$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft File: t0SkTltlPmx6kM9gNOANz9iUfWA.mft (raw, json) Hash identifier: JM5h4GjUIM2S66+kE1GVoWAcy4p8iWwZVvO+gsNxT30= Subject key identifier: 54:7B:E6:3E:ED:30:E4:93:67:59:0D:44:51:0D:9F:00:94:D1:E2:B2 Authority key identifier: B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 Certificate issuer: /CN=A914EBE5/serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Certificate serial: 1872 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft Manifest number: 1861 Signing time: Wed 02 Jul 2025 16:37:31 +0000 Manifest this update: Wed 02 Jul 2025 16:37:31 +0000 Manifest next update: Wed 09 Jul 2025 16:37:31 +0000 Files and hashes: 1: t0SkTltlPmx6kM9gNOANz9iUfWA.crl (hash: JdP1rGAlVyB3nC7/LfsbRF6juNJH0kpwzOYaZTcQZTg=) 2: 253B1382106C11F08D824C19C4F9AE02.roa (hash: k9TDuPE5aOqFzmvoIPDe+G9DbuyOrQuREAeCHC4kW88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6258 (0x1872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EBE5, serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Validity Not Before: Jul 2 16:37:31 2025 GMT Not After : Jul 9 16:37:31 2025 GMT Subject: CN=6865604b-03b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3c:00:23:e9:6b:af:50:68:78:66:cf:43:e7: d3:dd:54:88:88:a9:4b:26:23:f2:5c:39:99:f9:15: de:77:e1:29:9a:54:63:25:b6:ce:50:c6:6e:f7:19: 22:ad:8b:c7:ed:73:0b:ea:6d:14:60:4d:ff:f9:ef: 0d:ad:bd:07:a4:de:4a:3d:be:82:94:13:0f:4d:fb: 54:08:ae:26:82:2d:b1:32:59:76:23:14:9d:3c:0f: c9:6e:65:de:9a:18:7a:77:65:54:54:70:84:19:75: 76:2c:e8:59:1b:52:a1:8f:f3:af:67:dd:97:44:13: bb:19:bc:ef:07:3e:77:0b:76:3e:f5:dd:91:68:7d: ed:bb:91:ef:32:ed:0f:3e:7e:71:dd:82:dd:e5:d4: e4:bd:a4:c9:57:29:17:e6:d1:a2:74:65:d1:6d:2b: d8:af:e9:d2:08:4c:7f:63:57:bc:34:c0:8d:46:b8: bd:a6:94:9f:00:ed:9d:8f:be:87:06:53:85:d4:4e: eb:e3:9e:20:6a:7c:e8:ca:e9:b2:3a:22:bf:04:95: c9:8a:1b:14:58:dd:d3:41:2f:57:b0:e1:0c:ec:24: ab:a3:96:9a:20:f6:bf:59:a5:04:ae:cd:d1:12:48: af:50:58:7a:f9:86:77:19:a6:e7:40:63:fd:53:7b: 43:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:7B:E6:3E:ED:30:E4:93:67:59:0D:44:51:0D:9F:00:94:D1:E2:B2 X509v3 Authority Key Identifier: keyid:B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:f5:6f:54:69:3e:f6:24:a9:ee:23:f5:c8:96:01:eb:90:2d: 6b:cb:5c:59:08:08:ea:8a:e0:8c:bc:43:ff:20:14:ab:14:61: 17:49:6d:5d:32:a6:ec:f0:d8:f1:b9:63:f3:0c:61:5b:9e:37: 18:01:21:b1:a1:1b:a8:bf:53:0b:92:96:2a:c4:a8:bc:1f:4a: 4f:bd:21:46:cf:a5:cb:73:cc:3f:f9:2d:00:03:0e:d8:ea:08: 48:19:74:8d:30:5c:d7:95:30:0e:44:e3:a7:9c:5b:d1:42:ee: ce:7d:2e:29:9b:14:9b:9c:3d:0b:a1:a9:bc:67:01:92:16:55: 46:55:bc:85:6a:37:d2:de:a8:84:b0:7f:b5:ac:5d:f5:46:51: 62:4c:75:ec:78:2c:0d:a2:dd:79:69:ca:27:5d:f6:20:df:03: 46:9b:6b:5e:c7:b4:fc:5c:5e:e1:62:fd:75:ab:f6:2b:1c:01: ca:ac:0b:10:f2:60:01:fc:c4:3b:61:9b:59:72:ac:50:d8:34: 1b:96:71:ce:e7:16:48:d0:10:59:89:60:9b:d4:82:43:8b:a1: 01:27:c1:ed:c9:6d:db:e3:50:86:9e:2f:de:68:86:a2:f0:39: c5:8a:53:f2:93:42:da:63:07:d6:3c:f7:14:dc:f9:89:3c:4a: fb:2d:79:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCRTUxMTAvBgNVBAUTKEI3NDRBNDRFNUI2NTNFNkM3QTkwQ0Y2MDM0RTAwRENG RDg5NDdENjAwHhcNMjUwNzAyMTYzNzMxWhcNMjUwNzA5MTYzNzMxWjAYMRYwFAYD VQQDEw02ODY1NjA0Yi0wM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTwAI+lrr1BoeGbPQ+fT3VSIiKlLJiPyXDmZ+RXed+EpmlRjJbbOUMZu9xki rYvH7XML6m0UYE3/+e8Nrb0HpN5KPb6ClBMPTftUCK4mgi2xMll2IxSdPA/JbmXe mhh6d2VUVHCEGXV2LOhZG1Khj/OvZ92XRBO7GbzvBz53C3Y+9d2RaH3tu5HvMu0P Pn5x3YLd5dTkvaTJVykX5tGidGXRbSvYr+nSCEx/Y1e8NMCNRri9ppSfAO2dj76H BlOF1E7r454ganzoyumyOiK/BJXJihsUWN3TQS9XsOEM7CSro5aaIPa/WaUErs3R EkivUFh6+YZ3GabnQGP9U3tDHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR75j7t MOSTZ1kNRFENnwCU0eKyMB8GA1UdIwQYMBaAFLdEpE5bZT5sepDPYDTgDc/YlH1g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUJFNS82NEM1MjcwOEE5 NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBteDZrTTlnTk9BTno5aVVm V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QwU2tUbHRsUG14NmtNOWdOT0FOejlpVWZXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUJFNS82NEM1MjcwOEE5NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBt eDZrTTlnTk9BTno5aVVmV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC9W9UaT72JKnuI/XIlgHrkC1ry1xZCAjqiuCMvEP/IBSrFGEXSW1d Mqbs8NjxuWPzDGFbnjcYASGxoRuov1MLkpYqxKi8H0pPvSFGz6XLc8w/+S0AAw7Y 6ghIGXSNMFzXlTAOROOnnFvRQu7OfS4pmxSbnD0Loam8ZwGSFlVGVbyFajfS3qiE sH+1rF31RlFiTHXseCwNot15aconXfYg3wNGm2tex7T8XF7hYv11q/YrHAHKrAsQ 8mAB/MQ7YZtZcqxQ2DQblnHO5xZI0BBZiWCb1IJDi6EBJ8HtyW3b41CGni/eaIai 8DnFilPyk0LaYwfWPPcU3PmJPEr7LXn1 -----END CERTIFICATE-----Generated at Fri Jul 4 11:55:09 2025 by rpki-client