$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft File: SC1I47aWHxIIwGcVJOCOkDOV9lk.mft (raw, json) Hash identifier: MBBxfprQRQtTjf6EEp92y/cNs6CWX7/8QL8C/FbH3jw= Subject key identifier: C5:B0:0D:68:E1:C6:6E:36:F2:BB:A3:8E:3A:5C:18:09:38:8F:35:D4 Authority key identifier: 48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 Certificate issuer: /CN=A915BCE2/serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft Manifest number: 0120 Signing time: Sun 29 Jun 2025 03:48:48 +0000 Manifest this update: Sun 29 Jun 2025 03:48:47 +0000 Manifest next update: Sun 06 Jul 2025 03:48:47 +0000 Files and hashes: 1: SC1I47aWHxIIwGcVJOCOkDOV9lk.crl (hash: ni67iUToqoqZzGqButTJqOcNpes/MUjrTYECyu7Bypk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCE2, serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Validity Not Before: Jun 29 03:48:47 2025 GMT Not After : Jul 6 03:48:47 2025 GMT Subject: CN=6860b7a0-71fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:55:10:2d:41:11:36:7f:a1:9a:81:f9:12:06: 25:fd:6b:bb:0f:43:15:02:7b:9a:cc:71:f7:93:8f: e2:90:bb:8e:21:4c:72:fd:11:64:fe:9c:1c:b6:61: da:64:52:aa:55:13:5e:e9:8c:6f:76:13:d8:84:9b: 82:b2:ad:da:e1:e9:46:68:c1:4a:e4:b1:90:5c:df: e1:23:f9:dc:00:f0:8d:e9:b4:89:d5:a9:81:cd:ef: b8:c1:46:19:96:6f:a2:7f:10:0e:1c:18:26:24:92: 46:48:fa:67:0a:1e:a0:d7:36:a0:73:9b:bb:5d:87: 40:60:44:44:d4:57:f1:c9:e3:09:e6:9a:ba:58:0a: 39:4e:09:15:8b:e3:88:67:2d:f1:42:8e:e4:28:73: 04:ac:c3:8f:03:91:eb:1d:97:30:c6:c6:82:f7:22: 16:79:cd:7b:1a:a8:24:20:5d:53:01:57:28:8d:01: 3b:e1:32:bf:8e:73:75:61:a2:f1:53:20:1a:68:8f: 20:1c:db:28:4d:ef:a6:40:21:05:ad:b9:21:0f:bc: 28:98:72:c5:c8:16:86:e9:e6:c1:e4:42:fc:1c:b6: 80:6e:55:8b:2e:18:3e:f5:ee:6c:f7:5b:24:fe:96: c9:af:ac:3c:50:f4:65:26:74:8f:d5:b9:e1:e0:f6: 14:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B0:0D:68:E1:C6:6E:36:F2:BB:A3:8E:3A:5C:18:09:38:8F:35:D4 X509v3 Authority Key Identifier: keyid:48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:2b:57:08:81:e3:a1:34:eb:b8:81:ae:88:21:71:c7:d0:57: 3f:2e:48:9a:a7:a0:ec:76:79:92:a9:1b:ae:1d:a6:18:01:d2: a3:d4:c3:7b:c3:22:e6:61:2a:a6:8a:b1:5c:7f:7a:2d:28:47: 7e:ec:4d:ee:b4:0e:70:07:98:01:7a:7b:f8:a1:c2:a7:25:d6: 73:5a:66:25:01:9e:b8:79:d2:02:98:8e:3b:86:0c:6c:bd:eb: 12:c0:61:39:be:57:82:34:78:5a:ad:61:90:20:86:7f:20:2a: 81:97:f1:74:27:dc:ac:9d:76:23:a8:26:77:a7:4f:30:22:67: 94:7d:3c:20:78:e2:14:ab:ca:2c:9c:34:fe:79:dd:40:ac:1f: c3:cb:fb:53:a3:62:28:8d:30:ea:1c:b7:4c:2d:0a:5d:8b:12: ca:e5:81:64:c0:0b:87:49:96:dd:c1:66:8a:64:da:8a:68:ed: 97:49:cc:3e:52:09:ee:31:13:ae:51:d5:e7:59:96:f9:97:12: 20:6c:ed:69:5b:73:44:a9:c1:62:ed:fc:89:18:eb:8a:6c:82: c0:ed:92:4d:ef:27:00:25:59:55:e2:a0:3e:b1:16:c4:69:42: 11:d1:cd:a4:b9:be:75:79:02:5c:a1:aa:26:6f:88:bd:36:9b: e4:82:d7:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDRTIxMTAvBgNVBAUTKDQ4MkQ0OEUzQjY5NjFGMTIwOEMwNjcxNTI0RTA4RTkw MzM5NUY2NTkwHhcNMjUwNjI5MDM0ODQ3WhcNMjUwNzA2MDM0ODQ3WjAYMRYwFAYD VQQDEw02ODYwYjdhMC03MWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1UQLUERNn+hmoH5EgYl/Wu7D0MVAnuazHH3k4/ikLuOIUxy/RFk/pwctmHa ZFKqVRNe6YxvdhPYhJuCsq3a4elGaMFK5LGQXN/hI/ncAPCN6bSJ1amBze+4wUYZ lm+ifxAOHBgmJJJGSPpnCh6g1zagc5u7XYdAYERE1FfxyeMJ5pq6WAo5TgkVi+OI Zy3xQo7kKHMErMOPA5HrHZcwxsaC9yIWec17GqgkIF1TAVcojQE74TK/jnN1YaLx UyAaaI8gHNsoTe+mQCEFrbkhD7womHLFyBaG6ebB5EL8HLaAblWLLhg+9e5s91sk /pbJr6w8UPRlJnSP1bnh4PYU+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWwDWjh xm428rujjjpcGAk4jzXUMB8GA1UdIwQYMBaAFEgtSOO2lh8SCMBnFSTgjpAzlfZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNFMi8yNEY3RTI3RTk3 QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4SUl3R2NWSk9DT2tET1Y5 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMUk0N2FXSHhJSXdHY1ZKT0NPa0RPVjlsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkNFMi8yNEY3RTI3RTk3QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4 SUl3R2NWSk9DT2tET1Y5bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpK1cIgeOhNOu4ga6IIXHH0Fc/Lkiap6DsdnmSqRuuHaYYAdKj1MN7 wyLmYSqmirFcf3otKEd+7E3utA5wB5gBenv4ocKnJdZzWmYlAZ64edICmI47hgxs vesSwGE5vleCNHharWGQIIZ/ICqBl/F0J9ysnXYjqCZ3p08wImeUfTwgeOIUq8os nDT+ed1ArB/Dy/tTo2IojTDqHLdMLQpdixLK5YFkwAuHSZbdwWaKZNqKaO2XScw+ UgnuMROuUdXnWZb5lxIgbO1pW3NEqcFi7fyJGOuKbILA7ZJN7ycAJVlV4qA+sRbE aUIR0c2kub51eQJcoaomb4i9Npvkgtdo -----END CERTIFICATE-----Generated at Mon Jun 30 00:23:49 2025 by rpki-client