$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: ehI27FwJv1hgaaSzYm5xQIav/cFtGXRVTAwn2fFAC3I= Subject key identifier: C7:BA:F2:66:2D:E5:49:E4:62:40:FA:39:74:F4:15:FC:ED:A5:ED:45 Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01E1 Signing time: Tue 01 Jul 2025 03:00:54 +0000 Manifest this update: Tue 01 Jul 2025 03:00:54 +0000 Manifest next update: Tue 08 Jul 2025 03:00:54 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: Tqz712nVNpPSCoRJzvgUljH9wqbYWZ5Db98eI4JTRr0=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Jul 1 03:00:54 2025 GMT Not After : Jul 8 03:00:54 2025 GMT Subject: CN=68634f66-91b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:be:9d:bd:d6:de:32:e6:ec:c5:53:65:b8:ca: 47:fe:7e:3a:1c:68:29:a9:b2:37:97:5e:21:68:84: 5c:a6:57:45:af:43:ab:16:07:04:06:41:39:5c:89: d7:4c:f8:4d:96:fe:86:e2:b4:53:0d:bb:a7:a5:83: 07:1f:98:12:00:cc:fe:91:e7:f9:d2:be:43:4d:80: fa:63:47:cc:38:2a:8b:e3:a5:b0:30:85:85:cf:04: a5:c1:2e:6e:2f:a8:0c:3e:64:c4:ba:6f:9c:86:45: 2a:d4:7e:5a:99:01:e6:62:84:9f:fc:26:1c:c6:cf: ad:ba:f9:55:cb:6f:9e:54:19:c1:47:43:ef:18:af: 11:6c:1e:af:f7:ec:90:9a:15:16:72:fa:92:22:c5: 56:4a:06:e2:0a:b6:3c:66:19:3c:26:7a:b7:9f:31: aa:98:13:5f:0a:6a:21:fb:fa:a8:42:aa:31:c5:0d: f8:a2:c1:fd:6e:2f:ef:05:80:c0:02:f1:70:d8:53: 94:8a:b9:9e:21:25:ac:06:af:b5:bc:55:bd:9d:45: 6a:3d:42:cf:95:5d:35:17:ea:9e:57:ef:24:67:df: 13:48:c7:93:c5:89:51:b0:6a:e0:d8:89:39:ba:d1: 75:0a:fe:94:26:e9:35:4b:a7:86:51:53:47:c4:10: 00:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:BA:F2:66:2D:E5:49:E4:62:40:FA:39:74:F4:15:FC:ED:A5:ED:45 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ca:0f:87:6b:4b:25:f4:ec:1f:f6:ec:68:dc:fd:63:f2:03: 19:e8:08:9a:65:ef:99:1c:02:de:a4:f4:a4:4b:2f:a9:7a:be: dd:6b:4e:cd:8f:77:fd:61:5b:dd:f4:5e:d5:6d:47:22:b9:a9: f7:ae:df:98:d9:04:f6:5f:67:57:bb:c5:22:9c:73:20:b0:bd: 8d:3d:3b:2f:c4:8b:35:a5:80:08:47:3e:e9:47:e1:b2:01:1c: 36:04:44:e0:50:b0:21:14:58:60:ef:ad:46:74:22:a1:ab:a4: 99:79:ec:6f:64:1d:74:a3:c2:ef:a5:ad:49:7f:f3:8e:62:83: b6:de:98:a9:e6:26:e8:91:e7:72:68:90:f6:a4:22:e1:8d:57: 81:0d:8f:a6:c5:17:10:75:47:e8:0d:ce:63:04:f8:4e:26:90: ea:90:f5:54:c7:ba:1e:ca:99:1e:67:42:1f:a2:02:9f:a2:d4: fa:06:82:a3:0d:3b:d0:38:2c:f2:ea:19:ad:52:03:e4:10:9b: 65:d0:40:90:b7:b7:b7:96:0e:3f:c4:c3:c1:6c:28:e9:06:ec: 4b:c8:18:93:c3:be:2b:1d:35:17:b3:15:70:ba:9e:80:24:d4: 8b:5d:40:57:60:bc:c4:f9:21:bd:43:e8:a9:d2:ad:3f:92:2f: 14:e6:8b:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwNzAxMDMwMDU0WhcNMjUwNzA4MDMwMDU0WjAYMRYwFAYD VQQDEw02ODYzNGY2Ni05MWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA076dvdbeMubsxVNluMpH/n46HGgpqbI3l14haIRcpldFr0OrFgcEBkE5XInX TPhNlv6G4rRTDbunpYMHH5gSAMz+kef50r5DTYD6Y0fMOCqL46WwMIWFzwSlwS5u L6gMPmTEum+chkUq1H5amQHmYoSf/CYcxs+tuvlVy2+eVBnBR0PvGK8RbB6v9+yQ mhUWcvqSIsVWSgbiCrY8Zhk8Jnq3nzGqmBNfCmoh+/qoQqoxxQ34osH9bi/vBYDA AvFw2FOUirmeISWsBq+1vFW9nUVqPULPlV01F+qeV+8kZ98TSMeTxYlRsGrg2Ik5 utF1Cv6UJuk1S6eGUVNHxBAAoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMe68mYt 5UnkYkD6OXT0Ffztpe1FMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADyg+Ha0sl9Owf9uxo3P1j8gMZ6AiaZe+ZHALepPSkSy+per7da07N j3f9YVvd9F7VbUciuan3rt+Y2QT2X2dXu8UinHMgsL2NPTsvxIs1pYAIRz7pR+Gy ARw2BETgULAhFFhg761GdCKhq6SZeexvZB10o8Lvpa1Jf/OOYoO23pip5ibokedy aJD2pCLhjVeBDY+mxRcQdUfoDc5jBPhOJpDqkPVUx7oeypkeZ0IfogKfotT6BoKj DTvQOCzy6hmtUgPkEJtl0ECQt7e3lg4/xMPBbCjpBuxLyBiTw74rHTUXsxVwup6A JNSLXUBXYLzE+SG9Q+ip0q0/ki8U5ovM -----END CERTIFICATE-----Generated at Wed Jul 2 23:38:58 2025 by rpki-client