$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: tpMhjis1Ogr0ijY2mdeXJ7MMbvkxJvfU1pCLt6/Knuc= Subject key identifier: 64:1D:E6:9B:C2:01:BC:53:9B:4C:2B:28:4A:47:88:C4:C3:AC:A6:95 Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0AD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AD1 Signing time: Mon 30 Jun 2025 19:54:58 +0000 Manifest this update: Mon 30 Jun 2025 19:54:57 +0000 Manifest next update: Mon 07 Jul 2025 19:54:57 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: DB5TYjrYXT2TkTNC0/778IpCZ0VNnG2/nFPJMDIUGkQ=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: vj3M9GWIecNQbzYctkTLvK5haUmE73bb2B+bBqSBJ9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Jun 30 19:54:57 2025 GMT Not After : Jul 7 19:54:57 2025 GMT Subject: CN=6862eb92-f941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:83:12:8e:61:30:9e:af:20:da:04:93:db:ff: 29:aa:b4:22:de:10:28:e5:bd:74:e2:e9:e4:53:57: c0:72:43:37:6a:f2:ce:ca:2a:a8:f8:e5:c0:1b:8c: 31:a5:03:71:30:3a:34:75:17:c6:83:59:3c:4e:1f: ae:f3:10:1e:16:78:b2:33:5c:91:9b:94:4a:e6:08: ce:9a:90:70:f8:cb:67:4f:e9:48:78:54:bd:a5:3e: 51:81:b9:0b:75:0b:a0:e4:d4:9a:eb:46:8e:40:98: 40:a6:0d:6e:03:40:d0:b1:ab:32:3c:c3:a2:3e:d5: 57:0e:de:17:a6:d1:bc:ad:20:b9:3c:ef:17:2f:db: 5c:3e:47:67:f1:aa:e0:90:80:2b:77:90:e0:86:98: 97:03:e9:5f:5a:dc:70:a6:98:7f:b7:d3:db:19:2e: 5a:d6:24:77:9d:db:56:4c:e3:67:64:7c:1c:6d:5a: fb:10:f8:64:7c:1f:21:0e:aa:9a:4e:25:69:64:e4: 42:82:b5:49:70:50:20:16:23:7e:c0:ec:44:a1:00: f1:39:6e:e9:34:12:4b:59:93:a1:dc:eb:e9:fb:e7: e4:9a:b9:a0:20:91:35:c5:52:5b:a6:c3:09:d9:b2: f4:ac:79:92:60:70:1a:20:f7:57:c2:92:65:6a:31: ea:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1D:E6:9B:C2:01:BC:53:9B:4C:2B:28:4A:47:88:C4:C3:AC:A6:95 X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:a5:d2:40:3b:0d:4e:10:3f:19:c0:e4:cf:c4:ab:4c:a8:0b: af:ae:39:1e:4f:ca:be:1b:be:07:cb:51:b1:17:75:3f:45:fd: 29:9c:ea:9e:cb:c8:eb:5f:ae:9e:90:4a:c0:f7:df:d7:7d:74: 88:89:ca:79:db:6f:db:8d:8c:7e:bb:37:fd:bf:99:7b:52:65: fb:c7:43:a3:ab:ec:c3:54:72:83:ef:6c:0f:51:99:0e:c5:a6: 24:43:ba:a0:d0:b4:2a:3f:cf:0e:c2:e1:d2:91:d0:bc:39:2e: 66:62:83:ee:6e:d7:51:53:cb:6f:08:99:e0:15:ea:7b:67:3d: 81:45:73:ea:81:d6:d4:3f:a7:d3:a9:e7:d6:8d:38:f1:61:41: b3:88:6d:b2:5a:37:3e:8d:0e:84:ff:78:4e:b7:1b:16:df:be: fe:f3:ac:fb:f7:17:11:f2:d6:8c:6d:40:bc:f4:a5:18:d9:b4: 79:f1:fd:8a:a4:67:f3:03:4a:75:72:1b:df:54:2c:90:64:ca: 4a:84:bc:99:8d:0a:71:e9:7b:bd:a1:27:06:14:dc:e4:f6:8d: ef:60:9d:1f:3b:c7:93:82:7f:78:44:dd:01:cb:f1:5b:67:97: 94:8a:bc:78:69:73:dc:d1:ec:50:5b:f3:5d:19:4d:5c:02:d0: 8a:c3:7b:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwNjMwMTk1NDU3WhcNMjUwNzA3MTk1NDU3WjAYMRYwFAYD VQQDEw02ODYyZWI5Mi1mOTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64MSjmEwnq8g2gST2/8pqrQi3hAo5b104unkU1fAckM3avLOyiqo+OXAG4wx pQNxMDo0dRfGg1k8Th+u8xAeFniyM1yRm5RK5gjOmpBw+MtnT+lIeFS9pT5RgbkL dQug5NSa60aOQJhApg1uA0DQsasyPMOiPtVXDt4XptG8rSC5PO8XL9tcPkdn8arg kIArd5DghpiXA+lfWtxwpph/t9PbGS5a1iR3ndtWTONnZHwcbVr7EPhkfB8hDqqa TiVpZORCgrVJcFAgFiN+wOxEoQDxOW7pNBJLWZOh3Ovp++fkmrmgIJE1xVJbpsMJ 2bL0rHmSYHAaIPdXwpJlajHqxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQd5pvC AbxTm0wrKEpHiMTDrKaVMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNpdJAOw1OED8ZwOTPxKtMqAuvrjkeT8q+G74Hy1GxF3U/Rf0pnOqe y8jrX66ekErA99/XfXSIicp522/bjYx+uzf9v5l7UmX7x0Ojq+zDVHKD72wPUZkO xaYkQ7qg0LQqP88OwuHSkdC8OS5mYoPubtdRU8tvCJngFep7Zz2BRXPqgdbUP6fT qefWjTjxYUGziG2yWjc+jQ6E/3hOtxsW377+86z79xcR8taMbUC89KUY2bR58f2K pGfzA0p1chvfVCyQZMpKhLyZjQpx6Xu9oScGFNzk9o3vYJ0fO8eTgn94RN0By/Fb Z5eUirx4aXPc0exQW/NdGU1cAtCKw3vl -----END CERTIFICATE-----Generated at Wed Jul 2 13:16:33 2025 by rpki-client