$ rpki-client -vvf rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft File: 6VdtMs2hm7hvPBYuyf020_0lucE.mft (raw, json) Hash identifier: zC9N7HvrbPOzGeOgErWdvOuxirOn3gGy/dd7fLJxX2Y= Subject key identifier: 64:7E:B3:9F:A2:63:6D:9D:36:28:B6:8D:7F:8B:A6:77:7E:4D:B8:F6 Authority key identifier: E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 Certificate issuer: /CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft Manifest number: 01EA Signing time: Thu 03 Jul 2025 03:06:29 +0000 Manifest this update: Thu 03 Jul 2025 03:06:29 +0000 Manifest next update: Thu 10 Jul 2025 03:06:29 +0000 Files and hashes: 1: 6VdtMs2hm7hvPBYuyf020_0lucE.crl (hash: jQlUXbLJnqOTQPInnwTxZGJJThDc0sJHtujQHy4zNBw=) 2: 01C299E0662611ED94A8DA42C4F9AE02.roa (hash: qDl9A66XUfdxXb2Z9BDWMcaLCM85XHiGpfBrshr3vQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131359, serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Validity Not Before: Jul 3 03:06:29 2025 GMT Not After : Jul 10 03:06:29 2025 GMT Subject: CN=6865f3b5-8aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:61:ca:03:e3:de:ce:27:62:80:b9:28:7d:cf: 5c:ec:df:a4:cb:39:68:78:2d:63:ac:9b:b6:09:af: 82:25:d6:bf:c7:b7:b7:56:36:ba:f7:48:e1:55:55: bb:c9:76:85:8d:f1:9b:7c:d5:65:a5:ed:4a:c0:0c: d6:22:7b:7f:00:6b:90:48:9e:f1:5c:b5:a9:d8:ff: cc:64:27:6d:b4:c1:d7:96:47:b3:df:fd:7d:aa:d9: 05:c1:10:55:8a:39:7e:67:77:bc:ba:bc:1d:a9:98: 4a:73:d7:ec:a7:9b:27:6e:fb:b0:b0:ca:b9:ac:65: 7a:a9:c0:eb:2a:66:0a:64:50:7a:ef:3c:1e:51:ca: d3:b5:6c:62:6b:7e:1a:9e:fc:36:a2:df:5e:6a:91: d1:07:ee:94:cd:56:14:06:81:3e:fc:e6:1e:77:82: 01:fc:bc:c7:8a:ac:23:ef:e8:af:d8:c7:2d:13:52: f6:ce:57:d0:1e:22:0b:44:38:dd:d5:54:0c:a7:c9: 9c:ad:d3:c3:bb:bd:ad:cb:45:4a:19:81:3e:59:ee: 84:69:14:a9:fa:5e:f5:8e:3a:da:23:e5:11:0b:26: ac:b3:27:23:98:2f:9b:30:cb:7d:ab:99:97:39:ed: 73:fe:1e:d9:d2:6c:87:a1:3b:7d:83:5c:f0:24:ef: 33:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7E:B3:9F:A2:63:6D:9D:36:28:B6:8D:7F:8B:A6:77:7E:4D:B8:F6 X509v3 Authority Key Identifier: keyid:E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:72:2d:69:06:12:44:e6:e3:57:79:4c:dc:a5:52:3c:41:5a: 67:f3:4a:94:e1:2e:00:ad:cf:0b:d7:33:4b:18:68:ae:ec:a8: 24:e0:02:34:0c:f6:f8:18:13:23:8f:97:79:92:a8:64:5a:fc: b2:94:33:44:0b:38:0a:d9:a2:3e:6e:fe:95:84:8e:6d:7a:8f: 27:2f:19:de:54:32:00:b1:f4:5c:c7:b8:46:2c:f5:72:34:f8: 15:fc:5f:03:b1:f6:e7:6c:87:3b:53:a0:c4:ca:7e:15:89:3f: ef:96:2c:87:76:4a:19:35:7f:25:43:79:a7:55:a8:40:6c:c1: e5:89:9b:80:51:13:cc:75:54:91:8f:14:25:b6:a1:74:40:42: b2:b9:f6:27:61:0c:10:ef:ce:9a:b5:cd:21:e5:2d:0f:d2:f5: cb:ef:28:1f:1e:52:bb:b0:bf:a8:20:5d:b1:39:d1:5e:d1:a2: f2:67:e4:33:b0:24:7d:e7:57:a6:d5:9b:e1:f3:b0:3f:02:4e: 85:72:a4:29:51:50:b5:b8:f9:e3:2e:e8:08:49:72:c3:c5:be: c7:dd:97:65:fe:bb:e2:b9:e1:6d:c4:ed:c4:80:df:22:39:d7: 42:19:b1:8e:90:d9:b7:01:79:d4:9e:94:0f:04:1b:52:c2:e9: 0e:ca:04:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEzNTkxMTAvBgNVBAUTKEU5NTc2RDMyQ0RBMTlCQjg2RjNDMTYyRUM5RkQzNkQz RkQyNUI5QzEwHhcNMjUwNzAzMDMwNjI5WhcNMjUwNzEwMDMwNjI5WjAYMRYwFAYD VQQDEw02ODY1ZjNiNS04YWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmHKA+PezidigLkofc9c7N+kyzloeC1jrJu2Ca+CJda/x7e3Vja690jhVVW7 yXaFjfGbfNVlpe1KwAzWInt/AGuQSJ7xXLWp2P/MZCdttMHXlkez3/19qtkFwRBV ijl+Z3e8urwdqZhKc9fsp5snbvuwsMq5rGV6qcDrKmYKZFB67zweUcrTtWxia34a nvw2ot9eapHRB+6UzVYUBoE+/OYed4IB/LzHiqwj7+iv2MctE1L2zlfQHiILRDjd 1VQMp8mcrdPDu72ty0VKGYE+We6EaRSp+l71jjraI+URCyassycjmC+bMMt9q5mX Oe1z/h7Z0myHoTt9g1zwJO8zuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGR+s5+i Y22dNii2jX+Lpnd+Tbj2MB8GA1UdIwQYMBaAFOlXbTLNoZu4bzwWLsn9NtP9JbnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTM1OS9DQTlBMzRCNjY2 MjMxMUVEOTE4NTVENDJDNEY5QUUwMi82VmR0TXMyaG03aHZQQll1eWYwMjBfMGx1 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZWZHRNczJobTdodlBCWXV5ZjAyMF8wbHVjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTM1OS9DQTlBMzRCNjY2MjMxMUVEOTE4NTVENDJDNEY5QUUwMi82VmR0TXMyaG03 aHZQQll1eWYwMjBfMGx1Y0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZci1pBhJE5uNXeUzcpVI8QVpn80qU4S4Arc8L1zNLGGiu7Kgk4AI0 DPb4GBMjj5d5kqhkWvyylDNECzgK2aI+bv6VhI5teo8nLxneVDIAsfRcx7hGLPVy NPgV/F8DsfbnbIc7U6DEyn4ViT/vliyHdkoZNX8lQ3mnVahAbMHliZuAURPMdVSR jxQltqF0QEKyufYnYQwQ786atc0h5S0P0vXL7ygfHlK7sL+oIF2xOdFe0aLyZ+Qz sCR951em1Zvh87A/Ak6FcqQpUVC1uPnjLugISXLDxb7H3Zdl/rviueFtxO3EgN8i OddCGbGOkNm3AXnUnpQPBBtSwukOygRK -----END CERTIFICATE-----Generated at Thu Jul 3 09:11:12 2025 by rpki-client