$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: AdPZtmyFRiTybM1oflyA01JhO5GN15SkxaOIKSOddnw= Subject key identifier: 8C:F5:5C:85:E9:9E:5D:66:25:6D:CF:5D:B6:B3:F7:07:0C:B5:FF:84 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 0350 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 0348 Signing time: Thu 03 Jul 2025 01:21:55 +0000 Manifest this update: Thu 03 Jul 2025 01:21:54 +0000 Manifest next update: Thu 10 Jul 2025 01:21:54 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: kVl8x9NFcZjOtWD5UbyfEw3TxdrCMXo1Pb7L74qiBjU=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 848 (0x350) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Jul 3 01:21:54 2025 GMT Not After : Jul 10 01:21:54 2025 GMT Subject: CN=6865db33-c03f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e4:2c:4e:f1:66:f9:89:a0:3a:f7:ba:8e:f0: 18:7a:46:e0:32:88:93:1a:64:fc:55:ac:2d:40:15: 1f:6b:02:98:72:a2:f5:a6:6e:36:d1:a0:a3:c4:75: 1e:55:0d:5f:9a:d7:f0:7f:1b:f2:0f:83:96:9e:aa: fa:e3:97:bb:75:24:07:ce:7d:e5:85:f8:a5:4f:b4: 9a:62:55:51:af:40:e0:dd:93:bd:d5:65:8f:c7:db: 4c:06:a3:53:ee:1d:b7:be:da:6b:3e:4e:41:81:90: f0:af:f8:ae:b1:96:70:ef:b2:72:2b:c7:47:d8:a3: c0:e0:20:5a:93:04:93:9d:55:d1:15:83:ca:63:14: d9:da:6b:ec:18:ef:53:e4:04:f9:da:73:01:98:fa: 14:b3:d1:57:43:72:42:ef:b3:ff:99:d0:d8:03:60: ba:7b:a7:08:0d:4c:ca:d9:95:73:fc:b9:17:fa:93: 93:4f:20:b6:46:af:1a:13:74:3a:1d:e0:eb:cd:9a: a9:7e:7e:d2:b9:5d:22:99:75:5a:9d:2a:c7:e8:8c: 02:fc:ef:87:30:4b:6a:29:4c:3f:75:f0:45:46:54: c1:a9:a0:46:37:5e:f9:dd:de:fd:81:d9:73:69:a6: 7c:ba:5d:81:3e:0f:91:bb:6b:e4:73:e3:87:46:d1: ec:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F5:5C:85:E9:9E:5D:66:25:6D:CF:5D:B6:B3:F7:07:0C:B5:FF:84 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:bc:4e:89:88:73:41:34:97:b8:63:3a:9a:c3:69:9c:94:be: cb:15:a8:41:36:ff:b7:95:55:ea:5d:23:bb:9e:56:36:eb:59: 13:42:7c:b2:20:6e:6c:d5:d8:8d:13:7d:10:3b:7b:06:4e:63: bd:90:cb:1b:14:8c:43:26:ca:b9:50:c3:79:dd:5b:eb:c8:0e: 16:91:92:43:d7:1d:09:c1:5a:b4:dd:15:c8:30:e0:f2:cd:10: c7:73:f1:5a:4f:1c:b4:d3:a2:1f:45:fa:42:a6:cf:d6:af:36: 93:2a:6d:49:20:6c:b7:c9:18:bc:3f:79:9d:22:97:ce:e1:ae: fa:94:bb:43:c5:56:c2:9a:7c:2f:b0:3b:e1:61:a7:5e:87:f0: c6:3f:fc:a0:ec:9a:ae:94:30:38:c4:14:d0:87:5a:ea:14:94: 6c:c0:c1:72:a1:4d:a6:92:26:01:c4:81:60:6c:3f:2b:f0:29: f3:ed:4b:04:c5:af:46:c6:ec:87:c6:68:e4:89:d4:a6:8f:04: 7f:bc:53:df:50:9d:80:70:9e:4a:bd:84:d0:99:2d:c6:e4:d7: eb:ec:ad:9d:2d:b9:ad:6a:41:0a:46:b3:84:6b:8c:1f:97:92: 25:04:41:0d:b9:1b:99:e1:8c:bb:cb:3b:b0:ff:31:d7:2c:c4: 2a:1c:c8:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUwNzAzMDEyMTU0WhcNMjUwNzEwMDEyMTU0WjAYMRYwFAYD VQQDEw02ODY1ZGIzMy1jMDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuQsTvFm+YmgOve6jvAYekbgMoiTGmT8VawtQBUfawKYcqL1pm420aCjxHUe VQ1fmtfwfxvyD4OWnqr645e7dSQHzn3lhfilT7SaYlVRr0Dg3ZO91WWPx9tMBqNT 7h23vtprPk5BgZDwr/iusZZw77JyK8dH2KPA4CBakwSTnVXRFYPKYxTZ2mvsGO9T 5AT52nMBmPoUs9FXQ3JC77P/mdDYA2C6e6cIDUzK2ZVz/LkX+pOTTyC2Rq8aE3Q6 HeDrzZqpfn7SuV0imXVanSrH6IwC/O+HMEtqKUw/dfBFRlTBqaBGN1753d79gdlz aaZ8ul2BPg+Ru2vkc+OHRtHsvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIz1XIXp nl1mJW3PXbaz9wcMtf+EMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAovE6JiHNBNJe4Yzqaw2mclL7LFahBNv+3lVXqXSO7nlY261kTQnyy IG5s1diNE30QO3sGTmO9kMsbFIxDJsq5UMN53VvryA4WkZJD1x0JwVq03RXIMODy zRDHc/FaTxy006IfRfpCps/WrzaTKm1JIGy3yRi8P3mdIpfO4a76lLtDxVbCmnwv sDvhYadeh/DGP/yg7JqulDA4xBTQh1rqFJRswMFyoU2mkiYBxIFgbD8r8Cnz7UsE xa9GxuyHxmjkidSmjwR/vFPfUJ2AcJ5KvYTQmS3G5Nfr7K2dLbmtakEKRrOEa4wf l5IlBEENuRuZ4Yy7yzuw/zHXLMQqHMiZ -----END CERTIFICATE-----Generated at Fri Jul 4 02:57:12 2025 by rpki-client