$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft File: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft (raw, json) Hash identifier: zpSs8hLUrI3JDrPJTRH4Dgx4j2+3joEVfrjtSLJEV18= Subject key identifier: D8:93:31:86:71:E0:64:37:5B:10:F0:A1:8F:CD:E8:4D:6B:B9:2D:40 Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 Certificate issuer: /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Certificate serial: 0BBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft Manifest number: 0BB0 Signing time: Wed 02 Jul 2025 19:11:58 +0000 Manifest this update: Wed 02 Jul 2025 19:11:57 +0000 Manifest next update: Wed 09 Jul 2025 19:11:57 +0000 Files and hashes: 1: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl (hash: wsTo8jxi+yYZZXJEU4P7goAf0Z2NlPkHndHGv0xgUsc=) 2: 01A8B084262811EA8269E33EC4F9AE02.roa (hash: 3edR8k68PlyDLwSNioDrZi097Di1Z0qsLBIpivE7sS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3002 (0xbba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Validity Not Before: Jul 2 19:11:57 2025 GMT Not After : Jul 9 19:11:57 2025 GMT Subject: CN=6865847e-e023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:65:3c:2e:84:3f:de:da:f6:e6:a9:6b:b5:8b: 16:24:5f:55:43:91:48:00:75:54:15:31:48:64:61: 7a:a2:79:5b:bc:90:c5:6c:04:7b:ba:f4:d4:f8:91: f2:dd:ad:01:d5:07:6b:38:e7:7b:49:29:90:cc:7d: c4:76:84:38:04:f5:58:4c:f4:22:e4:ac:44:fa:14: da:65:f9:94:ea:31:13:94:cb:1c:8c:05:d5:45:a6: 2d:3a:02:e2:0e:c5:fe:e6:17:b6:ba:fe:bc:13:d1: e3:ac:39:4e:1d:57:e5:9e:d9:28:82:a3:47:3d:3d: 7f:3e:72:c8:d0:d5:74:cd:55:59:37:13:30:bf:3d: 4e:51:79:bc:19:8a:02:d0:45:d2:87:ec:45:4e:aa: c4:ca:b3:06:7e:03:cc:2f:14:d9:01:79:27:4f:9a: 6f:a3:9f:c4:1a:be:cc:3b:65:7f:d8:8e:53:84:7a: 43:37:98:2d:e8:22:d3:7d:eb:50:60:67:21:71:a0: 3d:c0:8f:08:1b:10:80:f9:0a:05:29:1b:d7:12:1b: 6d:68:4b:7a:9c:03:1a:57:9f:10:7a:b1:a2:74:3c: 1d:27:e2:af:06:da:99:e4:27:c6:2f:6b:84:3d:5d: 67:0b:a4:95:97:c6:3a:ad:ed:d5:d0:5c:fe:9a:00: eb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:93:31:86:71:E0:64:37:5B:10:F0:A1:8F:CD:E8:4D:6B:B9:2D:40 X509v3 Authority Key Identifier: keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:99:4b:8b:33:b9:a3:f1:ec:8e:91:41:28:a6:51:58:6f:43: 21:4b:e1:46:24:fd:ed:21:bc:99:cf:e2:63:9e:1a:74:da:11: 14:e4:ed:dd:8a:88:c5:51:8b:46:aa:76:8c:e9:23:38:50:99: 46:84:3c:12:50:5d:f1:40:6a:de:21:9d:ee:d1:e4:cf:3d:b7: a2:b5:8b:64:ec:1f:82:1f:8b:68:81:2c:0d:d6:ae:65:90:dd: 52:28:ea:7a:cf:99:49:96:6b:a5:3c:3e:f1:47:68:57:d3:c3: f2:29:3b:1b:36:78:94:13:14:63:5d:f9:a0:61:07:4f:a2:13: c5:b3:8e:17:13:84:2c:01:de:4f:65:95:d4:a2:54:3c:21:9d: 2c:e7:ee:cb:b7:35:20:10:a5:8f:d2:42:91:ae:bc:1a:9a:b6: d7:dc:ae:18:ab:24:ed:af:6a:db:51:46:fa:58:51:4e:b0:97: 6f:6d:4b:c6:ec:44:24:65:a0:4e:ac:33:b0:1b:24:4f:c0:69: 15:2d:8d:7a:e7:2e:f9:a4:3f:12:71:c3:98:1e:9d:c9:17:c2: ed:64:29:8c:b0:9a:c6:5b:ab:46:cc:c9:09:80:25:24:08:9c: 67:cd:a0:40:02:86:cc:cb:60:54:36:88:26:28:41:75:44:99: 39:c3:1e:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFENzMxMTAvBgNVBAUTKEY5Qjk3NTE2MUZFMkVBMzdFMEU0NjJBRDVGNUI4QTc0 MjgwMTM0RTYwHhcNMjUwNzAyMTkxMTU3WhcNMjUwNzA5MTkxMTU3WjAYMRYwFAYD VQQDEw02ODY1ODQ3ZS1lMDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WU8LoQ/3tr25qlrtYsWJF9VQ5FIAHVUFTFIZGF6onlbvJDFbAR7uvTU+JHy 3a0B1QdrOOd7SSmQzH3EdoQ4BPVYTPQi5KxE+hTaZfmU6jETlMscjAXVRaYtOgLi DsX+5he2uv68E9HjrDlOHVflntkogqNHPT1/PnLI0NV0zVVZNxMwvz1OUXm8GYoC 0EXSh+xFTqrEyrMGfgPMLxTZAXknT5pvo5/EGr7MO2V/2I5ThHpDN5gt6CLTfetQ YGchcaA9wI8IGxCA+QoFKRvXEhttaEt6nAMaV58QerGidDwdJ+KvBtqZ5CfGL2uE PV1nC6SVl8Y6re3V0Fz+mgDr+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiTMYZx 4GQ3WxDwoY/N6E1ruS1AMB8GA1UdIwQYMBaAFPm5dRYf4uo34ORirV9binQoATTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQ3My81Q0M2NkJENDI2 MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZqZmc1R0t0WDF1S2RDZ0JO T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ibDFGaF9pNmpmZzVHS3RYMXVLZENnQk5PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUQ3My81Q0M2NkJENDI2MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZq Zmc1R0t0WDF1S2RDZ0JOT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPmUuLM7mj8eyOkUEoplFYb0MhS+FGJP3tIbyZz+Jjnhp02hEU5O3d iojFUYtGqnaM6SM4UJlGhDwSUF3xQGreIZ3u0eTPPbeitYtk7B+CH4togSwN1q5l kN1SKOp6z5lJlmulPD7xR2hX08PyKTsbNniUExRjXfmgYQdPohPFs44XE4QsAd5P ZZXUolQ8IZ0s5+7LtzUgEKWP0kKRrrwamrbX3K4YqyTtr2rbUUb6WFFOsJdvbUvG 7EQkZaBOrDOwGyRPwGkVLY165y75pD8SccOYHp3JF8LtZCmMsJrGW6tGzMkJgCUk CJxnzaBAAobMy2BUNogmKEF1RJk5wx69 -----END CERTIFICATE-----Generated at Thu Jul 3 11:49:03 2025 by rpki-client