$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: OBMZKDNkUVlgEe5ShVKVmx1KHO+FWg5Wu4iAg5ffOtg= Subject key identifier: 48:E2:86:AE:70:B1:6A:F4:78:B5:0A:3E:66:CE:30:98:A6:BF:5C:05 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 013B Signing time: Sun 08 Jun 2025 19:04:34 +0000 Manifest this update: Sun 08 Jun 2025 19:04:33 +0000 Manifest next update: Sun 15 Jun 2025 19:04:33 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: GgrqT2TPS7BTUmkTPwDEtF7RizmpPTjFqVcjRbTKH2I=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 19:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Jun 8 19:04:33 2025 GMT Not After : Jun 15 19:04:33 2025 GMT Subject: CN=6845dec1-db2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:86:f8:87:58:3c:9d:79:f9:72:97:d1:d9: 30:10:66:bb:61:ca:f4:34:33:70:db:5c:bc:87:ed: 06:c5:86:06:b0:8c:7d:bc:84:4c:26:2b:1d:d9:7a: c4:ae:5e:8b:62:44:9a:10:ac:2f:ba:bc:41:a4:be: ae:e2:0a:00:09:47:e5:c3:a6:8b:8a:f8:b6:79:e6: c2:b9:b6:13:db:1f:d0:7f:e8:a0:fa:26:8d:86:b6: 0b:22:e5:9c:aa:72:ac:87:0b:b8:ee:de:4c:d4:55: e9:bb:d8:64:b4:61:8f:0a:66:cd:36:b9:f1:9d:5e: 42:c0:72:87:91:0c:5a:93:76:50:96:1e:1b:54:40: 66:f0:6e:3c:52:12:ac:e7:dd:87:86:32:32:c2:80: 68:cc:6f:a9:7f:18:07:50:40:9c:f1:e5:4d:83:38: 9a:8f:26:87:26:88:87:fd:01:72:23:d1:51:d7:41: 1f:04:9d:2b:a3:2f:1e:b8:5f:e3:30:e1:9b:6b:0b: 3a:a9:de:c1:ea:77:07:29:9c:1d:61:2a:b2:7f:f5: de:4e:32:28:fd:7f:65:5c:63:91:58:d1:42:5f:94: 40:0e:7a:23:71:db:cd:9c:aa:89:c5:22:aa:16:88: 01:48:9d:e1:a3:a4:68:c8:10:0c:d8:2e:2c:c9:3a: 29:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E2:86:AE:70:B1:6A:F4:78:B5:0A:3E:66:CE:30:98:A6:BF:5C:05 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:82:da:06:cd:b0:ca:5c:60:90:ac:98:09:54:5a:cc:97:8e: 07:29:e2:2a:ac:84:d2:c0:aa:b5:d9:c6:3e:f6:6e:56:49:a3: 3f:89:4d:e2:a4:81:0f:58:eb:dd:c7:a4:b6:cb:e5:92:28:44: 1c:ea:ea:20:78:c3:1c:5a:c9:42:92:d9:fd:8e:af:f8:a5:9d: fd:bb:76:1a:21:bb:2d:ba:49:31:0a:07:67:67:0c:00:e2:ec: 0a:3d:ed:34:d2:1b:ba:32:16:bd:6b:be:e3:05:a9:d7:f5:a0: c8:c5:1e:43:38:62:4b:2c:94:93:a6:6f:68:1e:c2:ff:2b:f4: 15:30:51:56:e4:0a:8a:8d:35:17:7a:60:6a:d1:ef:63:c7:4c: a4:6f:14:9e:47:b2:13:86:ba:45:6a:22:6e:08:dd:6f:96:c2: 51:c5:0c:9e:e0:92:6b:d8:c2:95:45:29:a4:0c:70:a0:b2:a0: f2:af:fe:1a:9a:ba:4b:ad:04:d6:5d:26:f9:e6:6f:88:1c:71: 97:c5:1b:e1:b9:c6:06:0a:7a:6c:95:74:79:9a:20:a5:84:8c: e2:10:9d:1c:e3:09:a2:4f:c7:0f:19:f0:28:4e:09:ca:dc:ed: 1d:70:7f:f4:fe:be:0e:35:17:7e:9c:a7:19:f6:d0:34:11:b5: 67:05:e9:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwNjA4MTkwNDMzWhcNMjUwNjE1MTkwNDMzWjAYMRYwFAYD VQQDEw02ODQ1ZGVjMS1kYjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqiG+IdYPJ15+XKX0dkwEGa7Ycr0NDNw21y8h+0GxYYGsIx9vIRMJisd2XrE rl6LYkSaEKwvurxBpL6u4goACUflw6aLivi2eebCubYT2x/Qf+ig+iaNhrYLIuWc qnKshwu47t5M1FXpu9hktGGPCmbNNrnxnV5CwHKHkQxak3ZQlh4bVEBm8G48UhKs 592HhjIywoBozG+pfxgHUECc8eVNgziajyaHJoiH/QFyI9FR10EfBJ0roy8euF/j MOGbaws6qd7B6ncHKZwdYSqyf/XeTjIo/X9lXGORWNFCX5RADnojcdvNnKqJxSKq FogBSJ3ho6RoyBAM2C4syTopuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjihq5w sWr0eLUKPmbOMJimv1wFMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBgtoGzbDKXGCQrJgJVFrMl44HKeIqrITSwKq12cY+9m5WSaM/iU3i pIEPWOvdx6S2y+WSKEQc6uogeMMcWslCktn9jq/4pZ39u3YaIbstukkxCgdnZwwA 4uwKPe000hu6Mha9a77jBanX9aDIxR5DOGJLLJSTpm9oHsL/K/QVMFFW5AqKjTUX emBq0e9jx0ykbxSeR7IThrpFaiJuCN1vlsJRxQye4JJr2MKVRSmkDHCgsqDyr/4a mrpLrQTWXSb55m+IHHGXxRvhucYGCnpslXR5miClhIziEJ0c4wmiT8cPGfAoTgnK 3O0dcH/0/r4ONRd+nKcZ9tA0EbVnBemH -----END CERTIFICATE-----Generated at Tue Jun 10 13:09:39 2025 by rpki-client