$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: HEcILUtYFrcEDfazAsF/9Is4c4bZCkwVwNm42UNvkQE= Subject key identifier: 30:F4:EF:4E:8B:F5:3A:09:D3:50:90:1C:25:0C:D6:FC:17:E7:52:4F Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 07C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07B8 Signing time: Sat 28 Jun 2025 20:50:24 +0000 Manifest this update: Sat 28 Jun 2025 20:50:23 +0000 Manifest next update: Sat 05 Jul 2025 20:50:23 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: HfUKNVLY9fLw+sDvTLF5bLixKNTkqicUmdPhF5iSCGg=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1987 (0x7c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Jun 28 20:50:23 2025 GMT Not After : Jul 5 20:50:23 2025 GMT Subject: CN=68605590-291f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d3:9d:72:04:c6:43:16:10:f6:1c:7b:3d:5b: 98:ed:05:13:2a:4a:f1:f1:18:8d:00:21:72:c5:99: cc:8e:2a:50:39:8b:a6:53:65:f3:fc:f9:12:eb:29: c9:47:ab:1a:57:06:3b:c6:be:ec:c9:b3:e5:32:2a: 43:06:c0:4c:62:70:45:73:7b:2f:34:70:ca:8b:65: bd:c9:42:02:29:8d:24:98:33:a1:6f:32:85:42:77: d6:81:ee:5e:c9:dd:f6:b2:af:f3:8a:82:49:42:bf: 88:9e:e3:ef:5d:51:fe:65:18:00:d3:f1:a7:af:5f: 3f:db:38:a9:d9:e5:de:f9:cd:76:1a:24:ce:0b:cf: d8:1c:49:6e:cf:93:96:fd:00:15:83:d4:86:fa:bf: e7:8e:3b:ec:b6:78:36:e4:d6:12:de:68:6b:91:2c: 86:61:04:20:59:b3:72:3d:82:7e:9e:32:f9:1e:7b: fd:44:6a:fb:4f:b9:8f:90:fe:79:b0:10:a3:52:eb: c1:7f:92:51:75:e7:d9:0e:f2:a7:09:7a:91:91:3f: a7:07:ea:ec:90:9a:ea:e1:03:46:18:22:58:62:3b: 33:35:e7:c2:1f:8d:b6:37:be:ce:ea:66:c7:2b:f0: ed:3b:62:86:e7:83:8d:1d:fc:75:12:86:ed:f2:3d: b4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F4:EF:4E:8B:F5:3A:09:D3:50:90:1C:25:0C:D6:FC:17:E7:52:4F X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:cd:fc:92:3b:64:77:f3:ce:29:9f:5e:d7:08:e5:21:c5:f7: 09:60:d3:59:31:7b:a1:c8:19:4b:5c:8c:91:33:ea:d1:4c:f2: e9:54:7a:68:57:e1:19:58:eb:63:7d:53:a4:59:b5:dc:d0:d4: 8b:ba:7b:58:d1:9f:8d:07:ff:bb:a2:22:47:31:c3:78:ac:e9: fe:8e:91:2e:f7:07:d0:74:77:c2:64:f5:b8:2e:21:94:05:2e: ee:62:b6:17:37:7b:ac:ae:30:38:45:a3:23:d6:0b:a4:6b:4b: 60:2e:3e:24:54:b6:80:a7:57:2c:3e:d9:5d:99:35:2a:c5:c7: a0:62:a8:21:d1:20:ff:e4:19:1e:af:2e:88:1d:8f:14:60:f7: fb:36:b9:72:bc:30:64:6f:00:6a:6b:24:cb:07:f0:cb:37:eb: 2a:97:4d:6a:ae:e0:96:4e:d8:fb:5c:1c:ad:88:db:0b:4b:dc: 17:f2:03:2b:9c:13:34:5b:18:da:e5:07:62:b2:dd:d6:24:c3: 62:3d:17:4b:4d:85:45:63:13:e5:51:77:7b:43:af:b0:45:2b: ff:69:b8:04:1d:f9:e7:33:9f:11:a4:c6:bf:fe:cd:02:38:8a: 56:d1:ad:5f:d0:b7:7f:8b:82:22:bd:bb:9a:3c:73:7d:5d:9a: 6f:e0:a5:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwNjI4MjA1MDIzWhcNMjUwNzA1MjA1MDIzWjAYMRYwFAYD VQQDEw02ODYwNTU5MC0yOTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdOdcgTGQxYQ9hx7PVuY7QUTKkrx8RiNACFyxZnMjipQOYumU2Xz/PkS6ynJ R6saVwY7xr7sybPlMipDBsBMYnBFc3svNHDKi2W9yUICKY0kmDOhbzKFQnfWge5e yd32sq/zioJJQr+InuPvXVH+ZRgA0/Gnr18/2zip2eXe+c12GiTOC8/YHEluz5OW /QAVg9SG+r/njjvstng25NYS3mhrkSyGYQQgWbNyPYJ+njL5Hnv9RGr7T7mPkP55 sBCjUuvBf5JRdefZDvKnCXqRkT+nB+rskJrq4QNGGCJYYjszNefCH422N77O6mbH K/DtO2KG54ONHfx1Eobt8j20WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDD0706L 9ToJ01CQHCUM1vwX51JPMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhzfySO2R3884pn17XCOUhxfcJYNNZMXuhyBlLXIyRM+rRTPLpVHpo V+EZWOtjfVOkWbXc0NSLuntY0Z+NB/+7oiJHMcN4rOn+jpEu9wfQdHfCZPW4LiGU BS7uYrYXN3usrjA4RaMj1guka0tgLj4kVLaAp1csPtldmTUqxcegYqgh0SD/5Bke ry6IHY8UYPf7NrlyvDBkbwBqayTLB/DLN+sql01qruCWTtj7XBytiNsLS9wX8gMr nBM0Wxja5Qdist3WJMNiPRdLTYVFYxPlUXd7Q6+wRSv/abgEHfnnM58RpMa//s0C OIpW0a1f0Ld/i4IivbuaPHN9XZpv4KWL -----END CERTIFICATE-----Generated at Sun Jun 29 10:34:09 2025 by rpki-client