$ rpki-client -vvf rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft File: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft (raw, json) Hash identifier: rdjjKfYXrm43R+nSzeKBTi3NX8mroOHqo4OAgEYhgUk= Subject key identifier: 3C:89:F0:09:EF:1B:6E:11:56:FB:ED:7D:81:2F:77:49:E9:AE:33:32 Authority key identifier: E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 Certificate issuer: /CN=A912D5C1/serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Certificate serial: 0C7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft Manifest number: 0C65 Signing time: Wed 14 May 2025 18:25:39 +0000 Manifest this update: Wed 14 May 2025 18:25:39 +0000 Manifest next update: Wed 21 May 2025 18:25:39 +0000 Files and hashes: 1: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl (hash: OnDf7S1xGKcDWpOqLYdyb6AQfyKgGEBVt/90AszJSoI=) 2: D7F98876520B11EE8B85DB63C4F9AE02.roa (hash: BvjqspRO5HaHZk8MDrrn9sDV9WNZa1iIeNw3qkNnjXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D5C1, serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Validity Not Before: May 14 18:25:39 2025 GMT Not After : May 21 18:25:39 2025 GMT Subject: CN=6824e023-e065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c9:92:1a:e7:5a:ff:80:ca:a6:21:fc:0e:95: fd:cd:7d:3d:7c:04:e2:cb:8d:81:ca:12:45:e5:c2: be:34:8e:12:6a:06:cd:d8:ac:3d:83:aa:97:3c:ee: 84:ad:46:6f:11:98:41:80:7b:34:02:68:df:3f:99: d5:12:5b:c6:fb:67:1b:cb:e3:4d:95:5a:e4:3b:43: a1:64:a4:aa:a4:02:d2:da:85:cd:db:ad:36:45:54: b2:85:7d:f9:c4:0c:60:09:e1:e2:da:68:5f:d0:b9: 43:4d:f6:d0:88:bc:6a:cc:14:f0:ef:0c:d4:e6:9e: a9:5f:a7:be:f0:b1:ab:c1:4b:23:a5:e2:28:f7:6f: 54:e1:fe:51:5b:c1:5f:2b:3a:13:4c:45:53:25:ad: df:7e:bd:4d:25:1c:c9:05:fd:d7:69:16:93:05:12: 91:ce:82:cb:fe:5a:2e:e8:23:45:4d:9f:87:b9:81: 4b:fb:d7:a2:eb:3d:68:b9:f5:83:79:96:28:74:82: e4:e9:86:1d:36:50:ab:8c:52:a8:1e:d8:8b:cf:92: d4:75:35:b6:b8:e5:ec:04:67:53:71:ab:5a:74:8a: 59:ab:63:09:ca:59:00:f8:7b:6f:a3:8c:16:29:0f: 4c:50:43:d3:b1:54:ee:3a:fd:5f:b2:e0:d3:ca:a6: 2b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:89:F0:09:EF:1B:6E:11:56:FB:ED:7D:81:2F:77:49:E9:AE:33:32 X509v3 Authority Key Identifier: keyid:E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:23:cc:91:a5:c5:6f:f1:cf:93:8e:1a:fb:8d:81:7a:50:74: 05:38:a8:37:95:86:8c:69:25:ea:34:06:9b:73:db:d2:f3:b5: ef:fc:31:8d:5d:4b:e2:1c:18:8c:e9:7c:ef:75:82:ff:83:2f: 83:34:07:9b:33:bd:de:1b:86:4a:66:71:e5:ac:ab:5a:d3:f2: 2c:a9:4c:ba:31:2d:77:8a:43:ec:a2:24:d2:16:3a:1c:30:cb: e1:f1:a7:54:c3:13:b5:70:47:ed:e5:ae:18:f2:ae:7d:95:98: eb:58:c9:ab:24:ef:01:b1:aa:94:95:44:95:05:1b:81:72:c6: cf:f5:d3:c9:2b:33:7f:48:81:12:96:b7:25:e2:46:c0:7d:df: 0e:39:97:de:0a:42:59:02:ab:20:da:9a:1c:67:dd:db:a4:9f: 17:65:1d:93:63:d7:6b:17:45:9c:87:fa:9c:3b:4f:ed:ab:ef: bc:a7:93:7c:d0:b0:0f:54:02:bc:55:ce:75:6b:06:59:b0:4e: 94:e5:26:ce:f7:87:bd:fd:cc:cc:04:af:22:dd:a6:21:26:90: 3e:54:fd:af:aa:79:41:08:42:8d:f3:f6:47:62:8e:d3:50:96: bc:a0:4c:33:9a:ac:40:27:b7:e8:a3:7b:c0:da:30:cb:a8:3b: 3d:cc:ca:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ1QzExMTAvBgNVBAUTKEU4MkQxMEQyREExQzk4QkY2OENBNEM2NDkxQjkwRkZE MEZBQjMzOTQwHhcNMjUwNTE0MTgyNTM5WhcNMjUwNTIxMTgyNTM5WjAYMRYwFAYD VQQDEw02ODI0ZTAyMy1lMDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcmSGuda/4DKpiH8DpX9zX09fATiy42ByhJF5cK+NI4SagbN2Kw9g6qXPO6E rUZvEZhBgHs0AmjfP5nVElvG+2cby+NNlVrkO0OhZKSqpALS2oXN2602RVSyhX35 xAxgCeHi2mhf0LlDTfbQiLxqzBTw7wzU5p6pX6e+8LGrwUsjpeIo929U4f5RW8Ff KzoTTEVTJa3ffr1NJRzJBf3XaRaTBRKRzoLL/lou6CNFTZ+HuYFL+9ei6z1oufWD eZYodILk6YYdNlCrjFKoHtiLz5LUdTW2uOXsBGdTcatadIpZq2MJylkA+Htvo4wW KQ9MUEPTsVTuOv1fsuDTyqYrSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyJ8Anv G24RVvvtfYEvd0nprjMyMB8GA1UdIwQYMBaAFOgtENLaHJi/aMpMZJG5D/0PqzOU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDVDMS9CMDdEQ0I0NEZG Q0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21MOW95a3hra2JrUF9RLXJN NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZDMFEwdG9jbUw5b3lreGtrYmtQX1Etck01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDVDMS9CMDdEQ0I0NEZGQ0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21M OW95a3hra2JrUF9RLXJNNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuI8yRpcVv8c+Tjhr7jYF6UHQFOKg3lYaMaSXqNAabc9vS87Xv/DGN XUviHBiM6XzvdYL/gy+DNAebM73eG4ZKZnHlrKta0/IsqUy6MS13ikPsoiTSFjoc MMvh8adUwxO1cEft5a4Y8q59lZjrWMmrJO8BsaqUlUSVBRuBcsbP9dPJKzN/SIES lrcl4kbAfd8OOZfeCkJZAqsg2pocZ93bpJ8XZR2TY9drF0Wch/qcO0/tq++8p5N8 0LAPVAK8Vc51awZZsE6U5SbO94e9/czMBK8i3aYhJpA+VP2vqnlBCEKN8/ZHYo7T UJa8oEwzmqxAJ7foo3vA2jDLqDs9zMr/ -----END CERTIFICATE-----Generated at Thu May 15 22:30:32 2025 by rpki-client