$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: FiIHjHiwFusjpyR2NIhSzEHhqV2sTP8X2o432zdaZ8g= Subject key identifier: 4B:0F:3A:53:C0:4C:82:33:48:E4:B9:1F:34:2F:25:38:FD:A7:FD:50 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A10 Signing time: Mon 30 Jun 2025 19:57:50 +0000 Manifest this update: Mon 30 Jun 2025 19:57:49 +0000 Manifest next update: Mon 07 Jul 2025 19:57:49 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: 2Hx8jq/coAJrb/DX3U2OyRkF3xbuKNqggXMW7VOq0GU=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2583 (0xa17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Jun 30 19:57:49 2025 GMT Not After : Jul 7 19:57:49 2025 GMT Subject: CN=6862ec3d-8abf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3c:2a:59:f9:81:02:88:fe:03:f0:6e:93:68: bf:2f:99:db:29:25:b5:a9:59:40:c0:54:c3:3a:44: 23:e6:63:11:d5:00:fb:de:77:48:b7:e1:06:b2:ea: f5:4d:1c:3f:72:72:fa:ad:1b:45:0a:78:f5:3b:85: cd:66:33:0c:c5:2c:c2:c9:bc:2d:a9:a3:e9:8a:79: ec:0b:b5:c8:3d:51:47:c1:4b:d8:a9:49:09:61:08: d4:23:36:28:3f:e2:01:9c:a6:47:66:60:c9:12:55: 43:80:ec:97:06:ed:6d:56:c8:36:2d:f8:a5:20:73: a7:81:1b:fd:a8:bc:93:d0:a7:09:eb:bc:69:79:9f: 72:9d:c7:57:9d:ef:63:e4:01:3b:0e:4f:ab:2a:4d: f7:b1:0c:67:1d:e8:e8:43:19:19:b8:22:de:18:7f: e9:d3:25:48:fb:9c:71:dc:8a:74:d5:1d:d8:5c:6c: 94:26:cc:fc:79:8b:71:e5:85:c5:01:11:94:9b:75: 5a:fc:da:4a:b1:3f:dd:85:23:2b:02:fb:35:48:bb: 87:c4:05:c7:85:2b:ea:65:51:0a:70:c4:56:e6:ca: 9b:f0:d1:35:df:ac:db:f2:f1:2c:c4:39:1e:96:41: 01:3c:52:eb:79:8e:89:3a:9f:93:5a:1d:95:0d:40: d7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0F:3A:53:C0:4C:82:33:48:E4:B9:1F:34:2F:25:38:FD:A7:FD:50 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:af:f6:5a:14:2b:a7:ed:11:33:94:64:a2:ba:cf:e1:c5:97: 92:f1:ef:ab:6d:d3:45:ce:90:6d:d0:91:4d:d3:52:46:3c:34: df:33:6b:cd:af:98:98:cd:c3:4f:e3:8b:df:c2:53:25:e0:85: b3:35:ec:83:5a:7c:c3:66:ea:1f:c6:52:64:c6:e2:eb:71:ce: b0:cf:a8:4d:61:bd:44:e9:fb:fe:4a:ce:65:7d:ad:1a:92:bd: 12:00:74:6c:d8:cc:0f:77:05:da:01:42:36:c7:a3:5f:c4:ef: b1:04:89:16:7a:89:7a:2d:dd:31:64:54:fd:a1:b2:a4:47:af: 78:ce:cd:7c:d2:89:33:37:a9:e8:11:db:46:ae:2e:ec:c7:2f: 3a:e0:56:1e:74:5a:92:ca:c2:66:db:5c:9d:a5:b2:f2:a7:4b: 67:1b:75:5c:1e:43:c8:b5:52:d8:8c:a9:9b:b9:f2:42:d8:76: d1:1a:19:08:7c:58:25:86:42:92:de:25:10:07:2e:c6:25:eb: 07:7b:2c:38:c3:d0:69:86:fb:23:49:88:44:69:bd:12:36:8f: 52:ba:05:d6:6b:68:00:09:e1:4f:e3:bb:ff:3a:59:b0:ec:15: 8a:79:dc:73:bb:6d:c2:71:c8:1f:c0:76:33:6b:26:bf:b1:84: cc:5b:3b:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUwNjMwMTk1NzQ5WhcNMjUwNzA3MTk1NzQ5WjAYMRYwFAYD VQQDEw02ODYyZWMzZC04YWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDwqWfmBAoj+A/Buk2i/L5nbKSW1qVlAwFTDOkQj5mMR1QD73ndIt+EGsur1 TRw/cnL6rRtFCnj1O4XNZjMMxSzCybwtqaPpinnsC7XIPVFHwUvYqUkJYQjUIzYo P+IBnKZHZmDJElVDgOyXBu1tVsg2LfilIHOngRv9qLyT0KcJ67xpeZ9yncdXne9j 5AE7Dk+rKk33sQxnHejoQxkZuCLeGH/p0yVI+5xx3Ip01R3YXGyUJsz8eYtx5YXF ARGUm3Va/NpKsT/dhSMrAvs1SLuHxAXHhSvqZVEKcMRW5sqb8NE136zb8vEsxDke lkEBPFLreY6JOp+TWh2VDUDXYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsPOlPA TIIzSOS5HzQvJTj9p/1QMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzr/ZaFCun7REzlGSius/hxZeS8e+rbdNFzpBt0JFN01JGPDTfM2vN r5iYzcNP44vfwlMl4IWzNeyDWnzDZuofxlJkxuLrcc6wz6hNYb1E6fv+Ss5lfa0a kr0SAHRs2MwPdwXaAUI2x6NfxO+xBIkWeol6Ld0xZFT9obKkR694zs180okzN6no EdtGri7sxy864FYedFqSysJm21ydpbLyp0tnG3VcHkPItVLYjKmbufJC2HbRGhkI fFglhkKS3iUQBy7GJesHeyw4w9BphvsjSYhEab0SNo9SugXWa2gACeFP47v/Olmw 7BWKedxzu23CccgfwHYzaya/sYTMWztV -----END CERTIFICATE-----Generated at Wed Jul 2 03:37:37 2025 by rpki-client