$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft File: aCDlNpQmEvNLA3PdH3ftI0_981w.mft (raw, json) Hash identifier: A3XdXlCuS23lJsU3rkuqjIaOj1SKBUwYnhEKVlE859c= Subject key identifier: F0:6D:CE:87:F5:34:A6:42:E6:29:BD:90:2B:01:AC:41:2E:66:0F:2F Authority key identifier: 68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C Certificate issuer: /CN=A911F8C9/serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Certificate serial: 0454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft Manifest number: 044E Signing time: Thu 03 Jul 2025 00:35:01 +0000 Manifest this update: Thu 03 Jul 2025 00:35:01 +0000 Manifest next update: Thu 10 Jul 2025 00:35:00 +0000 Files and hashes: 1: aCDlNpQmEvNLA3PdH3ftI0_981w.crl (hash: P0oWAaLYibqgOffl9SEcc3kEAmodonMxXQxHC1oxLao=) 2: 0DC4BC0C5CDE11ECB486850FC4F9AE02.roa (hash: iYZHbBP1huEOnGt/Q+nJjdmHjhMhsvtrk4mN1xBE3S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8C9, serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Validity Not Before: Jul 3 00:35:01 2025 GMT Not After : Jul 10 00:35:00 2025 GMT Subject: CN=6865d035-4863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7b:cf:9c:ce:b9:ee:d5:cc:6a:c2:2e:fe:a4: 82:0b:a2:87:18:ff:9b:2a:b9:31:a2:cc:40:6e:24: f0:f3:52:16:11:59:48:3c:95:8b:28:ac:bc:0d:89: 8b:28:2a:5a:f9:7b:72:db:ed:cd:a3:57:ac:2b:0f: 0f:84:08:ed:9f:7f:68:93:cb:12:6d:f4:16:f2:4f: 02:de:c2:23:42:83:60:67:19:65:1c:55:c3:2e:e4: 41:cb:f4:1c:eb:b1:04:9f:f1:05:b4:18:b3:b9:3b: a0:29:32:4c:f2:9d:2e:8d:d0:3b:1c:14:59:ea:76: e6:be:42:fd:74:4a:78:f4:c6:cd:e8:15:15:10:1a: 81:f6:15:50:50:aa:c9:2d:67:71:5a:35:b2:22:43: 68:9c:36:ba:b9:5c:8f:b3:52:d7:11:b9:f0:f7:68: 03:31:44:05:7d:c7:81:bb:72:69:c9:18:d1:cc:37: db:13:ff:66:9a:a0:e8:5f:9b:98:82:72:9b:a2:59: 1d:0b:59:ac:3f:ad:3b:c2:09:79:08:bc:68:8b:72: c0:66:77:b0:49:75:60:8b:ce:99:cd:68:9e:ec:b3: ec:bc:72:90:be:59:ac:11:1e:a6:6a:18:f7:2d:da: fe:f2:6d:1e:0a:7f:e6:80:c5:8b:46:f9:c4:be:61: 04:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6D:CE:87:F5:34:A6:42:E6:29:BD:90:2B:01:AC:41:2E:66:0F:2F X509v3 Authority Key Identifier: keyid:68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:79:19:f8:68:7e:4c:dd:67:16:17:59:f1:e8:f9:b8:85:c7: 6a:77:b2:10:67:7e:85:3c:db:f4:dd:5c:db:bf:ec:05:7e:a6: d1:72:fe:44:43:93:59:98:b1:2d:22:67:8f:88:4d:d7:e1:8e: cd:e9:c9:42:bb:e6:da:9e:bb:07:a7:00:13:57:5e:4a:21:18: be:2b:90:74:6c:df:f6:8e:2f:d1:2f:ea:f1:19:26:5f:aa:da: 12:a4:54:d6:3d:63:c1:f2:49:eb:26:c4:e7:c8:a6:04:2e:2c: 48:15:5e:60:01:7e:90:25:e0:e6:77:1b:86:99:52:dc:cc:1f: fc:78:0e:0d:06:45:10:5d:57:56:f4:92:f2:5b:2d:da:af:7c: de:4f:99:0a:76:2d:56:52:0a:5e:c2:67:74:b0:00:21:bc:fb: 37:c0:b7:5a:ac:62:b5:f5:98:43:f0:3f:84:34:12:e4:57:9c: 42:e0:1b:76:48:ac:df:7d:6a:3f:da:8d:39:c0:45:82:bb:79: a6:08:af:8b:d1:ec:16:a3:7c:9d:50:b0:d1:07:70:ef:a8:27: 2f:3a:39:85:89:4d:47:ed:c4:ae:f0:92:b7:f1:68:0e:e6:e0: 43:67:d2:63:09:d4:e8:a3:30:0a:6d:5c:5c:14:22:56:0e:9c: ad:8f:e1:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QzkxMTAvBgNVBAUTKDY4MjBFNTM2OTQyNjEyRjM0QjAzNzNERDFGNzdFRDIz NEZGREYzNUMwHhcNMjUwNzAzMDAzNTAxWhcNMjUwNzEwMDAzNTAwWjAYMRYwFAYD VQQDEw02ODY1ZDAzNS00ODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33vPnM657tXMasIu/qSCC6KHGP+bKrkxosxAbiTw81IWEVlIPJWLKKy8DYmL KCpa+Xty2+3No1esKw8PhAjtn39ok8sSbfQW8k8C3sIjQoNgZxllHFXDLuRBy/Qc 67EEn/EFtBizuTugKTJM8p0ujdA7HBRZ6nbmvkL9dEp49MbN6BUVEBqB9hVQUKrJ LWdxWjWyIkNonDa6uVyPs1LXEbnw92gDMUQFfceBu3JpyRjRzDfbE/9mmqDoX5uY gnKbolkdC1msP607wgl5CLxoi3LAZnewSXVgi86ZzWie7LPsvHKQvlmsER6mahj3 Ldr+8m0eCn/mgMWLRvnEvmEE3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBtzof1 NKZC5im9kCsBrEEuZg8vMB8GA1UdIwQYMBaAFGgg5TaUJhLzSwNz3R937SNP/fNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhDOS80QjRENzEyQTVD REIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2TkxBM1BkSDNmdEkwXzk4 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FDRGxOcFFtRXZOTEEzUGRIM2Z0STBfOTgxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjhDOS80QjRENzEyQTVDREIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2 TkxBM1BkSDNmdEkwXzk4MXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMeRn4aH5M3WcWF1nx6Pm4hcdqd7IQZ36FPNv03Vzbv+wFfqbRcv5E Q5NZmLEtImePiE3X4Y7N6clCu+banrsHpwATV15KIRi+K5B0bN/2ji/RL+rxGSZf qtoSpFTWPWPB8knrJsTnyKYELixIFV5gAX6QJeDmdxuGmVLczB/8eA4NBkUQXVdW 9JLyWy3ar3zeT5kKdi1WUgpewmd0sAAhvPs3wLdarGK19ZhD8D+ENBLkV5xC4Bt2 SKzffWo/2o05wEWCu3mmCK+L0ewWo3ydULDRB3DvqCcvOjmFiU1H7cSu8JK38WgO 5uBDZ9JjCdToozAKbVxcFCJWDpytj+GT -----END CERTIFICATE-----Generated at Thu Jul 3 10:35:17 2025 by rpki-client