$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: mxqTJgN+k5muwiA/76XyLwRuqPdTG5VhdV5DNuy+zc4= Subject key identifier: 19:AD:A7:74:5A:91:74:4E:47:6B:B1:3A:4A:79:F8:CA:70:E6:AA:9D Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 0607 Signing time: Mon 30 Jun 2025 23:12:58 +0000 Manifest this update: Mon 30 Jun 2025 23:12:57 +0000 Manifest next update: Mon 07 Jul 2025 23:12:57 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: JSL2bykRAl88Xmrht6GGFpF6ElhEr9uaIADDMqVYSLI=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Jun 30 23:12:57 2025 GMT Not After : Jul 7 23:12:57 2025 GMT Subject: CN=686319fa-2ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bf:81:39:7d:2c:d3:03:02:1d:bf:3f:79:6e: 25:2f:81:e1:9c:16:07:bf:e9:62:4f:7d:95:45:18: 43:10:1f:3c:c2:e2:05:dd:59:3f:8a:55:71:58:44: cf:fe:8c:11:fe:d7:57:12:e8:36:f2:f8:92:77:09: 1d:a3:90:74:13:e2:14:f8:a4:c1:bd:fc:79:42:c5: cd:03:6e:b3:bb:f7:30:9c:41:95:c9:9f:e7:af:71: 82:de:6f:7c:5e:d9:c8:52:8e:2f:5a:02:e2:10:bf: c8:4e:ce:db:65:f0:33:46:db:38:cc:e8:5b:af:07: ce:15:80:1b:51:a4:70:f8:5f:ce:39:cc:27:a3:93: ae:3f:83:2b:c3:4b:0f:67:12:fb:61:82:d6:61:e8: 62:90:bb:12:a5:26:80:8c:eb:20:c5:8a:9e:5e:82: 85:e5:79:49:1e:b0:74:b4:b8:94:ba:fb:7e:2b:cb: da:bd:57:6e:01:eb:10:b9:48:cc:a1:40:64:e8:96: 9d:71:1c:1a:f9:12:f7:c1:ce:59:b8:e0:bb:6f:db: 16:cb:59:19:07:63:c9:c5:61:98:aa:a9:8c:39:ca: f2:0a:39:9c:57:52:f2:fe:9e:27:c4:0f:f8:02:f9: 9b:2a:f2:f3:30:9a:f7:cc:4b:e7:a3:38:3e:ed:04: 76:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AD:A7:74:5A:91:74:4E:47:6B:B1:3A:4A:79:F8:CA:70:E6:AA:9D X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:7d:64:d2:b2:c6:d7:42:9f:74:8e:09:e4:57:25:cf:be:44: aa:56:16:bd:1e:a1:4a:70:d2:4e:24:c7:46:43:12:5c:a4:95: a3:f3:f3:1c:dd:76:f9:d6:35:82:62:bf:fa:92:bf:47:c8:ad: e9:bf:7b:64:da:e6:cf:95:00:57:ca:d8:18:46:8b:f6:0d:6b: d2:e9:d8:55:a4:89:f9:4c:a8:4a:41:e0:ef:87:44:4c:51:de: a2:4c:39:49:eb:89:98:1f:d9:32:63:db:61:f0:53:07:8a:8f: 3e:b4:fe:4f:96:fb:95:c2:ab:ce:d6:c2:c2:9f:ae:69:01:b2: 3b:a4:78:3a:32:d0:aa:b4:35:4e:2d:3f:29:27:01:de:25:65: 2d:06:b7:57:7e:c8:9f:ce:28:28:fa:63:1b:9c:ee:69:2b:31: a0:b4:83:64:8e:8f:76:cf:0e:63:81:7e:ed:d6:23:d9:a0:d8: ad:40:b3:56:4b:41:bb:6e:a7:d9:18:47:6e:89:87:06:6f:fa: bb:eb:1b:4c:9c:7d:12:2f:32:02:01:fb:33:62:97:c2:7a:e2: 3a:6b:8f:99:96:05:3b:98:27:4e:c3:4b:4a:77:fd:a3:c3:92: 68:e9:51:72:ba:8a:ff:b9:71:59:aa:5a:b6:01:60:b3:06:7c: cf:b6:d2:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwNjMwMjMxMjU3WhcNMjUwNzA3MjMxMjU3WjAYMRYwFAYD VQQDEw02ODYzMTlmYS0yZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2L+BOX0s0wMCHb8/eW4lL4HhnBYHv+liT32VRRhDEB88wuIF3Vk/ilVxWETP /owR/tdXEug28viSdwkdo5B0E+IU+KTBvfx5QsXNA26zu/cwnEGVyZ/nr3GC3m98 XtnIUo4vWgLiEL/ITs7bZfAzRts4zOhbrwfOFYAbUaRw+F/OOcwno5OuP4Mrw0sP ZxL7YYLWYehikLsSpSaAjOsgxYqeXoKF5XlJHrB0tLiUuvt+K8vavVduAesQuUjM oUBk6JadcRwa+RL3wc5ZuOC7b9sWy1kZB2PJxWGYqqmMOcryCjmcV1Ly/p4nxA/4 AvmbKvLzMJr3zEvnozg+7QR2dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmtp3Ra kXROR2uxOkp5+Mpw5qqdMB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAfWTSssbXQp90jgnkVyXPvkSqVha9HqFKcNJOJMdGQxJcpJWj8/Mc 3Xb51jWCYr/6kr9HyK3pv3tk2ubPlQBXytgYRov2DWvS6dhVpIn5TKhKQeDvh0RM Ud6iTDlJ64mYH9kyY9th8FMHio8+tP5PlvuVwqvO1sLCn65pAbI7pHg6MtCqtDVO LT8pJwHeJWUtBrdXfsifzigo+mMbnO5pKzGgtINkjo92zw5jgX7t1iPZoNitQLNW S0G7bqfZGEduiYcGb/q76xtMnH0SLzICAfszYpfCeuI6a4+ZlgU7mCdOw0tKd/2j w5Jo6VFyuor/uXFZqlq2AWCzBnzPttKa -----END CERTIFICATE-----Generated at Tue Jul 1 15:42:28 2025 by rpki-client