$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: IPL8tRzN68mYitQgSB8G64O9N+euV4kQJznuaYSve2Y= Subject key identifier: 69:0E:72:DB:76:19:00:A1:4F:84:85:CC:AB:C6:85:9A:AD:36:40:9B Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 34A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34A2 Signing time: Wed 02 Jul 2025 14:38:57 +0000 Manifest this update: Wed 02 Jul 2025 14:38:57 +0000 Manifest next update: Wed 09 Jul 2025 14:38:57 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: R4Extdqz2vC48zbqaIyMeZUYlbvNgq1nFzUdH9kGYIs=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: of9zh63P1E28Fw1JXMf3Mift2nJvEjjB8iXijpwTEOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13479 (0x34a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Jul 2 14:38:57 2025 GMT Not After : Jul 9 14:38:57 2025 GMT Subject: CN=68654481-f2bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6d:f0:c3:1b:bd:e3:b4:bc:60:7e:72:2f:aa: a8:27:a0:fa:d9:bc:1a:5d:20:82:b9:83:df:79:ac: 2e:23:c6:1b:ed:ae:35:b0:1f:02:94:0c:e7:c6:fb: 1f:cb:52:c3:70:32:bb:47:57:02:36:7c:6b:e7:d8: f4:c3:31:18:07:54:2d:1f:d4:71:73:52:e4:14:d8: 0b:6c:49:fd:01:3e:f8:41:9e:93:b3:8d:d5:dd:99: 7d:68:6c:63:20:f1:33:d4:cb:2f:1f:8e:da:5b:80: d5:67:7e:9a:33:b6:69:aa:4a:cc:73:49:34:30:7f: f8:e2:f7:cb:cc:db:21:53:2d:ae:18:81:86:f7:85: c5:b2:bb:5a:60:2a:3d:0f:d9:56:68:1c:74:74:21: b9:16:51:3c:1f:66:c3:f1:5f:9f:1c:cc:94:c9:62: dd:b9:e8:8b:7d:31:ac:58:f4:4b:b8:08:2f:e1:dd: 2b:79:e6:1c:5d:75:37:4d:0c:3b:b8:6d:b4:85:c3: bd:8c:04:4f:ee:18:2e:86:89:9b:ee:01:4f:3c:46: a1:fa:18:88:7f:39:c6:0d:ce:46:5c:ce:85:7d:d2: cc:46:12:be:d6:a6:95:31:30:d5:8c:c8:7a:23:25: cc:68:bb:79:3f:04:ad:1b:86:04:a5:1d:e4:6f:53: 4a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:0E:72:DB:76:19:00:A1:4F:84:85:CC:AB:C6:85:9A:AD:36:40:9B X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b6:eb:ea:26:1b:fa:c3:a3:19:57:9d:65:f8:e9:35:be:d2: 7f:ff:93:0c:57:7d:15:6a:bd:cb:aa:32:82:d0:b0:2a:41:db: b0:68:db:c7:34:23:ba:3b:71:ab:4a:7c:2c:b6:29:dd:9b:1b: 2b:9e:61:0f:9f:c3:56:c4:1a:4d:ee:a1:a1:2d:94:a4:77:cf: 50:a9:51:1d:43:e2:00:ea:7e:78:3c:43:29:9b:68:90:97:8c: 0e:fa:d9:76:b2:29:a5:61:c4:2d:5c:27:7b:e7:dd:83:56:59: 8c:4d:a5:d3:96:4c:ad:bb:19:5f:47:35:18:16:f8:cd:70:1b: 02:d2:06:0f:01:17:23:27:fc:ef:63:3f:2f:5b:95:84:be:ed: 2c:f7:40:c0:57:7d:d0:d6:bc:56:fe:ce:be:2f:c4:23:72:67: 68:e5:8d:84:7c:50:5f:07:48:53:23:09:ff:74:c3:eb:97:42: d0:38:b5:e2:f6:a5:4c:6f:ec:82:77:fa:e9:14:26:15:42:c0: 1e:e5:14:c5:47:fd:c4:fa:1c:a2:d6:00:8a:af:ed:b6:88:0f: 3f:d6:6c:c4:b5:79:5a:81:4e:3d:b5:19:6c:b9:cf:aa:56:3f: 49:1e:e4:d2:1c:fa:16:ea:0d:f4:55:76:99:9c:c3:b2:70:57: 36:e8:b1:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUwNzAyMTQzODU3WhcNMjUwNzA5MTQzODU3WjAYMRYwFAYD VQQDEw02ODY1NDQ4MS1mMmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m3wwxu947S8YH5yL6qoJ6D62bwaXSCCuYPfeawuI8Yb7a41sB8ClAznxvsf y1LDcDK7R1cCNnxr59j0wzEYB1QtH9Rxc1LkFNgLbEn9AT74QZ6Ts43V3Zl9aGxj IPEz1MsvH47aW4DVZ36aM7ZpqkrMc0k0MH/44vfLzNshUy2uGIGG94XFsrtaYCo9 D9lWaBx0dCG5FlE8H2bD8V+fHMyUyWLdueiLfTGsWPRLuAgv4d0reeYcXXU3TQw7 uG20hcO9jARP7hguhomb7gFPPEah+hiIfznGDc5GXM6FfdLMRhK+1qaVMTDVjMh6 IyXMaLt5PwStG4YEpR3kb1NKFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkOctt2 GQChT4SFzKvGhZqtNkCbMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDtuvqJhv6w6MZV51l+Ok1vtJ//5MMV30Var3LqjKC0LAqQduwaNvH NCO6O3GrSnwstindmxsrnmEPn8NWxBpN7qGhLZSkd89QqVEdQ+IA6n54PEMpm2iQ l4wO+tl2simlYcQtXCd7592DVlmMTaXTlkytuxlfRzUYFvjNcBsC0gYPARcjJ/zv Yz8vW5WEvu0s90DAV33Q1rxW/s6+L8Qjcmdo5Y2EfFBfB0hTIwn/dMPrl0LQOLXi 9qVMb+yCd/rpFCYVQsAe5RTFR/3E+hyi1gCKr+22iA8/1mzEtXlagU49tRlsuc+q Vj9JHuTSHPoW6g30VXaZnMOycFc26LEY -----END CERTIFICATE-----Generated at Thu Jul 3 23:28:54 2025 by rpki-client