$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: 6XQZ/Z9K66NDW+pmhpe48la5lJ3wqzM+W6A6X02jgsg= Subject key identifier: 13:80:4A:CE:44:14:CB:29:3C:67:4B:CD:95:07:22:F6:3E:D6:90:68 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: C9 Signing time: Tue 01 Jul 2025 06:22:18 +0000 Manifest this update: Tue 01 Jul 2025 06:22:18 +0000 Manifest next update: Tue 08 Jul 2025 06:22:18 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: OloX+DNUUBetmmAnVVc67aw5A86/QlOYhJ4iuP23CoY=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Jul 1 06:22:18 2025 GMT Not After : Jul 8 06:22:18 2025 GMT Subject: CN=68637e9a-e800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:72:8c:ae:1d:8c:ad:40:14:99:2b:af:a0:51: 1e:78:c9:f5:37:36:e1:ac:2d:0f:da:bc:f0:b6:a1: f6:34:11:c8:2d:4b:de:d4:82:26:1e:14:d2:92:50: 64:96:78:42:d5:bd:5e:ca:74:72:98:0f:d5:85:ed: 44:35:34:83:8c:08:c8:fe:35:17:f2:7a:d6:0d:21: 2f:af:c6:2f:09:7f:17:d1:2e:82:4d:95:bd:ff:62: d5:da:ae:bf:44:ab:07:9b:f3:35:63:bf:87:51:46: 28:1b:58:14:e2:12:78:1f:35:07:51:16:82:3c:c1: c1:56:d8:b8:4e:4d:b4:76:2e:f7:d7:a2:cd:5a:dd: e9:70:cd:11:9a:1c:b5:12:02:f1:4d:ef:6a:2a:61: b8:ad:aa:06:f1:8d:99:a9:ed:df:07:01:ae:a9:81: 37:fb:19:df:13:c2:43:cf:8a:f9:e0:8a:f7:85:6b: 50:b0:82:5b:a2:93:5b:dd:2d:05:4a:33:ea:15:23: 6b:63:e5:3f:db:4d:0e:3a:75:8e:fe:df:78:84:97: 07:91:14:05:db:81:6a:70:a6:5b:d8:f7:5e:08:88: 00:15:f3:67:fd:ea:05:a1:f0:85:b0:93:69:45:8a: 25:da:0a:1d:ca:73:0a:15:8f:b7:e8:d3:48:a9:23: cf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:80:4A:CE:44:14:CB:29:3C:67:4B:CD:95:07:22:F6:3E:D6:90:68 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:e6:62:40:5d:d2:1c:85:62:06:7c:da:5c:5c:f1:1c:62:5d: dc:ee:65:31:ee:b2:45:d4:40:f8:6d:ab:1f:ab:0d:c6:94:68: be:6e:83:6e:5c:ce:7d:6b:73:ea:46:a3:71:c0:e7:4b:2f:55: 20:9e:85:a1:e6:60:d6:58:c3:e4:4b:ef:c6:ab:29:00:b6:23: 16:75:3c:e6:cf:ce:73:35:a3:78:6f:3a:2a:23:af:d0:07:ef: d5:2f:0b:a0:3a:83:68:c0:6d:81:cf:66:a8:59:e1:57:7d:35: 64:6d:7d:53:92:c3:c6:69:b9:8e:d2:73:73:d2:5f:d6:00:e3: 8a:00:22:35:30:e9:dd:81:f1:4a:d5:16:b8:f2:e7:84:11:ee: aa:d1:4e:7e:42:b7:5a:92:73:30:3e:2e:1b:06:4c:3f:ca:42: 83:be:16:d2:2f:b0:65:c3:69:f1:de:3c:f1:7a:d6:80:da:14: 64:cc:bd:6e:32:ce:e7:40:0a:85:08:1e:ed:e5:aa:bc:80:cc: 12:ea:8c:df:c4:76:3f:8f:71:0e:19:9f:eb:9c:9e:cb:35:f1: 6f:32:9a:b3:ef:02:3c:4f:f4:33:ba:c7:ee:50:3a:26:84:a7: c6:92:2d:09:62:f2:f7:64:c0:61:40:f5:65:11:6c:91:f0:98: 72:47:5c:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwNzAxMDYyMjE4WhcNMjUwNzA4MDYyMjE4WjAYMRYwFAYD VQQDEw02ODYzN2U5YS1lODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXKMrh2MrUAUmSuvoFEeeMn1NzbhrC0P2rzwtqH2NBHILUve1IImHhTSklBk lnhC1b1eynRymA/Vhe1ENTSDjAjI/jUX8nrWDSEvr8YvCX8X0S6CTZW9/2LV2q6/ RKsHm/M1Y7+HUUYoG1gU4hJ4HzUHURaCPMHBVti4Tk20di7316LNWt3pcM0Rmhy1 EgLxTe9qKmG4raoG8Y2Zqe3fBwGuqYE3+xnfE8JDz4r54Ir3hWtQsIJbopNb3S0F SjPqFSNrY+U/200OOnWO/t94hJcHkRQF24FqcKZb2PdeCIgAFfNn/eoFofCFsJNp RYol2godynMKFY+36NNIqSPPZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOASs5E FMspPGdLzZUHIvY+1pBoMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf5mJAXdIchWIGfNpcXPEcYl3c7mUx7rJF1ED4basfqw3GlGi+boNu XM59a3PqRqNxwOdLL1UgnoWh5mDWWMPkS+/GqykAtiMWdTzmz85zNaN4bzoqI6/Q B+/VLwugOoNowG2Bz2aoWeFXfTVkbX1TksPGabmO0nNz0l/WAOOKACI1MOndgfFK 1Ra48ueEEe6q0U5+QrdaknMwPi4bBkw/ykKDvhbSL7Blw2nx3jzxetaA2hRkzL1u Ms7nQAqFCB7t5aq8gMwS6ozfxHY/j3EOGZ/rnJ7LNfFvMpqz7wI8T/QzusfuUDom hKfGki0JYvL3ZMBhQPVlEWyR8JhyR1yZ -----END CERTIFICATE-----Generated at Thu Jul 3 01:27:19 2025 by rpki-client