$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: PGZ/8CnXktfDSqKKEOMt5gjP5883b/5zuBqtR/l1i8k= Subject key identifier: F8:49:39:AB:AF:A8:F1:DA:50:51:DB:B4:7F:90:76:5C:00:53:F9:A4 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 07EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 07DD Signing time: Mon 30 Jun 2025 21:15:32 +0000 Manifest this update: Mon 30 Jun 2025 21:15:31 +0000 Manifest next update: Mon 07 Jul 2025 21:15:31 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: kPfJX2MMIL1ejPoeAqDdaLjtrZUl6emnBIN5dMorWtY=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: Es/KgzPMe1zYauziZBRZHyjZJ35reOpMCOBV6MckhCs=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: Ka3pUjVhAjV8Jw2bqRS1fw1Jl4NqlRDOjR/Fjs/H0+M=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: OhYJKozvfID8ylqYGKB5GjbLkxxbmKyR5Jo0rIME+Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2027 (0x7eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Jun 30 21:15:31 2025 GMT Not After : Jul 7 21:15:31 2025 GMT Subject: CN=6862fe73-6f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fb:e0:76:7d:04:43:47:ea:fe:1b:3b:fe:ad: 97:a0:0e:52:74:da:3c:61:a6:bf:43:3c:36:63:64: f6:20:8e:b7:c0:ec:df:67:a3:76:1f:d3:9a:21:db: 4d:81:0a:4c:1f:14:3d:dc:b2:df:79:7f:e3:fe:fb: f1:58:f8:b3:e1:53:0f:20:ad:cd:98:67:26:32:27: 52:d2:e1:52:31:66:c3:f5:86:f5:ad:c6:80:30:fa: 96:0c:f6:b8:cd:b2:5c:14:20:83:ae:09:85:8b:50: 2c:92:c2:40:f8:61:75:bb:f4:82:fb:40:7c:a3:46: 73:fd:1a:6b:89:20:14:bc:65:b1:01:39:e1:ef:8c: a3:de:c2:e1:d2:7f:19:11:ec:af:4a:20:fa:0d:83: 88:56:7d:3c:6a:1d:dd:95:96:8d:ef:4a:fb:f2:b8: e3:12:04:32:2a:d8:4a:71:99:a5:2b:65:b0:2d:d5: 31:bd:67:47:14:c2:28:09:94:67:2b:20:b8:bc:23: ba:41:15:ae:3d:12:b8:05:c3:43:03:35:01:fb:6b: 43:26:da:9f:c0:01:a7:b3:5b:3a:54:fd:fe:8b:5e: 1f:97:c4:c9:47:0b:68:c3:e5:a7:2c:0c:08:e7:13: 16:5a:c0:a7:ca:93:cf:60:a7:2a:b4:b4:e7:af:51: cc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:49:39:AB:AF:A8:F1:DA:50:51:DB:B4:7F:90:76:5C:00:53:F9:A4 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:81:ef:63:ca:73:f5:88:36:d6:84:64:01:33:4f:08:05:58: b4:69:6b:fc:3a:82:50:f1:51:b8:b2:8d:eb:3d:ea:b9:b4:b8: f8:e5:68:0d:54:c9:cd:eb:d4:fa:11:74:ef:bb:85:e7:98:a2: 30:49:67:92:16:22:88:3f:0b:b8:14:12:62:7a:dc:d4:5f:14: be:78:69:76:0c:d0:17:dd:9d:4d:45:b7:82:3b:c7:53:62:86: bf:ff:df:df:ec:14:22:9d:e0:9c:24:57:c9:55:6b:1e:93:68: 2e:ae:30:0a:6a:3f:75:b9:50:26:a6:2e:d9:ab:7c:6d:03:93: bd:dd:49:fb:5a:87:a5:a2:ed:9f:81:60:e7:ca:61:31:17:5a: 25:b8:83:36:61:a1:dc:d6:ff:b3:fc:29:0c:ff:6a:c1:d5:ac: 12:37:df:08:34:70:05:61:92:0d:02:76:d0:4a:65:bf:f4:b3: 33:62:32:9e:3b:3e:14:6b:a8:ce:9d:3f:fb:da:64:28:8f:7d: 5a:68:14:57:20:36:90:a2:65:1b:87:d5:32:d3:ba:38:b7:31: 09:d1:fa:8a:9b:0a:dc:ed:fc:b1:a1:58:69:9a:f4:35:91:07: 8b:00:ba:bc:4a:b4:4f:eb:3a:d5:df:a8:f4:78:a2:a0:71:f6: 0c:c2:43:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUwNjMwMjExNTMxWhcNMjUwNzA3MjExNTMxWjAYMRYwFAYD VQQDEw02ODYyZmU3My02ZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvvgdn0EQ0fq/hs7/q2XoA5SdNo8Yaa/Qzw2Y2T2II63wOzfZ6N2H9OaIdtN gQpMHxQ93LLfeX/j/vvxWPiz4VMPIK3NmGcmMidS0uFSMWbD9Yb1rcaAMPqWDPa4 zbJcFCCDrgmFi1AsksJA+GF1u/SC+0B8o0Zz/RpriSAUvGWxATnh74yj3sLh0n8Z EeyvSiD6DYOIVn08ah3dlZaN70r78rjjEgQyKthKcZmlK2WwLdUxvWdHFMIoCZRn KyC4vCO6QRWuPRK4BcNDAzUB+2tDJtqfwAGns1s6VP3+i14fl8TJRwtow+WnLAwI 5xMWWsCnypPPYKcqtLTnr1HMVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhJOauv qPHaUFHbtH+QdlwAU/mkMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBge9jynP1iDbWhGQBM08IBVi0aWv8OoJQ8VG4so3rPeq5tLj45WgN VMnN69T6EXTvu4XnmKIwSWeSFiKIPwu4FBJietzUXxS+eGl2DNAX3Z1NRbeCO8dT Yoa//9/f7BQineCcJFfJVWsek2gurjAKaj91uVAmpi7Zq3xtA5O93Un7Woelou2f gWDnymExF1oluIM2YaHc1v+z/CkM/2rB1awSN98INHAFYZINAnbQSmW/9LMzYjKe Oz4Ua6jOnT/72mQoj31aaBRXIDaQomUbh9Uy07o4tzEJ0fqKmwrc7fyxoVhpmvQ1 kQeLALq8SrRP6zrV36j0eKKgcfYMwkN7 -----END CERTIFICATE-----Generated at Tue Jul 1 21:17:39 2025 by rpki-client