8f:e6:4c:49:c0:04:10:da:2b:6a:ad:63: 56:6c:35:5c:cd:ba:b5:34:b3:2f:37:26:0b:74:28: 0d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:3E:10:F7:DA:F2:7B:04:E4:07:C4:11:10:73:01:2A:C3:20:46:7D X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:89:35:4f:5a:a4:d0:bc:dd:62:d6:25:97:0b:21:b0:aa:b8: 07:f0:04:80:81:64:fd:41:89:5b:45:aa:3c:9b:0b:b5:1e:ac: 16:3d:82:37:79:ae:56:f8:f2:f3:5c:0d:84:52:4f:f7:91:73: 6f:a2:f2:2f:de:ae:ba:a5:d8:5a:5c:7f:28:b3:a7:ec:8b:94: de:a2:0d:95:22:4c:ea:1b:a0:30:f3:64:af:50:f7:11:64:cd: e9:9f:37:22:fe:f6:fb:30:4a:53:48:e4:d7:c3:92:59:52:99: d6:fa:64:9f:11:3d:e6:a9:bb:2e:50:28:2c:38:a0:1f:31:d8: d0:63:92:a4:ec:3a:b4:9f:6a:54:bd:bd:fe:b8:66:a8:ad:4c: 39:6c:1a:f1:ff:21:bf:f4:8d:f3:e7:37:5c:c0:8e:5e:8a:1c: 28:b3:88:9e:56:d8:11:78:ad:ed:bc:f4:00:68:86:41:07:07: aa:68:d7:22:e5:91:19:de:be:2e:9d:3e:da:49:af:2b:bc:c9: 28:69:69:37:4b:9d:8b:a2:85:a5:2a:ef:99:dd:72:17:1b:39: f3:52:35:ea:e5:65:cb:3c:64:23:d5:2f:7f:89:95:0d:d8:36: 2e:50:de:b5:79:23:f5:fe:8b:da:fe:48:ce:66:55:9a:b8:82: ef:a8:50:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwNjE0MTkwODUzWhcNMjUwNjIxMTkwODUzWjAYMRYwFAYD VQQDEw02ODRkYzhjNS1lM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArb8++H9WZnOhruTfBiqCokZc4IDCeq22eog1DvRqR9q8uId5CIX8XkkLEaQw wBux3bkPBpUqesB1ZjUbAJBXJAfYHsN7VQj8vswJl59KrTfYqMCKtexrIDy6tWHo JErdQrNeqsXT5rtF1UwulSv64poE9o6TfhbfRNfBxqDdn93NqfcIklD16zuegbId Wktg5GPEnUYomxJ/tDPQkaJc0An5oJPWCU7ajAPYVMeMuBG8B/if+rbAOudUveKk 9c6L+z8il+GKHB1Fn/zsji1o98v9n81r2T39erLIKPPEghbvhCyP5kxJwAQQ2itq rWNWbDVczbq1NLMvNyYLdCgNYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGM+EPfa 8nsE5AfEERBzASrDIEZ9MB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbiTVPWqTQvN1i1iWXCyGwqrgH8ASAgWT9QYlbRao8mwu1HqwWPYI3 ea5W+PLzXA2EUk/3kXNvovIv3q66pdhaXH8os6fsi5Teog2VIkzqG6Aw82SvUPcR ZM3pnzci/vb7MEpTSOTXw5JZUpnW+mSfET3mqbsuUCgsOKAfMdjQY5Kk7Dq0n2pU vb3+uGaorUw5bBrx/yG/9I3z5zdcwI5eihwos4ieVtgReK3tvPQAaIZBBweqaNci 5ZEZ3r4unT7aSa8rvMkoaWk3S52LooWlKu+Z3XIXGznzUjXq5WXLPGQj1S9/iZUN 2DYuUN61eSP1/ova/kjOZlWauILvqFA7 -----END CERTIFICATE-----Generated at Sat Jun 14 23:16:37 2025 by rpki-client