$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: ImtS4NYir8MlEqpuK+s9PUIDcAjil0JcypSFMqN3A9k= Subject key identifier: F3:BF:78:4A:51:F9:9E:B1:33:69:1A:EA:B5:9E:E1:79:E3:31:33:62 Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 075C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 0752 Signing time: Wed 02 Jul 2025 21:58:46 +0000 Manifest this update: Wed 02 Jul 2025 21:58:46 +0000 Manifest next update: Wed 09 Jul 2025 21:58:46 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: areB/nI9xLjzjHdU+GyK1aA/KUF/+A5QOZSiccjfIww=) 2: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: 9PkY3r845C6Gg3gR8AKgajQ8wsvmdGvtBQ6YZXFN9yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1884 (0x75c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Jul 2 21:58:46 2025 GMT Not After : Jul 9 21:58:46 2025 GMT Subject: CN=6865ab96-8eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fc:ef:4e:0b:22:cd:00:60:39:7c:0e:98:8e: 38:4f:f4:ad:a0:14:57:70:ce:2a:9d:7e:e9:91:a0: 36:19:9c:e3:43:ca:57:dd:8c:ce:a3:aa:91:42:45: f0:42:15:1b:02:7d:b9:e5:6c:c7:23:e4:a3:b7:b9: 75:34:bb:d4:57:39:90:51:72:9c:3e:ff:fb:97:97: 3c:06:9e:bb:ce:90:53:77:06:e4:92:ae:cd:64:d5: 31:25:ef:5b:24:6c:7d:c0:14:62:e4:e0:1e:a7:72: c8:4e:51:0b:69:ed:19:d5:bc:ec:19:a7:b0:80:c0: 71:e9:1f:b9:bf:7c:08:2a:bc:7d:7c:3d:ee:71:54: 17:ae:64:a0:dd:cc:3e:37:d0:5c:3c:9e:8f:a7:4c: 9b:6c:bf:4c:81:00:ec:72:5b:7e:a7:77:e7:31:46: f0:22:45:29:66:a0:35:9a:21:ce:51:c2:ba:4b:da: 23:cf:fa:88:76:6d:9b:cc:ae:70:8a:64:bb:80:1c: 8c:d1:9c:01:1a:dd:2f:ee:b5:ad:ed:9e:13:dc:fb: c3:dc:34:4d:d3:33:e8:1e:9e:84:92:fb:b6:54:3c: 2e:fb:fb:e9:d1:6d:7f:23:2f:27:0f:95:2c:20:49: 18:61:7c:ee:60:ef:e0:13:aa:a4:19:c3:99:25:86: 0e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:BF:78:4A:51:F9:9E:B1:33:69:1A:EA:B5:9E:E1:79:E3:31:33:62 X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:7a:ad:22:44:b6:94:6b:66:7d:89:01:4b:a0:84:fe:6e:f1: 4a:b6:f0:70:61:4f:77:72:ff:83:cf:b7:97:0b:81:da:ee:56: 55:8d:0b:47:38:60:a8:a9:eb:af:2b:5d:f5:de:7b:e5:f1:9a: 20:fe:3e:17:f9:c3:a8:44:52:73:8f:1e:1f:ee:94:55:7e:1a: 81:d1:52:d5:de:83:8a:a6:13:df:e8:68:37:8f:51:6d:cb:50: 77:a5:d1:d8:1b:00:24:5f:62:0f:5b:1c:fd:92:c5:d6:78:2b: 7f:a4:ef:a8:3d:3b:26:e2:34:a9:e7:38:a6:05:16:ad:f2:97: 35:01:e0:86:32:33:f0:8f:22:fe:82:99:71:d9:6e:4a:d7:8b: 50:88:22:ed:09:92:70:51:f3:95:5e:05:0e:55:86:13:ff:a1: 28:2d:d2:83:37:88:32:ab:07:ae:46:c1:ce:06:d0:fa:f9:43: f6:38:76:13:d2:1d:a9:b4:8a:40:de:a9:11:50:ee:01:16:40: 42:9e:75:10:25:46:a9:6a:95:b4:9c:8b:88:f5:fd:fd:82:8a: e6:54:e4:cd:7b:d2:be:17:b0:92:6c:ea:18:2b:f2:21:c7:47: cd:5d:91:82:1a:f7:7c:c2:0a:86:26:01:9a:01:8e:8b:7e:f3: f7:ef:7d:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUwNzAyMjE1ODQ2WhcNMjUwNzA5MjE1ODQ2WjAYMRYwFAYD VQQDEw02ODY1YWI5Ni04ZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fzvTgsizQBgOXwOmI44T/StoBRXcM4qnX7pkaA2GZzjQ8pX3YzOo6qRQkXw QhUbAn255WzHI+Sjt7l1NLvUVzmQUXKcPv/7l5c8Bp67zpBTdwbkkq7NZNUxJe9b JGx9wBRi5OAep3LITlELae0Z1bzsGaewgMBx6R+5v3wIKrx9fD3ucVQXrmSg3cw+ N9BcPJ6Pp0ybbL9MgQDsclt+p3fnMUbwIkUpZqA1miHOUcK6S9ojz/qIdm2bzK5w imS7gByM0ZwBGt0v7rWt7Z4T3PvD3DRN0zPoHp6Ekvu2VDwu+/vp0W1/Iy8nD5Us IEkYYXzuYO/gE6qkGcOZJYYOIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPO/eEpR +Z6xM2ka6rWe4XnjMTNiMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTeq0iRLaUa2Z9iQFLoIT+bvFKtvBwYU93cv+Dz7eXC4Ha7lZVjQtH OGCoqeuvK1313nvl8Zog/j4X+cOoRFJzjx4f7pRVfhqB0VLV3oOKphPf6Gg3j1Ft y1B3pdHYGwAkX2IPWxz9ksXWeCt/pO+oPTsm4jSp5zimBRat8pc1AeCGMjPwjyL+ gplx2W5K14tQiCLtCZJwUfOVXgUOVYYT/6EoLdKDN4gyqweuRsHOBtD6+UP2OHYT 0h2ptIpA3qkRUO4BFkBCnnUQJUapapW0nIuI9f39gormVOTNe9K+F7CSbOoYK/Ih x0fNXZGCGvd8wgqGJgGaAY6LfvP3732k -----END CERTIFICATE-----Generated at Thu Jul 3 10:41:40 2025 by rpki-client