$ rpki-client -vvf rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft File: Kt1a2PtDrdgNUrtYNpPDG42asuw.mft (raw, json) Hash identifier: s0fM0jCP0sk6SsGMoyYtcyAznQq9jIe/ajsSRmpUIO0= Subject key identifier: C1:4E:18:FD:78:A9:20:74:C5:DA:EB:D1:B1:6B:9A:8D:54:19:1C:13 Authority key identifier: 2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC Certificate issuer: /CN=A913149F/serialNumber=2ADD5AD8FB43ADD80D52BB583693C31B8D9AB2EC Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft Manifest number: 0C37 Signing time: Wed 02 Jul 2025 18:44:36 +0000 Manifest this update: Wed 02 Jul 2025 18:44:36 +0000 Manifest next update: Wed 09 Jul 2025 18:44:36 +0000 Files and hashes: 1: Kt1a2PtDrdgNUrtYNpPDG42asuw.crl (hash: lKecy0xHyiYp4keCXXZw+kTjDasm2vxMsXrvsPI/ZN0=) 2: 78550A2608FE11EAA003E778C4F9AE02.roa (hash: /6LQIDdmV3dE7MeUvHilah4V60fZn+m3/u3zkX+mGFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913149F, serialNumber=2ADD5AD8FB43ADD80D52BB583693C31B8D9AB2EC Validity Not Before: Jul 2 18:44:36 2025 GMT Not After : Jul 9 18:44:36 2025 GMT Subject: CN=68657e14-4421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f2:f2:00:71:b0:6b:be:cd:ca:b2:f7:9f:df: 91:2d:87:48:76:b8:de:d5:93:7b:fa:43:d2:af:e0: 79:6c:10:88:a4:40:ef:17:bc:06:11:35:aa:f1:a1: 69:78:8f:44:51:bd:33:90:4d:8e:7f:3b:74:ca:d3: 8f:c2:cd:90:e8:6d:80:61:a8:cd:04:0e:98:1f:24: 5d:d8:c8:2a:8d:5f:62:23:e5:9d:1c:b3:5a:6a:44: ef:41:a6:2f:ca:53:59:a7:fb:d8:33:88:86:0c:f6: db:c5:46:35:4b:7c:b4:df:dd:7d:32:ed:3f:da:3e: a3:ff:63:e5:30:20:bd:22:a7:c0:79:7c:ef:72:d2: 90:92:a2:dd:41:ee:ce:ca:eb:d3:c1:0b:ad:db:64: b0:29:97:29:19:9c:b9:09:13:4c:e4:65:49:01:6b: c5:e2:78:5e:43:b7:b1:1b:df:c6:2e:2b:54:61:34: 5f:2a:1e:9c:f1:68:51:21:36:bd:27:94:fb:b9:72: d1:6f:a7:a2:97:2c:c2:65:99:c7:8b:88:0d:c7:fa: a1:63:03:7c:be:c4:98:e8:8f:5d:15:bb:15:7c:1f: 85:03:4f:5d:bc:4e:af:a5:0f:b4:65:ea:15:ed:87: 8e:27:d2:04:2a:99:88:89:c6:56:86:d2:6d:f7:be: 93:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:4E:18:FD:78:A9:20:74:C5:DA:EB:D1:B1:6B:9A:8D:54:19:1C:13 X509v3 Authority Key Identifier: keyid:2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:ce:b1:08:ed:26:a9:ee:2e:32:96:9d:c2:ca:ef:ee:20:f5: 44:a8:34:3f:73:58:83:51:23:9d:86:f6:81:16:e8:9a:04:8c: 51:12:32:0b:99:11:80:4e:6c:64:80:5d:c9:83:f7:00:f4:d4: d9:78:8d:b7:82:2f:0d:f8:ca:7f:82:63:bc:23:c9:28:57:ee: 38:da:77:74:d9:cc:5a:6d:bd:51:ae:35:16:4b:54:73:c0:e0: fd:08:bd:6a:7c:3e:67:66:97:be:86:3a:8c:d0:d1:8e:be:a9: 0c:9c:ad:ee:4c:97:c2:b8:d9:df:3d:39:ef:13:60:fc:3e:da: 1f:5a:0e:ed:f2:b7:d7:84:9e:35:bd:6a:00:26:ce:b9:6a:97: 48:44:60:4e:4a:33:eb:e5:1d:56:7b:6f:3f:17:6e:f9:dc:98: c1:3f:76:7e:f0:9e:62:78:0c:36:67:ca:22:50:3d:a4:6a:1e: 45:a5:00:6b:e9:8a:13:07:c9:44:af:44:10:75:ab:27:68:cb: fd:3d:87:12:b6:ad:79:40:77:5e:d7:6c:58:3e:5d:0d:bc:d2: 26:49:98:dc:02:2e:a9:65:ef:e3:8a:d8:cb:89:62:6f:ff:b8: ec:11:9b:27:9a:56:32:aa:0d:bf:ed:e3:d0:03:56:d6:73:84: cd:7a:ed:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0OUYxMTAvBgNVBAUTKDJBREQ1QUQ4RkI0M0FERDgwRDUyQkI1ODM2OTNDMzFC OEQ5QUIyRUMwHhcNMjUwNzAyMTg0NDM2WhcNMjUwNzA5MTg0NDM2WjAYMRYwFAYD VQQDEw02ODY1N2UxNC00NDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fLyAHGwa77NyrL3n9+RLYdIdrje1ZN7+kPSr+B5bBCIpEDvF7wGETWq8aFp eI9EUb0zkE2Ofzt0ytOPws2Q6G2AYajNBA6YHyRd2MgqjV9iI+WdHLNaakTvQaYv ylNZp/vYM4iGDPbbxUY1S3y03919Mu0/2j6j/2PlMCC9IqfAeXzvctKQkqLdQe7O yuvTwQut22SwKZcpGZy5CRNM5GVJAWvF4nheQ7exG9/GLitUYTRfKh6c8WhRITa9 J5T7uXLRb6eilyzCZZnHi4gNx/qhYwN8vsSY6I9dFbsVfB+FA09dvE6vpQ+0ZeoV 7YeOJ9IEKpmIicZWhtJt976TYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFOGP14 qSB0xdrr0bFrmo1UGRwTMB8GA1UdIwQYMBaAFCrdWtj7Q63YDVK7WDaTwxuNmrLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTQ5Ri9ERjAxNTgwODA4 RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJkZ05VcnRZTnBQREc0MmFz dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0MWEyUHREcmRnTlVydFlOcFBERzQyYXN1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTQ5Ri9ERjAxNTgwODA4RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJk Z05VcnRZTnBQREc0MmFzdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpzrEI7Sap7i4ylp3Cyu/uIPVEqDQ/c1iDUSOdhvaBFuiaBIxREjIL mRGATmxkgF3Jg/cA9NTZeI23gi8N+Mp/gmO8I8koV+442nd02cxabb1RrjUWS1Rz wOD9CL1qfD5nZpe+hjqM0NGOvqkMnK3uTJfCuNnfPTnvE2D8PtofWg7t8rfXhJ41 vWoAJs65apdIRGBOSjPr5R1We28/F2753JjBP3Z+8J5ieAw2Z8oiUD2kah5FpQBr 6YoTB8lEr0QQdasnaMv9PYcStq15QHde12xYPl0NvNImSZjcAi6pZe/jitjLiWJv /7jsEZsnmlYyqg2/7ePQA1bWc4TNeu1s -----END CERTIFICATE-----Generated at Thu Jul 3 10:18:11 2025 by rpki-client