$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: EbZwanhaPPw63i/3t31cgD33s99JlsqZaTmA80XFrfA= Subject key identifier: 1F:28:A7:58:7F:0D:0E:6D:9C:A1:91:C2:51:2D:BE:84:34:01:67:7B Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C3B Signing time: Sat 28 Jun 2025 18:18:35 +0000 Manifest this update: Sat 28 Jun 2025 18:18:34 +0000 Manifest next update: Sat 05 Jul 2025 18:18:34 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: gjrKZ38EWEn4L1dfNZi+Ph5eAd0J8o+u8VH7WYdILuY=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Jun 28 18:18:34 2025 GMT Not After : Jul 5 18:18:34 2025 GMT Subject: CN=686031fb-c458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6d:3f:ce:21:7e:17:d3:45:69:45:83:72:56: 93:79:cc:27:9f:12:27:dc:bd:ab:6d:1a:c8:55:e8: e3:59:5a:3b:a7:df:4f:df:10:e0:4f:af:82:39:84: d0:f0:15:b5:f3:be:bd:cd:63:6a:bd:11:60:4c:bd: 6e:b8:10:30:2a:a9:82:4d:50:f1:1d:e2:97:4d:d5: 49:13:80:bc:51:c6:32:d9:e3:de:04:f2:69:79:89: ed:34:b2:26:ec:be:bc:97:83:5f:63:ff:f0:56:33: 60:5b:74:5d:09:f4:b6:2a:bd:b4:d3:b1:05:c5:81: 67:9a:6c:83:44:7c:3e:0c:b1:0f:12:d9:87:8e:a7: 87:73:53:c8:a2:65:06:6c:91:38:55:d6:07:55:46: 9e:c0:c5:37:de:68:15:32:61:83:45:1f:53:f3:d3: c7:ab:4a:5b:77:4d:ad:55:7d:22:c0:16:82:05:fd: ce:72:66:af:aa:de:da:6a:5d:28:f9:ff:5a:fe:1c: 52:1f:52:69:63:10:77:85:16:02:f3:7b:f9:df:7e: 7a:fe:07:49:3f:01:c3:a7:dc:d0:1a:d4:ff:c4:6b: 2d:5a:76:7d:5b:fb:32:ba:60:9b:ec:6b:5d:fa:33: 0d:96:50:04:90:fd:72:b4:cd:1c:32:57:36:aa:dc: 1a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:28:A7:58:7F:0D:0E:6D:9C:A1:91:C2:51:2D:BE:84:34:01:67:7B X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:04:d7:50:ec:f0:bf:fd:ee:8b:c2:63:23:7d:9e:1e:1e:5d: fb:dd:f3:91:b7:bf:c5:c1:73:2b:2c:7e:41:78:59:52:39:5d: 4c:f5:d2:44:1e:a7:33:59:4e:f3:0f:26:6c:88:5e:ef:ca:07: 1b:74:fa:69:a2:7f:70:dc:d1:ec:02:24:13:89:57:12:14:f0: a0:61:74:c1:51:8d:1b:71:f3:14:00:3e:69:34:07:8a:f3:a3: de:15:00:fb:c4:68:3a:4d:e2:98:e2:6c:b5:fe:2a:9c:6a:0d: 06:f1:46:1c:d8:01:4f:df:df:03:d6:a4:e2:9b:cd:06:3f:e7: e7:7f:f2:bc:58:fd:f9:72:e5:ae:ef:6b:c7:a4:da:b5:ae:d3: be:64:e9:91:35:2e:ad:04:3d:ba:e5:1f:7d:70:07:12:28:bd: 25:30:85:4a:bc:c6:fc:d7:be:f4:a6:6f:36:d3:dc:21:01:b7: 65:37:7a:f2:0e:17:4a:60:3d:fc:36:8e:90:22:68:98:16:db: 1a:85:85:bb:d2:14:30:53:68:4b:d3:4f:4c:b9:39:bf:39:12: 65:7d:2f:4e:37:9c:a2:55:43:ca:c8:6e:e0:49:51:e5:92:98: fb:58:6f:70:5d:9b:89:a2:52:9b:32:4d:b4:b3:9e:78:3e:b3: 98:1e:1f:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwNjI4MTgxODM0WhcNMjUwNzA1MTgxODM0WjAYMRYwFAYD VQQDEw02ODYwMzFmYi1jNDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW0/ziF+F9NFaUWDclaTecwnnxIn3L2rbRrIVejjWVo7p99P3xDgT6+COYTQ 8BW18769zWNqvRFgTL1uuBAwKqmCTVDxHeKXTdVJE4C8UcYy2ePeBPJpeYntNLIm 7L68l4NfY//wVjNgW3RdCfS2Kr2007EFxYFnmmyDRHw+DLEPEtmHjqeHc1PIomUG bJE4VdYHVUaewMU33mgVMmGDRR9T89PHq0pbd02tVX0iwBaCBf3Ocmavqt7aal0o +f9a/hxSH1JpYxB3hRYC83v53356/gdJPwHDp9zQGtT/xGstWnZ9W/syumCb7Gtd +jMNllAEkP1ytM0cMlc2qtwaawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8op1h/ DQ5tnKGRwlEtvoQ0AWd7MB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGBNdQ7PC//e6LwmMjfZ4eHl373fORt7/FwXMrLH5BeFlSOV1M9dJE HqczWU7zDyZsiF7vygcbdPppon9w3NHsAiQTiVcSFPCgYXTBUY0bcfMUAD5pNAeK 86PeFQD7xGg6TeKY4my1/iqcag0G8UYc2AFP398D1qTim80GP+fnf/K8WP35cuWu 72vHpNq1rtO+ZOmRNS6tBD265R99cAcSKL0lMIVKvMb81770pm8209whAbdlN3ry DhdKYD38No6QImiYFtsahYW70hQwU2hL009MuTm/ORJlfS9ON5yiVUPKyG7gSVHl kpj7WG9wXZuJolKbMk20s554PrOYHh/b -----END CERTIFICATE-----Generated at Mon Jun 30 17:14:34 2025 by rpki-client