$ rpki-client -vvf rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft File: cM1M0T4uN35eXDervHl-7ea2Yhs.mft (raw, json) Hash identifier: /s6eBRB6cATLHK24pjPZlcsvYHkPdAEPlrBksa0tS14= Subject key identifier: 7C:C8:1B:18:83:92:24:FC:D6:62:77:EB:F5:47:60:F9:77:AC:8C:68 Authority key identifier: 70:CD:4C:D1:3E:2E:37:7E:5E:5C:37:AB:BC:79:7E:ED:E6:B6:62:1B Certificate issuer: /CN=A916F338/serialNumber=70CD4CD13E2E377E5E5C37ABBC797EEDE6B6621B Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM1M0T4uN35eXDervHl-7ea2Yhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft Manifest number: 02A2 Signing time: Tue 01 Jul 2025 02:12:23 +0000 Manifest this update: Tue 01 Jul 2025 02:12:23 +0000 Manifest next update: Tue 08 Jul 2025 02:12:23 +0000 Files and hashes: 1: cM1M0T4uN35eXDervHl-7ea2Yhs.crl (hash: i9wPTvINddqe4552nn6hD59124WIlzA2Ba1HUapRlW4=) 2: BA5354A4044211EDBB686665C4F9AE02.roa (hash: 5D+EMadPUYOYtPY3WxKsOuXfJZW+RJaKdKnGQtm9R6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.crl rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM1M0T4uN35eXDervHl-7ea2Yhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F338, serialNumber=70CD4CD13E2E377E5E5C37ABBC797EEDE6B6621B Validity Not Before: Jul 1 02:12:23 2025 GMT Not After : Jul 8 02:12:23 2025 GMT Subject: CN=68634407-145c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cd:19:d0:f9:6c:85:c1:43:c2:e8:da:f9:4c: b6:f9:e9:f9:e5:02:e3:e8:1f:a8:5e:10:43:aa:88: 15:41:dd:49:72:fc:c9:d1:67:1e:be:11:ad:a3:84: bd:e5:3c:85:88:0b:5d:ef:d2:80:3c:35:6b:d5:a9: af:ce:3a:8a:fd:ce:dd:00:50:0c:35:69:9b:7a:5f: 1f:95:4a:4f:47:c8:d8:62:30:d5:46:c3:73:e8:27: d8:b2:2d:1d:2d:bf:2d:73:9a:74:b3:b4:b5:fc:fa: 0f:5e:fe:cc:2f:51:10:95:68:97:0d:1f:e7:ae:1a: b3:74:64:22:d4:08:cd:76:c9:0b:47:e9:cf:b3:97: 98:e5:45:5e:77:03:37:bf:32:b9:5c:a9:0c:f6:fe: d6:80:ec:12:74:6e:7e:7e:36:68:c0:dc:1a:8c:5b: 1d:98:d2:61:8c:ef:84:f6:f1:ac:ce:0d:b0:88:12: 11:35:df:70:bf:b1:a1:73:c6:12:b7:5f:5a:bc:06: a2:dd:bc:e9:bc:43:93:70:3a:7c:01:d2:ad:3b:8e: c5:1f:26:be:23:d0:b2:fd:72:f1:2b:ff:62:73:bb: 5f:76:8c:56:6c:46:33:75:42:10:c1:7a:24:1d:9d: 5a:12:d6:83:64:8f:d4:7f:24:eb:ad:4d:fc:65:b0: bf:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C8:1B:18:83:92:24:FC:D6:62:77:EB:F5:47:60:F9:77:AC:8C:68 X509v3 Authority Key Identifier: keyid:70:CD:4C:D1:3E:2E:37:7E:5E:5C:37:AB:BC:79:7E:ED:E6:B6:62:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM1M0T4uN35eXDervHl-7ea2Yhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:99:bd:f0:98:f4:17:a0:e0:ad:d0:88:4f:0f:98:bf:9a:58: