$ rpki-client -vvf rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft File: P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft (raw, json) Hash identifier: b2edR4Lk8YVgO7T26bKOO/5K/x44P6if1YilmjJMwLA= Subject key identifier: 42:EE:9C:B2:90:37:15:BD:2A:D0:F5:C8:C7:12:D2:4A:25:E8:E6:E8 Authority key identifier: 3F:48:AC:A1:2A:59:27:A7:02:EC:EE:24:41:51:89:19:4E:D4:AA:80 Certificate issuer: /CN=A916A2FB/serialNumber=3F48ACA12A5927A702ECEE24415189194ED4AA80 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft Manifest number: 0C Signing time: Tue 01 Jul 2025 08:54:56 +0000 Manifest this update: Tue 01 Jul 2025 08:54:55 +0000 Manifest next update: Tue 08 Jul 2025 08:54:55 +0000 Files and hashes: 1: P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl (hash: Zh0V02O4wXm0WMICouxggWGnRmkZ1Co7gP9imXbqp7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A2FB, serialNumber=3F48ACA12A5927A702ECEE24415189194ED4AA80 Validity Not Before: Jul 1 08:54:55 2025 GMT Not After : Jul 8 08:54:55 2025 GMT Subject: CN=6863a260-9046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d8:37:0d:f9:2e:45:c6:06:7f:a0:ff:65:ee: dd:06:38:64:18:44:5f:40:c0:20:92:07:8e:8b:87: 4d:c4:a2:85:e5:bf:0d:85:2d:62:99:78:3c:63:04: 70:f1:d8:0a:03:ae:7a:9e:2e:9e:b7:19:a9:90:c8: b1:c3:94:a8:de:31:61:3e:24:1f:1c:d5:77:6a:31: 1d:9e:7f:ba:e0:4d:50:6a:3f:6d:c0:71:30:de:39: d4:52:e7:37:c3:61:ab:51:94:74:43:b1:fc:b8:e3: fa:32:bf:c7:27:5d:5d:49:13:69:e0:fc:c0:8d:9f: 5a:a9:0c:3f:9b:8d:ce:ed:33:85:8e:49:89:b2:45: e4:48:ec:8f:99:78:23:b5:7f:98:e5:c0:99:e4:43: da:e3:6f:50:37:9a:1d:60:a6:08:c5:3f:87:4d:34: b3:d3:23:02:d1:87:67:60:7c:79:87:42:f8:5d:33: 51:8c:04:ee:54:1a:ea:08:7f:07:15:e8:96:af:b7: 2d:33:c9:be:9a:d5:3a:65:1e:44:3f:5c:1c:5f:7d: 7b:7a:c1:eb:17:9a:21:98:0d:79:96:0d:69:5a:14: 70:8b:84:08:06:3a:b2:a1:60:d3:d4:05:57:38:1c: ce:cc:ed:20:95:05:c7:2f:bb:f8:c4:d9:e3:08:6e: cc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EE:9C:B2:90:37:15:BD:2A:D0:F5:C8:C7:12:D2:4A:25:E8:E6:E8 X509v3 Authority Key Identifier: keyid:3F:48:AC:A1:2A:59:27:A7:02:EC:EE:24:41:51:89:19:4E:D4:AA:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:6a:34:c8:40:79:28:fe:fd:81:fa:8d:8a:ac:86:a4:53:f7: 7e:1e:d1:58:22:03:dd:a0:1f:10:94:3c:f6:da:57:ef:c5:f3: