$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: c67nLgW7kxSftaA2wU2jXZq/JlEbHL5Ty5fu42PxV68= Subject key identifier: F5:97:B0:3A:E7:F8:A3:B7:85:E4:B8:E2:39:C6:A7:F2:C2:5E:98:7E Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 030D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 0309 Signing time: Thu 03 Jul 2025 01:15:15 +0000 Manifest this update: Thu 03 Jul 2025 01:15:15 +0000 Manifest next update: Thu 10 Jul 2025 01:15:15 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: DhMSH7/sFR7UgxmRn1X2hc5comDF0irA4CntohzsKCg=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: X05nJ1j9oFxXKovC7MyWIX4IdW9s4NwJbF0XevapeM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Jul 3 01:15:15 2025 GMT Not After : Jul 10 01:15:15 2025 GMT Subject: CN=6865d9a3-8a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c4:4d:0e:83:86:93:f8:96:22:bb:56:5c:4e: c7:ed:2c:2e:9b:c6:3a:fa:77:26:69:e4:9b:4c:e0: 62:56:84:12:1c:0b:74:5c:82:df:88:b2:e3:b2:98: fb:01:35:0a:5d:18:a8:56:6e:03:c5:6e:26:76:99: c9:33:46:15:0f:0b:80:96:37:d0:79:26:19:24:f7: 9b:de:64:93:ee:2e:bc:5b:7d:b1:9e:c6:3c:ad:39: 1b:60:77:9c:56:b0:14:60:76:c5:c0:44:7a:79:7e: bc:cd:2e:3f:d2:60:9d:27:28:a3:de:7c:de:70:dd: e9:8a:9b:c4:45:6d:53:79:25:70:a5:a7:c6:6c:2e: 83:87:11:d0:cd:98:60:e7:fc:15:ed:73:bc:0f:64: f2:f1:c6:52:bb:2d:b3:b0:78:6e:d1:b3:e1:77:09: 27:13:7f:2c:8f:6a:55:12:70:f6:64:50:3d:7b:ac: 19:a7:f2:f5:81:dc:99:88:b0:61:6e:7b:00:57:f7: 93:de:f7:95:a9:6a:34:d1:6e:d1:e1:a1:e4:a5:8a: 51:ba:2f:5b:97:0b:dd:e3:59:5e:6e:b1:07:9c:33: e0:5b:e6:b9:c8:9c:30:6e:0d:b5:1f:56:7a:7a:36: ff:e7:81:3f:ea:5a:d9:8d:23:5c:71:f7:6e:1a:f3: b3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:97:B0:3A:E7:F8:A3:B7:85:E4:B8:E2:39:C6:A7:F2:C2:5E:98:7E X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:7b:18:9f:22:17:ef:ad:6c:f6:99:3d:17:6b:69:3f:66:3d: 69:30:36:8c:0a:ad:30:61:5c:78:bf:68:22:c0:18:6e:82:52: b8:66:fd:c5:b1:58:b5:f7:da:48:13:e5:82:06:bc:6c:bf:1c: 5f:0e:a9:7d:47:0f:00:96:63:82:ec:fa:12:84:fe:ed:dc:54: e8:7f:96:d5:78:91:3e:42:a7:d8:ee:16:13:05:6b:b4:ec:a8: 47:e3:21:27:97:aa:db:a2:11:00:b0:e0:9a:a7:4d:63:ce:a6: fe:88:6a:79:0f:6f:75:45:7f:1c:7b:23:26:55:b0:4d:d9:76: 56:0b:dc:26:0a:04:dc:c7:d5:e9:bd:a2:07:af:0a:ac:55:ac: 88:fa:9d:2f:ed:fc:c0:e7:93:6e:40:e5:f2:b3:7b:7b:4b:90: 7d:ef:99:49:e2:25:d9:24:32:85:80:96:03:38:d9:d7:6c:c0: 93:b6:ad:e4:58:0d:53:79:fb:49:a0:1c:4d:69:ea:f6:b4:92: 9b:6f:a9:3c:9e:07:ae:49:8f:55:71:36:bc:df:12:bb:f7:27: 51:1c:a5:db:8d:5c:03:b2:a6:fc:1c:83:d4:4d:cb:56:c1:d3: 4c:aa:0c:b2:7e:4b:92:0f:d3:e7:ca:b1:f1:80:40:25:20:7d: 46:17:79:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUwNzAzMDExNTE1WhcNMjUwNzEwMDExNTE1WjAYMRYwFAYD VQQDEw02ODY1ZDlhMy04YTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9sRNDoOGk/iWIrtWXE7H7Swum8Y6+ncmaeSbTOBiVoQSHAt0XILfiLLjspj7 ATUKXRioVm4DxW4mdpnJM0YVDwuAljfQeSYZJPeb3mST7i68W32xnsY8rTkbYHec VrAUYHbFwER6eX68zS4/0mCdJyij3nzecN3pipvERW1TeSVwpafGbC6DhxHQzZhg 5/wV7XO8D2Ty8cZSuy2zsHhu0bPhdwknE38sj2pVEnD2ZFA9e6wZp/L1gdyZiLBh bnsAV/eT3veVqWo00W7R4aHkpYpRui9blwvd41lebrEHnDPgW+a5yJwwbg21H1Z6 ejb/54E/6lrZjSNccfduGvOzFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWXsDrn +KO3heS44jnGp/LCXph+MB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZexifIhfvrWz2mT0Xa2k/Zj1pMDaMCq0wYVx4v2giwBhuglK4Zv3F sVi199pIE+WCBrxsvxxfDql9Rw8AlmOC7PoShP7t3FTof5bVeJE+QqfY7hYTBWu0 7KhH4yEnl6rbohEAsOCap01jzqb+iGp5D291RX8ceyMmVbBN2XZWC9wmCgTcx9Xp vaIHrwqsVayI+p0v7fzA55NuQOXys3t7S5B975lJ4iXZJDKFgJYDONnXbMCTtq3k WA1TeftJoBxNaer2tJKbb6k8ngeuSY9VcTa83xK79ydRHKXbjVwDsqb8HIPUTctW wdNMqgyyfkuSD9PnyrHxgEAlIH1GF3lU -----END CERTIFICATE-----Generated at Fri Jul 4 07:55:53 2025 by rpki-client