$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft File: rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft (raw, json) Hash identifier: lQ/tUxtWugO4AjbOdgMswDvzVbSrd0lcZ02bRN8/iLo= Subject key identifier: AE:6A:E0:C2:24:67:42:84:5D:83:94:95:C6:65:71:12:B8:9A:04:2F Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 1064 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft Manifest number: 105E Signing time: Wed 18 Jun 2025 17:21:13 +0000 Manifest this update: Wed 18 Jun 2025 17:21:13 +0000 Manifest next update: Wed 25 Jun 2025 17:21:13 +0000 Files and hashes: 1: rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl (hash: dcl6tzPwAa6yToZecGPZ8rTlOxRAB/fWZNL1plwQT80=) 2: CBAED530FE6A11ECAB640344C4F9AE02.roa (hash: 8EmwRqTTi0D6Jqb1QQoQFecB/Y41qpXK3rVqh44z4W0=) 3: 6B1B75BC756311EFB6C7E64CC4F9AE02.roa (hash: 7SbyZl6WzchDvPbf0/nq4tvYfqbtpgq7UAgLfrYKHTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4196 (0x1064) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974, serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: Jun 18 17:21:13 2025 GMT Not After : Jun 25 17:21:13 2025 GMT Subject: CN=6852f589-abaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:de:1e:90:84:09:6f:97:bd:f5:80:a1:f4:f2: ee:65:24:b0:39:9c:c1:37:94:a0:c5:d2:1a:f6:9e: 46:c0:be:42:51:8c:e8:fd:48:59:e7:ff:5e:01:61: 8e:2a:1c:aa:6d:3a:60:b2:7d:a9:31:5f:9b:d8:73: f4:5f:4e:9a:33:72:03:d2:ef:06:37:1c:78:7f:03: 18:b0:51:a5:27:8a:06:ee:80:a5:3b:2d:05:a6:5c: c9:c0:0d:d0:ae:b4:8a:1e:ec:df:61:1c:c3:31:c8: 55:52:67:e5:09:9a:f2:cf:26:8b:fe:b6:e9:0f:92: 07:8a:10:78:16:67:00:4a:0f:dd:95:06:03:8f:3c: d5:e9:67:3e:da:03:6b:c9:01:21:c3:40:7c:b9:a0: 52:94:03:82:5f:f1:40:04:83:80:1b:80:7a:9e:16: 1a:83:d3:f3:d4:5c:b0:0d:86:60:f4:7a:1e:93:2e: 64:95:b9:b4:3c:91:72:49:e7:f4:b4:ad:95:d2:62: b8:ae:41:dd:0c:1f:a2:f7:7f:2b:70:b1:68:88:c9: d8:5e:d1:15:84:70:ad:cf:3f:b2:22:e7:75:8b:b0: 5a:65:da:6f:b7:62:7a:33:a7:07:af:53:f0:52:4f: d6:b9:5d:91:44:0e:70:e4:2a:92:d2:ea:ed:5d:1c: fe:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6A:E0:C2:24:67:42:84:5D:83:94:95:C6:65:71:12:B8:9A:04:2F X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:5a:69:83:91:2f:75:75:c5:9d:42:20:e8:1a:aa:3c:b0:c2: f6:7e:e3:1e:69:26:29:40:53:9d:f8:f7:69:33:5c:15:c7:e4: 38:82:fb:1d:c9:5a:65:fe:12:f2:cd:9f:67:cb:ef:d9:1d:5e: 40:91:0b:d7:82:b1:43:25:c5:a3:a1:6a:d8:3a:d9:5b:bd:c4: 14:80:fe:e0:3e:7b:53:50:98:8c:b9:3f:59:0f:9e:de:48:de: 51:81:70:7f:c9:42:71:44:92:ba:66:69:bd:cc:2a:86:fa:3c: 4a:d0:19:25:cd:d4:4a:e9:bf:ef:8a:ad:b5:ec:4c:8b:c7:91: 78:11:f5:a4:22:68:7d:69:93:8c:8d:64:48:92:2a:82:bc:40: 38:e4:f0:cd:dc:5e:9e:86:6c:5c:ff:d8:e5:f2:37:f3:b0:5a: 80:a1:39:55:2d:3a:0f:17:fb:34:ec:ef:33:27:7d:cb:37:0d: 7e:58:08:a1:75:aa:41:b1:17:41:13:5c:0a:8c:d2:9c:9c:a1: 1b:de:ab:94:40:9c:cb:98:0d:b3:21:9d:3a:a6:6e:4a:db:c0: a0:ca:e5:9a:2b:9d:a2:56:89:f6:7e:ac:30:27:4b:0d:57:f0: 81:5d:65:9d:7a:bf:52:85:48:91:2f:91:bb:0b:9d:1f:c7:03: a8:db:11:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjUwNjE4MTcyMTEzWhcNMjUwNjI1MTcyMTEzWjAYMRYwFAYD VQQDEw02ODUyZjU4OS1hYmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8d4ekIQJb5e99YCh9PLuZSSwOZzBN5SgxdIa9p5GwL5CUYzo/UhZ5/9eAWGO KhyqbTpgsn2pMV+b2HP0X06aM3ID0u8GNxx4fwMYsFGlJ4oG7oClOy0FplzJwA3Q rrSKHuzfYRzDMchVUmflCZryzyaL/rbpD5IHihB4FmcASg/dlQYDjzzV6Wc+2gNr yQEhw0B8uaBSlAOCX/FABIOAG4B6nhYag9Pz1FywDYZg9Hoeky5klbm0PJFySef0 tK2V0mK4rkHdDB+i938rcLFoiMnYXtEVhHCtzz+yIud1i7BaZdpvt2J6M6cHr1Pw Uk/WuV2RRA5w5CqS0urtXRz+ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5q4MIk Z0KEXYOUlcZlcRK4mgQvMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk3NC9FMTA1QjNCQTNBNDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdl TmxXNWwwTGZzNTZJTzdrVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwWmmDkS91dcWdQiDoGqo8sML2fuMeaSYpQFOd+PdpM1wVx+Q4gvsd yVpl/hLyzZ9ny+/ZHV5AkQvXgrFDJcWjoWrYOtlbvcQUgP7gPntTUJiMuT9ZD57e SN5RgXB/yUJxRJK6Zmm9zCqG+jxK0BklzdRK6b/viq217EyLx5F4EfWkImh9aZOM jWRIkiqCvEA45PDN3F6ehmxc/9jl8jfzsFqAoTlVLToPF/s07O8zJ33LNw1+WAih dapBsRdBE1wKjNKcnKEb3quUQJzLmA2zIZ06pm5K28CgyuWaK52iVon2fqwwJ0sN V/CBXWWder9ShUiRL5G7C50fxwOo2xHf -----END CERTIFICATE-----Generated at Thu Jun 19 05:20:14 2025 by rpki-client