$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: dOQI3ghDkNkjW1+me3f1D5CBkpvWs5eg5B8pAKQ6f2w= Subject key identifier: 82:81:A3:C9:52:6B:D3:77:6B:DE:0E:69:14:2B:F5:C8:21:12:11:A3 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 10C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 10AE Signing time: Wed 04 Jun 2025 17:19:54 +0000 Manifest this update: Wed 04 Jun 2025 17:19:54 +0000 Manifest next update: Wed 11 Jun 2025 17:19:54 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: 5kViNNmT1eTtePTJZG+Kj0aTn025KoVuFZBVnNWkmUo=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: lCmO2moRnEyFjHn2T0RrSpJHfoRMsDo8flibJ/q1im8=) 3: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: tpKBG2KlXfT/Zt122B62y1RWSYubHmXeyHELnt2EtS4=) 4: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: IHi+IFG70AY+pGCPcqa0F+qxqcr2LZY1LLXZfYW/jkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4297 (0x10c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Jun 4 17:19:54 2025 GMT Not After : Jun 11 17:19:54 2025 GMT Subject: CN=6840803a-11d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:63:01:3e:ae:a4:d7:0c:b2:b8:04:fb:e8:40: d2:55:7a:99:d5:5e:4a:05:8c:89:a4:bb:73:2a:fb: be:a4:19:ee:06:e3:e5:51:8f:56:da:61:4f:8f:ae: 8b:34:aa:b4:b1:4d:84:c4:43:49:5e:f8:ac:37:52: 01:b4:14:86:f7:e0:82:28:2f:66:15:e7:26:19:c3: 52:69:89:8a:65:4d:d2:7d:9c:0c:be:af:c6:da:58: f2:e0:bb:4f:4b:04:97:9b:57:2a:94:69:2e:39:a4: 30:06:44:9e:13:8b:51:a6:44:ee:aa:3b:dd:e1:b3: 33:ce:6f:47:57:27:21:82:38:47:45:16:24:fb:fc: 96:23:76:c5:5a:c2:6d:0f:64:90:3a:b1:d7:6e:da: b5:06:42:77:1c:75:05:05:7a:12:3c:34:ed:da:9b: d7:41:43:a1:b2:f1:ae:20:4c:80:5e:ec:b7:83:65: d7:f0:67:a2:d6:1c:41:ee:a6:3c:cc:e2:2a:81:cf: 92:8d:d8:18:ae:ba:5f:13:7b:b2:40:f3:b3:60:ce: 8b:1f:9b:78:3c:e5:12:70:5f:9e:c7:e8:bb:41:85: 63:38:b7:8d:f2:f1:1a:6d:49:86:29:5d:0c:ff:9f: fd:72:44:5d:4c:81:3b:23:49:b9:d7:ab:25:fc:73: 4a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:81:A3:C9:52:6B:D3:77:6B:DE:0E:69:14:2B:F5:C8:21:12:11:A3 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:d9:c3:c7:58:28:8e:df:a6:4c:9c:be:aa:0b:2e:7e:d4:70: 24:74:09:ae:d8:62:dc:2c:02:f9:85:79:0b:6c:3d:13:7f:da: 0e:22:5c:6c:41:21:fc:57:1c:6e:78:7f:e7:e0:34:46:8f:f6: 2e:0a:04:be:ac:e2:28:fb:be:5a:0c:2c:f5:cc:45:1e:63:74: 42:cf:0c:69:21:41:9b:63:5e:97:bd:2d:65:0e:b2:85:41:af: 89:d5:74:87:4f:f9:dd:1c:b9:82:34:18:59:08:b6:0f:ed:e4: af:1f:78:41:43:24:e7:bb:66:c5:ac:84:06:1c:85:7c:93:3f: 58:18:40:ab:d7:67:07:74:bd:11:9d:24:ed:f6:4c:87:80:5d: 3b:64:c8:6c:22:89:cc:df:95:1f:31:ee:a3:f9:b3:59:34:e2: ea:c4:a6:96:5f:74:08:6a:13:ca:05:9e:76:a5:48:6d:5c:64: 51:80:2b:3d:9e:20:c4:f8:d4:fa:1e:08:37:27:7a:b6:9f:15: 2d:dd:b1:25:16:c2:e7:e1:bc:00:83:85:ba:22:09:2f:da:2c: c2:56:82:e6:a8:3c:c9:ad:12:50:e5:ed:60:40:65:f2:5a:e7: 4e:eb:1d:4c:71:e8:78:55:78:44:05:89:bc:57:07:2b:6a:3e: 5c:96:4c:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjUwNjA0MTcxOTU0WhcNMjUwNjExMTcxOTU0WjAYMRYwFAYD VQQDEw02ODQwODAzYS0xMWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2MBPq6k1wyyuAT76EDSVXqZ1V5KBYyJpLtzKvu+pBnuBuPlUY9W2mFPj66L NKq0sU2ExENJXvisN1IBtBSG9+CCKC9mFecmGcNSaYmKZU3SfZwMvq/G2ljy4LtP SwSXm1cqlGkuOaQwBkSeE4tRpkTuqjvd4bMzzm9HVychgjhHRRYk+/yWI3bFWsJt D2SQOrHXbtq1BkJ3HHUFBXoSPDTt2pvXQUOhsvGuIEyAXuy3g2XX8Gei1hxB7qY8 zOIqgc+SjdgYrrpfE3uyQPOzYM6LH5t4POUScF+ex+i7QYVjOLeN8vEabUmGKV0M /5/9ckRdTIE7I0m516sl/HNKSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKBo8lS a9N3a94OaRQr9cghEhGjMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW2cPHWCiO36ZMnL6qCy5+1HAkdAmu2GLcLAL5hXkLbD0Tf9oOIlxs QSH8VxxueH/n4DRGj/YuCgS+rOIo+75aDCz1zEUeY3RCzwxpIUGbY16XvS1lDrKF Qa+J1XSHT/ndHLmCNBhZCLYP7eSvH3hBQyTnu2bFrIQGHIV8kz9YGECr12cHdL0R nSTt9kyHgF07ZMhsIonM35UfMe6j+bNZNOLqxKaWX3QIahPKBZ52pUhtXGRRgCs9 niDE+NT6Hgg3J3q2nxUt3bElFsLn4bwAg4W6Igkv2izCVoLmqDzJrRJQ5e1gQGXy WudO6x1Mceh4VXhEBYm8Vwcraj5clkxt -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:33 2025 by rpki-client