$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: 064MJSCBhjs75R0LW0vdmjEdI7bgAiY1oZWYxxUo5lE= Subject key identifier: 03:3F:2D:66:58:74:37:15:F5:D1:82:29:34:ED:C7:88:8B:87:99:5E Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 079C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 0797 Signing time: Sat 28 Jun 2025 20:59:21 +0000 Manifest this update: Sat 28 Jun 2025 20:59:21 +0000 Manifest next update: Sat 05 Jul 2025 20:59:21 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: QlWh+i9h5boRJQoVgOqUfk/Bl+sSW8zZl5seoDqNB44=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 0rr8K1LQ/thtLtkFZc4kC3SiEr3iL8XaKJgB3Bca1+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1948 (0x79c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Jun 28 20:59:21 2025 GMT Not After : Jul 5 20:59:21 2025 GMT Subject: CN=686057a9-3b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:24:d4:2c:2f:5d:47:e1:10:e3:9e:19:a2:14: 7a:13:84:2d:ee:e7:ad:23:98:1c:f6:ed:e3:b2:4d: e6:a8:38:2d:47:d3:a5:ac:35:cf:2d:ec:b3:59:f7: cf:ae:90:e4:a6:d4:59:2b:bd:5e:81:ed:73:7a:5b: 3c:f7:bd:4d:d1:b1:1f:80:4c:d3:42:49:f7:58:42: dd:51:18:16:2c:95:df:92:c2:98:e1:e5:2e:88:7a: f2:af:77:35:14:d6:96:b9:87:61:ca:25:60:42:bf: b0:1e:61:ee:49:7c:8a:b4:63:e0:f8:20:4d:22:51: 11:ab:d0:a2:7b:41:f2:53:d6:fe:84:00:ec:be:08: b5:54:90:4a:52:df:a4:f4:59:47:5b:8a:9d:b5:d9: 00:e7:42:3b:0a:52:2e:b4:13:37:9d:51:9a:5c:f9: 70:72:93:07:e4:44:47:cd:0b:0e:8c:d7:78:8e:6e: 59:80:ff:2f:4a:42:64:d9:27:12:7c:4f:89:62:39: 8f:c2:68:3a:1a:2c:7f:be:f2:d2:19:d8:32:ee:7a: 26:74:7d:86:3c:15:5d:2d:af:a6:da:64:ad:9d:71: 61:b1:b8:6b:30:cd:5e:6f:ac:d2:16:fd:f5:bd:96: dd:f5:a5:4b:72:32:84:d7:9e:45:dc:f2:48:f2:3d: 47:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3F:2D:66:58:74:37:15:F5:D1:82:29:34:ED:C7:88:8B:87:99:5E X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ec:fa:68:7e:0a:b2:9c:15:da:c9:e2:24:75:a7:a2:20:ad: 5f:3b:52:21:49:8a:a8:54:99:ba:2c:84:c8:83:ff:9c:f2:06: 56:54:5b:d5:50:8b:a2:90:b1:ea:c8:13:f3:6d:47:1d:a0:91: e3:c0:6f:e8:e3:58:eb:52:1d:37:6f:da:bb:92:63:eb:6d:81: 57:5a:b0:02:10:db:6a:09:3c:0e:af:d4:94:9b:4f:21:67:2e: 91:19:2a:86:72:a4:f6:fa:a1:d2:58:d0:ba:c9:56:8e:a7:0f: 3b:63:6e:12:39:a4:83:70:61:a5:06:dc:e3:15:42:d8:35:45: 54:d5:10:39:11:de:44:fc:b1:65:35:4a:5f:fd:5d:00:d9:ed: dd:07:e0:86:75:e2:e7:40:bc:38:9f:bf:65:b8:16:92:7a:12: a8:3c:9f:a3:c3:c5:d6:55:1a:6a:f8:15:bc:ab:39:6a:72:20: ca:01:d7:34:6f:c7:9b:8b:f1:2e:fd:b4:5b:df:07:43:0c:26: fe:12:da:0b:9d:6f:e5:3d:c6:27:9f:e2:d1:39:a6:64:bd:5d: a1:f3:a0:51:b4:a5:e1:c7:80:52:5b:6f:56:1e:75:72:05:b1: cc:2f:83:c4:8e:c9:d6:b0:09:69:58:01:fa:33:88:fc:31:da: 2e:d5:f3:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjUwNjI4MjA1OTIxWhcNMjUwNzA1MjA1OTIxWjAYMRYwFAYD VQQDEw02ODYwNTdhOS0zYjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSTULC9dR+EQ454ZohR6E4Qt7uetI5gc9u3jsk3mqDgtR9OlrDXPLeyzWffP rpDkptRZK71ege1zels8971N0bEfgEzTQkn3WELdURgWLJXfksKY4eUuiHryr3c1 FNaWuYdhyiVgQr+wHmHuSXyKtGPg+CBNIlERq9Cie0HyU9b+hADsvgi1VJBKUt+k 9FlHW4qdtdkA50I7ClIutBM3nVGaXPlwcpMH5ERHzQsOjNd4jm5ZgP8vSkJk2ScS fE+JYjmPwmg6Gix/vvLSGdgy7nomdH2GPBVdLa+m2mStnXFhsbhrMM1eb6zSFv31 vZbd9aVLcjKE155F3PJI8j1HgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAM/LWZY dDcV9dGCKTTtx4iLh5leMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg7PpofgqynBXayeIkdaeiIK1fO1IhSYqoVJm6LITIg/+c8gZWVFvV UIuikLHqyBPzbUcdoJHjwG/o41jrUh03b9q7kmPrbYFXWrACENtqCTwOr9SUm08h Zy6RGSqGcqT2+qHSWNC6yVaOpw87Y24SOaSDcGGlBtzjFULYNUVU1RA5Ed5E/LFl NUpf/V0A2e3dB+CGdeLnQLw4n79luBaSehKoPJ+jw8XWVRpq+BW8qzlqciDKAdc0 b8ebi/Eu/bRb3wdDDCb+EtoLnW/lPcYnn+LROaZkvV2h86BRtKXhx4BSW29WHnVy BbHML4PEjsnWsAlpWAH6M4j8Mdou1fNY -----END CERTIFICATE-----Generated at Sun Jun 29 21:26:37 2025 by rpki-client