$ rpki-client -vvf rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft File: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft (raw, json) Hash identifier: K8/Jzg4RVYH7j4KGJqFpeZ++RmnD43qsH2rCmagqceI= Subject key identifier: AB:83:7B:C8:1A:0B:B6:48:4D:42:D6:99:1A:87:7F:A0:23:CC:88:62 Authority key identifier: E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 Certificate issuer: /CN=A912D5C1/serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft Manifest number: 0C80 Signing time: Wed 02 Jul 2025 18:29:52 +0000 Manifest this update: Wed 02 Jul 2025 18:29:51 +0000 Manifest next update: Wed 09 Jul 2025 18:29:51 +0000 Files and hashes: 1: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl (hash: QRxhS+jQDwm7F1WaGoBw57Tr7H575PvpKqcoa5+28EE=) 2: D7F98876520B11EE8B85DB63C4F9AE02.roa (hash: PKoIMzmjFW6opIpuPpXxT7JTsKk8w7rWTXfvOheNJEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D5C1, serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Validity Not Before: Jul 2 18:29:51 2025 GMT Not After : Jul 9 18:29:51 2025 GMT Subject: CN=68657aa0-665c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ee:84:88:e5:a0:23:60:ad:32:c9:8a:d5:00: de:5e:8d:4b:ad:95:da:a4:11:57:dd:a1:45:c8:b2: 7e:b7:18:bc:d2:b9:9e:bc:f5:ad:6a:e5:60:22:0f: ed:3b:d6:47:ba:f1:ad:27:fc:57:dd:3c:14:b9:d9: 76:dc:4d:25:25:12:55:0e:73:20:76:c3:3d:8b:92: 20:b2:5b:d3:76:39:bf:7e:da:20:d5:c5:aa:54:ff: a3:c4:c5:03:30:0d:ac:a7:96:7e:9e:6d:87:c6:b2: 0e:a7:70:a8:8d:53:b2:83:ff:37:95:f1:fc:75:28: 53:d2:fa:19:7d:9f:24:b9:42:64:a7:f9:32:b5:86: a1:5d:06:88:5c:79:72:93:d6:ff:63:3e:47:48:60: e6:99:75:a8:7f:ff:b3:b2:57:e9:df:78:a7:63:d0: 79:00:e9:61:61:dd:d6:a4:ba:97:cd:93:af:ea:60: 8a:73:f4:da:c4:f5:0e:fb:ac:9f:27:25:fc:be:8c: 14:2a:e3:ed:fe:b8:52:06:92:fc:13:24:9d:ab:20: ff:46:fb:8d:a4:d9:20:52:f8:59:af:52:3a:68:41: bf:b7:3d:cc:0f:b6:e7:a7:00:b1:4a:27:df:52:40: 46:16:fc:0a:1a:b2:ae:1a:72:99:66:00:67:32:86: f5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:83:7B:C8:1A:0B:B6:48:4D:42:D6:99:1A:87:7F:A0:23:CC:88:62 X509v3 Authority Key Identifier: keyid:E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:b5:22:a9:f7:ba:84:f6:71:84:15:f6:c3:2d:85:5e:40:77: 33:1a:9e:35:75:5c:d6:32:d9:94:9a:80:30:da:c7:d9:e6:ae: 9e:9a:4b:6d:2f:25:27:f6:6e:f0:06:cf:3d:08:1a:12:49:eb: 3e:90:3d:49:aa:06:98:36:ba:10:80:c4:a0:e2:f9:38:d1:b8: cc:36:4d:24:70:41:b1:d8:3c:f2:1f:72:d4:ed:31:85:d8:f6: b9:2f:98:6d:75:8b:7f:7f:ca:fe:fb:e6:c9:fb:b6:8c:c3:5f: f0:08:ee:a4:71:55:3d:3e:ac:f2:41:f4:6b:e3:c0:88:bf:13: bc:5f:6e:62:87:4c:c5:86:27:1f:2a:d2:64:c5:7a:4c:57:23: c8:d9:6d:41:a4:18:14:05:e3:b8:b2:b4:b7:3f:76:a7:9e:96: 50:8f:7d:4c:65:1c:ce:98:16:8e:ef:9c:c4:6c:00:d2:5e:1d: b0:c2:9c:b5:de:43:3f:54:fc:7d:26:e9:63:31:2e:8a:ed:fe: b2:55:88:48:6a:93:43:e5:68:d5:78:ac:2a:69:d5:86:3b:a8: b0:ae:c4:0e:9d:48:fb:35:f9:d1:dc:71:fb:76:cb:5a:47:5c: 4e:3c:23:ef:f6:2d:e1:97:2a:f8:72:f8:dd:6d:83:c5:98:e2: 16:80:26:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ1QzExMTAvBgNVBAUTKEU4MkQxMEQyREExQzk4QkY2OENBNEM2NDkxQjkwRkZE MEZBQjMzOTQwHhcNMjUwNzAyMTgyOTUxWhcNMjUwNzA5MTgyOTUxWjAYMRYwFAYD VQQDEw02ODY1N2FhMC02NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwO6EiOWgI2CtMsmK1QDeXo1LrZXapBFX3aFFyLJ+txi80rmevPWtauVgIg/t O9ZHuvGtJ/xX3TwUudl23E0lJRJVDnMgdsM9i5IgslvTdjm/ftog1cWqVP+jxMUD MA2sp5Z+nm2HxrIOp3CojVOyg/83lfH8dShT0voZfZ8kuUJkp/kytYahXQaIXHly k9b/Yz5HSGDmmXWof/+zslfp33inY9B5AOlhYd3WpLqXzZOv6mCKc/TaxPUO+6yf JyX8vowUKuPt/rhSBpL8EySdqyD/RvuNpNkgUvhZr1I6aEG/tz3MD7bnpwCxSiff UkBGFvwKGrKuGnKZZgBnMob1sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuDe8ga C7ZITULWmRqHf6AjzIhiMB8GA1UdIwQYMBaAFOgtENLaHJi/aMpMZJG5D/0PqzOU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDVDMS9CMDdEQ0I0NEZG Q0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21MOW95a3hra2JrUF9RLXJN NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZDMFEwdG9jbUw5b3lreGtrYmtQX1Etck01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDVDMS9CMDdEQ0I0NEZGQ0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21M OW95a3hra2JrUF9RLXJNNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBotSKp97qE9nGEFfbDLYVeQHczGp41dVzWMtmUmoAw2sfZ5q6emktt LyUn9m7wBs89CBoSSes+kD1JqgaYNroQgMSg4vk40bjMNk0kcEGx2DzyH3LU7TGF 2Pa5L5htdYt/f8r+++bJ+7aMw1/wCO6kcVU9PqzyQfRr48CIvxO8X25ih0zFhicf KtJkxXpMVyPI2W1BpBgUBeO4srS3P3annpZQj31MZRzOmBaO75zEbADSXh2wwpy1 3kM/VPx9JuljMS6K7f6yVYhIapND5WjVeKwqadWGO6iwrsQOnUj7NfnR3HH7dsta R1xOPCPv9i3hlyr4cvjdbYPFmOIWgCaY -----END CERTIFICATE-----Generated at Thu Jul 3 06:12:04 2025 by rpki-client