$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: B8Ec1wJt83wX8wOS3Kn4ySFBMYrgADmvIseBwOjQaO8= Subject key identifier: 8F:9A:D7:6B:7C:94:19:BF:06:1F:D8:41:AA:25:BC:49:4D:34:89:7F Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: 76 Signing time: Thu 03 Jul 2025 07:05:49 +0000 Manifest this update: Thu 03 Jul 2025 07:05:48 +0000 Manifest next update: Thu 10 Jul 2025 07:05:48 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: ZoCkKi/mK4PdmtgGJGqxeJZyH+6rWAuM9BJUxvntk3I=) 2: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: 3kK2PgqZkvV+Tke5YJ6lRXtuJEdURQG3ApvWLdCTm0Q=) 3: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: Ti8eJO2oAD+cInPnRMrFT32zgx0G9iPebdag3c53iUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Jul 3 07:05:48 2025 GMT Not After : Jul 10 07:05:48 2025 GMT Subject: CN=68662bcd-abcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2e:45:be:df:86:dc:8d:f0:b1:3c:18:ec:29: df:9e:19:6f:36:3f:dc:3d:42:a0:71:44:0e:09:5a: e8:13:51:84:c5:1f:8a:e3:90:cd:e0:2d:c6:51:9f: 00:27:68:c9:01:b6:20:09:40:33:20:08:39:19:23: ff:e1:c2:1a:4a:61:67:c8:50:1e:6e:0b:39:c7:ea: ee:55:b3:53:27:18:d0:dc:43:4d:84:47:59:46:81: 9d:22:79:db:01:12:6a:b6:a8:77:9b:2f:cb:6a:8d: a3:e5:a7:c7:51:f4:02:ea:bc:a7:f4:7d:3e:db:ae: 28:08:60:4e:be:78:01:07:c8:68:ba:79:8b:64:31: c2:72:e6:a7:e1:9e:ed:51:20:1a:f2:04:9b:84:2a: 3f:6b:5c:5f:50:46:c7:51:ae:c9:20:64:5a:46:f8: 6d:e8:04:6a:65:58:df:0d:01:4b:3c:23:b6:55:bb: 7c:4e:16:f0:fe:56:38:16:91:29:b4:d7:d9:9e:47: 83:76:65:b7:f2:01:ad:a5:ed:87:17:bf:b3:65:16: 28:e4:24:e2:41:96:cd:c7:8f:6d:02:1a:01:02:01: b1:1d:89:aa:ce:b1:5d:e8:35:50:71:01:02:50:59: a8:cd:c2:0d:3f:f9:d1:2a:0b:07:49:e8:7f:db:e3: d8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9A:D7:6B:7C:94:19:BF:06:1F:D8:41:AA:25:BC:49:4D:34:89:7F X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:1d:a4:62:52:d7:4c:1e:9d:4c:30:1e:69:41:ac:f8:3a:35: 3d:6e:56:b4:c0:3c:52:72:15:2a:1e:b3:73:12:e4:e7:a3:82: c3:d1:e3:49:38:bb:a6:97:99:2a:cc:44:ed:5a:c5:85:72:9a: bc:57:9e:d6:b2:e1:4a:38:4e:39:a3:16:3e:a1:f2:72:2d:f8: 81:df:60:e1:3c:a7:d3:75:d2:f3:12:aa:8f:2d:aa:2a:f2:e3: f8:01:b0:d3:17:a1:9f:c1:5e:5d:48:ab:33:cc:b8:05:d9:2e: 40:16:09:d1:2f:05:d2:61:fc:ad:1b:c8:bb:d6:eb:39:2f:21: 7e:92:70:91:2b:6d:08:29:05:a2:84:bb:c3:39:36:ab:b0:1f: 2f:7f:5d:7d:42:19:79:a3:2b:62:48:a6:6b:88:30:e4:e9:ed: 7e:3e:71:00:23:8b:ff:2d:b1:01:d8:ea:79:96:8b:03:6a:00: 0e:73:05:64:11:e7:ba:eb:f0:90:a6:9b:25:82:a9:8f:93:1b: 25:17:b0:9a:11:54:4e:f3:84:dd:2a:49:ca:33:c9:61:ce:43: 06:1a:95:37:ce:8d:40:db:6a:04:ed:d4:85:1a:50:1f:82:8d: c7:dc:1a:3f:5e:b0:e7:fc:4c:63:d7:5d:21:f8:d5:3b:03:fb: 93:71:57:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoOTY0RDA4NzI3REFFREFDNzQwMzdBQjlDNDNBNTA4QkFE QkNGREFGRDAeFw0yNTA3MDMwNzA1NDhaFw0yNTA3MTAwNzA1NDhaMBgxFjAUBgNV BAMTDTY4NjYyYmNkLWFiY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoLkW+34bcjfCxPBjsKd+eGW82P9w9QqBxRA4JWugTUYTFH4rjkM3gLcZRnwAn aMkBtiAJQDMgCDkZI//hwhpKYWfIUB5uCznH6u5Vs1MnGNDcQ02ER1lGgZ0iedsB Emq2qHebL8tqjaPlp8dR9ALqvKf0fT7brigIYE6+eAEHyGi6eYtkMcJy5qfhnu1R IBryBJuEKj9rXF9QRsdRrskgZFpG+G3oBGplWN8NAUs8I7ZVu3xOFvD+VjgWkSm0 19meR4N2ZbfyAa2l7YcXv7NlFijkJOJBls3Hj20CGgECAbEdiarOsV3oNVBxAQJQ WajNwg0/+dEqCwdJ6H/b49ifAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj5rXa3yU Gb8GH9hBqiW8SU00iX8wHwYDVR0jBBgwFoAUlk0Icn2u2sdAN6ucQ6UIutvP2v0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzJGMkI2RkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbGswSWNuMnUyc2RBTjZ1Y1E2VUl1dHZQMnYwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEZFLzJGMkI2RkUyQUJDQTExRUZBOTk0RDEyOUM0RjlBRTAyL2xrMEljbjJ1MnNk QU42dWNRNlVJdXR2UDJ2MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHEdpGJS10wenUwwHmlBrPg6NT1uVrTAPFJyFSoes3MS5OejgsPR40k4 u6aXmSrMRO1axYVymrxXntay4Uo4TjmjFj6h8nIt+IHfYOE8p9N10vMSqo8tqiry 4/gBsNMXoZ/BXl1IqzPMuAXZLkAWCdEvBdJh/K0byLvW6zkvIX6ScJErbQgpBaKE u8M5NquwHy9/XX1CGXmjK2JIpmuIMOTp7X4+cQAji/8tsQHY6nmWiwNqAA5zBWQR 57rr8JCmmyWCqY+TGyUXsJoRVE7zhN0qScozyWHOQwYalTfOjUDbagTt1IUaUB+C jcfcGj9esOf8TGPXXSH41TsD+5NxV94= -----END CERTIFICATE-----Generated at Fri Jul 4 02:22:52 2025 by rpki-client