$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: NggevIkot6sCEajOTgk/2HYxPigmEYiQIVcJQ5ji0Jc= Subject key identifier: D8:D7:59:13:86:84:54:F3:0F:B1:05:C6:65:AA:8B:19:E9:F2:0A:68 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 013C Signing time: Tue 10 Jun 2025 19:12:32 +0000 Manifest this update: Tue 10 Jun 2025 19:12:32 +0000 Manifest next update: Tue 17 Jun 2025 19:12:32 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: g54Ik3a47gwa20Rekn77r9RPKI5bhIdgKzrOQi8Paag=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 19:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Jun 10 19:12:32 2025 GMT Not After : Jun 17 19:12:32 2025 GMT Subject: CN=684883a0-5ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:70:39:3d:24:f8:91:a0:35:f0:11:70:e5:5d: 8b:a8:25:52:0f:4f:ce:84:92:ff:af:e1:bc:d3:1c: 9f:9d:46:1f:73:02:d7:d4:41:5f:18:18:a2:24:51: d3:cd:68:5d:2b:bb:88:f8:20:1b:bb:78:c2:a3:3c: a1:12:27:fe:34:f2:fd:2d:73:8c:d9:4c:ed:81:c1: 77:c8:77:a0:22:69:ec:6b:82:ef:e9:51:9a:a0:a9: 08:28:e6:91:ad:37:67:77:0c:0d:54:17:79:8a:58: d8:a0:52:ae:c8:a5:46:7e:bc:82:8f:ef:0b:d1:50: b5:4a:a2:08:77:25:fb:bb:37:f1:55:07:c7:0a:6f: ec:11:43:d7:8c:81:85:4a:4f:2f:ab:91:aa:c6:e9: 0b:9d:bf:b7:15:67:0d:d3:c5:39:6b:bc:ff:09:91: 7b:01:7a:1f:3c:a0:cc:b9:58:df:32:fd:cc:2f:93: 2f:e6:80:fc:a0:4a:76:24:bb:48:80:69:f5:9e:c3: fb:03:ff:a7:66:2e:67:3a:69:69:14:32:19:01:3f: 65:31:a1:3d:30:93:68:e8:74:25:2d:7f:7d:15:26: a9:84:77:54:15:0e:68:b6:e1:8d:7a:d0:ae:00:d9: 52:42:58:e8:3e:29:97:12:30:c0:20:e7:93:2f:2b: ca:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D7:59:13:86:84:54:F3:0F:B1:05:C6:65:AA:8B:19:E9:F2:0A:68 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d6:c0:3b:87:97:da:2c:42:f4:a5:2d:28:05:4d:4b:c0:fd: 07:9f:b9:93:db:fa:78:53:a5:1c:bd:a3:e5:21:81:8f:50:4b: 20:53:4f:7c:19:e4:99:96:94:ba:a5:82:11:03:fa:1f:91:db: ed:e9:6b:d6:53:a7:02:d6:6c:10:49:eb:50:d6:fe:b5:7e:82: 39:9a:69:61:3a:e7:9b:e1:c7:8d:29:05:33:c3:f1:85:70:06: f5:00:69:10:ce:ce:59:54:6e:b7:2e:5f:15:28:85:48:b9:61: 3e:c5:18:34:63:b4:65:58:e2:5b:76:85:81:ac:b1:17:7d:a3: 75:b1:a8:ac:0c:ab:fc:d7:1a:ce:a9:1c:47:ae:e4:1a:30:93: be:ba:76:95:71:4c:3d:2f:a1:e3:54:43:fe:5d:c8:08:68:8b: bc:5d:25:5b:4c:d7:9a:a0:b3:ee:ef:c2:2c:c6:ab:ec:c9:88: b6:2c:c8:df:b4:6e:18:94:f1:92:61:a1:7a:a0:0c:f1:8c:a7: 86:ce:2e:48:76:2d:6b:cd:46:a4:82:4f:98:c7:f7:ce:90:3a: 5c:2e:18:0a:97:b3:c3:82:2c:4a:ac:86:bd:33:ef:f1:e1:0c: 3e:2a:c3:65:bc:d3:ad:b4:c1:7d:f2:96:f1:91:b9:ff:8e:6f: db:ff:c3:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwNjEwMTkxMjMyWhcNMjUwNjE3MTkxMjMyWjAYMRYwFAYD VQQDEw02ODQ4ODNhMC01ZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HA5PST4kaA18BFw5V2LqCVSD0/OhJL/r+G80xyfnUYfcwLX1EFfGBiiJFHT zWhdK7uI+CAbu3jCozyhEif+NPL9LXOM2UztgcF3yHegImnsa4Lv6VGaoKkIKOaR rTdndwwNVBd5iljYoFKuyKVGfryCj+8L0VC1SqIIdyX7uzfxVQfHCm/sEUPXjIGF Sk8vq5GqxukLnb+3FWcN08U5a7z/CZF7AXofPKDMuVjfMv3ML5Mv5oD8oEp2JLtI gGn1nsP7A/+nZi5nOmlpFDIZAT9lMaE9MJNo6HQlLX99FSaphHdUFQ5otuGNetCu ANlSQljoPimXEjDAIOeTLyvKkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjXWROG hFTzD7EFxmWqixnp8gpoMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt1sA7h5faLEL0pS0oBU1LwP0Hn7mT2/p4U6UcvaPlIYGPUEsgU098 GeSZlpS6pYIRA/ofkdvt6WvWU6cC1mwQSetQ1v61foI5mmlhOueb4ceNKQUzw/GF cAb1AGkQzs5ZVG63Ll8VKIVIuWE+xRg0Y7RlWOJbdoWBrLEXfaN1saisDKv81xrO qRxHruQaMJO+unaVcUw9L6HjVEP+XcgIaIu8XSVbTNeaoLPu78IsxqvsyYi2LMjf tG4YlPGSYaF6oAzxjKeGzi5Idi1rzUakgk+Yx/fOkDpcLhgKl7PDgixKrIa9M+/x 4Qw+KsNlvNOttMF98pbxkbn/jm/b/8O9 -----END CERTIFICATE-----Generated at Wed Jun 11 21:18:16 2025 by rpki-client