$ rpki-client -vvf rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft File: a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft (raw, json) Hash identifier: uBxIAGRLwoeMrl6gF3w9+1hYOBqvEFGEqUeV7xv4jKw= Subject key identifier: 0C:3A:86:00:AD:7C:53:36:E0:9A:AC:37:29:FA:CC:AD:62:87:6E:D9 Authority key identifier: 6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D Certificate issuer: /CN=A9164655/serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Certificate serial: 0552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft Manifest number: 054E Signing time: Mon 30 Jun 2025 23:47:29 +0000 Manifest this update: Mon 30 Jun 2025 23:47:28 +0000 Manifest next update: Mon 07 Jul 2025 23:47:28 +0000 Files and hashes: 1: a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl (hash: hwnPIExelPhUUURdvnrP2muDRMxMXhqb7pyp/KyboOA=) 2: B2CB84D4F3E211EB9512E219C4F9AE02.roa (hash: AKQYRTBp1uq5xNSQ+35Oq/CNR0101RtjFiouleUDl3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164655, serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Validity Not Before: Jun 30 23:47:28 2025 GMT Not After : Jul 7 23:47:28 2025 GMT Subject: CN=68632211-891f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8a:ae:50:95:5b:c7:12:42:80:a8:8d:e4:6d: f4:e7:dc:7b:48:0f:43:82:ac:fe:14:b7:2c:58:b7: 80:00:06:31:d5:2e:91:a1:8c:d5:fd:37:24:90:d8: 31:3e:8e:51:83:f2:5c:7a:aa:37:61:fc:12:94:d1: 71:25:0e:94:00:ee:97:97:84:e3:07:89:22:e2:9c: a8:a7:7e:2f:61:c6:ee:6c:09:85:52:da:7f:83:0b: 8d:3c:1d:cf:81:46:5a:86:43:fb:c5:bf:d2:67:73: 41:99:34:9c:cc:36:54:2d:75:55:3b:40:4e:54:e6: 57:63:04:d8:aa:1d:af:00:bb:92:f8:c7:f0:72:66: 12:a5:77:06:32:fd:f6:a0:7b:88:3c:45:df:d5:69: 22:a1:21:ac:19:9a:cf:48:8c:97:1f:b9:12:46:8d: be:5e:7a:64:6c:03:29:f2:8e:ad:50:ec:c3:fe:7f: 1e:85:37:c7:ca:b5:9e:6a:3b:e7:2a:24:74:6f:dd: 02:2c:16:83:4b:a8:8f:ac:c3:aa:e5:0c:49:44:b9: 25:d4:94:ea:8b:05:50:5b:26:7f:55:39:ed:9c:7b: 71:2d:32:f2:7a:ca:68:d4:84:cf:aa:e5:82:ea:25: f7:56:66:ef:8e:94:d0:78:7c:82:23:f8:ef:f9:57: d6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3A:86:00:AD:7C:53:36:E0:9A:AC:37:29:FA:CC:AD:62:87:6E:D9 X509v3 Authority Key Identifier: keyid:6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:af:12:ae:3e:3a:a6:a8:88:17:db:57:30:00:a0:a7:99:3e: f2:33:b7:97:89:a5:99:0e:57:36:5e:45:4e:96:db:62:6c:c1: 6e:67:1d:a6:1a:22:75:96:18:78:91:31:57:fa:3e:55:0f:e7: 09:2d:c7:93:8c:48:ad:0e:01:3f:2b:46:cf:5d:d4:37:a4:64: 5b:90:41:5f:ee:18:eb:95:ec:05:ee:32:81:34:17:6b:48:6d: 61:d8:72:3f:00:17:5b:58:47:84:1f:a4:aa:b0:b3:2b:cf:48: b0:c6:65:7f:d3:ea:46:14:56:07:f5:a7:e5:55:cd:bd:f8:37: 8e:52:9e:4a:ca:83:4e:e7:03:30:b9:a8:c0:84:fe:53:46:3d: 74:61:7b:0b:c6:91:dc:72:a2:7e:b9:48:e0:64:47:4f:94:13: c4:96:87:80:65:ca:37:b6:0a:bc:59:e8:bb:45:50:68:4a:52: e9:7d:47:1d:3f:a7:73:c4:f1:55:2a:53:ab:23:70:70:6f:46: 62:92:28:6e:b7:65:ef:36:b9:c8:c5:8d:29:97:cd:78:ed:5b: fc:aa:b6:d9:e4:cb:d4:1d:ad:55:17:e3:ce:fe:bd:69:c0:72: fb:54:35:3f:b2:2a:c7:6e:c8:f8:fc:79:44:ef:f1:b7:4e:db: 41:87:0c:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NTUxMTAvBgNVBAUTKDZCRDE0NUVDRTQyQUU0RkQ4MkFENjdDRkQxQTQwNTlB OUVBQjNBNkQwHhcNMjUwNjMwMjM0NzI4WhcNMjUwNzA3MjM0NzI4WjAYMRYwFAYD VQQDEw02ODYzMjIxMS04OTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6oquUJVbxxJCgKiN5G3059x7SA9Dgqz+FLcsWLeAAAYx1S6RoYzV/TckkNgx Po5Rg/Jceqo3YfwSlNFxJQ6UAO6Xl4TjB4ki4pyop34vYcbubAmFUtp/gwuNPB3P gUZahkP7xb/SZ3NBmTSczDZULXVVO0BOVOZXYwTYqh2vALuS+MfwcmYSpXcGMv32 oHuIPEXf1WkioSGsGZrPSIyXH7kSRo2+XnpkbAMp8o6tUOzD/n8ehTfHyrWeajvn KiR0b90CLBaDS6iPrMOq5QxJRLkl1JTqiwVQWyZ/VTntnHtxLTLyespo1ITPquWC 6iX3VmbvjpTQeHyCI/jv+VfWYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAw6hgCt fFM24JqsNyn6zK1ih27ZMB8GA1UdIwQYMBaAFGvRRezkKuT9gq1nz9GkBZqeqzpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY1NS9EOEJCODQ5QUYz REUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQMkNyV2ZQMGFRRm1wNnJP bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5RkY3T1FxNVAyQ3JXZlAwYVFGbXA2ck9tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY1NS9EOEJCODQ5QUYzREUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQ MkNyV2ZQMGFRRm1wNnJPbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzrxKuPjqmqIgX21cwAKCnmT7yM7eXiaWZDlc2XkVOlttibMFuZx2m GiJ1lhh4kTFX+j5VD+cJLceTjEitDgE/K0bPXdQ3pGRbkEFf7hjrlewF7jKBNBdr SG1h2HI/ABdbWEeEH6SqsLMrz0iwxmV/0+pGFFYH9aflVc29+DeOUp5KyoNO5wMw uajAhP5TRj10YXsLxpHccqJ+uUjgZEdPlBPEloeAZco3tgq8Wei7RVBoSlLpfUcd P6dzxPFVKlOrI3Bwb0Zikihut2XvNrnIxY0pl8147Vv8qrbZ5MvUHa1VF+PO/r1p wHL7VDU/sirHbsj4/HlE7/G3TttBhwxs -----END CERTIFICATE-----Generated at Tue Jul 1 18:28:07 2025 by rpki-client