$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: QzJXp+PyJBp+p4YIddCE4tPRYjO1LPPrg05bluEdKYk= Subject key identifier: 93:A7:8A:1C:AC:90:FF:9A:F6:48:E1:D0:DD:2A:5E:15:C0:1E:9B:8A Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 6B Signing time: Wed 02 Jul 2025 19:48:30 +0000 Manifest this update: Wed 02 Jul 2025 19:48:30 +0000 Manifest next update: Wed 09 Jul 2025 19:48:30 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: 5JjcfuMVsAHdNxZ/9remVz06HSjjTwIp30T4LbPVhFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Jul 2 19:48:30 2025 GMT Not After : Jul 9 19:48:30 2025 GMT Subject: CN=68658d0e-bf10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b2:46:84:fb:2e:0a:f4:a7:47:2d:12:e1:4b: f2:a5:28:07:ed:7d:e2:a2:49:93:c6:42:18:53:b9: ee:7f:4d:6d:da:d6:d8:39:4d:48:99:4b:4a:72:2a: 27:db:1f:aa:62:4b:ff:ae:ad:52:8d:b2:f5:db:ab: 50:95:71:1d:e8:bf:34:37:3f:a1:ed:a1:69:a3:3d: 5d:98:53:68:57:f2:b7:1d:2d:87:fc:27:f2:d3:2e: 72:7e:01:ca:b4:c8:b6:ff:29:1c:75:99:a6:da:47: 73:8e:0e:dd:1b:23:fd:43:7e:54:32:dd:be:98:87: 89:78:bd:68:d1:77:4e:e6:d6:ca:5a:ec:29:f4:c2: 1e:12:8a:b5:7e:af:41:ce:b5:bd:53:93:a8:0f:32: f4:11:89:ab:30:54:7c:9a:94:cc:c7:4e:64:ab:68: 60:2a:70:56:fe:21:52:45:72:b5:1c:fd:ca:1e:99: 9f:78:d7:56:e0:3e:03:70:3d:21:4d:27:35:53:88: 7d:43:c5:7d:4a:a4:5c:84:1f:67:77:6f:4d:e1:ff: 0b:4b:02:d7:0a:05:1f:1e:be:57:0b:9d:cc:6f:aa: 6e:08:8e:80:42:55:a2:21:16:c7:87:82:08:b7:55: 80:47:cb:c5:f6:7e:4c:5b:0c:a0:be:6b:2b:6e:22: 02:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A7:8A:1C:AC:90:FF:9A:F6:48:E1:D0:DD:2A:5E:15:C0:1E:9B:8A X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:23:68:9d:60:36:82:99:51:f3:25:f6:f7:47:eb:60:1a:38: bb:72:09:31:c1:5e:4a:bb:30:97:e7:27:bb:83:0a:67:8d:6c: bd:97:3e:ca:25:43:98:36:30:e8:c1:93:69:62:c5:fb:14:f3: 1a:93:b7:7d:cb:79:1b:a9:a2:26:5e:a4:ef:5d:00:61:a0:70: 58:85:5d:fc:05:c4:5c:b6:67:bf:39:53:3c:76:8b:78:b8:43: 97:da:e7:1b:5b:c7:3d:c7:24:d7:50:1b:f6:c8:4c:ee:60:d8: 81:c6:ef:dc:22:02:ff:af:20:06:ed:80:74:14:88:21:25:61: b9:a8:55:1d:ed:4e:67:c6:8d:ae:74:08:24:b8:4a:d2:96:a5: ed:c5:83:0b:73:65:88:6c:19:3d:f9:c6:b3:c1:76:47:d9:e3: af:49:46:18:6a:81:e8:4e:26:3f:b9:87:90:94:35:47:75:fd: 52:e9:e6:70:29:42:21:f7:c9:71:80:27:fa:51:92:21:08:b1: 11:14:a2:57:bf:63:48:ac:14:17:2b:ea:dc:bb:f8:f2:93:b5: b8:ab:10:a5:76:c3:7c:ec:f9:49:c0:06:8f:ad:7f:b0:fc:9e: b1:25:da:37:2c:25:f9:d1:7f:4d:53:e2:18:a2:3e:b2:47:c1: 3e:95:7d:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzhBRjExMC8GA1UEBRMoODQwRkQ2RjdFODkxRTM4MDRBN0RCMzA5RDA0Q0U4NUMx QUY3ODZEMTAeFw0yNTA3MDIxOTQ4MzBaFw0yNTA3MDkxOTQ4MzBaMBgxFjAUBgNV BAMTDTY4NjU4ZDBlLWJmMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrskaE+y4K9KdHLRLhS/KlKAftfeKiSZPGQhhTue5/TW3a1tg5TUiZS0pyKifb H6piS/+urVKNsvXbq1CVcR3ovzQ3P6HtoWmjPV2YU2hX8rcdLYf8J/LTLnJ+Acq0 yLb/KRx1mabaR3OODt0bI/1DflQy3b6Yh4l4vWjRd07m1spa7Cn0wh4SirV+r0HO tb1Tk6gPMvQRiaswVHyalMzHTmSraGAqcFb+IVJFcrUc/coemZ9411bgPgNwPSFN JzVTiH1DxX1KpFyEH2d3b03h/wtLAtcKBR8evlcLncxvqm4IjoBCVaIhFseHggi3 VYBHy8X2fkxbDKC+aytuIgJZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUk6eKHKyQ /5r2SOHQ3SpeFcAem4owHwYDVR0jBBgwFoAUhA/W9+iR44BKfbMJ0EzoXBr3htEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDOEFGLzE5N0ZGN0EyQjQw OTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaEFfVzktaVI0NEJLZmJNSjBFem9YQnIzaHRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD OEFGLzE5N0ZGN0EyQjQwOTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRC S2ZiTUowRXpvWEJyM2h0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEojaJ1gNoKZUfMl9vdH62AaOLtyCTHBXkq7MJfnJ7uDCmeNbL2XPsol Q5g2MOjBk2lixfsU8xqTt33LeRupoiZepO9dAGGgcFiFXfwFxFy2Z785Uzx2i3i4 Q5fa5xtbxz3HJNdQG/bITO5g2IHG79wiAv+vIAbtgHQUiCElYbmoVR3tTmfGja50 CCS4StKWpe3FgwtzZYhsGT35xrPBdkfZ469JRhhqgehOJj+5h5CUNUd1/VLp5nAp QiH3yXGAJ/pRkiEIsREUole/Y0isFBcr6ty7+PKTtbirEKV2w3zs+UnABo+tf7D8 nrEl2jcsJfnRf01T4hiiPrJHwT6VfVA= -----END CERTIFICATE-----Generated at Thu Jul 3 23:34:54 2025 by rpki-client