$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: El+XpfaP7mLlyqrKWgh6mC1CWJAjxJfNGJsVkRqRvO4= Subject key identifier: 6A:BD:8E:D1:C1:66:E2:FA:1B:01:B3:AE:3E:F2:E7:5A:92:20:DD:1C Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 0250 Signing time: Thu 03 Jul 2025 02:13:29 +0000 Manifest this update: Thu 03 Jul 2025 02:13:28 +0000 Manifest next update: Thu 10 Jul 2025 02:13:28 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: 7qYrZp/Lx2c+LYNviwHbPprxcSt9K2CZQpgrJveRnFY=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Jul 3 02:13:28 2025 GMT Not After : Jul 10 02:13:28 2025 GMT Subject: CN=6865e749-bc94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:53:27:ce:4b:10:a7:a9:ae:4b:c6:e7:e2:f3: 8a:8e:39:96:76:31:f2:03:aa:7a:17:49:6c:8b:c5: d5:bb:37:06:51:61:3d:1f:b2:50:cd:15:f2:c8:5c: 40:6c:03:94:55:fe:f0:69:08:d8:22:71:48:f1:96: f3:db:f3:1c:10:c6:9c:8e:1a:8d:f1:54:97:a1:1c: cc:d9:bc:a0:cb:91:4c:ac:de:63:bc:c1:fa:f2:b0: be:2a:48:82:69:3a:1b:f9:ce:ee:83:9f:9c:7a:a8: cd:1c:04:24:e8:44:65:f5:b4:0c:da:56:07:bd:7b: 65:fb:ff:2c:3c:9d:75:aa:1c:a5:ef:95:93:93:24: 28:f9:fb:e5:f0:28:12:43:ac:b9:92:9a:36:a5:29: 20:28:dd:d7:a8:e5:64:4b:83:74:73:a6:b2:d0:df: f8:f9:d4:55:10:c3:52:4c:d0:fc:a0:6c:ef:8f:b4: 99:3a:e8:6e:cc:c4:a2:82:77:64:35:52:30:90:02: fb:2a:c5:10:df:06:6a:4e:34:16:e0:64:5d:da:a2: e3:71:84:0d:df:5b:0f:a9:3e:ac:28:13:c9:da:d1: cc:56:b1:47:e8:55:58:43:5c:fa:17:4d:de:c5:1f: 4d:69:8c:b6:e1:37:cb:63:05:f5:4d:83:91:d0:2b: c7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BD:8E:D1:C1:66:E2:FA:1B:01:B3:AE:3E:F2:E7:5A:92:20:DD:1C X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:14:8a:46:48:e9:b7:d8:f7:a0:5b:95:cd:12:57:dc:88:57: 7b:1a:bd:bc:79:29:fc:da:7e:a6:9b:54:37:8d:dc:3b:b6:6a: bf:8f:0c:bb:39:52:b8:74:bf:25:3f:40:36:de:46:d2:64:83: cd:04:c7:08:22:e4:4c:fa:e2:e5:a4:25:32:05:23:63:8c:b4: 74:a9:8e:0c:c7:f0:a0:47:e1:1e:f7:cc:8a:13:05:ae:05:eb: 7a:13:4b:8f:fa:31:04:5a:58:59:bb:19:48:61:c0:5b:16:ff: fa:72:6b:82:02:60:41:a8:8f:c5:6a:6c:d8:42:98:03:9d:e8: 76:32:51:af:e4:b8:09:59:e7:f8:fb:44:82:53:9b:de:fd:9a: 7e:c5:ee:88:20:5f:18:b6:b0:71:cf:4d:49:6a:47:63:5d:40: 8f:6e:19:77:93:69:23:a3:9d:98:ab:6c:18:70:40:27:07:1a: ea:26:26:ef:ee:86:aa:87:9d:0f:4f:04:1c:1e:c5:8d:86:bf: d6:b3:26:8f:95:06:91:cf:90:ce:43:19:be:39:1e:c1:d1:19: 94:77:8b:b4:6e:aa:83:f4:28:ac:1d:8d:ae:8a:0e:59:2b:54: 40:14:25:db:fa:c0:50:32:5b:f9:19:54:35:53:6c:0f:21:e9: dd:81:43:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwNzAzMDIxMzI4WhcNMjUwNzEwMDIxMzI4WjAYMRYwFAYD VQQDEw02ODY1ZTc0OS1iYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFMnzksQp6muS8bn4vOKjjmWdjHyA6p6F0lsi8XVuzcGUWE9H7JQzRXyyFxA bAOUVf7waQjYInFI8Zbz2/McEMacjhqN8VSXoRzM2bygy5FMrN5jvMH68rC+KkiC aTob+c7ug5+ceqjNHAQk6ERl9bQM2lYHvXtl+/8sPJ11qhyl75WTkyQo+fvl8CgS Q6y5kpo2pSkgKN3XqOVkS4N0c6ay0N/4+dRVEMNSTND8oGzvj7SZOuhuzMSigndk NVIwkAL7KsUQ3wZqTjQW4GRd2qLjcYQN31sPqT6sKBPJ2tHMVrFH6FVYQ1z6F03e xR9NaYy24TfLYwX1TYOR0CvHCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGq9jtHB ZuL6GwGzrj7y51qSIN0cMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbFIpGSOm32PegW5XNElfciFd7Gr28eSn82n6mm1Q3jdw7tmq/jwy7 OVK4dL8lP0A23kbSZIPNBMcIIuRM+uLlpCUyBSNjjLR0qY4Mx/CgR+Ee98yKEwWu Bet6E0uP+jEEWlhZuxlIYcBbFv/6cmuCAmBBqI/FamzYQpgDneh2MlGv5LgJWef4 +0SCU5ve/Zp+xe6IIF8YtrBxz01JakdjXUCPbhl3k2kjo52Yq2wYcEAnBxrqJibv 7oaqh50PTwQcHsWNhr/WsyaPlQaRz5DOQxm+OR7B0RmUd4u0bqqD9CisHY2uig5Z K1RAFCXb+sBQMlv5GVQ1U2wPIendgUM5 -----END CERTIFICATE-----Generated at Thu Jul 3 14:12:39 2025 by rpki-client