$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft File: aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft (raw, json) Hash identifier: dOExMv/+cPwikpoIEwIsqHvWfWV3YK45Rr74ctEvHSw= Subject key identifier: C6:D3:07:A0:2E:9A:07:43:67:81:C5:25:E0:96:94:84:A4:6A:79:60 Authority key identifier: 68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 Certificate issuer: /CN=A9114D4F/serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft Manifest number: A7 Signing time: Thu 03 Jul 2025 06:21:15 +0000 Manifest this update: Thu 03 Jul 2025 06:21:14 +0000 Manifest next update: Thu 10 Jul 2025 06:21:14 +0000 Files and hashes: 1: aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl (hash: 2wYh1YQgWPOI+co+sdqZ5ZPzbYF3MMVrgHsQdNYTjNc=) 2: 444375E25B9C11EFA181A044C4F9AE02.roa (hash: Yhh6V+gIv+Ld1DK0VM67Fxc3c5mvFHS895j33+/A8nE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D4F, serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Validity Not Before: Jul 3 06:21:14 2025 GMT Not After : Jul 10 06:21:14 2025 GMT Subject: CN=6866215a-5e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:38:02:7e:85:6f:69:1d:08:d0:d7:e8:b0: bc:48:b2:7d:67:ff:bc:2f:00:e8:22:c5:3f:4f:35: 1a:73:76:da:2b:9a:b9:d9:24:3b:d0:5b:5a:0b:bd: d9:96:c6:3f:b4:18:ba:ff:42:74:a2:de:05:35:59: 79:f5:f4:46:7b:92:a4:d2:22:99:14:22:ac:1a:e1: 47:7f:44:a4:7c:fc:b7:c4:02:98:71:7a:60:84:09: 8a:53:d2:8b:f2:dc:65:69:47:aa:c7:fa:cf:0b:7a: b5:f8:c3:7a:f5:2c:96:b2:a5:22:d5:3f:cc:72:08: a4:32:35:41:82:77:0f:9f:a5:6b:95:09:07:81:51: dd:07:42:48:1c:8d:33:0e:e8:e3:05:e9:60:0f:55: 99:59:7a:c4:ad:b0:47:4a:b0:e2:59:53:78:06:93: 68:0a:20:03:5a:e4:3c:cd:71:ac:3b:79:df:86:29: d9:4b:e4:59:ac:3e:9d:94:42:26:88:2b:56:57:7d: 65:de:70:cc:53:5a:7c:b8:f3:e8:3d:c9:ad:3c:d6: bd:1d:0d:d2:a6:3c:5e:42:a3:56:93:db:3a:58:05: 63:46:75:cd:4d:c4:93:ac:6a:21:3c:fa:f2:66:d2: 74:69:01:31:5d:de:bc:c6:ab:98:cc:78:32:43:0d: cc:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:D3:07:A0:2E:9A:07:43:67:81:C5:25:E0:96:94:84:A4:6A:79:60 X509v3 Authority Key Identifier: keyid:68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:72:21:25:41:75:18:4b:04:39:2a:13:51:0d:2c:26:38:da: 81:f4:d7:05:3c:06:23:e1:93:99:af:92:ee:0c:74:e8:a0:4f: 48:06:03:86:e1:a6:c2:c7:19:83:e4:17:d2:ec:54:1c:33:cc: b9:dc:ca:41:95:41:44:b7:f0:0c:75:01:18:7e:2d:d3:6a:24: 8b:9c:2d:05:c7:3d:36:09:51:6f:a7:08:45:42:87:7b:b9:64: 05:25:05:7e:45:85:85:6c:61:a3:34:15:2d:a5:29:a6:84:11: c3:b2:fc:f2:d3:d5:8e:09:8f:5a:f6:6d:9f:19:b9:16:b9:e8: 11:5d:24:b0:98:0c:82:12:e5:b3:31:6b:85:f6:34:78:c8:43: e4:82:0a:ba:17:28:08:9c:f8:17:7c:84:ea:19:bb:a9:71:2b: 69:5f:f9:a8:15:95:62:3f:3c:06:94:fa:3d:f6:d5:cd:40:a0: 45:a4:0f:49:23:b4:43:0d:69:09:53:84:a0:56:ea:78:02:bc: 88:da:a1:2f:72:05:64:86:7c:cc:b9:0a:50:74:1f:11:78:34: f4:5f:a4:20:eb:dc:e7:d4:dc:53:ac:12:fd:06:79:f5:0d:c3: 23:a2:cb:be:59:88:5e:da:9e:fa:20:1a:53:0f:d6:37:09:62: 3c:05:70:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRENEYxMTAvBgNVBAUTKDY4Nzc0MURFMTVDRDg4M0MxMEREQkM0RkMzQTJEQ0Y1 NDg1RTdERjMwHhcNMjUwNzAzMDYyMTE0WhcNMjUwNzEwMDYyMTE0WjAYMRYwFAYD VQQDEw02ODY2MjE1YS01ZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF04An6Fb2kdCNDX6LC8SLJ9Z/+8LwDoIsU/TzUac3baK5q52SQ70FtaC73Z lsY/tBi6/0J0ot4FNVl59fRGe5Kk0iKZFCKsGuFHf0SkfPy3xAKYcXpghAmKU9KL 8txlaUeqx/rPC3q1+MN69SyWsqUi1T/McgikMjVBgncPn6VrlQkHgVHdB0JIHI0z DujjBelgD1WZWXrErbBHSrDiWVN4BpNoCiADWuQ8zXGsO3nfhinZS+RZrD6dlEIm iCtWV31l3nDMU1p8uPPoPcmtPNa9HQ3SpjxeQqNWk9s6WAVjRnXNTcSTrGohPPry ZtJ0aQExXd68xquYzHgyQw3M8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbTB6Au mgdDZ4HFJeCWlISkanlgMB8GA1UdIwQYMBaAFGh3Qd4VzYg8EN28T8Oi3PVIXn3z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEQ0Ri8wRTNBQ0NGQzVC OUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi9hSGRCM2hYTmlEd1EzYnhQdzZMYzlVaGVm Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIZEIzaFhOaUR3UTNieFB3NkxjOVVoZWZmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEQ0Ri8wRTNBQ0NGQzVCOUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi9hSGRCM2hYTmlE d1EzYnhQdzZMYzlVaGVmZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZciElQXUYSwQ5KhNRDSwmONqB9NcFPAYj4ZOZr5LuDHTooE9IBgOG 4abCxxmD5BfS7FQcM8y53MpBlUFEt/AMdQEYfi3TaiSLnC0Fxz02CVFvpwhFQod7 uWQFJQV+RYWFbGGjNBUtpSmmhBHDsvzy09WOCY9a9m2fGbkWuegRXSSwmAyCEuWz MWuF9jR4yEPkggq6FygInPgXfITqGbupcStpX/moFZViPzwGlPo99tXNQKBFpA9J I7RDDWkJU4SgVup4AryI2qEvcgVkhnzMuQpQdB8ReDT0X6Qg69zn1NxTrBL9Bnn1 DcMjosu+WYhe2p76IBpTD9Y3CWI8BXAq -----END CERTIFICATE-----Generated at Thu Jul 3 17:17:03 2025 by rpki-client