$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: PA07hhvL6q6Q3IbWyjKDTQx9zylMAGEbvSKtW+9UYKk= Subject key identifier: F7:B5:76:47:FE:C5:85:3F:5F:67:4A:DF:23:F7:F5:56:72:08:23:F6 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B1E Signing time: Sat 28 Jun 2025 18:56:31 +0000 Manifest this update: Sat 28 Jun 2025 18:56:30 +0000 Manifest next update: Sat 05 Jul 2025 18:56:30 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: PHqvangierQRCPCjVjACFh1nALLoMziZiVmicXwtJRY=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: m3vliiEgyQOK9cLamk8Seg9r2MS0Thb0iCeLTBZTTaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Jun 28 18:56:30 2025 GMT Not After : Jul 5 18:56:30 2025 GMT Subject: CN=68603adf-6e5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:68:b7:8f:48:98:19:7b:9b:23:b6:f6:f7:97: a8:52:45:e2:12:d4:34:41:2a:16:b6:fe:70:d1:63: c9:46:8f:a4:ae:a1:9a:0a:f3:2d:f2:b3:27:80:5c: 19:e0:a3:c6:e3:d8:c3:62:51:10:e4:df:ec:8b:d9: b2:b2:69:64:48:d9:e7:9d:d6:5b:b3:dd:58:8c:13: d0:23:5d:a8:89:80:78:da:b5:1b:bb:47:8c:88:69: 27:78:82:c5:fc:10:6b:8a:d3:ef:19:2d:31:53:43: 82:3a:fb:a3:cf:0e:b9:a7:88:5a:d7:25:7a:76:45: a0:7b:57:50:75:0d:09:d7:02:3f:d8:34:c1:23:5a: 80:49:29:14:89:be:cc:d2:e5:1f:78:fb:7d:e0:c3: 41:9c:1a:fc:ed:99:d6:c3:04:bd:fd:09:ed:5c:09: d3:e3:84:ca:47:e9:be:9a:c5:a1:b0:0e:f6:55:2d: dd:02:ac:fb:f4:58:99:99:0b:f8:65:bc:4c:8b:ce: 10:58:3d:f4:c2:9d:ae:00:12:04:ff:3d:56:e3:d1: 8a:25:2e:7a:35:d9:e3:81:b0:3e:65:bc:e0:f0:46: 01:3d:b9:b5:84:6f:90:04:00:25:af:42:39:a9:46: 2d:30:5c:57:18:fc:6d:8c:2a:ab:93:f5:ee:9b:0e: b1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B5:76:47:FE:C5:85:3F:5F:67:4A:DF:23:F7:F5:56:72:08:23:F6 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:6b:5a:17:df:cb:42:fa:93:66:02:ed:7b:4a:3b:d0:c8:78: 5c:e6:ac:44:d1:6c:23:db:0e:9c:45:e6:44:cd:11:68:fe:f3: f6:4d:e1:41:63:ba:9a:c3:ac:28:4c:bd:e6:9f:33:ed:bb:41: be:ea:61:f3:09:d3:a5:16:c5:f3:34:7e:2d:ff:3b:45:e0:36: ad:ac:e1:ab:a2:49:36:4f:cf:30:e6:d1:47:cd:ce:dd:7e:63: e0:a2:e6:93:47:40:11:fd:1d:88:63:10:f2:b6:10:13:d7:7a: 99:2b:19:38:06:a9:df:36:69:cc:46:9c:ee:09:84:11:b7:3e: 8a:ce:25:14:bb:8d:7c:6c:62:a2:3b:9e:91:ed:ac:61:25:75: 4a:c4:c3:d1:ed:5d:73:6f:48:08:2f:7f:04:a7:b6:fc:12:90: 03:c9:a6:55:60:e1:16:62:76:0c:94:f1:81:1e:66:80:a4:c4: f0:92:86:cb:34:7b:7d:68:6b:0d:16:59:98:2c:eb:3f:7c:e4: 10:48:92:ef:8f:bb:03:60:7d:e2:dd:79:53:94:f7:fe:db:a8: ca:eb:d8:fc:49:bc:ce:b7:97:68:cb:30:70:a9:48:e2:e7:8c: 8e:04:42:38:72:ad:b0:72:5e:21:ed:9b:17:e8:e6:44:a5:5c: 77:29:6b:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUwNjI4MTg1NjMwWhcNMjUwNzA1MTg1NjMwWjAYMRYwFAYD VQQDEw02ODYwM2FkZi02ZTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2i3j0iYGXubI7b295eoUkXiEtQ0QSoWtv5w0WPJRo+krqGaCvMt8rMngFwZ 4KPG49jDYlEQ5N/si9mysmlkSNnnndZbs91YjBPQI12oiYB42rUbu0eMiGkneILF /BBritPvGS0xU0OCOvujzw65p4ha1yV6dkWge1dQdQ0J1wI/2DTBI1qASSkUib7M 0uUfePt94MNBnBr87ZnWwwS9/QntXAnT44TKR+m+msWhsA72VS3dAqz79FiZmQv4 ZbxMi84QWD30wp2uABIE/z1W49GKJS56NdnjgbA+Zbzg8EYBPbm1hG+QBAAlr0I5 qUYtMFxXGPxtjCqrk/Xumw6x5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPe1dkf+ xYU/X2dK3yP39VZyCCP2MB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMa1oX38tC+pNmAu17SjvQyHhc5qxE0Wwj2w6cReZEzRFo/vP2TeFB Y7qaw6woTL3mnzPtu0G+6mHzCdOlFsXzNH4t/ztF4DatrOGrokk2T88w5tFHzc7d fmPgouaTR0AR/R2IYxDythAT13qZKxk4BqnfNmnMRpzuCYQRtz6KziUUu418bGKi O56R7axhJXVKxMPR7V1zb0gIL38Ep7b8EpADyaZVYOEWYnYMlPGBHmaApMTwkobL NHt9aGsNFlmYLOs/fOQQSJLvj7sDYH3i3XlTlPf+26jK69j8SbzOt5doyzBwqUji 54yOBEI4cq2wcl4h7ZsX6OZEpVx3KWvD -----END CERTIFICATE-----Generated at Mon Jun 30 14:11:15 2025 by rpki-client