$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: mBH1skVa4KDyL8WNuziuacE5PLUV3Tnk7+X/e42nm4I= Subject key identifier: EB:4E:5A:A8:5C:54:5A:E4:D3:07:83:2B:83:D3:6D:02:12:11:8E:D8 Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 07EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 07D9 Signing time: Sat 28 Jun 2025 20:43:06 +0000 Manifest this update: Sat 28 Jun 2025 20:43:06 +0000 Manifest next update: Sat 05 Jul 2025 20:43:06 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: 0fWLH/fxDQwzAqf+Jw820AA7ArSP69L66YJQcHeTKE0=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2027 (0x7eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Jun 28 20:43:06 2025 GMT Not After : Jul 5 20:43:06 2025 GMT Subject: CN=686053da-b323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d3:f3:d7:98:35:e7:86:e9:2b:33:db:f6:be: 87:20:4f:f0:af:ae:d6:75:03:81:32:26:b9:23:9d: 2a:3f:97:e5:4c:77:f1:df:dd:3e:ff:ea:ce:cc:d4: eb:25:18:53:19:06:fd:54:c7:77:bf:fd:d9:92:5e: 56:f9:be:e1:93:6e:eb:78:ea:83:41:f7:ba:36:6a: 7f:ca:06:64:f3:9c:76:66:28:2f:1b:eb:49:c6:54: 0e:3c:66:11:f9:98:d0:25:06:dc:0f:09:01:e7:1e: 08:33:0c:1a:cc:1b:54:8f:2e:f2:cd:fb:4c:69:cd: ba:02:b6:c3:16:97:e2:51:b2:d6:b7:2d:7c:39:b9: 04:64:0f:60:f4:46:e0:92:0a:3b:0a:21:4f:47:bb: 06:72:f3:9b:55:b7:cd:5a:0c:7b:de:2e:95:d3:45: dd:25:fc:d7:38:34:44:61:24:3e:4e:a1:fb:89:50: d8:dc:47:68:b7:1d:f0:59:a8:a5:f3:0d:f0:15:34: f7:a2:3f:8e:c8:c8:6d:ad:a2:2f:0a:de:c1:e4:66: ee:10:f2:4c:3c:35:25:fe:1d:cc:cc:20:e3:32:66: 40:bc:76:4f:2b:6d:81:f5:af:8b:15:9d:d1:ea:58: de:99:9d:5f:9c:a6:2b:e0:b1:c3:c4:9e:70:d9:d8: ba:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:4E:5A:A8:5C:54:5A:E4:D3:07:83:2B:83:D3:6D:02:12:11:8E:D8 X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:0c:08:ad:fc:90:42:87:8b:5e:30:66:64:91:63:4f:21:27: ba:7d:23:74:02:8d:70:16:1a:aa:eb:71:b8:74:57:fd:fb:4d: 2d:60:17:59:c2:71:ae:e7:ab:e9:9d:1f:c0:46:5e:7e:af:99: dc:77:4f:6d:82:f8:5f:04:70:63:81:b5:9a:d4:46:77:0e:59: 39:6e:f4:d9:da:5a:73:8e:ff:f4:58:fa:3d:c4:39:0f:3c:5b: 45:3e:38:59:fd:ae:cc:ba:af:4e:67:94:6b:40:0c:e8:24:e7: dd:a7:ea:2a:1d:25:0b:26:26:25:19:c8:61:53:4b:41:07:56: d7:2d:cf:8d:f5:8a:be:df:ff:19:ca:57:7c:3f:6e:67:2b:0f: f4:89:d1:97:f1:39:52:4a:4f:25:ce:2f:fc:0a:52:d5:43:8d: 1f:0f:3d:9a:82:47:0a:ed:51:f0:30:9e:8b:f4:5a:87:91:b8: 1e:f4:b3:26:ed:f7:7b:f1:e0:3a:d9:4d:a7:ba:29:88:a4:2e: db:95:7a:86:39:43:f1:f5:61:04:d3:2c:a9:44:f2:b1:55:f0: 26:27:36:8e:46:43:75:ad:30:4c:e6:15:04:b6:0a:57:4d:e4: e1:b4:31:ac:01:25:a4:24:e5:51:74:74:ed:57:c7:36:ab:60: 8b:a2:67:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUwNjI4MjA0MzA2WhcNMjUwNzA1MjA0MzA2WjAYMRYwFAYD VQQDEw02ODYwNTNkYS1iMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtPz15g154bpKzPb9r6HIE/wr67WdQOBMia5I50qP5flTHfx390+/+rOzNTr JRhTGQb9VMd3v/3Zkl5W+b7hk27reOqDQfe6Nmp/ygZk85x2ZigvG+tJxlQOPGYR +ZjQJQbcDwkB5x4IMwwazBtUjy7yzftMac26ArbDFpfiUbLWty18ObkEZA9g9Ebg kgo7CiFPR7sGcvObVbfNWgx73i6V00XdJfzXODREYSQ+TqH7iVDY3Edotx3wWail 8w3wFTT3oj+OyMhtraIvCt7B5GbuEPJMPDUl/h3MzCDjMmZAvHZPK22B9a+LFZ3R 6ljemZ1fnKYr4LHDxJ5w2di6dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtOWqhc VFrk0weDK4PTbQISEY7YMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGDAit/JBCh4teMGZkkWNPISe6fSN0Ao1wFhqq63G4dFf9+00tYBdZ wnGu56vpnR/ARl5+r5ncd09tgvhfBHBjgbWa1EZ3Dlk5bvTZ2lpzjv/0WPo9xDkP PFtFPjhZ/a7Muq9OZ5RrQAzoJOfdp+oqHSULJiYlGchhU0tBB1bXLc+N9Yq+3/8Z yld8P25nKw/0idGX8TlSSk8lzi/8ClLVQ40fDz2agkcK7VHwMJ6L9FqHkbge9LMm 7fd78eA62U2nuimIpC7blXqGOUPx9WEE0yypRPKxVfAmJzaORkN1rTBM5hUEtgpX TeThtDGsASWkJOVRdHTtV8c2q2CLomdo -----END CERTIFICATE-----Generated at Mon Jun 30 02:29:29 2025 by rpki-client