$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: 2Hq3O5l/2P4OTMHI22eq0bsT++TNL8j3wqQ2D01mILU= Subject key identifier: 2D:01:B2:6C:C7:D1:8C:45:33:D2:38:EC:F5:CC:B8:1A:10:F0:47:9C Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 04C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04BA Signing time: Mon 16 Jun 2025 23:30:32 +0000 Manifest this update: Mon 16 Jun 2025 23:30:31 +0000 Manifest next update: Mon 23 Jun 2025 23:30:31 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: yje0FWJsqHe/YcOvGMIsoD5PQ99u2uTA9f/tWOB1/Ak=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: qsT6gdrcrYiz10awZz/5+uahx1IUYSEl585Lltn+07o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Jun 16 23:30:31 2025 GMT Not After : Jun 23 23:30:31 2025 GMT Subject: CN=6850a918-4e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9f:7a:69:ae:3f:5b:b2:ec:f2:a0:e3:39:8c: 6e:75:2d:d3:e5:79:1f:54:1c:a3:5b:45:0d:bd:81: 55:21:b9:e8:3a:10:51:5f:28:7e:72:f9:ed:21:0d: 08:01:a4:6c:a6:92:04:16:56:17:94:e2:19:4b:40: 4a:4e:f2:7b:c8:13:21:9e:5e:b2:41:22:86:ae:fa: df:7b:b2:b1:21:ef:ed:d2:bd:b7:c8:2d:10:66:a5: ce:d0:22:68:e8:40:9d:81:1d:84:ef:69:46:3f:65: df:d0:fa:e9:c9:9b:50:67:7f:66:34:99:ef:ec:b5: 11:d6:22:86:c0:a4:b4:28:7d:e3:5f:71:46:35:49: d2:94:43:10:69:ca:32:7d:0f:66:c5:6b:0a:4e:0c: 13:f3:ed:4c:9d:f1:2a:d2:5c:6e:6a:74:34:ca:89: 25:e8:11:24:fe:40:de:b6:98:fa:44:9e:14:ae:38: 1f:2e:d8:95:6d:8d:5d:2e:5e:dd:92:d4:4c:4f:78: 85:c6:c3:29:b8:8c:b6:15:72:9e:b0:ae:1c:7b:a0: 75:0d:74:08:63:ab:4c:ce:47:5c:2a:67:5d:fa:b9: bf:3f:2c:ae:21:68:c6:1f:c9:95:50:b4:fa:48:62: 77:6c:0a:4c:f2:06:82:94:ab:7f:97:95:4d:63:1e: f9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:01:B2:6C:C7:D1:8C:45:33:D2:38:EC:F5:CC:B8:1A:10:F0:47:9C X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ed:a7:61:96:e2:6c:d7:e0:de:59:26:87:18:41:86:c6:c7: 50:25:da:75:af:67:ab:90:c6:60:c9:24:79:dd:78:3a:f1:8a: f9:d0:40:8e:47:23:2d:61:48:33:5e:51:12:e4:ee:bb:47:50: 6f:76:40:7b:8e:70:6e:51:35:82:e9:ec:b8:ac:3b:8a:81:d6: cb:3c:34:9a:33:77:b6:39:fa:8d:ea:1c:5b:d5:c6:b5:ac:32: b3:88:3c:21:ea:aa:9c:34:99:05:15:b5:7e:7e:6d:53:06:29: 4c:0d:00:59:21:8a:3f:bd:c0:5e:8d:42:62:ea:28:f0:bc:ce: 50:32:e5:b8:ab:d9:9c:18:e2:44:62:61:c0:19:04:10:e6:ce: 15:ac:93:3c:b1:44:67:95:2c:14:63:46:53:a4:d0:d4:f3:16: 21:90:3a:54:8d:02:37:a3:0e:5d:45:11:02:ad:e9:01:11:96: 00:70:a1:42:2b:1f:90:50:0f:7a:ec:99:1c:92:a4:77:80:39: 79:48:58:93:29:1b:1b:2e:80:62:da:17:82:28:06:5b:0e:7b: 0a:c0:c2:9a:5b:90:c6:b6:82:9e:be:dd:8f:21:90:2f:2e:15: e6:1e:f7:52:8a:bc:9f:6c:98:23:4c:3f:4a:3d:8e:37:b5:e1: 73:2b:f5:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUwNjE2MjMzMDMxWhcNMjUwNjIzMjMzMDMxWjAYMRYwFAYD VQQDEw02ODUwYTkxOC00ZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Z96aa4/W7Ls8qDjOYxudS3T5XkfVByjW0UNvYFVIbnoOhBRXyh+cvntIQ0I AaRsppIEFlYXlOIZS0BKTvJ7yBMhnl6yQSKGrvrfe7KxIe/t0r23yC0QZqXO0CJo 6ECdgR2E72lGP2Xf0PrpyZtQZ39mNJnv7LUR1iKGwKS0KH3jX3FGNUnSlEMQacoy fQ9mxWsKTgwT8+1MnfEq0lxuanQ0yokl6BEk/kDetpj6RJ4UrjgfLtiVbY1dLl7d ktRMT3iFxsMpuIy2FXKesK4ce6B1DXQIY6tMzkdcKmdd+rm/PyyuIWjGH8mVULT6 SGJ3bApM8gaClKt/l5VNYx75rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0BsmzH 0YxFM9I47PXMuBoQ8EecMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx7adhluJs1+DeWSaHGEGGxsdQJdp1r2erkMZgySR53Xg68Yr50ECO RyMtYUgzXlES5O67R1BvdkB7jnBuUTWC6ey4rDuKgdbLPDSaM3e2OfqN6hxb1ca1 rDKziDwh6qqcNJkFFbV+fm1TBilMDQBZIYo/vcBejUJi6ijwvM5QMuW4q9mcGOJE YmHAGQQQ5s4VrJM8sURnlSwUY0ZTpNDU8xYhkDpUjQI3ow5dRRECrekBEZYAcKFC Kx+QUA967JkckqR3gDl5SFiTKRsbLoBi2heCKAZbDnsKwMKaW5DGtoKevt2PIZAv LhXmHvdSiryfbJgjTD9KPY43teFzK/WC -----END CERTIFICATE-----Generated at Wed Jun 18 15:27:09 2025 by rpki-client