$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: 4CBQ13mqcn3b4/oH0MCvwQsKITGJsju1D69HMrG2Yjw= Subject key identifier: 35:C2:D4:97:05:A8:4C:99:77:FC:55:F4:F8:4C:0D:31:B6:4D:04:DC Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 6D Signing time: Sat 05 Jul 2025 07:15:11 +0000 Manifest this update: Sat 05 Jul 2025 07:15:11 +0000 Manifest next update: Sat 12 Jul 2025 07:15:11 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: epVqHtX0h4kYAWeNvCHlZDsF7mb+dIE3LPN7jPSx7Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Jul 5 07:15:11 2025 GMT Not After : Jul 12 07:15:11 2025 GMT Subject: CN=6868d0ff-792b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fd:cf:ac:8e:c3:ab:71:a1:79:25:cc:a7:fa: 94:f9:d2:9b:cb:6a:e4:ef:8a:11:aa:43:aa:39:ad: 35:81:71:a7:03:ad:7d:aa:5d:1d:89:98:a7:ca:a9: 5b:cf:4a:04:ad:eb:9a:72:df:43:ee:9f:bb:28:c4: 67:49:6e:3b:7e:a5:ae:7b:2e:46:93:6b:c0:af:d0: 5b:49:a8:04:87:c3:5f:75:b7:88:44:ae:f4:85:8a: fd:74:ab:19:7e:b6:90:36:be:40:ec:b1:cf:f4:39: ca:a9:2d:60:aa:fd:3c:fb:32:98:01:4d:3a:a3:d0: 49:b1:cd:5d:4b:a0:f5:40:82:c2:30:e6:ae:cd:ea: 09:64:2f:1d:1c:93:5a:53:9f:85:e5:00:25:0e:cd: a2:69:2f:a0:10:36:98:8c:e3:02:ac:e4:1c:43:44: 0b:78:2f:8b:4a:a9:b4:ef:cc:a0:12:90:47:12:bb: 38:92:d2:ad:6e:0a:75:bc:ad:67:16:a5:60:0d:1e: 8d:99:86:2b:35:fe:0d:a5:4e:7c:e7:17:d2:05:e2: 2f:d8:ec:72:a1:74:72:97:64:ae:2c:0f:fb:59:c4: 34:15:e1:ba:b6:9d:3d:38:2c:49:8b:86:93:54:91: 81:c6:b2:36:38:08:68:6c:b9:aa:66:9f:2e:5f:80: 85:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C2:D4:97:05:A8:4C:99:77:FC:55:F4:F8:4C:0D:31:B6:4D:04:DC X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:60:9d:3d:ad:10:1f:ff:32:e7:93:66:43:d7:b7:48:b2:e2: 49:ad:83:3e:4c:5b:9d:c8:33:d0:89:24:5c:8d:c6:b4:de:c9: c5:25:fc:73:7d:c2:c6:52:c3:e4:c1:93:9c:af:bf:0a:00:23: 20:86:11:87:9a:4d:fd:bf:0a:6a:d4:b8:d8:13:28:4b:8b:fc: 4f:db:53:49:f9:3b:3b:a2:a8:44:07:77:df:3b:a7:f0:c7:83: 54:33:b9:55:08:3d:c6:d1:ee:6c:1f:c7:84:ca:04:85:35:18: e8:09:88:d7:34:e2:12:a5:38:4d:15:a3:2d:24:3c:e2:6e:40: 04:26:ad:64:7a:bd:00:63:17:62:95:e3:c7:5f:ba:c7:b7:2a: 9b:96:34:b7:93:bd:e7:a5:c3:69:df:66:06:fe:67:2c:a4:cc: 4b:7a:bc:bc:bf:b5:6b:fa:43:24:0d:40:c4:a8:e1:d3:04:81: e3:6a:13:85:67:46:93:ea:67:ba:89:1e:e8:d7:db:11:21:06: d4:6c:aa:c8:6a:66:43:b3:96:7e:5a:75:c7:98:41:f9:4c:94: 80:3d:5a:f6:4c:f5:4d:b4:a8:3d:52:fb:f2:bf:63:d9:87:04: d5:55:25:a6:74:f4:41:2c:ea:fa:90:7f:6e:6b:7e:84:3a:f6: 6d:38:ac:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoNkMxMUY4M0I5QThDQkREMjE1MzJEREYwRUE2MURFOTM4 OEQxM0M2QjAeFw0yNTA3MDUwNzE1MTFaFw0yNTA3MTIwNzE1MTFaMBgxFjAUBgNV BAMTDTY4NjhkMGZmLTc5MmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDi/c+sjsOrcaF5Jcyn+pT50pvLauTvihGqQ6o5rTWBcacDrX2qXR2JmKfKqVvP SgSt65py30Pun7soxGdJbjt+pa57LkaTa8Cv0FtJqASHw191t4hErvSFiv10qxl+ tpA2vkDssc/0OcqpLWCq/Tz7MpgBTTqj0EmxzV1LoPVAgsIw5q7N6glkLx0ck1pT n4XlACUOzaJpL6AQNpiM4wKs5BxDRAt4L4tKqbTvzKASkEcSuziS0q1uCnW8rWcW pWANHo2Zhis1/g2lTnznF9IF4i/Y7HKhdHKXZK4sD/tZxDQV4bq2nT04LEmLhpNU kYHGsjY4CGhsuapmny5fgIU1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNcLUlwWo TJl3/FX0+EwNMbZNBNwwHwYDVR0jBBgwFoAUbBH4O5qMvdIVMt3w6mHek4jRPGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzZGNjI4Mzg4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJINE81cU12ZElWTXQzdzZtSGVrNGpSUEdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzZGNjI4Mzg4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJ Vk10M3c2bUhlazRqUlBHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACRgnT2tEB//MueTZkPXt0iy4kmtgz5MW53IM9CJJFyNxrTeycUl/HN9 wsZSw+TBk5yvvwoAIyCGEYeaTf2/CmrUuNgTKEuL/E/bU0n5OzuiqEQHd987p/DH g1QzuVUIPcbR7mwfx4TKBIU1GOgJiNc04hKlOE0Voy0kPOJuQAQmrWR6vQBjF2KV 48dfuse3KpuWNLeTveelw2nfZgb+ZyykzEt6vLy/tWv6QyQNQMSo4dMEgeNqE4Vn RpPqZ7qJHujX2xEhBtRsqshqZkOzln5adceYQflMlIA9WvZM9U20qD1S+/K/Y9mH BNVVJaZ09EEs6vqQf25rfoQ69m04rNQ= -----END CERTIFICATE-----Generated at Sun Jul 6 00:35:57 2025 by rpki-client