dd:70:0c:c8:15:4f:9c:33:17:7f:36:02:cd:84:a5:bc:78:72: df:7b:2e:33:2c:4d:96:7e:ac:40:6e:cc:1f:d6:d3:b2:e1:45: 61:aa:b6:94:45:d5:c7:96:de:b4:82:a8:0b:3e:8a:0e:fa:f1: 0b:83:4d:af:fa:c0:9b:1a:c7:b8:08:ca:9d:67:a7:f9:f2:b7: d6:5b:db:94:97:67:aa:ee:07:51:a6:c9:66:e5:0f:d5:b6:8f: c1:1a:22:3b:a5:d2:43:70:fd:9b:c9:57:b6:ef:56:e5:a8:8e: 9a:5e:45:62:aa:b7:6e:97:61:34:b1:a2:61:7b:ca:a0:24:23: 52:b8:4b:9c:59:09:45:a4:5d:be:b1:cc:b8:8e:96:07:0d:c5: 94:15:60:37:4a:71:ab:f6:9f:17:90:83:54:cf:3c:7c:21:26: 86:8f:6a:ad:01:8d:57:2e:8f:1d:7a:6e:9a:81:ec:53:bf:25: a7:2e:14:5e:09:20:0b:08:16:94:1c:f1:87:f8:d4:70:ac:ca: 25:d3:37:15:0c:6c:3d:ef:a7:d8:83:89:29:da:ae:43:39:6e: 66:e5:5f:dc:c4:7f:75:b6:8b:0f:76:4d:de:b7:2b:9d:7a:cd: cc:64:75:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkYzMzgxMTAvBgNVBAUTKDcwQ0Q0Q0QxM0UyRTM3N0U1RTVDMzdBQkJDNzk3RUVE RTZCNjYyMUIwHhcNMjUwNzAxMDIxMjIzWhcNMjUwNzA4MDIxMjIzWjAYMRYwFAYD VQQDEw02ODYzNDQwNy0xNDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqc0Z0PlshcFDwuja+Uy2+en55QLj6B+oXhBDqogVQd1JcvzJ0WcevhGto4S9 5TyFiAtd79KAPDVr1amvzjqK/c7dAFAMNWmbel8flUpPR8jYYjDVRsNz6CfYsi0d Lb8tc5p0s7S1/PoPXv7ML1EQlWiXDR/nrhqzdGQi1AjNdskLR+nPs5eY5UVedwM3 vzK5XKkM9v7WgOwSdG5+fjZowNwajFsdmNJhjO+E9vGszg2wiBIRNd9wv7Ghc8YS t19avAai3bzpvEOTcDp8AdKtO47FHya+I9Cy/XLxK/9ic7tfdoxWbEYzdUIQwXok HZ1aEtaDZI/UfyTrrU38ZbC/lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzIGxiD kiT81mJ36/VHYPl3rIxoMB8GA1UdIwQYMBaAFHDNTNE+Ljd+Xlw3q7x5fu3mtmIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjMzOC9EMjExMTdEQzA0 M0YxMUVEOTM5QUUwNjJDNEY5QUUwMi9jTTFNMFQ0dU4zNWVYRGVydkhsLTdlYTJZ aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNMU0wVDR1TjM1ZVhEZXJ2SGwtN2VhMllocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjMzOC9EMjExMTdEQzA0M0YxMUVEOTM5QUUwNjJDNEY5QUUwMi9jTTFNMFQ0dU4z NWVYRGVydkhsLTdlYTJZaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCymb3wmPQXoOCt0IhPD5i/mljdcAzIFU+cMxd/NgLNhKW8eHLfey4z LE2WfqxAbswf1tOy4UVhqraURdXHlt60gqgLPooO+vELg02v+sCbGse4CMqdZ6f5 8rfWW9uUl2eq7gdRpslm5Q/Vto/BGiI7pdJDcP2byVe271blqI6aXkViqrdul2E0 saJhe8qgJCNSuEucWQlFpF2+scy4jpYHDcWUFWA3SnGr9p8XkINUzzx8ISaGj2qt AY1XLo8dem6agexTvyWnLhReCSALCBaUHPGH+NRwrMol0zcVDGw976fYg4kp2q5D OW5m5V/cxH91tosPdk3etyudes3MZHUW -----END CERTIFICATE-----Generated at Thu Jul 3 01:04:36 2025 by rpki-client