$ rpki-client -vvf rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft File: 9MBkE3SXWli1TsAsEElzLsinCss.mft (raw, json) Hash identifier: OXQFL0FOEfLx0S669JszIhfA/ZwoBQRqxmg5DCyO1hE= Subject key identifier: 5E:B3:12:D0:14:33:FC:50:A0:8D:46:07:22:33:03:2B:90:D9:79:57 Authority key identifier: F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB Certificate issuer: /CN=A914EF21/serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft Manifest number: 0663 Signing time: Mon 30 Jun 2025 23:57:53 +0000 Manifest this update: Mon 30 Jun 2025 23:57:52 +0000 Manifest next update: Mon 07 Jul 2025 23:57:52 +0000 Files and hashes: 1: 9MBkE3SXWli1TsAsEElzLsinCss.crl (hash: FnvVBvwNpD0Njx/GJVXjh6/EktcINqCr1aowy3LCGYI=) 2: 7740AE687F8A11EE89807F7CC4F9AE02.roa (hash: fvo1aPGM+n05nvJm6qW9Z2hmGhNw4J6QEIdDkjbjrFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EF21, serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Validity Not Before: Jun 30 23:57:52 2025 GMT Not After : Jul 7 23:57:52 2025 GMT Subject: CN=68632481-5fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:07:5a:fc:bb:59:e2:9c:1e:3b:46:00:ac:dc: 44:f4:94:ef:bc:61:b1:09:0d:fe:10:74:33:c6:1b: 74:1f:d2:c2:ea:d4:2c:d6:fe:f3:a6:0e:cf:e6:ec: de:c8:69:41:22:4c:14:d3:5d:2b:2c:85:b9:56:c2: 31:62:74:4b:55:e5:3f:e0:5e:fb:0e:57:13:4e:19: 94:97:86:40:a1:b7:ff:7f:78:5a:1b:60:81:1f:16: c3:b8:6c:4a:1c:b5:ba:2a:62:8c:51:ff:60:48:fb: 5a:6f:5e:ec:df:f6:69:82:23:17:ea:dd:40:0a:73: 78:1c:3e:0f:9f:e8:ca:f4:5e:1b:bd:a8:57:d9:78: a4:d4:f1:7c:e6:26:43:7f:1b:21:11:03:d7:27:67: 22:5b:3f:8d:f0:fc:e2:a2:5e:76:8c:46:ec:98:a1: d7:f7:d8:f2:7f:e8:42:bb:56:83:d3:e3:39:e4:6c: 66:45:7d:f9:ad:ac:df:3d:1d:2d:c6:63:6b:76:ec: 6b:32:ae:80:37:1a:ec:a1:5d:19:92:f3:af:5c:80: 01:14:fb:d5:31:c8:60:41:9f:e7:b4:8d:2f:b9:4f: 37:ff:a4:1a:2a:7c:1f:4b:14:54:b6:47:ea:71:0c: 86:aa:a1:82:af:10:ea:16:66:5e:6b:d6:65:e5:dd: c3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B3:12:D0:14:33:FC:50:A0:8D:46:07:22:33:03:2B:90:D9:79:57 X509v3 Authority Key Identifier: keyid:F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:28:1f:2f:28:8c:47:c8:c9:b9:d2:a1:19:67:2a:d6:9b:40: 82:20:41:80:80:3f:87:36:42:0a:88:f3:fb:e1:94:cd:c3:1e: e7:4e:18:57:7b:4c:0d:78:b5:c4:d2:c8:72:78:cd:f5:40:b3: 5b:ac:0b:3f:c5:8d:d1:c7:99:19:c7:e2:dc:6f:64:bf:20:0f: 21:3c:ad:33:a7:fc:b1:83:e0:a2:7b:1f:28:86:07:5f:df:55: d6:46:b8:be:a4:65:c7:7f:3c:40:e7:ae:91:87:2a:15:cf:6b: 1e:11:d0:a3:70:9c:93:03:30:93:12:c8:21:50:58:45:7a:2b: cb:ce:6b:5d:89:9f:81:f8:46:91:cb:63:44:eb:e7:ef:74:0d: ab:0b:be:53:c0:ff:d1:a5:3d:c4:34:13:7b:38:b6:59:04:c8: fb:e8:9b:b2:73:84:05:b4:1a:6f:4e:a1:ef:19:7f:f1:c2:73: 6a:ef:42:0f:c5:d4:4d:5c:71:13:73:2c:54:87:21:06:06:a0: 13:48:d7:f3:e7:32:a7:52:94:03:1e:19:b4:aa:58:22:bd:ff: 99:20:ba:00:9d:c0:63:c2:b9:36:3d:f9:38:b2:9a:27:d4:96: b0:8c:a2:72:0d:1e:cd:4a:1e:a2:53:9c:24:d6:0d:c4:a2:f0: ee:e8:83:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVGMjExMTAvBgNVBAUTKEY0QzA2NDEzNzQ5NzVBNThCNTRFQzAyQzEwNDk3MzJF QzhBNzBBQ0IwHhcNMjUwNjMwMjM1NzUyWhcNMjUwNzA3MjM1NzUyWjAYMRYwFAYD VQQDEw02ODYzMjQ4MS01ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAda/LtZ4pweO0YArNxE9JTvvGGxCQ3+EHQzxht0H9LC6tQs1v7zpg7P5uze yGlBIkwU010rLIW5VsIxYnRLVeU/4F77DlcTThmUl4ZAobf/f3haG2CBHxbDuGxK HLW6KmKMUf9gSPtab17s3/ZpgiMX6t1ACnN4HD4Pn+jK9F4bvahX2Xik1PF85iZD fxshEQPXJ2ciWz+N8Pziol52jEbsmKHX99jyf+hCu1aD0+M55GxmRX35razfPR0t xmNrduxrMq6ANxrsoV0ZkvOvXIABFPvVMchgQZ/ntI0vuU83/6QaKnwfSxRUtkfq cQyGqqGCrxDqFmZea9Zl5d3D2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6zEtAU M/xQoI1GByIzAyuQ2XlXMB8GA1UdIwQYMBaAFPTAZBN0l1pYtU7ALBBJcy7IpwrL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUYyMS9FQURCQjQxMjAx ODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFdsaTFUc0FzRUVsekxzaW5D c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNQmtFM1NYV2xpMVRzQXNFRWx6THNpbkNzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUYyMS9FQURCQjQxMjAxODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFds aTFUc0FzRUVsekxzaW5Dc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFKB8vKIxHyMm50qEZZyrWm0CCIEGAgD+HNkIKiPP74ZTNwx7nThhX e0wNeLXE0shyeM31QLNbrAs/xY3Rx5kZx+Lcb2S/IA8hPK0zp/yxg+Ciex8ohgdf 31XWRri+pGXHfzxA566RhyoVz2seEdCjcJyTAzCTEsghUFhFeivLzmtdiZ+B+EaR y2NE6+fvdA2rC75TwP/RpT3ENBN7OLZZBMj76Juyc4QFtBpvTqHvGX/xwnNq70IP xdRNXHETcyxUhyEGBqATSNfz5zKnUpQDHhm0qlgivf+ZILoAncBjwrk2Pfk4spon 1JawjKJyDR7NSh6iU5wk1g3EovDu6IOG -----END CERTIFICATE-----Generated at Tue Jul 1 11:12:59 2025 by rpki-client