$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft File: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft (raw, json) Hash identifier: 8gdznWun79sGBfF8ihINeWbXlDf21PNsaDKFDQ/KY2Y= Subject key identifier: 37:3C:60:77:E1:4C:E9:1D:8A:7C:42:B0:E4:48:64:1F:B4:30:59:2C Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft Manifest number: 0172 Signing time: Tue 01 Jul 2025 04:34:56 +0000 Manifest this update: Tue 01 Jul 2025 04:34:56 +0000 Manifest next update: Tue 08 Jul 2025 04:34:56 +0000 Files and hashes: 1: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl (hash: MNxqxDZjoMVIoQE4l0Ev9PvhouLF5/PP/zSfUncQ9Vw=) 2: E506BE2CF03811EFAD4C2257C4F9AE02.roa (hash: l3vFzxttEXhfOuZjeQF8CrGkxbV17axCXSipPqSoFKA=) 3: B67EFE26A2DB11EEABACB981C4F9AE02.roa (hash: ra0yVXf7WKyMc/TV/KsDqYCa6PLBvgSOfzPKvq7nVBw=) 4: A045C92CB46611EEAFEE8758C4F9AE02.roa (hash: VlIb3exIwpSPjFwHyuIwV8wlOpGvSIVB8uNPjyxZHoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A05D, serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Validity Not Before: Jul 1 04:34:56 2025 GMT Not After : Jul 8 04:34:56 2025 GMT Subject: CN=68636570-b5b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e5:42:78:2d:fc:e9:b6:25:0c:f8:25:73:f6: 10:a4:27:d9:55:6b:38:f2:6b:b5:e3:8f:2b:ef:2f: e8:15:84:60:b9:e7:d1:ee:31:13:56:c5:8d:aa:32: 86:81:cc:73:68:c2:dc:3a:c0:68:9a:25:33:6c:b9: ce:ab:91:fa:d2:57:0f:a5:52:3e:be:74:9a:77:80: 17:a7:58:f3:a5:0d:ce:a2:40:e6:b3:a4:cd:9e:3c: c3:44:a3:23:dc:5e:ff:fb:a4:a8:0e:67:0b:45:eb: 24:a1:d8:bd:fe:c6:2d:d2:b4:66:0d:35:3e:01:8b: 2d:b9:ae:e6:36:2b:51:e4:85:f9:c4:7f:aa:11:62: f2:bf:39:7d:c7:f9:97:84:89:85:8e:6c:fc:05:dc: 3e:55:d8:65:d2:3e:ec:46:08:7b:78:27:1b:16:4f: 74:4c:e4:28:80:e0:7a:cd:7a:d4:47:f3:fb:bb:39: 04:c6:8c:f4:2d:0b:17:2d:6b:40:f9:6e:3e:ab:d0: 76:80:2d:fc:97:6f:36:4a:e0:d0:0e:cc:f0:cf:a8: af:45:9b:6b:af:fb:b7:07:08:68:ec:6c:92:60:88: 74:31:3d:04:53:b4:dc:ce:6b:6e:ba:fa:79:aa:3d: 36:02:13:ab:f0:68:6d:e7:0b:9f:fe:f4:1f:70:bb: 73:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:3C:60:77:E1:4C:E9:1D:8A:7C:42:B0:E4:48:64:1F:B4:30:59:2C X509v3 Authority Key Identifier: keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:06:c0:36:d6:4a:a6:2e:3f:bd:69:9b:1a:00:e4:b1:22:34: fe:bf:38:3e:20:b4:7b:fb:91:c1:b7:f6:00:52:ef:d9:84:04: 9c:2b:16:91:98:5f:06:be:7d:2f:16:91:c0:33:e0:fb:2e:8e: a5:98:af:b0:73:28:c7:62:88:bd:97:22:d0:c9:bc:e2:ac:6f: d3:b0:44:6b:03:08:2f:a3:5b:dc:fd:8f:87:82:c2:1e:62:c0: a3:c4:f1:82:f8:97:b4:98:09:21:30:2e:40:e7:98:99:80:f1: 04:8a:59:48:2d:8c:10:9c:e9:b2:bc:7b:b1:cd:84:ea:17:eb: 31:a0:03:37:c5:ff:1a:e9:1e:ab:00:16:e6:6b:f8:2c:ff:c3: 34:d4:95:ec:6d:67:f9:0d:1d:60:94:2a:a0:13:e8:a6:b1:b7: 5d:11:89:da:f0:1d:65:e0:cd:ca:78:7b:b7:3f:7c:a1:13:18: d3:ef:fa:f6:46:6c:d7:25:8c:e0:b8:3a:53:84:77:c0:f0:11: 6a:00:cc:8e:bc:94:1d:80:af:a2:f4:5d:b4:dc:ea:f7:48:c1: 5e:65:db:9d:14:62:9a:58:fd:7e:d8:6a:6f:33:80:5a:a2:ff: 4c:6c:cb:6c:bd:f8:95:85:ce:67:3b:cd:ca:11:79:53:f5:7b: 3e:af:78:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwNUQxMTAvBgNVBAUTKDBGNTQ1RTYyNzNEN0M5N0U5OTk1NDExRjc2RDVDNEYw MDZCQjUxODYwHhcNMjUwNzAxMDQzNDU2WhcNMjUwNzA4MDQzNDU2WjAYMRYwFAYD VQQDEw02ODYzNjU3MC1iNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+VCeC386bYlDPglc/YQpCfZVWs48mu1448r7y/oFYRguefR7jETVsWNqjKG gcxzaMLcOsBomiUzbLnOq5H60lcPpVI+vnSad4AXp1jzpQ3OokDms6TNnjzDRKMj 3F7/+6SoDmcLReskodi9/sYt0rRmDTU+AYstua7mNitR5IX5xH+qEWLyvzl9x/mX hImFjmz8Bdw+Vdhl0j7sRgh7eCcbFk90TOQogOB6zXrUR/P7uzkExoz0LQsXLWtA +W4+q9B2gC38l282SuDQDszwz6ivRZtrr/u3Bwho7GySYIh0MT0EU7Tczmtuuvp5 qj02AhOr8Ght5wuf/vQfcLtznQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDc8YHfh TOkdinxCsORIZB+0MFksMB8GA1UdIwQYMBaAFA9UXmJz18l+mZVBH3bVxPAGu1GG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTA1RC9DMUVGQjA4MDRF MjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlYNlpsVUVmZHRYRThBYTdV WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QxUmVZblBYeVg2WmxVRWZkdFhFOEFhN1VZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTA1RC9DMUVGQjA4MDRFMjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlY NlpsVUVmZHRYRThBYTdVWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoBsA21kqmLj+9aZsaAOSxIjT+vzg+ILR7+5HBt/YAUu/ZhAScKxaR mF8Gvn0vFpHAM+D7Lo6lmK+wcyjHYoi9lyLQybzirG/TsERrAwgvo1vc/Y+HgsIe YsCjxPGC+Je0mAkhMC5A55iZgPEEillILYwQnOmyvHuxzYTqF+sxoAM3xf8a6R6r ABbma/gs/8M01JXsbWf5DR1glCqgE+imsbddEYna8B1l4M3KeHu3P3yhExjT7/r2 RmzXJYzguDpThHfA8BFqAMyOvJQdgK+i9F203Or3SMFeZdudFGKaWP1+2GpvM4Ba ov9MbMtsvfiVhc5nO83KEXlT9Xs+r3hT -----END CERTIFICATE-----Generated at Thu Jul 3 01:59:56 2025 by rpki-client