$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft File: t9SqT11yMa9OdH93IkWsA3ECEPA.mft (raw, json) Hash identifier: q6treUsBhBKhZc8rTXFDEFqmntItM7eY/+/McRT/WQY= Subject key identifier: 28:91:06:1F:C3:0B:85:AF:47:7E:CE:A1:E2:66:6D:AA:D4:67:CC:F2 Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft Manifest number: 0225 Signing time: Sun 29 Jun 2025 01:27:58 +0000 Manifest this update: Sun 29 Jun 2025 01:27:58 +0000 Manifest next update: Sun 06 Jul 2025 01:27:58 +0000 Files and hashes: 1: t9SqT11yMa9OdH93IkWsA3ECEPA.crl (hash: eebSlKweUjAwpZSRDii62trYl/wLzEZWBZysjM1vsgc=) 2: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (hash: 90Bhpdbkdnfedi3OPca5alDQUSOpnC2UaqisbVy8klY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6, serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: Jun 29 01:27:58 2025 GMT Not After : Jul 6 01:27:58 2025 GMT Subject: CN=6860969e-e2d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:f7:08:1d:78:45:30:3c:cf:53:55:d5:f6: 1c:c7:42:9a:7c:a9:14:80:51:32:8a:4e:bf:9e:85: 3f:8b:fd:b0:7d:4e:4b:79:a7:98:3e:03:b8:5a:39: 42:0c:50:3d:5e:e2:53:13:32:52:f7:11:06:71:b1: e3:3c:9a:03:fb:c7:a3:3c:3e:07:7c:72:55:46:b7: 23:e2:1c:62:14:7e:e3:7d:3a:72:fd:14:b3:fe:50: 07:e1:50:dc:4a:fd:39:61:3a:dc:8e:06:87:92:f5: 53:80:9b:1e:73:d3:ec:e1:7e:03:6c:f0:9e:a9:58: 51:fa:c0:96:9a:66:50:42:e2:8c:74:0d:de:2d:f7: 6e:c9:31:7a:fb:0d:15:f8:1b:9b:46:88:a3:01:43: 04:76:da:ef:79:45:ab:02:ca:0f:91:72:b1:65:3c: 2f:5d:08:7e:35:9a:d6:1a:9b:64:47:ee:c5:47:bb: 83:69:69:f5:49:69:ae:17:48:c1:02:ac:0c:92:a4: f7:d7:e3:30:45:e9:66:e1:42:ea:18:db:9d:3d:bb: 9f:d5:16:80:f5:bf:eb:ad:db:d6:43:57:2e:07:fe: 74:00:c7:7c:62:bc:95:74:7f:0d:88:ba:8c:25:0c: 65:b1:37:6d:a6:d3:d5:09:fd:68:a2:b2:35:af:6c: 54:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:91:06:1F:C3:0B:85:AF:47:7E:CE:A1:E2:66:6D:AA:D4:67:CC:F2 X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:4d:f9:61:9a:e1:a4:c7:0b:5d:d7:5d:0e:06:3e:d9:40:e9: fe:8c:d1:69:3d:fc:7c:ce:ab:df:44:09:36:41:e5:61:f9:b7: 46:b9:8e:db:39:2b:08:61:0f:d5:25:35:d4:55:2c:8a:24:5a: 5d:76:0a:4a:b8:b3:a4:52:72:2b:8b:43:06:b8:a8:b4:ed:c3: 31:7e:78:dc:c7:bf:81:b7:df:45:d1:3e:46:2b:7d:8d:7a:4d: 8d:d4:ae:37:1b:85:2c:a2:ac:c1:2c:d4:9f:0e:be:3f:43:ec: a0:e2:cb:79:38:e4:3e:c2:3e:19:ff:9b:5d:a0:35:e0:53:1e: 66:af:ce:a6:4b:e1:83:0f:63:62:e3:79:d0:b4:7c:59:8a:99: 6e:b2:9a:ce:cb:48:1e:49:f1:cf:49:e0:dc:ce:0b:af:f5:ed: cb:8e:3b:39:dc:09:24:e3:a1:b3:9f:00:ed:93:a7:79:c5:90: ba:af:46:21:86:1d:42:64:9b:a9:ef:8c:46:c3:c7:81:99:80: 17:6c:12:91:9f:ec:04:de:6a:77:da:15:b3:b3:f6:b3:c3:1a: f0:e4:38:ef:77:98:cd:00:1f:e1:40:f2:25:8e:a8:9f:4b:42: 38:29:19:ee:27:1b:a0:0c:c9:d6:d8:dd:dc:a9:f2:30:14:0a: d0:8e:05:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjUwNjI5MDEyNzU4WhcNMjUwNzA2MDEyNzU4WjAYMRYwFAYD VQQDEw02ODYwOTY5ZS1lMmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeT3CB14RTA8z1NV1fYcx0KafKkUgFEyik6/noU/i/2wfU5LeaeYPgO4WjlC DFA9XuJTEzJS9xEGcbHjPJoD+8ejPD4HfHJVRrcj4hxiFH7jfTpy/RSz/lAH4VDc Sv05YTrcjgaHkvVTgJsec9Ps4X4DbPCeqVhR+sCWmmZQQuKMdA3eLfduyTF6+w0V +BubRoijAUMEdtrveUWrAsoPkXKxZTwvXQh+NZrWGptkR+7FR7uDaWn1SWmuF0jB AqwMkqT31+MwRelm4ULqGNudPbuf1RaA9b/rrdvWQ1cuB/50AMd8YryVdH8NiLqM JQxlsTdtptPVCf1oorI1r2xUGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiRBh/D C4WvR37OoeJmbarUZ8zyMB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGNi8xM0E0MjBBODM0MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1h OU9kSDkzSWtXc0EzRUNFUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmTflhmuGkxwtd110OBj7ZQOn+jNFpPfx8zqvfRAk2QeVh+bdGuY7b OSsIYQ/VJTXUVSyKJFpddgpKuLOkUnIri0MGuKi07cMxfnjcx7+Bt99F0T5GK32N ek2N1K43G4UsoqzBLNSfDr4/Q+yg4st5OOQ+wj4Z/5tdoDXgUx5mr86mS+GDD2Ni 43nQtHxZiplusprOy0geSfHPSeDczguv9e3Ljjs53Akk46GznwDtk6d5xZC6r0Yh hh1CZJup74xGw8eBmYAXbBKRn+wE3mp32hWzs/azwxrw5Djvd5jNAB/hQPIljqif S0I4KRnuJxugDMnW2N3cqfIwFArQjgVB -----END CERTIFICATE-----Generated at Mon Jun 30 19:30:36 2025 by rpki-client