$ rpki-client -vvf rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft File: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft (raw, json) Hash identifier: /neZ3RqJSyd/BTue++P9jxohp/w74RnyYsnUuXW3uDY= Subject key identifier: F4:3E:BD:BC:80:3E:B0:AA:19:96:32:07:80:95:E2:43:44:3E:D6:51 Authority key identifier: F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 Certificate issuer: /CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft Manifest number: A6 Signing time: Tue 01 Jul 2025 06:50:14 +0000 Manifest this update: Tue 01 Jul 2025 06:50:14 +0000 Manifest next update: Tue 08 Jul 2025 06:50:14 +0000 Files and hashes: 1: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl (hash: /QziMz+UwjRpCqKEPP9BEJQj6F7HG8pDmTjrGuKWuI4=) 2: BBC65AEC5AE511EFBC1FAA45C4F9AE02.roa (hash: Gqrui0OpB1CczHELSAaN90W0H5eLSv922/lG6tauLOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AA2E, serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Validity Not Before: Jul 1 06:50:14 2025 GMT Not After : Jul 8 06:50:14 2025 GMT Subject: CN=68638526-cb9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:69:28:26:b5:96:2d:a8:f3:fc:ef:58:27:9e: d4:ff:7d:ad:1c:be:64:cd:b5:ac:fe:0a:f2:44:c4: 29:ee:c1:ae:5d:98:10:4a:04:33:d8:6e:c6:c1:82: 3f:72:14:d2:42:c4:74:6a:9a:16:43:6c:dc:e0:8b: ad:b5:49:58:09:23:d8:50:59:ae:de:79:8d:af:5b: 1a:7f:00:46:12:e1:f8:04:0e:1d:d8:1d:01:8b:05: db:bf:91:3f:03:5f:6f:0d:fa:bf:e0:bb:d6:90:47: b5:82:18:be:1f:35:0c:ea:9d:ef:f7:f5:8f:15:12: 71:54:b7:97:66:5d:64:b5:32:44:44:54:9c:3f:a9: 31:dc:f6:7b:d6:00:f3:39:94:1b:6c:2d:36:2b:c0: 96:88:36:aa:ab:a1:a6:91:e5:52:88:23:03:dd:8d: 36:34:04:12:a1:a9:6a:77:ed:5e:52:1e:42:92:6b: 67:cf:6b:be:3b:1d:fd:cf:30:82:6d:93:8c:74:f4: 68:3f:a8:8f:05:f0:29:2d:af:95:af:57:d2:7b:a0: c6:2f:45:51:a8:d1:dc:33:eb:d4:84:2e:31:64:42: cd:32:08:c7:f9:17:43:ba:64:af:89:70:f7:fd:42: fb:1b:6d:d8:87:9f:a0:18:03:7b:84:a1:63:a4:3d: 1c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3E:BD:BC:80:3E:B0:AA:19:96:32:07:80:95:E2:43:44:3E:D6:51 X509v3 Authority Key Identifier: keyid:F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:c0:fc:fb:c2:f7:ef:31:5e:80:d4:61:f3:4c:df:ea:dd:22: fd:b3:f3:da:b2:90:53:65:a5:01:89:3c:89:d8:22:39:1e:a6: 7f:84:60:0c:95:68:ad:56:29:be:e1:3c:92:b7:d2:ce:fa:2e: 4f:05:2a:53:9c:d6:5c:ee:61:da:89:0d:26:68:ef:19:64:ce: 04:d3:19:39:e3:4b:a6:7a:71:4e:3b:0f:a1:47:e6:94:e1:ca: 24:f2:94:7f:4a:26:8b:6b:62:3b:ed:ce:94:3e:70:7d:5f:6a: cb:16:cf:a3:36:c4:2e:02:04:b1:30:3e:22:f5:05:4f:e5:9d: ba:9c:d4:fb:7d:3a:d5:bb:a0:ec:3c:87:67:ca:19:fb:85:a9: 29:fa:66:15:b8:2c:90:81:5d:ce:bb:e7:3c:16:25:25:3a:12: 08:f2:de:f2:db:fc:c6:a0:35:aa:f9:92:ad:f9:b5:5d:de:7d: d9:75:20:eb:5b:f0:9f:84:85:fa:f9:98:ab:43:5a:94:34:91: 1d:82:e7:c7:24:0c:c5:57:51:cf:71:f5:d7:fc:39:07:ad:78: 1f:29:7c:19:46:f0:c2:2b:77:f4:9d:7c:7e:88:8a:21:f8:63: a0:d1:dd:c8:07:ca:23:23:6a:85:f9:1c:10:b1:9a:94:36:8b: cb:af:52:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFBMkUxMTAvBgNVBAUTKEY1ODAyRDkwM0RBMTBDRDAzRkNGM0U4RTE2NTVGNTIx QzFEODU3ODMwHhcNMjUwNzAxMDY1MDE0WhcNMjUwNzA4MDY1MDE0WjAYMRYwFAYD VQQDEw02ODYzODUyNi1jYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8WkoJrWWLajz/O9YJ57U/32tHL5kzbWs/gryRMQp7sGuXZgQSgQz2G7GwYI/ chTSQsR0apoWQ2zc4IuttUlYCSPYUFmu3nmNr1safwBGEuH4BA4d2B0BiwXbv5E/ A19vDfq/4LvWkEe1ghi+HzUM6p3v9/WPFRJxVLeXZl1ktTJERFScP6kx3PZ71gDz OZQbbC02K8CWiDaqq6GmkeVSiCMD3Y02NAQSoalqd+1eUh5Ckmtnz2u+Ox39zzCC bZOMdPRoP6iPBfApLa+Vr1fSe6DGL0VRqNHcM+vUhC4xZELNMgjH+RdDumSviXD3 /UL7G23Yh5+gGAN7hKFjpD0cNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQ+vbyA PrCqGZYyB4CV4kNEPtZRMB8GA1UdIwQYMBaAFPWALZA9oQzQP88+jhZV9SHB2FeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUEyRS83QUZDOURGMDVB RTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaEROQV96ejZPRmxYMUljSFlW NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlZQXRrRDJoRE5BX3p6Nk9GbFgxSWNIWVY0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUEyRS83QUZDOURGMDVBRTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaERO QV96ejZPRmxYMUljSFlWNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqwPz7wvfvMV6A1GHzTN/q3SL9s/PaspBTZaUBiTyJ2CI5HqZ/hGAM lWitVim+4TySt9LO+i5PBSpTnNZc7mHaiQ0maO8ZZM4E0xk540umenFOOw+hR+aU 4cok8pR/SiaLa2I77c6UPnB9X2rLFs+jNsQuAgSxMD4i9QVP5Z26nNT7fTrVu6Ds PIdnyhn7hakp+mYVuCyQgV3Ou+c8FiUlOhII8t7y2/zGoDWq+ZKt+bVd3n3ZdSDr W/CfhIX6+ZirQ1qUNJEdgufHJAzFV1HPcfXX/DkHrXgfKXwZRvDCK3f0nXx+iIoh +GOg0d3IB8ojI2qF+RwQsZqUNovLr1LS -----END CERTIFICATE-----Generated at Thu Jul 3 04:28:14 2025 by rpki-client