c7:b6:51:1d:f3:71:f6:49:29:fe:91:6e:7f:d0:42:2e:d7:5b: a0:cc:4c:4b:d0:f5:6d:a3:6f:6f:1a:93:f0:4d:2e:77:ff:e9: a0:52:e2:cc:68:47:14:da:6e:ba:ff:a9:50:6b:97:61:88:e7: c1:c8:78:5c:af:8c:48:09:db:43:4d:ec:93:35:b8:2f:5a:a0: ed:e2:6d:e4:cc:27:47:2b:ad:c0:10:15:b2:1e:36:d8:e2:8b: f7:74:e0:17:c6:b6:f5:f5:7f:38:0b:f9:d3:5b:ca:8e:2f:85: a8:f3:a3:5e:ce:9f:b1:ed:a3:ee:82:de:19:40:fa:1b:65:0c: b4:2e:97:a5:b8:d1:ff:83:d6:6c:e1:12:61:ae:9a:77:c7:b1: 57:69:9b:06:07:1e:9c:dd:6e:29:0a:c0:4f:dc:14:31:95:f2: e3:9d:0a:cb:4d:f3:ba:8e:ee:25:1e:e5:a2:19:56:7e:cc:a1: b7:bf:53:6d:cc:52:0d:63:b4:3d:19:53:28:3a:d8:9a:13:a8: e9:ae:68:0f:64:12:60:eb:fe:49:e1:9d:a7:db:0c:fb:01:90: ad:e4:a2:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTJGQjExMC8GA1UEBRMoM0Y0OEFDQTEyQTU5MjdBNzAyRUNFRTI0NDE1MTg5MTk0 RUQ0QUE4MDAeFw0yNTA3MDEwODU0NTVaFw0yNTA3MDgwODU0NTVaMBgxFjAUBgNV BAMTDTY4NjNhMjYwLTkwNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb2DcN+S5FxgZ/oP9l7t0GOGQYRF9AwCCSB46Lh03EooXlvw2FLWKZeDxjBHDx 2AoDrnqeLp63GamQyLHDlKjeMWE+JB8c1XdqMR2ef7rgTVBqP23AcTDeOdRS5zfD YatRlHRDsfy44/oyv8cnXV1JE2ng/MCNn1qpDD+bjc7tM4WOSYmyReRI7I+ZeCO1 f5jlwJnkQ9rjb1A3mh1gpgjFP4dNNLPTIwLRh2dgfHmHQvhdM1GMBO5UGuoIfwcV 6Javty0zyb6a1TplHkQ/XBxffXt6wesXmiGYDXmWDWlaFHCLhAgGOrKhYNPUBVc4 HM7M7SCVBccvu/jE2eMIbswnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQu6cspA3 Fb0q0PXIxxLSSiXo5ugwHwYDVR0jBBgwFoAUP0isoSpZJ6cC7O4kQVGJGU7UqoAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBMkZCLzlGOEY5RDAwNDY4 NzExRjBBRjY0Mjc0NEM0RjlBRTAyL1AwaXNvU3BaSjZjQzdPNGtRVkdKR1U3VXFv QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUDBpc29TcFpKNmNDN080a1FWR0pHVTdVcW9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB MkZCLzlGOEY5RDAwNDY4NzExRjBBRjY0Mjc0NEM0RjlBRTAyL1AwaXNvU3BaSjZj QzdPNGtRVkdKR1U3VXFvQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABBqNMhAeSj+/YH6jYqshqRT934e0VgiA92gHxCUPPbaV+/F88e2UR3z cfZJKf6Rbn/QQi7XW6DMTEvQ9W2jb28ak/BNLnf/6aBS4sxoRxTabrr/qVBrl2GI 58HIeFyvjEgJ20NN7JM1uC9aoO3ibeTMJ0crrcAQFbIeNtjii/d04BfGtvX1fzgL +dNbyo4vhajzo17On7Hto+6C3hlA+htlDLQul6W40f+D1mzhEmGumnfHsVdpmwYH HpzdbikKwE/cFDGV8uOdCstN87qO7iUe5aIZVn7Mobe/U23MUg1jtD0ZUyg62JoT qOmuaA9kEmDr/knhnafbDPsBkK3kovQ= -----END CERTIFICATE-----Generated at Wed Jul 2 04:54:14 2025 by rpki-client