$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: Lx40ZNqeZjcFTiVp3rW37zEhl3F5oSH9fSLOQ7VVZ+s= Subject key identifier: AA:F5:A8:13:8B:09:FF:7C:1A:AE:79:4D:01:6A:5A:70:9C:7C:92:65 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0AFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0AE3 Signing time: Wed 02 Jul 2025 19:39:25 +0000 Manifest this update: Wed 02 Jul 2025 19:39:24 +0000 Manifest next update: Wed 09 Jul 2025 19:39:24 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: KNFRPv7iNBfh5q9AaqiHE0/tfQZ32CIW+OWMiJ/83v8=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2811 (0xafb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Jul 2 19:39:24 2025 GMT Not After : Jul 9 19:39:24 2025 GMT Subject: CN=68658aed-f89a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c8:23:c2:f7:d5:33:d4:67:76:46:45:b6:ad: 41:e5:46:d9:b0:46:0a:83:f8:e2:bf:e3:3b:24:36: 87:ed:11:be:4a:d8:c2:8b:3d:94:07:09:a9:68:92: f1:03:92:15:52:a7:f8:42:79:f1:d3:30:61:4a:29: fd:a3:dc:f6:17:06:f0:7a:35:c6:29:f2:da:b8:3a: 44:4c:6c:05:0e:cf:94:5c:13:c2:df:b3:b2:3a:e8: cd:d1:9e:3d:41:1a:97:58:3e:99:35:e5:12:76:aa: 3e:e9:ec:3a:cc:ac:77:4f:c4:97:10:e4:5f:0d:57: ae:13:cc:a2:e9:54:0b:5c:0c:32:6d:c1:65:c0:65: 85:86:d6:72:1c:42:8c:70:ad:1d:ce:34:1b:cb:b0: 7d:06:08:7e:4f:2a:aa:4a:d6:fd:7d:02:b0:c9:38: 87:c2:59:23:84:c4:b1:d4:10:9e:c6:ac:ef:a8:a0: 8b:bc:a8:dd:de:13:5e:fd:5b:71:35:c0:77:79:70: c2:04:8c:07:fc:82:cb:b0:fc:d7:80:df:ab:5e:32: 0c:78:c5:f0:55:25:5f:ca:cb:c4:f4:c7:21:dc:60: bd:05:8e:92:60:4d:62:f2:90:fd:e2:52:d7:bf:f0: 5b:07:83:40:ab:d8:62:21:cf:ff:f1:48:78:a6:87: f3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:F5:A8:13:8B:09:FF:7C:1A:AE:79:4D:01:6A:5A:70:9C:7C:92:65 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:4b:12:9a:b9:48:4f:ed:45:a3:0e:22:61:9d:76:97:c0:5b: 70:9f:9c:ef:91:2a:13:8c:29:b9:86:83:d0:c9:8a:b3:2c:7d: 74:72:84:c5:60:c5:1f:d2:11:aa:4f:89:57:ae:94:c4:62:6f: d9:ff:37:94:fb:fb:0b:50:28:b6:46:cc:8d:61:11:99:03:3f: 20:8a:73:34:f5:ab:40:bc:23:eb:87:bf:81:e1:58:0a:c8:f3: ca:f6:82:8e:7a:ac:94:f8:94:9c:23:2e:0b:b8:72:18:18:3f: cc:c3:c8:65:72:b4:b7:f7:bd:17:c3:81:08:8b:f8:fc:ae:bf: c1:33:de:c8:1e:6f:c9:10:d9:f3:9a:c6:ed:39:af:48:36:5b: e9:9f:88:d6:4d:c7:81:a8:29:44:32:bc:17:c0:2d:80:a3:f9: df:be:70:bf:98:ad:28:ca:51:60:1e:db:f5:0b:ba:e7:72:37: ff:09:f3:7c:f6:1f:09:ca:dc:da:1a:98:22:db:b1:11:ab:f5: 0d:66:8d:46:c5:4d:84:62:c7:1a:29:fd:c8:f6:17:e7:be:51: da:1d:b6:8e:44:a2:04:d5:d4:9a:11:bc:d7:1a:c7:6e:9f:1d: e2:41:11:77:52:c2:81:19:e1:59:86:1b:ca:71:e7:39:fa:46: 6c:3c:64:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUwNzAyMTkzOTI0WhcNMjUwNzA5MTkzOTI0WjAYMRYwFAYD VQQDEw02ODY1OGFlZC1mODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MgjwvfVM9RndkZFtq1B5UbZsEYKg/jiv+M7JDaH7RG+StjCiz2UBwmpaJLx A5IVUqf4Qnnx0zBhSin9o9z2FwbwejXGKfLauDpETGwFDs+UXBPC37OyOujN0Z49 QRqXWD6ZNeUSdqo+6ew6zKx3T8SXEORfDVeuE8yi6VQLXAwybcFlwGWFhtZyHEKM cK0dzjQby7B9Bgh+TyqqStb9fQKwyTiHwlkjhMSx1BCexqzvqKCLvKjd3hNe/Vtx NcB3eXDCBIwH/ILLsPzXgN+rXjIMeMXwVSVfysvE9Mch3GC9BY6SYE1i8pD94lLX v/BbB4NAq9hiIc//8Uh4pofzYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKr1qBOL Cf98Gq55TQFqWnCcfJJlMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPSxKauUhP7UWjDiJhnXaXwFtwn5zvkSoTjCm5hoPQyYqzLH10coTF YMUf0hGqT4lXrpTEYm/Z/zeU+/sLUCi2RsyNYRGZAz8ginM09atAvCPrh7+B4VgK yPPK9oKOeqyU+JScIy4LuHIYGD/Mw8hlcrS3970Xw4EIi/j8rr/BM97IHm/JENnz msbtOa9INlvpn4jWTceBqClEMrwXwC2Ao/nfvnC/mK0oylFgHtv1C7rncjf/CfN8 9h8JytzaGpgi27ERq/UNZo1GxU2EYscaKf3I9hfnvlHaHbaORKIE1dSaEbzXGsdu nx3iQRF3UsKBGeFZhhvKcec5+kZsPGR2 -----END CERTIFICATE-----Generated at Thu Jul 3 12:15:36 2025 by rpki-client