$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: WTr4ByKLLj5cNu9mWES4OhW4vWkohZutSnSEedrPqqo= Subject key identifier: F8:DA:6F:2B:3B:3D:E8:55:5D:73:A9:61:DE:AC:C1:0D:68:5D:DF:9E Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: 0112 Signing time: Sat 21 Jun 2025 04:02:30 +0000 Manifest this update: Sat 21 Jun 2025 04:02:29 +0000 Manifest next update: Sat 28 Jun 2025 04:02:29 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: b2hzvNTHrxC0NUR1Uy8u7YDM52ga7GsQ7AWJl/9gYMs=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: ruTuAI8tCOCbFuPP+2u83Ib06u3MS/nsClPmyXw7xNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68, serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: Jun 21 04:02:29 2025 GMT Not After : Jun 28 04:02:29 2025 GMT Subject: CN=68562ed5-3b25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c6:a9:35:20:ff:90:5a:2d:97:95:2e:58:40: 76:59:33:2e:86:8f:a8:8b:38:40:37:df:b6:7a:1c: af:4c:ee:13:8d:57:60:56:e7:42:10:33:3f:54:9d: 76:2d:0d:95:49:0e:34:96:8c:66:10:85:9e:9d:a4: e6:33:7c:88:37:77:88:0f:1c:28:f1:99:87:e2:7f: 47:73:e6:04:61:1e:1b:d5:bd:6b:cb:fb:00:2e:03: 02:79:04:0d:88:2a:69:49:28:f4:40:dd:68:57:22: 1d:23:ca:12:86:ca:48:5a:0e:85:af:6f:ca:0e:53: 4c:d9:b9:4e:99:72:3c:cb:5f:9d:80:97:70:0f:35: 18:86:be:90:56:45:44:5c:cd:98:be:f0:94:95:20: b3:9b:8e:98:e7:ee:09:67:98:6a:43:d1:2d:6d:2b: 0b:9b:14:79:46:a7:48:14:9a:d6:22:88:34:ad:ed: e2:1a:d6:7d:c7:82:a1:8c:2f:6f:e2:f6:a4:7f:5c: f7:49:7a:0b:05:37:59:e0:c7:15:af:82:f7:f7:af: e2:25:3f:0d:8e:aa:a1:3f:f6:a3:37:f7:64:a3:8e: a1:0c:df:a5:61:db:3b:66:ce:58:1a:de:f0:48:7c: 76:95:d4:a2:d2:ac:ae:32:35:a8:5a:3b:84:49:58: 5b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:DA:6F:2B:3B:3D:E8:55:5D:73:A9:61:DE:AC:C1:0D:68:5D:DF:9E X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e3:97:14:13:93:b7:8a:60:79:6c:b4:07:15:12:e0:53:80: 6d:d2:7f:8a:5b:97:bc:17:c9:26:34:f1:65:a3:33:3f:5c:b4: b5:4a:50:61:76:7c:96:18:58:30:b2:47:dc:e1:19:8d:59:d3: 9e:67:7a:63:8a:72:f7:9a:54:07:c2:b2:75:26:86:b0:0d:28: 3f:ce:04:64:ec:93:e4:bd:16:72:74:d8:46:26:99:0a:60:2f: a8:b3:43:0f:4a:64:8f:74:11:a7:37:5c:ee:42:96:fd:60:8b: f5:61:2e:95:bd:41:ff:ac:7e:8d:fc:60:5a:99:d7:e1:00:67: dc:12:bf:1b:8f:f0:69:c6:df:c0:bb:9d:14:d3:ee:e5:82:a3: a3:98:03:f0:34:3c:48:c6:25:84:5c:cc:d0:13:07:40:8a:38: 69:50:ed:6b:86:4c:74:3d:62:07:04:ba:78:b9:ea:e9:dd:fd: ee:33:99:ff:65:2f:71:a6:97:9f:f4:ac:7d:72:95:b7:03:bb: 04:95:23:fb:b4:8d:9d:8d:b1:12:19:93:ea:26:b2:3a:e1:00: 14:05:e4:30:f0:3f:3e:f9:a3:0d:5a:2d:c3:95:99:71:31:7d: 3c:f7:39:38:07:57:39:88:a0:d2:68:63:35:a4:15:22:9e:2f: e6:88:44:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjUwNjIxMDQwMjI5WhcNMjUwNjI4MDQwMjI5WjAYMRYwFAYD VQQDEw02ODU2MmVkNS0zYjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sapNSD/kFotl5UuWEB2WTMuho+oizhAN9+2ehyvTO4TjVdgVudCEDM/VJ12 LQ2VSQ40loxmEIWenaTmM3yIN3eIDxwo8ZmH4n9Hc+YEYR4b1b1ry/sALgMCeQQN iCppSSj0QN1oVyIdI8oShspIWg6Fr2/KDlNM2blOmXI8y1+dgJdwDzUYhr6QVkVE XM2YvvCUlSCzm46Y5+4JZ5hqQ9EtbSsLmxR5RqdIFJrWIog0re3iGtZ9x4KhjC9v 4vakf1z3SXoLBTdZ4McVr4L396/iJT8NjqqhP/ajN/dko46hDN+lYds7Zs5YGt7w SHx2ldSi0qyuMjWoWjuESVhb0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjabys7 PehVXXOpYd6swQ1oXd+eMB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn45cUE5O3imB5bLQHFRLgU4Bt0n+KW5e8F8kmNPFlozM/XLS1SlBh dnyWGFgwskfc4RmNWdOeZ3pjinL3mlQHwrJ1JoawDSg/zgRk7JPkvRZydNhGJpkK YC+os0MPSmSPdBGnN1zuQpb9YIv1YS6VvUH/rH6N/GBamdfhAGfcEr8bj/Bpxt/A u50U0+7lgqOjmAPwNDxIxiWEXMzQEwdAijhpUO1rhkx0PWIHBLp4uerp3f3uM5n/ ZS9xppef9Kx9cpW3A7sElSP7tI2djbESGZPqJrI64QAUBeQw8D8++aMNWi3DlZlx MX089zk4B1c5iKDSaGM1pBUini/miESw -----END CERTIFICATE-----Generated at Sat Jun 21 09:53:25 2025 by rpki-client