$ rpki-client -vvf rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft File: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft (raw, json) Hash identifier: RoJjjOh761q14/1Qjkl8/bIEAKwOA0frzsbVEVeUEwE= Subject key identifier: 02:C7:E8:E5:C6:6F:67:D1:BE:71:5D:2E:BB:2C:F8:83:B4:EB:A3:DB Authority key identifier: 76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 Certificate issuer: /CN=A919DC79/serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Certificate serial: 0BB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft Manifest number: 0BA9 Signing time: Mon 30 Jun 2025 19:08:02 +0000 Manifest this update: Mon 30 Jun 2025 19:08:01 +0000 Manifest next update: Mon 07 Jul 2025 19:08:01 +0000 Files and hashes: 1: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl (hash: /RFr0R1DAmRtTJSJy94LvG+AicwJMa2dfuh0UDf/nZY=) 2: FB5C375499DB11EBBC50C376C4F9AE02.roa (hash: 5Tmm0+rmyNGdrIMpYadnPDVCCaqTEqx1NCKBxNGJPGM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2997 (0xbb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DC79, serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Validity Not Before: Jun 30 19:08:01 2025 GMT Not After : Jul 7 19:08:01 2025 GMT Subject: CN=6862e092-bef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1c:78:3a:45:7c:64:b6:b1:c9:7e:49:d4:ea: 98:4b:36:f1:5c:93:bf:ad:3d:17:14:19:f1:51:56: 28:09:ed:26:f3:23:97:6b:3c:fa:94:bd:33:d1:bf: b4:df:ac:28:fa:23:bb:05:0f:e5:c2:8c:6f:61:0c: 57:53:fa:e5:02:04:c1:6e:ca:3a:92:09:1c:6f:59: 12:74:a1:7c:5e:d1:a3:00:89:21:5c:97:cb:d3:c3: 2e:a0:7f:67:ca:b3:2c:fd:9a:44:06:5d:fb:44:e1: 87:63:45:62:37:22:63:58:7a:d1:81:73:11:2a:06: 7e:c1:1c:87:ba:e3:66:1e:1f:ab:f4:42:b6:dc:cb: 8d:7d:21:e1:ca:be:14:d3:c8:55:95:aa:3f:35:17: 6e:1e:36:cf:b8:77:93:cc:12:4a:ae:d6:d3:87:0a: 00:ea:f6:19:a0:39:ab:d0:9e:35:d9:b0:5e:aa:33: 39:2f:1d:67:f1:d5:f7:0d:32:80:44:12:49:54:70: 43:24:80:0d:2c:aa:92:a5:9b:14:29:14:cb:fa:a0: 44:83:81:a6:c5:e1:97:84:f2:e8:bf:d0:38:d3:45: aa:76:9b:15:0a:b2:bb:a0:01:2a:9d:b4:f9:ec:98: 37:38:7d:19:73:b4:42:13:b2:d6:0a:bd:4b:f1:6d: ed:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C7:E8:E5:C6:6F:67:D1:BE:71:5D:2E:BB:2C:F8:83:B4:EB:A3:DB X509v3 Authority Key Identifier: keyid:76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:12:e7:1d:28:bb:a7:ba:39:63:ba:7e:99:93:f1:da:9a:c5: c2:ea:38:64:3f:92:4a:fb:b6:59:95:c9:ee:df:e9:84:86:09: 46:69:9d:bd:92:46:c2:4d:54:50:11:4b:e9:c5:33:e2:63:e1: df:e0:a3:40:78:32:25:4d:63:c6:96:03:de:e7:b2:ae:18:de: 85:35:5c:f7:61:30:1f:91:54:6d:f9:12:99:6e:50:79:54:90: 3e:db:52:a3:7c:40:c9:80:a8:56:c9:06:df:0e:5b:15:37:41: 3c:7f:32:65:22:fb:3a:41:c3:63:cb:66:9a:10:bb:b4:a2:20: 9d:0b:2b:74:2b:6b:17:7d:e7:68:e2:b8:0e:3d:0c:05:b5:c3: 41:5c:5c:4b:fd:8a:93:cb:a8:3d:2f:89:9d:66:ed:d8:f0:49: 02:c8:66:9b:b3:fa:95:52:de:11:11:1f:c5:d7:a0:6e:1d:bf: 37:63:01:91:63:48:01:05:27:9e:5f:32:d0:0d:22:0c:63:9a: ec:78:93:6b:ba:8e:2c:ed:de:e6:0f:42:b7:f5:8f:89:e2:82: 38:35:ba:22:cb:d9:e4:87:8c:c6:e2:f1:45:4c:a4:80:29:8e: 3b:4d:f4:81:3c:64:78:79:fd:0b:9a:b1:b6:27:0e:9f:f8:35: a6:ee:9c:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDNzkxMTAvBgNVBAUTKDc2Q0QwMjFFMEMyODFEQTVGRTY0RDg3ODAzNTUzODA4 ODg5QTExNjcwHhcNMjUwNjMwMTkwODAxWhcNMjUwNzA3MTkwODAxWjAYMRYwFAYD VQQDEw02ODYyZTA5Mi1iZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Rx4OkV8ZLaxyX5J1OqYSzbxXJO/rT0XFBnxUVYoCe0m8yOXazz6lL0z0b+0 36wo+iO7BQ/lwoxvYQxXU/rlAgTBbso6kgkcb1kSdKF8XtGjAIkhXJfL08MuoH9n yrMs/ZpEBl37ROGHY0ViNyJjWHrRgXMRKgZ+wRyHuuNmHh+r9EK23MuNfSHhyr4U 08hVlao/NRduHjbPuHeTzBJKrtbThwoA6vYZoDmr0J412bBeqjM5Lx1n8dX3DTKA RBJJVHBDJIANLKqSpZsUKRTL+qBEg4GmxeGXhPLov9A400WqdpsVCrK7oAEqnbT5 7Jg3OH0Zc7RCE7LWCr1L8W3tBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALH6OXG b2fRvnFdLrss+IO066PbMB8GA1UdIwQYMBaAFHbNAh4MKB2l/mTYeANVOAiImhFn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REM3OS9BNjNGOTNENjI3 Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hhWC1aTmg0QTFVNENJaWFF V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzMENIZ3dvSGFYLVpOaDRBMVU0Q0lpYUVXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REM3OS9BNjNGOTNENjI3Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hh WC1aTmg0QTFVNENJaWFFV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApEucdKLunujljun6Zk/HamsXC6jhkP5JK+7ZZlcnu3+mEhglGaZ29 kkbCTVRQEUvpxTPiY+Hf4KNAeDIlTWPGlgPe57KuGN6FNVz3YTAfkVRt+RKZblB5 VJA+21KjfEDJgKhWyQbfDlsVN0E8fzJlIvs6QcNjy2aaELu0oiCdCyt0K2sXfedo 4rgOPQwFtcNBXFxL/YqTy6g9L4mdZu3Y8EkCyGabs/qVUt4RER/F16BuHb83YwGR Y0gBBSeeXzLQDSIMY5rseJNruo4s7d7mD0K39Y+J4oI4Nboiy9nkh4zG4vFFTKSA KY47TfSBPGR4ef0LmrG2Jw6f+DWm7pxa -----END CERTIFICATE-----Generated at Wed Jul 2 15:44:32 2025 by rpki-client