$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: QhCMMZ01MqrtTJwThTgwnjs59h8isO2Id7pXVZ1Nwx4= Subject key identifier: 28:DF:58:76:45:1D:44:3E:4F:A9:18:08:0E:18:1A:60:D7:E6:DB:34 Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 01D5 Signing time: Tue 01 Jul 2025 03:25:18 +0000 Manifest this update: Tue 01 Jul 2025 03:25:18 +0000 Manifest next update: Tue 08 Jul 2025 03:25:18 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: VLGfKTH4Zq+vUM4KbvZIDN3z6vepUL2e8sYvAdZxU1E=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: JxIG0aTCU82q7umurfAFtEVJNKacWC+8NM/ekdYlO24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Jul 1 03:25:18 2025 GMT Not After : Jul 8 03:25:18 2025 GMT Subject: CN=6863551e-f588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:42:bd:e6:39:df:67:7f:d1:3d:b8:da:88:ec: a7:cb:ae:b4:fb:03:c2:0f:7a:c6:8f:8d:81:13:6d: f1:67:d8:40:84:c5:c4:7e:5b:41:33:11:ac:ef:93: 86:a2:00:ab:68:e7:8a:9f:5b:10:a3:4e:44:55:01: d1:65:d9:91:36:93:e6:cb:0a:ae:76:ee:10:f7:e9: 78:0e:45:4c:2b:fe:2a:ed:ac:ec:55:e9:3a:f9:0b: c6:f9:22:55:23:2c:4e:d6:b6:09:d2:30:8c:ae:06: d9:fb:1f:d6:73:45:ef:ba:d3:d3:20:5f:8d:c0:31: 72:d7:15:ad:41:65:bf:86:9e:14:eb:e0:6e:2f:9e: 5a:7b:2d:87:17:0e:15:6f:3c:27:9a:ac:c0:30:7a: 57:83:d9:69:86:9b:3b:60:6d:1f:76:a1:2a:da:9e: 8f:12:22:aa:f6:3c:53:fe:bf:bd:e7:90:48:ca:14: 00:1d:b5:ec:67:e7:32:5d:14:1b:6b:5e:c3:3a:84: 70:3d:10:32:d1:48:40:93:dd:22:88:83:ce:4d:30: 90:a5:95:2c:00:8d:b1:ed:5d:09:5b:69:61:a8:69: 38:25:87:5f:4a:12:ed:5d:2a:b0:9e:e6:10:72:19: 9a:dd:c3:f2:a6:37:97:73:c6:78:9a:37:92:0d:22: 69:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DF:58:76:45:1D:44:3E:4F:A9:18:08:0E:18:1A:60:D7:E6:DB:34 X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:75:88:ff:9e:f4:17:3c:f9:2b:ea:0a:a2:40:6b:22:11:3a: 53:a7:7d:12:cc:58:bf:41:d7:1a:db:22:c7:ea:b1:04:4c:14: 44:7a:26:ba:eb:1a:02:f8:95:c0:99:2a:96:4e:30:ca:4c:4c: 15:01:9b:24:2e:4d:5c:00:90:87:89:e9:ef:46:41:ab:48:a5: 76:99:dc:88:d2:68:ef:e0:81:97:3f:af:33:93:c9:96:0e:64: f7:f5:d5:b1:28:01:1c:aa:c4:9e:8c:f8:9d:a0:11:00:d4:1f: ca:2b:c5:04:04:4f:1c:80:7c:3e:b8:00:83:d7:a2:d3:ff:5f: ae:39:a8:e3:22:a7:21:67:ff:53:ea:e0:bc:8d:d0:70:2b:5b: 5f:21:08:02:c7:10:6f:8c:79:2d:1c:61:7b:70:65:d9:f5:0a: 59:75:84:7a:c0:c4:97:6c:a1:05:1c:b9:d1:0c:72:d1:17:3b: d9:ae:95:c7:55:60:21:ec:db:f9:75:38:a0:eb:cd:46:06:b5: cc:7c:d6:20:4c:9a:97:a9:ee:d1:5e:2c:3f:af:bc:80:47:a4: 01:78:73:77:95:93:ca:cf:47:e1:c2:84:83:23:25:2f:7e:ee: cd:ce:17:b5:19:2d:15:c6:21:ee:04:77:06:fc:9a:c2:8b:2b: b5:43:39:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUwNzAxMDMyNTE4WhcNMjUwNzA4MDMyNTE4WjAYMRYwFAYD VQQDEw02ODYzNTUxZS1mNTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EK95jnfZ3/RPbjaiOyny660+wPCD3rGj42BE23xZ9hAhMXEfltBMxGs75OG ogCraOeKn1sQo05EVQHRZdmRNpPmywqudu4Q9+l4DkVMK/4q7azsVek6+QvG+SJV IyxO1rYJ0jCMrgbZ+x/Wc0XvutPTIF+NwDFy1xWtQWW/hp4U6+BuL55aey2HFw4V bzwnmqzAMHpXg9lphps7YG0fdqEq2p6PEiKq9jxT/r+955BIyhQAHbXsZ+cyXRQb a17DOoRwPRAy0UhAk90iiIPOTTCQpZUsAI2x7V0JW2lhqGk4JYdfShLtXSqwnuYQ chma3cPypjeXc8Z4mjeSDSJpGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjfWHZF HUQ+T6kYCA4YGmDX5ts0MB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCldYj/nvQXPPkr6gqiQGsiETpTp30SzFi/Qdca2yLH6rEETBREeia6 6xoC+JXAmSqWTjDKTEwVAZskLk1cAJCHienvRkGrSKV2mdyI0mjv4IGXP68zk8mW DmT39dWxKAEcqsSejPidoBEA1B/KK8UEBE8cgHw+uACD16LT/1+uOajjIqchZ/9T 6uC8jdBwK1tfIQgCxxBvjHktHGF7cGXZ9QpZdYR6wMSXbKEFHLnRDHLRFzvZrpXH VWAh7Nv5dTig681GBrXMfNYgTJqXqe7RXiw/r7yAR6QBeHN3lZPKz0fhwoSDIyUv fu7Nzhe1GS0VxiHuBHcG/JrCiyu1Qzng -----END CERTIFICATE-----Generated at Wed Jul 2 19:47:26 2025 by rpki-client