$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: hCp3vjg9fZIEQINqlvzr2CS111uoKTuaXwNBl3Ps9Sc= Subject key identifier: BC:73:34:5A:F3:59:12:65:E2:09:A2:F7:3C:E2:A7:6B:88:91:8F:60 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 026E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 026B Signing time: Tue 01 Jul 2025 02:27:43 +0000 Manifest this update: Tue 01 Jul 2025 02:27:43 +0000 Manifest next update: Tue 08 Jul 2025 02:27:43 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: 3nG6iPR6eXo3NJNI01dKgP+QET7YfyYIfdhsR48J5rI=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 622 (0x26e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Jul 1 02:27:43 2025 GMT Not After : Jul 8 02:27:43 2025 GMT Subject: CN=6863479f-7976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d8:d6:a8:90:19:9e:1b:61:e5:ae:f8:39:4e: 13:dd:9e:1f:8f:47:95:d5:e0:d4:79:c9:24:8e:94: 4f:f4:90:4b:91:35:b5:20:cd:d5:be:0c:0f:ad:df: dd:5a:e9:55:d3:d3:8e:35:e4:10:95:5e:dd:5f:46: bb:05:a8:46:1f:c6:b7:bd:f5:ba:be:41:67:af:fa: a1:b4:f6:e5:fc:a2:5f:0f:67:4e:20:16:b1:89:16: ec:7b:81:27:e3:00:c4:7f:39:48:0b:f3:2b:58:ed: c8:55:09:f0:be:73:03:94:ed:e8:cd:9e:1b:97:e0: a0:30:ad:d0:56:35:ff:76:29:6e:2d:86:1b:95:c8: f7:6b:52:bc:dc:61:44:5c:f9:fa:51:ed:4e:ef:67: cc:53:b8:8e:d5:76:b6:6a:31:69:d1:ae:33:78:af: cb:54:fd:da:3d:f7:0f:dd:93:11:34:98:c2:50:95: 42:75:b4:73:f0:e9:c5:9e:31:b4:87:da:20:47:5f: 77:64:d3:94:1e:6c:8f:f6:4d:09:b0:fd:3b:08:6a: 8b:a7:be:52:67:aa:72:2a:9f:38:04:e4:e1:f4:c7: 6f:5e:30:9c:ef:11:1e:e6:ba:ff:21:7f:24:42:01: 41:74:d6:8c:1d:2a:26:44:66:96:15:57:c0:61:8e: d0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:73:34:5A:F3:59:12:65:E2:09:A2:F7:3C:E2:A7:6B:88:91:8F:60 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:5a:20:8b:d3:8b:10:f6:d0:4e:c2:92:30:e5:09:68:2a:b3: 4c:7e:8f:cc:c7:a6:82:c3:c3:92:d1:07:7d:f3:0b:fd:f7:06: 75:b9:04:90:53:57:22:63:22:c0:89:34:c2:ab:5f:0c:d3:2b: 02:fe:21:de:b7:01:f9:53:28:57:37:3d:24:6c:bb:f4:a8:cd: 0b:40:9e:55:4a:ad:73:1d:f7:65:e9:1a:b7:c4:fd:be:dc:0a: 22:b9:56:17:73:34:59:c1:05:e2:52:02:9b:80:91:94:c3:5b: c4:ab:ea:16:53:a5:50:ea:de:85:4e:6e:c6:75:9f:e0:15:d2: 91:2b:a1:e8:0a:00:01:99:3e:d2:b1:3b:ed:b5:68:2d:8b:ab: 3d:57:10:9b:6d:02:6b:dc:0a:fb:83:76:d4:f3:60:51:5b:cc: 1e:c1:bd:44:78:f3:7e:10:88:69:64:03:ac:86:54:8e:56:c7: bb:53:6b:91:55:5f:ea:bf:30:e5:a1:fa:3f:50:21:9e:d6:85: 93:d9:7b:1d:59:71:bc:db:a5:1c:60:6c:11:3d:41:c5:3a:03: 96:62:bf:8b:1f:79:c0:8d:bf:50:c6:41:28:5b:9f:1d:be:39: e7:5a:34:5f:b9:a5:a6:e3:59:e1:04:2d:06:2e:5f:c9:70:4c: c9:2c:c8:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwNzAxMDIyNzQzWhcNMjUwNzA4MDIyNzQzWjAYMRYwFAYD VQQDEw02ODYzNDc5Zi03OTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tjWqJAZnhth5a74OU4T3Z4fj0eV1eDUeckkjpRP9JBLkTW1IM3VvgwPrd/d WulV09OONeQQlV7dX0a7BahGH8a3vfW6vkFnr/qhtPbl/KJfD2dOIBaxiRbse4En 4wDEfzlIC/MrWO3IVQnwvnMDlO3ozZ4bl+CgMK3QVjX/diluLYYblcj3a1K83GFE XPn6Ue1O72fMU7iO1Xa2ajFp0a4zeK/LVP3aPfcP3ZMRNJjCUJVCdbRz8OnFnjG0 h9ogR193ZNOUHmyP9k0JsP07CGqLp75SZ6pyKp84BOTh9MdvXjCc7xEe5rr/IX8k QgFBdNaMHSomRGaWFVfAYY7QswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxzNFrz WRJl4gmi9zzip2uIkY9gMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBWiCL04sQ9tBOwpIw5QloKrNMfo/Mx6aCw8OS0Qd98wv99wZ1uQSQ U1ciYyLAiTTCq18M0ysC/iHetwH5UyhXNz0kbLv0qM0LQJ5VSq1zHfdl6Rq3xP2+ 3AoiuVYXczRZwQXiUgKbgJGUw1vEq+oWU6VQ6t6FTm7GdZ/gFdKRK6HoCgABmT7S sTvttWgti6s9VxCbbQJr3Ar7g3bU82BRW8wewb1EePN+EIhpZAOshlSOVse7U2uR VV/qvzDlofo/UCGe1oWT2XsdWXG826UcYGwRPUHFOgOWYr+LH3nAjb9QxkEoW58d vjnnWjRfuaWm41nhBC0GLl/JcEzJLMhB -----END CERTIFICATE-----Generated at Thu Jul 3 01:14:31 2025 by rpki-client