$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft File: s9da4ezu9vkr0X0MSzZRjVvndvE.mft (raw, json) Hash identifier: 64Ua8bBrqqb0Ek0Bk/gGKy0wobiKFAuuUuahO/AAWWI= Subject key identifier: 3C:CC:39:B7:C2:3E:1A:F5:1A:93:BB:B2:C4:54:D9:FA:E2:C1:AE:CE Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft Manifest number: DA Signing time: Sat 21 Jun 2025 04:40:13 +0000 Manifest this update: Sat 21 Jun 2025 04:40:12 +0000 Manifest next update: Sat 28 Jun 2025 04:40:12 +0000 Files and hashes: 1: s9da4ezu9vkr0X0MSzZRjVvndvE.crl (hash: I6W6fF0A1sYU0jbgmXe4G/XVDumckTdi1H01CIhs6Mg=) 2: 7E15FE0C27B711EF8867AA49C4F9AE02.roa (hash: xJBS1rE4hyaBoQRSLDqWi8kJZTi9bOV+WLs5Y+jjSRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 04:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: Jun 21 04:40:12 2025 GMT Not After : Jun 28 04:40:12 2025 GMT Subject: CN=685637ac-ffc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b1:f3:11:52:c7:9c:0a:2f:2b:db:ac:89:b9: 68:c6:96:de:0e:13:3d:4d:a5:f2:5f:1a:bc:d2:8f: 71:e2:7a:b6:96:0d:24:8b:03:86:d0:fe:4e:13:76: 08:3b:a2:a9:dc:ac:cf:d3:68:f8:27:63:23:b8:da: 87:ec:eb:6b:c4:5c:77:3c:92:d4:16:79:db:8e:da: 9d:d9:f6:9f:e5:56:1a:62:ba:0b:84:ab:57:44:45: b0:20:7a:5a:c1:df:f0:3d:42:05:8a:45:c8:e5:13: da:e0:14:8c:7e:52:ec:f9:f8:9e:22:28:da:dd:ed: 8a:5c:61:43:86:9d:5b:3b:7b:71:a3:d9:7f:34:31: 10:43:b1:f7:16:bd:6d:3b:fd:78:47:a2:75:c9:3f: ca:98:a9:ae:e0:a2:b3:29:5f:97:2e:db:5b:dd:96: 27:1e:06:c2:7c:61:fc:9c:8a:06:f8:38:0a:58:eb: 13:e7:03:e5:e6:2a:06:90:a7:b5:9b:bb:12:c5:09: 4f:d3:d9:b7:e0:c0:a4:d8:38:12:64:cd:01:9e:2b: d7:b3:6c:f8:0d:b1:d5:bd:da:43:f6:74:bd:f8:3d: d8:e9:69:be:c4:7f:0d:09:ad:21:98:0f:ef:0d:6b: 5c:f2:f5:dc:8c:80:30:fb:d8:13:22:31:cd:f2:a3: b5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CC:39:B7:C2:3E:1A:F5:1A:93:BB:B2:C4:54:D9:FA:E2:C1:AE:CE X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:28:11:3d:00:97:71:98:1b:56:e7:b6:fa:6f:02:ca:f2:7a: 62:e1:fa:49:d7:d8:af:83:be:6a:f3:29:81:e4:c0:85:2e:f8: 5f:3f:58:39:e6:f5:cb:96:8a:76:ae:f9:20:2b:72:70:8a:cc: cc:c4:09:be:a6:94:50:89:c4:8f:8b:74:59:13:8e:d6:ce:a8: ba:9d:da:10:a0:cd:be:5a:bb:9f:9a:89:04:92:ef:ea:25:a7: 85:a8:c5:b8:8b:ed:c7:d7:60:cd:2c:eb:7f:c2:4d:6c:65:6b: 62:8c:a5:ad:e0:8c:b1:73:46:2a:fb:b3:1b:06:8b:ce:d4:18: 89:e9:ea:1d:5a:65:bf:b9:2d:28:4c:d1:9d:1a:d1:70:14:8d: e7:c7:c0:de:81:ba:ed:18:1c:c8:d4:9c:f0:24:05:d7:22:b6: c1:ed:eb:04:57:fe:34:83:3e:31:db:4c:ca:4a:b4:f2:44:8f: 11:6e:d3:b5:1c:32:42:91:fa:0b:19:b5:ff:ae:eb:b2:dd:7d: 6e:08:52:fe:f7:5e:0b:12:d1:65:c1:55:0b:7e:3d:f2:b2:67: 21:aa:10:ba:6a:3f:b7:f3:53:e7:5a:fb:b2:d1:1e:05:ac:7f: bb:79:55:5f:85:46:64:01:d7:e0:08:6a:97:aa:1f:2f:14:35: 0f:f3:3c:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwNjIxMDQ0MDEyWhcNMjUwNjI4MDQ0MDEyWjAYMRYwFAYD VQQDEw02ODU2MzdhYy1mZmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rHzEVLHnAovK9usibloxpbeDhM9TaXyXxq80o9x4nq2lg0kiwOG0P5OE3YI O6Kp3KzP02j4J2MjuNqH7OtrxFx3PJLUFnnbjtqd2faf5VYaYroLhKtXREWwIHpa wd/wPUIFikXI5RPa4BSMflLs+fieIija3e2KXGFDhp1bO3txo9l/NDEQQ7H3Fr1t O/14R6J1yT/KmKmu4KKzKV+XLttb3ZYnHgbCfGH8nIoG+DgKWOsT5wPl5ioGkKe1 m7sSxQlP09m34MCk2DgSZM0BnivXs2z4DbHVvdpD9nS9+D3Y6Wm+xH8NCa0hmA/v DWtc8vXcjIAw+9gTIjHN8qO1ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzMObfC Phr1GpO7ssRU2friwa7OMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVDQS85RTdDMkNFRTAyNEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2 a3IwWDBNU3paUmpWdm5kdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJKBE9AJdxmBtW57b6bwLK8npi4fpJ19ivg75q8ymB5MCFLvhfP1g5 5vXLlop2rvkgK3JwiszMxAm+ppRQicSPi3RZE47Wzqi6ndoQoM2+WrufmokEku/q JaeFqMW4i+3H12DNLOt/wk1sZWtijKWt4Iyxc0Yq+7MbBovO1BiJ6eodWmW/uS0o TNGdGtFwFI3nx8DegbrtGBzI1JzwJAXXIrbB7esEV/40gz4x20zKSrTyRI8RbtO1 HDJCkfoLGbX/ruuy3X1uCFL+914LEtFlwVULfj3ysmchqhC6aj+381PnWvuy0R4F rH+7eVVfhUZkAdfgCGqXqh8vFDUP8zxz -----END CERTIFICATE-----Generated at Sun Jun 22 14:18:22 2025 by rpki-client