$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft File: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft (raw, json) Hash identifier: HFH6wkGigDMWBYsS2vGRKynKBBcE0kcwn6LA5PeggqM= Subject key identifier: C0:33:D0:00:B9:91:DD:B5:C7:EC:70:2C:0B:FD:9E:FA:A6:F4:BA:46 Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 Certificate issuer: /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Certificate serial: 0BB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft Manifest number: 0BA6 Signing time: Thu 12 Jun 2025 18:48:08 +0000 Manifest this update: Thu 12 Jun 2025 18:48:08 +0000 Manifest next update: Thu 19 Jun 2025 18:48:08 +0000 Files and hashes: 1: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl (hash: FeLwNeXNeYsWjUPLQhjnem0dULMUzc3jE2/4bpjPbgY=) 2: 01A8B084262811EA8269E33EC4F9AE02.roa (hash: 3edR8k68PlyDLwSNioDrZi097Di1Z0qsLBIpivE7sS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Validity Not Before: Jun 12 18:48:08 2025 GMT Not After : Jun 19 18:48:08 2025 GMT Subject: CN=684b20e8-580d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8c:c5:5b:a9:0f:bf:8a:76:fb:26:71:a5:61: 74:20:e1:e6:46:fa:a2:0f:57:1c:06:c2:82:47:5d: da:d9:73:25:ac:21:e9:fc:5a:47:51:a8:f0:21:77: 0d:63:3b:49:55:3a:c8:65:0e:ed:15:3e:42:00:52: 16:ca:de:e0:33:f1:ea:35:d2:45:4e:e1:6a:4d:90: 21:f5:b1:ce:75:70:2e:aa:57:b2:e4:ad:73:f8:ed: 9f:4c:42:ae:7d:13:f6:05:7f:44:7b:4a:24:af:65: 3d:6d:8c:5e:14:dd:f4:97:66:3d:33:54:8a:27:c7: d4:d8:24:63:1a:62:71:98:60:65:42:2d:8c:2a:04: bd:78:7f:79:97:ca:cf:94:e5:0b:f4:11:3e:17:b6: e3:a5:16:b2:70:5a:55:0c:fe:67:2d:85:84:24:ab: 24:ac:63:49:b3:54:56:99:1a:2a:4f:9c:7f:e0:d1: 46:40:b5:ea:67:38:a7:75:af:c6:f5:f9:77:7f:ed: 3c:86:1d:37:8e:04:02:cc:be:8c:85:90:f2:ee:9b: 05:20:7f:21:76:78:41:49:29:f5:30:a3:e3:e8:86: a6:a6:16:ff:0e:7f:5d:76:f1:db:d5:c4:32:db:64: 5b:eb:ac:37:da:c6:51:96:8a:db:6e:fc:00:03:ed: 49:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:33:D0:00:B9:91:DD:B5:C7:EC:70:2C:0B:FD:9E:FA:A6:F4:BA:46 X509v3 Authority Key Identifier: keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:09:92:e7:9b:ea:94:df:74:b1:92:c0:f3:39:bd:5c:22:b7: 89:0b:82:ad:d0:b3:51:b5:ef:1f:ca:af:7c:2d:77:44:fe:f6: 52:09:30:e1:97:34:60:fd:f4:87:51:df:9c:48:b2:20:96:8f: 51:af:0b:fe:9e:81:22:1e:70:5b:fc:8b:ea:4b:5e:91:f9:7a: d0:c1:7a:0d:1f:08:9c:52:30:74:91:ec:5b:63:48:af:90:7e: 3b:cf:09:3a:d8:65:63:bf:92:6a:ed:14:95:1c:e2:28:93:b7: ab:31:ae:80:eb:5c:73:c2:29:c7:1c:5d:6a:5c:e1:67:c7:72: fb:bb:7f:3c:1f:74:19:8d:dd:5f:2a:ac:da:79:c9:26:3f:5d: 53:d3:c9:8d:2d:80:6f:8d:09:7b:b7:cd:f2:52:e1:71:bb:dd: b7:05:49:ac:36:3d:3f:1e:be:b7:4c:d6:92:5f:cf:48:fd:a4: 83:84:10:2c:66:a5:d5:02:63:57:c8:c7:61:50:62:31:2d:ab: c9:57:b9:a6:52:87:83:81:92:41:8d:1b:26:91:4a:e8:15:99: 43:d7:17:82:8f:2f:ec:20:7c:1b:eb:5b:ca:ae:ea:87:cb:10: a8:17:bc:f1:1f:38:63:b7:4c:b9:8b:0f:eb:f6:48:57:44:d3: 99:d1:62:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFENzMxMTAvBgNVBAUTKEY5Qjk3NTE2MUZFMkVBMzdFMEU0NjJBRDVGNUI4QTc0 MjgwMTM0RTYwHhcNMjUwNjEyMTg0ODA4WhcNMjUwNjE5MTg0ODA4WjAYMRYwFAYD VQQDEw02ODRiMjBlOC01ODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4zFW6kPv4p2+yZxpWF0IOHmRvqiD1ccBsKCR13a2XMlrCHp/FpHUajwIXcN YztJVTrIZQ7tFT5CAFIWyt7gM/HqNdJFTuFqTZAh9bHOdXAuqley5K1z+O2fTEKu fRP2BX9Ee0okr2U9bYxeFN30l2Y9M1SKJ8fU2CRjGmJxmGBlQi2MKgS9eH95l8rP lOUL9BE+F7bjpRaycFpVDP5nLYWEJKskrGNJs1RWmRoqT5x/4NFGQLXqZzinda/G 9fl3f+08hh03jgQCzL6MhZDy7psFIH8hdnhBSSn1MKPj6Iamphb/Dn9ddvHb1cQy 22Rb66w32sZRlorbbvwAA+1JKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAz0AC5 kd21x+xwLAv9nvqm9LpGMB8GA1UdIwQYMBaAFPm5dRYf4uo34ORirV9binQoATTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQ3My81Q0M2NkJENDI2 MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZqZmc1R0t0WDF1S2RDZ0JO T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ibDFGaF9pNmpmZzVHS3RYMXVLZENnQk5PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUQ3My81Q0M2NkJENDI2MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZq Zmc1R0t0WDF1S2RDZ0JOT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsCZLnm+qU33SxksDzOb1cIreJC4Kt0LNRte8fyq98LXdE/vZSCTDh lzRg/fSHUd+cSLIglo9Rrwv+noEiHnBb/IvqS16R+XrQwXoNHwicUjB0kexbY0iv kH47zwk62GVjv5Jq7RSVHOIok7erMa6A61xzwinHHF1qXOFnx3L7u388H3QZjd1f KqzaeckmP11T08mNLYBvjQl7t83yUuFxu923BUmsNj0/Hr63TNaSX89I/aSDhBAs ZqXVAmNXyMdhUGIxLavJV7mmUoeDgZJBjRsmkUroFZlD1xeCjy/sIHwb61vKruqH yxCoF7zxHzhjt0y5iw/r9khXRNOZ0WL4 -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:17 2025 by rpki-client