$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: YCXF3A4xVwLvBnWnSjam7ZRCqOd596RGJ+rj2kwk69s= Subject key identifier: D6:1B:E0:84:2C:05:57:5A:0F:27:1F:1F:E8:4A:EA:B0:6D:EA:D0:A2 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: C6 Signing time: Tue 01 Jul 2025 06:24:06 +0000 Manifest this update: Tue 01 Jul 2025 06:24:04 +0000 Manifest next update: Tue 08 Jul 2025 06:24:04 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: yVtnaGnEVQWUKOFN+WBcEsNeRlfX5BUfb2RIhRiywO4=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: 1IspOhl6gwbhdZvL5rloqYpEEE+IPoe5ali+fyL8EWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Jul 1 06:24:04 2025 GMT Not After : Jul 8 06:24:04 2025 GMT Subject: CN=68637f05-5d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:85:ad:9f:bd:54:fd:7d:38:be:d4:9d:86:5d: 41:ba:c6:fc:79:85:a7:c4:9b:be:9e:44:b2:a4:a2: 46:31:1e:e8:36:c0:32:e2:66:d2:90:ef:2d:60:92: 02:22:e7:ed:20:d5:af:fb:0d:0e:3f:35:c2:56:50: b3:fb:3a:33:6a:61:39:13:d5:b7:ad:e4:af:66:a1: 97:2a:0f:a6:79:23:e2:5c:4c:81:af:78:e4:db:d2: 31:26:93:c4:96:fe:85:7b:3a:d4:bc:3c:18:8c:d3: 44:5f:a5:a1:37:83:92:74:8b:e3:45:51:f2:34:cf: 4e:12:ce:5e:6f:70:d6:d4:01:73:ac:55:b2:d9:93: dd:3d:b6:dc:9c:66:15:b3:d9:a1:77:ca:7c:dc:94: c4:5e:62:bc:fc:16:ed:ba:bd:8f:ed:78:d8:94:6f: c5:82:bf:a1:6a:2c:54:ef:f1:47:53:2f:e0:ed:59: 4f:02:87:60:1b:d6:06:d9:c6:cb:0c:2f:86:15:69: 49:6e:4a:cd:96:df:df:df:99:ae:6c:60:9f:d4:ec: 91:14:bc:83:00:be:f7:b7:3c:b5:a2:9b:e3:0c:c0: ea:e0:c9:e0:9e:c2:0d:7c:a0:fb:1c:c0:52:0a:57: 91:82:ac:fe:78:58:1f:39:09:35:7d:ad:00:04:97: 99:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:1B:E0:84:2C:05:57:5A:0F:27:1F:1F:E8:4A:EA:B0:6D:EA:D0:A2 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:6d:d7:a5:7a:6e:51:63:32:43:26:5f:1c:51:c1:c2:14:2d: ac:c1:07:92:9b:83:f8:25:40:3a:13:6e:9e:41:0d:e6:51:e6: d2:62:c8:b3:40:6f:b4:8e:1e:5d:b1:97:3c:54:17:0b:2d:30: a6:e3:ab:5a:ed:73:c7:c3:ae:3d:6f:0b:e6:46:10:7b:7f:8a: 87:6f:ae:42:c9:fd:a0:54:9c:b7:75:2e:f2:ae:f4:c7:d7:fa: fb:f5:ed:6f:db:8a:37:80:8b:a4:6d:ab:59:90:9a:fb:8b:2a: 1b:27:fb:d2:61:d7:ec:ab:50:10:7d:b3:4c:3a:c5:cd:67:75: 4e:94:92:b6:78:5c:9e:29:da:7c:b2:1b:5c:14:47:49:34:e8: 1b:68:b4:b1:e6:42:55:9c:df:1d:d2:a9:23:a2:05:33:bb:0d: 72:34:9b:e7:d4:ea:80:3f:cb:ef:ea:f6:16:b6:b5:95:a2:be: b2:dd:28:49:f6:cd:4c:f4:50:84:81:78:07:ee:7e:c6:d4:a0: 30:db:fc:e5:4e:8c:87:0a:3e:06:ba:49:d4:90:c6:6a:c4:cb: e7:6b:15:4d:55:5a:40:74:72:17:0c:ba:86:76:a5:24:63:33: 5c:ce:f6:41:8e:c0:ee:1b:96:39:02:d2:51:ae:70:3f:35:9d: bb:f4:48:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUwNzAxMDYyNDA0WhcNMjUwNzA4MDYyNDA0WjAYMRYwFAYD VQQDEw02ODYzN2YwNS01ZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIWtn71U/X04vtSdhl1Busb8eYWnxJu+nkSypKJGMR7oNsAy4mbSkO8tYJIC IuftINWv+w0OPzXCVlCz+zozamE5E9W3reSvZqGXKg+meSPiXEyBr3jk29IxJpPE lv6FezrUvDwYjNNEX6WhN4OSdIvjRVHyNM9OEs5eb3DW1AFzrFWy2ZPdPbbcnGYV s9mhd8p83JTEXmK8/Bbtur2P7XjYlG/Fgr+haixU7/FHUy/g7VlPAodgG9YG2cbL DC+GFWlJbkrNlt/f35mubGCf1OyRFLyDAL73tzy1opvjDMDq4MngnsINfKD7HMBS CleRgqz+eFgfOQk1fa0ABJeZwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYb4IQs BVdaDycfH+hK6rBt6tCiMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+bdelem5RYzJDJl8cUcHCFC2swQeSm4P4JUA6E26eQQ3mUebSYsiz QG+0jh5dsZc8VBcLLTCm46ta7XPHw649bwvmRhB7f4qHb65Cyf2gVJy3dS7yrvTH 1/r79e1v24o3gIukbatZkJr7iyobJ/vSYdfsq1AQfbNMOsXNZ3VOlJK2eFyeKdp8 shtcFEdJNOgbaLSx5kJVnN8d0qkjogUzuw1yNJvn1OqAP8vv6vYWtrWVor6y3ShJ 9s1M9FCEgXgH7n7G1KAw2/zlToyHCj4GuknUkMZqxMvnaxVNVVpAdHIXDLqGdqUk YzNczvZBjsDuG5Y5AtJRrnA/NZ279Ejc -----END CERTIFICATE-----Generated at Wed Jul 2 06:13:48 2025 by rpki-client