$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: XoAXoffLVaFhs/4lrTB6hWklD7+alyD3w0/Nb5TXZlo= Subject key identifier: 06:7A:C8:F0:79:48:C7:4F:87:81:24:F8:1F:20:6F:B3:30:6A:73:45 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BA3 Signing time: Mon 30 Jun 2025 16:25:57 +0000 Manifest this update: Mon 30 Jun 2025 16:25:56 +0000 Manifest next update: Mon 07 Jul 2025 16:25:56 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: 6L7a5g14z2t9vzj0qX9qQvYwMFWBbRBC8PLzOnJeSuk=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7093 (0x1bb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Jun 30 16:25:56 2025 GMT Not After : Jul 7 16:25:56 2025 GMT Subject: CN=6862ba94-3390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b9:37:7c:fd:f7:93:11:f2:a0:78:7f:33:b5: 87:b6:95:c0:ec:6b:f1:41:2c:8a:40:e9:1f:03:14: 71:5f:51:1e:3d:ae:e1:83:89:8f:53:6e:b7:0b:db: 7c:95:b1:12:00:83:12:bd:f1:9a:00:94:78:17:12: 02:b5:d7:7d:d9:bd:75:b7:1a:83:56:26:17:3c:5f: 27:d9:d9:31:bb:5b:49:ae:84:a5:54:9d:5f:0b:9c: fe:3e:8e:a7:6f:7d:53:fa:3d:65:f0:77:f9:43:07: 2c:64:b8:ef:ef:ee:20:f7:c4:72:4d:16:58:d8:ea: 21:bb:68:29:62:bc:54:d8:9d:4d:91:b1:a7:c2:20: 9b:e6:cc:f3:ac:ad:2b:b8:51:ee:36:6a:9f:8f:5b: 29:57:d4:84:57:18:dd:36:51:ae:75:d9:5a:c2:60: 80:de:e6:44:da:44:ca:50:61:c9:fd:3e:af:24:73: b0:88:04:70:ae:f6:cf:a4:9d:66:8f:05:8d:e1:dc: 9e:da:9c:da:f6:3f:9f:ea:db:51:5c:ee:90:c7:05: 6c:bb:ac:73:90:e2:10:34:d0:15:84:a7:ee:73:1c: 39:51:d1:43:b5:b4:b0:7f:4c:e8:8e:c0:ca:f1:2b: a1:dd:f5:84:81:e5:62:44:07:17:77:9a:ce:6e:59: 26:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7A:C8:F0:79:48:C7:4F:87:81:24:F8:1F:20:6F:B3:30:6A:73:45 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:7b:e4:65:e9:98:1f:2b:03:16:e5:31:85:ef:d0:79:f5:86: de:6b:f2:32:e3:55:44:84:8e:b8:d7:d1:b4:ce:37:06:ed:88: 30:76:70:2f:7c:84:c3:c9:17:98:64:39:fc:79:09:af:da:eb: fa:bc:40:5b:5a:82:20:ca:de:b6:c4:f5:d3:7b:45:e7:a6:2d: 25:51:21:c1:04:04:49:ae:8e:e5:08:d8:de:58:b9:00:d6:c8: fb:4e:fe:dd:d8:48:ff:e3:52:9e:6a:00:41:ee:a2:f7:66:62: cd:07:4d:80:5c:68:27:f4:01:ee:fa:82:9a:45:7c:01:0e:91: c2:15:84:c4:de:b4:73:fc:d0:d1:a0:af:0d:ff:88:2d:1a:e8: 12:e4:3d:88:5e:80:51:cf:ba:b5:a5:54:1b:c3:0f:fa:ff:04: 3f:14:10:54:a2:5b:3a:f9:66:0e:1c:d8:67:2e:26:0e:af:93: 32:a5:e8:55:59:0f:2c:d4:f0:17:e9:9c:c3:da:4e:1a:57:26: 3b:07:d6:53:5b:3c:ef:a1:21:75:98:ce:c4:f1:4a:22:6b:90: 16:25:18:d4:eb:f0:c9:34:37:f3:3d:dc:41:7b:bc:c0:4a:48: a7:9c:c7:dd:61:84:4f:46:8f:d9:0b:23:7b:9c:99:f1:ff:40: dd:9b:c8:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwNjMwMTYyNTU2WhcNMjUwNzA3MTYyNTU2WjAYMRYwFAYD VQQDEw02ODYyYmE5NC0zMzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7k3fP33kxHyoHh/M7WHtpXA7GvxQSyKQOkfAxRxX1EePa7hg4mPU263C9t8 lbESAIMSvfGaAJR4FxICtdd92b11txqDViYXPF8n2dkxu1tJroSlVJ1fC5z+Po6n b31T+j1l8Hf5QwcsZLjv7+4g98RyTRZY2Oohu2gpYrxU2J1NkbGnwiCb5szzrK0r uFHuNmqfj1spV9SEVxjdNlGuddlawmCA3uZE2kTKUGHJ/T6vJHOwiARwrvbPpJ1m jwWN4dye2pza9j+f6ttRXO6QxwVsu6xzkOIQNNAVhKfucxw5UdFDtbSwf0zojsDK 8Suh3fWEgeViRAcXd5rOblkm7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZ6yPB5 SMdPh4Ek+B8gb7MwanNFMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADe+Rl6ZgfKwMW5TGF79B59Ybea/Iy41VEhI6419G0zjcG7YgwdnAv fITDyReYZDn8eQmv2uv6vEBbWoIgyt62xPXTe0Xnpi0lUSHBBARJro7lCNjeWLkA 1sj7Tv7d2Ej/41KeagBB7qL3ZmLNB02AXGgn9AHu+oKaRXwBDpHCFYTE3rRz/NDR oK8N/4gtGugS5D2IXoBRz7q1pVQbww/6/wQ/FBBUols6+WYOHNhnLiYOr5MypehV WQ8s1PAX6ZzD2k4aVyY7B9ZTWzzvoSF1mM7E8Uoia5AWJRjU6/DJNDfzPdxBe7zA SkinnMfdYYRPRo/ZCyN7nJnx/0Ddm8hC -----END CERTIFICATE-----Generated at Wed Jul 2 00:49:38 2025 by rpki-client