$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: jx/qyWU6Clwu2wzJKWqO5pb27GHLgHu4nuKdjXw0ASE= Subject key identifier: A0:B5:55:B6:16:DD:86:06:66:BB:A8:9B:E2:46:42:3E:7F:18:43:BD Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 013D Signing time: Thu 12 Jun 2025 19:06:11 +0000 Manifest this update: Thu 12 Jun 2025 19:06:11 +0000 Manifest next update: Thu 19 Jun 2025 19:06:11 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: T2YG6d8U7G7n81T+mK/P3a+MZsFy51RJ416DiNaeCqA=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Jun 12 19:06:11 2025 GMT Not After : Jun 19 19:06:11 2025 GMT Subject: CN=684b2523-fa34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:32:95:41:91:34:0d:ec:16:92:b6:0e:1d: f7:55:3c:e4:05:19:9c:f9:3d:f5:ba:12:3b:54:65: 1a:de:9b:b4:9c:ad:52:2a:55:82:36:4c:5d:1b:63: 82:09:06:15:c9:99:32:bd:1c:ab:ae:63:3f:b4:fe: dc:d2:f2:37:06:ce:9a:e5:26:68:ff:f7:23:1b:28: ce:a0:25:e0:cd:57:57:f9:ed:b6:0b:fb:87:5a:f5: 77:d2:fd:1d:fd:de:a4:d5:0e:88:8f:15:53:1f:ff: 5d:5c:74:b3:25:b0:93:39:c6:5c:53:9d:9f:7f:95: db:5e:40:38:3f:da:c7:4c:90:71:9a:c5:5b:29:82: cd:33:4c:43:73:96:18:bc:19:53:19:56:3a:d4:e5: 98:ba:a7:01:06:9e:d8:c4:4e:cb:56:3d:f2:d6:ff: bb:1c:71:9d:9d:68:e0:a2:22:df:66:88:38:12:c4: a2:9a:1b:1a:91:f8:56:77:63:55:fb:3f:7d:da:7b: 55:84:0d:71:56:4d:9d:44:bc:db:fb:3f:12:b4:06: a9:a5:fb:c3:a7:bb:d3:d9:11:17:46:d9:ff:be:1a: e6:f2:46:f5:d6:f8:ef:c6:1b:26:89:bf:5b:9c:51: 91:4c:3d:a8:03:45:a2:e9:66:d0:8e:8b:b7:41:da: 96:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B5:55:B6:16:DD:86:06:66:BB:A8:9B:E2:46:42:3E:7F:18:43:BD X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:28:89:f8:e7:4e:e8:82:fe:a1:c0:98:7f:79:37:12:6a:a0: d9:4d:4a:16:f1:58:5e:de:19:a8:bc:04:59:6b:71:ec:9d:40: 8d:0e:ac:b8:6b:58:3a:ff:dc:8b:7d:82:96:a6:a0:52:7f:3c: a4:88:b9:89:06:6f:df:c5:4a:7e:92:d3:7c:c9:c5:38:81:6b: be:91:04:32:13:bc:7d:f1:5c:b0:58:bf:8b:51:4c:da:aa:72: 5b:23:cd:e2:6a:de:a2:61:ac:33:5f:9b:72:c7:9e:c3:69:a5: 8c:46:c2:ab:39:c1:95:49:82:23:ff:15:5b:22:f4:09:ac:d7: 03:2a:f0:c6:3b:0d:49:15:43:98:b2:3b:a3:dc:47:c7:a3:f8: 2c:f3:02:7b:3c:d3:c2:8a:d5:6b:82:cb:3e:d0:e4:c1:42:85: fb:34:2a:66:b8:4e:44:74:a2:27:5e:c2:c1:d2:f9:65:aa:c7: 29:e1:7c:8b:27:6d:fa:67:94:7e:4d:26:41:c9:5e:98:68:5d: d5:86:69:c7:d0:01:98:31:cd:ea:49:e3:0d:5f:0b:1a:c9:d4: 0f:a8:7b:c4:12:43:85:e4:c9:fe:5e:f2:46:6a:5e:47:d7:dd: 7d:7c:99:ae:b6:e9:36:2d:5a:fd:f8:b7:fe:1c:84:4f:6b:27: ea:81:8a:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwNjEyMTkwNjExWhcNMjUwNjE5MTkwNjExWjAYMRYwFAYD VQQDEw02ODRiMjUyMy1mYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWQylUGRNA3sFpK2Dh33VTzkBRmc+T31uhI7VGUa3pu0nK1SKlWCNkxdG2OC CQYVyZkyvRyrrmM/tP7c0vI3Bs6a5SZo//cjGyjOoCXgzVdX+e22C/uHWvV30v0d /d6k1Q6IjxVTH/9dXHSzJbCTOcZcU52ff5XbXkA4P9rHTJBxmsVbKYLNM0xDc5YY vBlTGVY61OWYuqcBBp7YxE7LVj3y1v+7HHGdnWjgoiLfZog4EsSimhsakfhWd2NV +z992ntVhA1xVk2dRLzb+z8StAappfvDp7vT2REXRtn/vhrm8kb11vjvxhsmib9b nFGRTD2oA0Wi6WbQjou3QdqWBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKC1VbYW 3YYGZruom+JGQj5/GEO9MB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVKIn4507ogv6hwJh/eTcSaqDZTUoW8Vhe3hmovARZa3HsnUCNDqy4 a1g6/9yLfYKWpqBSfzykiLmJBm/fxUp+ktN8ycU4gWu+kQQyE7x98VywWL+LUUza qnJbI83iat6iYawzX5tyx57DaaWMRsKrOcGVSYIj/xVbIvQJrNcDKvDGOw1JFUOY sjuj3EfHo/gs8wJ7PNPCitVrgss+0OTBQoX7NCpmuE5EdKInXsLB0vllqscp4XyL J236Z5R+TSZByV6YaF3VhmnH0AGYMc3qSeMNXwsaydQPqHvEEkOF5Mn+XvJGal5H 1919fJmutuk2LVr9+Lf+HIRPayfqgYro -----END CERTIFICATE-----Generated at Fri Jun 13 07:32:31 2025 by rpki-client