$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: ZrmLjyM8AJ1r8aPy7gMr2IvT5v0EvwzCNiw8UHyM8Cw= Subject key identifier: 63:EA:9A:35:EE:70:F1:1B:BB:E0:0E:65:B5:30:8A:13:42:7B:75:63 Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 01DE Signing time: Thu 03 Jul 2025 02:47:15 +0000 Manifest this update: Thu 03 Jul 2025 02:47:14 +0000 Manifest next update: Thu 10 Jul 2025 02:47:14 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: eXl6BDLKDdYxTPGxawcYGKw2AuuHCOArglquYRIk5UU=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Jul 3 02:47:14 2025 GMT Not After : Jul 10 02:47:14 2025 GMT Subject: CN=6865ef33-cdfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:84:5a:3b:f4:b7:38:21:6f:f5:7d:c1:80: 47:08:94:5b:82:c6:d8:9b:49:ef:9f:4f:e9:b5:94: 83:16:95:6e:8d:d2:ef:61:c5:a9:77:8c:f9:a0:29: ab:24:5c:a0:1f:29:48:c6:cf:80:fc:18:da:a5:58: 9c:99:72:cc:b7:2f:df:fd:b9:fa:cf:41:43:b8:ec: cf:49:12:88:d1:2e:5c:86:5d:1b:ff:b2:bc:9d:2b: 5a:dc:b4:18:1b:48:ab:9b:b8:a7:dc:c4:c0:bb:59: f3:cb:a4:e9:5b:57:a3:0b:86:a9:2c:ab:fb:af:ed: 0f:17:4b:74:3a:6d:57:bc:95:c6:9a:54:80:06:13: 1f:95:66:0f:d2:b0:20:6d:96:87:79:2b:10:bf:02: 20:fd:41:02:a4:e3:37:41:f0:be:ea:8c:2d:68:d9: b5:cc:fe:08:43:ee:cb:c2:e1:b9:d6:d6:b1:71:c0: 21:1c:88:04:f0:2e:82:38:71:bd:98:e4:88:54:10: 57:ec:73:dd:82:de:47:bb:08:51:8f:18:d9:11:48: 9d:16:f3:a7:93:44:ad:f9:0a:30:68:ab:9c:7a:26: de:fd:2f:62:a0:81:05:1e:5d:09:cd:1f:fa:55:3e: 77:f9:df:aa:1d:43:c9:7c:8f:7b:32:86:14:7b:cc: 94:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EA:9A:35:EE:70:F1:1B:BB:E0:0E:65:B5:30:8A:13:42:7B:75:63 X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:a9:cb:e0:f8:6b:ba:47:c4:0d:d4:19:0b:27:5b:42:52:a9: f9:b8:cb:5a:14:cf:a8:b8:d8:86:8b:96:91:ff:62:6c:b3:4f: fa:5d:c3:af:3d:7c:56:8d:6f:ae:23:a1:6a:b1:85:c6:8f:6a: 75:9e:e7:a8:9d:04:0a:75:2a:b7:3e:ee:8d:ce:57:27:34:db: e0:f8:f8:4d:53:3c:c6:81:fb:5f:9a:a8:f9:97:f5:2e:0c:fd: ad:ef:b2:c4:60:fa:03:a4:33:7d:55:20:5e:5f:2f:7d:37:73: 86:1d:28:e7:c1:05:6d:9a:ae:ee:de:a6:26:a4:d9:eb:fa:b4: 30:8b:6a:42:ba:78:fa:28:aa:af:e4:ae:e8:57:66:a3:35:62: 3e:49:f0:78:53:cd:89:73:e5:28:b0:59:0f:00:77:1c:45:3b: 59:14:2f:d9:09:ed:42:ed:0e:da:07:33:5f:54:07:86:a2:6c: 7e:0d:57:a0:f9:a4:92:11:70:46:ba:c0:6a:68:02:2f:3d:97: f6:a0:68:02:05:38:19:f8:9b:f6:37:2b:3a:16:34:69:a7:6c: 18:cf:d9:67:50:65:e4:25:6a:82:57:77:f0:6d:dd:cc:93:af: 1c:18:a4:1d:9b:02:fd:d5:82:ea:d7:2d:0f:a3:a3:59:da:39: 73:66:d5:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUwNzAzMDI0NzE0WhcNMjUwNzEwMDI0NzE0WjAYMRYwFAYD VQQDEw02ODY1ZWYzMy1jZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5SEWjv0tzghb/V9wYBHCJRbgsbYm0nvn0/ptZSDFpVujdLvYcWpd4z5oCmr JFygHylIxs+A/BjapVicmXLMty/f/bn6z0FDuOzPSRKI0S5chl0b/7K8nSta3LQY G0irm7in3MTAu1nzy6TpW1ejC4apLKv7r+0PF0t0Om1XvJXGmlSABhMflWYP0rAg bZaHeSsQvwIg/UECpOM3QfC+6owtaNm1zP4IQ+7LwuG51taxccAhHIgE8C6COHG9 mOSIVBBX7HPdgt5HuwhRjxjZEUidFvOnk0St+QowaKuceibe/S9ioIEFHl0JzR/6 VT53+d+qHUPJfI97MoYUe8yUyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPqmjXu cPEbu+AOZbUwihNCe3VjMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0qcvg+Gu6R8QN1BkLJ1tCUqn5uMtaFM+ouNiGi5aR/2Jss0/6XcOv PXxWjW+uI6FqsYXGj2p1nueonQQKdSq3Pu6NzlcnNNvg+PhNUzzGgftfmqj5l/Uu DP2t77LEYPoDpDN9VSBeXy99N3OGHSjnwQVtmq7u3qYmpNnr+rQwi2pCunj6KKqv 5K7oV2ajNWI+SfB4U82Jc+UosFkPAHccRTtZFC/ZCe1C7Q7aBzNfVAeGomx+DVeg +aSSEXBGusBqaAIvPZf2oGgCBTgZ+Jv2Nys6FjRpp2wYz9lnUGXkJWqCV3fwbd3M k68cGKQdmwL91YLq1y0Po6NZ2jlzZtUl -----END CERTIFICATE-----Generated at Fri Jul 4 07:06:05 2025 by rpki-client