$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft File: SC1I47aWHxIIwGcVJOCOkDOV9lk.mft (raw, json) Hash identifier: fqdIf3FGiPJAQSspXVcAnHHeUtjOCgutiWSolNPdCY0= Subject key identifier: D9:0B:D0:6A:59:33:E6:39:B1:6E:19:22:26:87:43:A3:F5:8D:1C:4C Authority key identifier: 48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 Certificate issuer: /CN=A915BCE2/serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft Manifest number: 0121 Signing time: Tue 01 Jul 2025 05:11:15 +0000 Manifest this update: Tue 01 Jul 2025 05:11:15 +0000 Manifest next update: Tue 08 Jul 2025 05:11:15 +0000 Files and hashes: 1: SC1I47aWHxIIwGcVJOCOkDOV9lk.crl (hash: Si1DKtsULvAxp1Q+96a6oSzMmOnYkyMaD52TWeMIG5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCE2, serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Validity Not Before: Jul 1 05:11:15 2025 GMT Not After : Jul 8 05:11:15 2025 GMT Subject: CN=68636df3-f5cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:04:7d:60:03:5f:c3:25:6a:ca:42:84:be:0d: 7e:28:50:de:7a:13:03:3c:ee:15:87:b0:35:78:ee: 3e:19:26:e3:4c:a1:d3:4a:e8:b5:bb:9f:b8:2b:86: 7c:94:92:9e:32:f1:f0:40:df:ee:f8:58:fc:41:56: e3:2d:39:bd:3e:82:ee:52:e2:d0:ac:ec:d3:c4:5f: b8:58:ef:19:3d:94:41:64:1a:01:d6:dd:9f:ca:fe: 72:0c:d0:80:14:d2:f8:84:c1:fa:38:84:86:5d:5c: 1d:3b:75:b8:ab:30:f6:ca:7a:4f:5c:33:b4:f8:85: f0:ee:86:ef:51:85:2c:2c:78:91:f0:62:2d:7b:df: 0e:6a:5d:c8:3e:d8:34:ad:a0:a4:57:3c:67:c5:cf: 6b:d1:69:d8:10:16:4c:54:d5:68:6d:b8:b2:ab:e9: 96:4d:02:50:1a:fe:3a:c0:22:c5:1b:fc:7d:69:65: d0:a2:e3:c2:84:cc:b9:a5:fc:39:9b:07:e9:56:58: 23:46:57:6d:11:81:2e:a3:e9:ce:47:1f:87:6c:5a: 35:ac:09:fd:cc:eb:2d:d2:0d:91:98:ba:2e:27:2b: a2:70:07:ab:c5:f5:23:7b:05:cf:ed:f4:56:ba:d6: a2:08:8c:4a:26:99:87:70:a6:51:b6:55:7b:b5:5d: dd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0B:D0:6A:59:33:E6:39:B1:6E:19:22:26:87:43:A3:F5:8D:1C:4C X509v3 Authority Key Identifier: keyid:48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:94:15:96:47:40:c6:af:04:ac:36:c6:7b:a3:b6:52:f7:38: d4:1a:d0:c2:80:05:61:1d:17:1f:db:08:18:bd:32:a1:f4:09: 35:18:a6:b2:5d:50:f9:6d:15:b1:ae:5d:31:2d:a2:01:50:68: ce:39:5f:e9:25:69:cd:6b:30:d2:f6:ff:6e:2d:13:e0:48:d2: f7:26:86:4a:8d:9e:c7:45:1c:c0:bd:d6:18:33:76:cb:7a:6d: 2a:1a:e0:b0:dd:53:42:0e:91:47:f0:0f:2e:86:37:50:3a:8b: 03:8e:c6:07:5d:00:25:b1:4d:78:6a:6e:a7:31:7a:8f:7e:df: 76:e6:ac:21:b3:7a:34:cc:54:3a:35:95:d6:9c:36:38:03:a5: a7:41:37:7c:97:14:2b:3e:16:f9:15:88:89:25:b0:7c:27:4b: 81:ab:7a:ca:68:74:34:81:e8:da:3f:2e:1f:fb:82:65:8d:ad: 33:59:59:00:8a:bb:41:5f:34:e6:e5:bd:45:d6:33:c9:23:78: 6a:69:d8:44:23:b4:bb:8d:97:b3:2e:5c:cd:bd:21:4a:1c:82: b3:47:ef:56:66:1d:c5:74:23:9c:2d:b5:7f:d2:5f:96:19:57: af:fb:84:45:22:db:1e:67:49:d4:06:ab:a9:c1:d6:41:c0:14: 79:b6:7f:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDRTIxMTAvBgNVBAUTKDQ4MkQ0OEUzQjY5NjFGMTIwOEMwNjcxNTI0RTA4RTkw MzM5NUY2NTkwHhcNMjUwNzAxMDUxMTE1WhcNMjUwNzA4MDUxMTE1WjAYMRYwFAYD VQQDEw02ODYzNmRmMy1mNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgR9YANfwyVqykKEvg1+KFDeehMDPO4Vh7A1eO4+GSbjTKHTSui1u5+4K4Z8 lJKeMvHwQN/u+Fj8QVbjLTm9PoLuUuLQrOzTxF+4WO8ZPZRBZBoB1t2fyv5yDNCA FNL4hMH6OISGXVwdO3W4qzD2ynpPXDO0+IXw7obvUYUsLHiR8GIte98Oal3IPtg0 raCkVzxnxc9r0WnYEBZMVNVobbiyq+mWTQJQGv46wCLFG/x9aWXQouPChMy5pfw5 mwfpVlgjRldtEYEuo+nORx+HbFo1rAn9zOst0g2RmLouJyuicAerxfUjewXP7fRW utaiCIxKJpmHcKZRtlV7tV3dRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkL0GpZ M+Y5sW4ZIiaHQ6P1jRxMMB8GA1UdIwQYMBaAFEgtSOO2lh8SCMBnFSTgjpAzlfZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNFMi8yNEY3RTI3RTk3 QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4SUl3R2NWSk9DT2tET1Y5 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMUk0N2FXSHhJSXdHY1ZKT0NPa0RPVjlsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkNFMi8yNEY3RTI3RTk3QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4 SUl3R2NWSk9DT2tET1Y5bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtlBWWR0DGrwSsNsZ7o7ZS9zjUGtDCgAVhHRcf2wgYvTKh9Ak1GKay XVD5bRWxrl0xLaIBUGjOOV/pJWnNazDS9v9uLRPgSNL3JoZKjZ7HRRzAvdYYM3bL em0qGuCw3VNCDpFH8A8uhjdQOosDjsYHXQAlsU14am6nMXqPft925qwhs3o0zFQ6 NZXWnDY4A6WnQTd8lxQrPhb5FYiJJbB8J0uBq3rKaHQ0gejaPy4f+4Jlja0zWVkA irtBXzTm5b1F1jPJI3hqadhEI7S7jZezLlzNvSFKHIKzR+9WZh3FdCOcLbV/0l+W GVev+4RFItseZ0nUBqupwdZBwBR5tn81 -----END CERTIFICATE-----Generated at Tue Jul 1 11:53:53 2025 by rpki-client