$ rpki-client -vvf rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft File: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft (raw, json) Hash identifier: FYzXVRFrvdJ5lHOUpi1etQsYuhiHb786IEsx6g5Bmyc= Subject key identifier: 0D:DF:3C:FA:6E:FB:34:C8:BB:81:17:87:1A:C0:58:D2:04:70:B7:9D Authority key identifier: 32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 Certificate issuer: /CN=A918C88D/serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Certificate serial: 0B4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft Manifest number: 0B38 Signing time: Mon 30 Jun 2025 19:21:20 +0000 Manifest this update: Mon 30 Jun 2025 19:21:19 +0000 Manifest next update: Mon 07 Jul 2025 19:21:19 +0000 Files and hashes: 1: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl (hash: cFm+YTWICA0fxHCZnALSZu0NffRQOigkqDnZ65IpUgw=) 2: E1EFDAA8F40611EAA5B2244FC4F9AE02.roa (hash: da18YanehMb25ZME1c4CpzCwhlEVLs96RlfGiZoiMxU=) 3: E324E2F6F40611EAA5B2244FC4F9AE02.roa (hash: feQeohVrk3aa2EM/daTKcvI0d6w6k0q2b/efqxvduBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2893 (0xb4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C88D, serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Validity Not Before: Jun 30 19:21:19 2025 GMT Not After : Jul 7 19:21:19 2025 GMT Subject: CN=6862e3b0-8cb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e9:7d:3e:87:eb:73:78:cf:c8:01:06:e7:71: e0:1e:d4:52:f4:ef:bf:be:bb:15:e8:47:31:48:1f: 7f:74:29:24:ef:f7:16:ea:a6:8b:47:13:e8:8d:b5: f1:de:f5:3b:b2:a9:3e:30:44:0e:34:f7:0a:e8:be: 33:44:a6:0c:61:6d:7a:3d:49:38:7d:d9:f2:13:37: b9:50:29:84:ca:2c:08:62:4d:0e:ea:c7:27:06:b2: e9:3c:0b:62:07:f4:50:58:27:30:60:ca:38:32:3f: 37:73:ff:3e:bc:27:5d:bf:26:93:d6:31:3a:1f:21: 58:94:3a:87:3c:bc:fe:2a:51:26:9e:f4:13:1c:c5: 03:16:a3:8e:9a:bc:e0:fd:e2:63:91:a3:73:f0:e6: a8:49:d7:fc:24:02:35:33:2b:a2:2a:f1:6c:a6:5c: a9:46:0c:10:a1:85:99:9e:0b:0e:07:f0:0f:91:99: c0:3c:ab:81:dd:ca:90:27:d7:b6:ed:36:9f:67:d9: 60:6f:f5:32:13:ac:0b:a3:61:fe:42:22:bb:b9:1f: 12:cd:2c:b9:e6:0d:00:b6:13:a5:e1:20:66:2a:28: fb:c8:95:b6:99:a3:bc:cc:aa:35:44:ef:49:78:7f: 34:77:78:09:44:40:0f:36:8d:aa:ad:89:3d:cf:fa: fa:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DF:3C:FA:6E:FB:34:C8:BB:81:17:87:1A:C0:58:D2:04:70:B7:9D X509v3 Authority Key Identifier: keyid:32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ab:b8:c1:0b:8a:4c:b7:c4:c8:8d:d7:d6:7a:b9:84:61:45: c4:56:5c:63:95:25:15:a4:c1:79:b6:58:c4:ef:5c:4b:e8:12: 91:d9:c8:ce:0e:66:47:c3:5f:cd:05:1d:73:09:3c:81:6a:04: 1c:41:94:f4:f4:65:ca:96:ac:e7:f8:93:84:6b:30:c5:cb:fc: 06:5d:31:35:9b:2b:76:9f:30:12:ac:09:b8:ac:1c:42:da:c3: ef:76:7b:b7:a4:83:0b:32:13:65:24:66:fa:11:5e:c4:ce:47: 56:03:68:4b:d8:cf:4e:00:3e:78:23:d1:71:52:d2:f5:62:5a: 90:13:1c:38:3d:b7:c3:b1:0f:4f:e0:a6:ac:a0:7e:4d:79:8e: d6:1d:f5:23:7c:ee:20:d6:ba:8b:18:2c:08:77:9f:4b:8b:49: 97:b0:aa:8e:fc:b8:90:48:db:ed:8f:0a:4a:9c:c8:2e:12:3f: 5f:d3:2e:f1:18:54:96:6f:9b:65:3b:c5:ba:b1:d9:e3:c6:b5: 2b:28:33:a2:b1:0c:c8:e6:a4:01:4d:8c:b2:b1:c3:cd:0c:88: 67:dc:ef:50:a7:d8:d4:59:dd:ce:9c:04:7c:da:c3:f7:42:9b: 23:92:6a:0c:b2:4c:ac:12:40:3c:dd:2d:aa:10:ba:c7:ef:c9: 92:b5:ea:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM4OEQxMTAvBgNVBAUTKDMyNjQ0MzY0NzlBNTBFRDQwQ0NGRDJCNzA0RTYwMjQ5 NjA4RTQzQTgwHhcNMjUwNjMwMTkyMTE5WhcNMjUwNzA3MTkyMTE5WjAYMRYwFAYD VQQDEw02ODYyZTNiMC04Y2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOl9Pofrc3jPyAEG53HgHtRS9O+/vrsV6EcxSB9/dCkk7/cW6qaLRxPojbXx 3vU7sqk+MEQONPcK6L4zRKYMYW16PUk4fdnyEze5UCmEyiwIYk0O6scnBrLpPAti B/RQWCcwYMo4Mj83c/8+vCddvyaT1jE6HyFYlDqHPLz+KlEmnvQTHMUDFqOOmrzg /eJjkaNz8OaoSdf8JAI1MyuiKvFsplypRgwQoYWZngsOB/APkZnAPKuB3cqQJ9e2 7TafZ9lgb/UyE6wLo2H+QiK7uR8SzSy55g0AthOl4SBmKij7yJW2maO8zKo1RO9J eH80d3gJREAPNo2qrYk9z/r6LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3fPPpu +zTIu4EXhxrAWNIEcLedMB8GA1UdIwQYMBaAFDJkQ2R5pQ7UDM/StwTmAklgjkOo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzg4RC8zOEFCNTkxRTNE QzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0UU16OUszQk9ZQ1NXQ09R NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tUkRaSG1sRHRRTXo5SzNCT1lDU1dDT1E2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzg4RC8zOEFCNTkxRTNEQzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0 UU16OUszQk9ZQ1NXQ09RNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUq7jBC4pMt8TIjdfWermEYUXEVlxjlSUVpMF5tljE71xL6BKR2cjO DmZHw1/NBR1zCTyBagQcQZT09GXKlqzn+JOEazDFy/wGXTE1myt2nzASrAm4rBxC 2sPvdnu3pIMLMhNlJGb6EV7EzkdWA2hL2M9OAD54I9FxUtL1YlqQExw4PbfDsQ9P 4KasoH5NeY7WHfUjfO4g1rqLGCwId59Li0mXsKqO/LiQSNvtjwpKnMguEj9f0y7x GFSWb5tlO8W6sdnjxrUrKDOisQzI5qQBTYyyscPNDIhn3O9Qp9jUWd3OnAR82sP3 QpsjkmoMskysEkA83S2qELrH78mSteq0 -----END CERTIFICATE-----Generated at Wed Jul 2 20:09:41 2025 by rpki-client