$ rpki-client -vvf rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft File: sUCvBJGbRROCWm6lfhq55UN548g.mft (raw, json) Hash identifier: EYFBbtNM6PSqJPCz1QZDT9T4E7TDYI+RftGnHg/mofk= Subject key identifier: 8F:8F:06:16:65:E7:A2:D5:30:68:F7:A7:90:89:D3:04:63:EA:28:93 Authority key identifier: B1:40:AF:04:91:9B:45:13:82:5A:6E:A5:7E:1A:B9:E5:43:79:E3:C8 Certificate issuer: /CN=A913EBFD/serialNumber=B140AF04919B4513825A6EA57E1AB9E54379E3C8 Certificate serial: 0B46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft Manifest number: 0B40 Signing time: Mon 30 Jun 2025 19:18:37 +0000 Manifest this update: Mon 30 Jun 2025 19:18:36 +0000 Manifest next update: Mon 07 Jul 2025 19:18:36 +0000 Files and hashes: 1: sUCvBJGbRROCWm6lfhq55UN548g.crl (hash: ekpBawJXV3wclKids5VL0y/YlagVOkazwNQe+VQi53w=) 2: B6EF8F5E3A9011EA957A6A34C4F9AE02.roa (hash: MMg6miblGYwiWs8actEKJcMi2SqNBUoJuKwgQQDzl38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.crl rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EBFD, serialNumber=B140AF04919B4513825A6EA57E1AB9E54379E3C8 Validity Not Before: Jun 30 19:18:36 2025 GMT Not After : Jul 7 19:18:36 2025 GMT Subject: CN=6862e30d-5542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6b:3d:c1:22:c1:58:48:2b:a2:9a:fb:27:d4: aa:86:60:11:8b:f2:59:de:b1:fe:a3:7c:38:71:e6: dc:3b:9d:a5:e3:54:b2:af:01:a4:50:7f:1d:60:aa: 6e:71:33:dc:46:2c:38:49:01:1f:c9:b3:b8:19:05: e7:df:ba:ea:ee:e4:9f:0d:bb:c2:cd:73:9c:c8:3a: d2:e8:b2:35:6c:bc:f7:52:b9:87:2f:01:55:83:56: 66:53:38:7e:38:80:aa:81:74:a7:50:5e:bf:bf:14: 3f:d7:96:a2:64:b0:55:fc:61:cb:ad:69:08:7e:bf: 82:a0:09:4c:5e:c7:14:4a:5b:e6:c1:e9:15:d4:bc: ec:a3:74:c9:b3:34:07:31:eb:66:22:c6:4a:4a:8f: b9:5f:2d:72:92:3b:73:1f:67:96:74:90:b2:02:9b: 5c:0e:c7:0f:7a:f9:c9:54:d8:10:9a:13:d3:4e:ed: 8e:f0:a1:28:9e:0e:47:31:01:a9:a9:e9:27:c1:f7: 06:01:5b:e0:93:9c:1c:42:a7:4c:70:35:dc:07:7b: 89:4c:47:fd:fc:26:3a:e1:41:4f:16:dc:28:55:61: dc:a9:ab:07:8a:ba:b8:c6:d6:52:e9:07:26:08:73: 57:cd:9f:c3:95:89:76:e7:4e:3e:c2:80:f9:17:31: af:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:8F:06:16:65:E7:A2:D5:30:68:F7:A7:90:89:D3:04:63:EA:28:93 X509v3 Authority Key Identifier: keyid:B1:40:AF:04:91:9B:45:13:82:5A:6E:A5:7E:1A:B9:E5:43:79:E3:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:ae:8b:23:24:a1:c9:f5:eb:e8:ab:8b:1f:c7:a6:35:fc:cc: 8d:15:5b:e0:4c:86:ab:38:11:29:77:4d:84:4c:11:b5:b1:dd: 57:3e:1a:4c:32:8f:b2:f3:d1:aa:91:5b:83:da:3f:f5:79:e6: ed:42:03:3d:61:34:11:1d:5d:2e:9b:0b:c7:4d:84:0c:7e:7f: b6:9a:89:da:10:04:99:fd:cb:59:94:19:43:e9:63:41:f3:49: 00:eb:ce:d0:ec:08:fa:64:46:10:5b:c1:97:8b:e8:f8:e6:1a: 25:58:4d:0b:18:4d:b2:9c:08:fe:bb:4e:ba:dd:6d:69:9e:8b: 90:79:9b:6f:0b:0d:ae:02:90:db:48:2c:2c:09:36:bc:d9:f7: d0:cf:3c:07:2a:85:b5:de:41:06:1b:b0:db:4d:3e:3e:85:7a: 51:30:50:0d:ed:f8:bd:c0:80:33:40:b2:ba:5d:7b:76:44:d4: 01:7c:df:50:34:96:0d:d2:50:2b:05:50:d1:a0:90:90:76:8d: c0:85:5d:66:e4:04:73:88:f9:fd:2e:ef:54:47:bb:00:bf:b9: 16:07:3d:ed:56:6e:83:1b:6d:b2:27:8e:93:d3:b3:80:32:fb: 2b:eb:a6:e5:76:0b:05:75:6a:64:46:16:05:9a:10:2c:c2:f4: 5b:dc:cb:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VCRkQxMTAvBgNVBAUTKEIxNDBBRjA0OTE5QjQ1MTM4MjVBNkVBNTdFMUFCOUU1 NDM3OUUzQzgwHhcNMjUwNjMwMTkxODM2WhcNMjUwNzA3MTkxODM2WjAYMRYwFAYD VQQDEw02ODYyZTMwZC01NTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGs9wSLBWEgropr7J9SqhmARi/JZ3rH+o3w4cebcO52l41SyrwGkUH8dYKpu cTPcRiw4SQEfybO4GQXn37rq7uSfDbvCzXOcyDrS6LI1bLz3UrmHLwFVg1ZmUzh+ OICqgXSnUF6/vxQ/15aiZLBV/GHLrWkIfr+CoAlMXscUSlvmwekV1Lzso3TJszQH MetmIsZKSo+5Xy1ykjtzH2eWdJCyAptcDscPevnJVNgQmhPTTu2O8KEong5HMQGp qeknwfcGAVvgk5wcQqdMcDXcB3uJTEf9/CY64UFPFtwoVWHcqasHirq4xtZS6Qcm CHNXzZ/DlYl2504+woD5FzGvawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+PBhZl 56LVMGj3p5CJ0wRj6iiTMB8GA1UdIwQYMBaAFLFArwSRm0UTglpupX4aueVDeePI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUJGRC9GN0NFNjI5QTNB OEUxMUVBODBBRjBFMzFDNEY5QUUwMi9zVUN2QkpHYlJST0NXbTZsZmhxNTVVTjU0 OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVQ3ZCSkdiUlJPQ1dtNmxmaHE1NVVONTQ4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUJGRC9GN0NFNjI5QTNBOEUxMUVBODBBRjBFMzFDNEY5QUUwMi9zVUN2QkpHYlJS T0NXbTZsZmhxNTVVTjU0OGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlrosjJKHJ9evoq4sfx6Y1/MyNFVvgTIarOBEpd02ETBG1sd1XPhpM Mo+y89GqkVuD2j/1eebtQgM9YTQRHV0umwvHTYQMfn+2monaEASZ/ctZlBlD6WNB 80kA687Q7Aj6ZEYQW8GXi+j45holWE0LGE2ynAj+u0663W1pnouQeZtvCw2uApDb SCwsCTa82ffQzzwHKoW13kEGG7DbTT4+hXpRMFAN7fi9wIAzQLK6XXt2RNQBfN9Q NJYN0lArBVDRoJCQdo3AhV1m5ARziPn9Lu9UR7sAv7kWBz3tVm6DG22yJ46T07OA Mvsr66bldgsFdWpkRhYFmhAswvRb3Ms7 -----END CERTIFICATE-----Generated at Wed Jul 2 13:44:59 2025 by rpki-client