$ rpki-client -vvf rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft File: dOHLgzYmhzR4kyyiEYioj98uneA.mft (raw, json) Hash identifier: MMX+9j3NNw2cOGy2u4omVDlkEIRIAM4dtC57zbyS0Rk= Subject key identifier: B6:B5:28:EC:31:EF:BC:EB:0E:AA:5A:81:D3:AC:C8:DD:65:4F:00:5E Authority key identifier: 74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0 Certificate issuer: /CN=A9121E13/serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0 Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft Manifest number: 0656 Signing time: Sat 14 Jun 2025 14:46:42 +0000 Manifest this update: Sat 14 Jun 2025 14:46:42 +0000 Manifest next update: Sat 21 Jun 2025 14:46:42 +0000 Files and hashes: 1: dOHLgzYmhzR4kyyiEYioj98uneA.crl (hash: y9t16MEXfnl3lyXDGtHko0zYyHM/GhvF8wtaFbQNdm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.crl rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121E13, serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0 Validity Not Before: Jun 14 14:46:42 2025 GMT Not After : Jun 21 14:46:42 2025 GMT Subject: CN=684d8b52-f2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:84:f7:27:b4:e7:e7:b6:50:38:4b:8d:ee:3e: 15:e9:4a:f9:92:64:3c:7c:04:61:81:6e:1e:48:6d: 13:cc:7d:20:07:60:4d:07:4d:ec:1e:a6:6f:38:f5: 6c:b2:36:28:1b:11:6a:6e:e0:38:fa:00:23:6a:ec: 05:b1:a2:d0:e5:6e:ea:4f:25:a3:55:a3:1e:de:ae: 2d:80:31:81:f2:8a:b7:a4:d5:61:11:65:7b:32:6a: bb:ca:fc:7f:e4:b7:ad:1b:d5:55:6b:f4:cd:c8:73: 6c:e8:31:ff:de:2b:ef:10:09:55:ff:51:b7:ab:98: cb:a6:d9:27:8f:6c:a2:ee:e5:47:04:7e:74:d8:2b: af:e7:cd:52:33:be:61:e1:8b:8b:dc:2b:f8:1d:6e: 0b:eb:8d:3c:04:7b:26:e2:cb:6c:6c:b2:18:ee:46: 0b:18:dd:b8:e5:48:9a:b1:70:e0:8d:47:a8:a0:43: 22:1b:50:ca:0d:f1:36:5b:0b:99:1d:79:2a:f4:ad: b2:40:98:e2:87:12:44:a3:90:35:b0:4b:e8:d4:cf: 6f:50:3e:3e:aa:78:e7:a0:a7:c6:b8:aa:0b:11:bd: 27:af:86:0b:d5:79:f8:42:92:fb:77:c3:cc:18:a9: f0:02:be:92:2e:59:71:91:9e:55:97:80:14:f1:0a: d6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B5:28:EC:31:EF:BC:EB:0E:AA:5A:81:D3:AC:C8:DD:65:4F:00:5E X509v3 Authority Key Identifier: keyid:74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:ab:7c:18:2d:4c:b2:f9:01:87:e1:76:b4:7b:24:07:aa:b2: 51:00:8b:ad:f1:c8:f2:a3:e3:74:83:eb:03:5c:6c:9b:4f:64: a5:e9:26:69:bc:d7:90:d9:c4:5a:b8:2e:cc:8e:92:9b:1c:3b: 98:46:b3:c5:ab:8b:a9:9d:ed:23:5f:e0:8d:60:2f:e1:0a:6f: f7:6e:e4:a4:1c:51:0f:5b:82:1e:39:99:da:ff:f0:ad:fc:6d: f1:d3:e7:21:22:1d:44:5d:da:66:30:23:b0:04:10:da:e8:20: 7c:71:75:29:84:f6:54:90:eb:b3:ad:36:78:c2:83:3b:df:a1: 7a:5a:92:74:df:6c:ad:18:87:de:42:6b:74:17:be:74:1d:7e: e1:0c:f5:b8:a5:fc:b7:0a:7a:4e:5d:68:34:97:46:e0:44:3a: e6:f1:8a:db:f2:c4:5c:a4:9d:af:1c:ef:ca:a6:70:f5:95:0b: be:4f:90:42:24:7a:15:1b:74:66:5f:94:dc:17:70:d0:41:6c: 8b:72:5d:be:55:b7:59:4d:52:d8:2f:ca:a4:45:78:d2:ed:af: 49:ef:8f:80:ce:44:18:c4:f2:f6:35:16:1f:f6:21:95:f6:38: 1a:78:df:19:1a:e0:2d:1a:c9:bc:a7:34:ab:82:d3:15:0a:2c: 90:e6:48:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFFMTMxMTAvBgNVBAUTKDc0RTFDQjgzMzYyNjg3MzQ3ODkzMkNBMjExODhBODhG REYyRTlERTAwHhcNMjUwNjE0MTQ0NjQyWhcNMjUwNjIxMTQ0NjQyWjAYMRYwFAYD VQQDEw02ODRkOGI1Mi1mMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4T3J7Tn57ZQOEuN7j4V6Ur5kmQ8fARhgW4eSG0TzH0gB2BNB03sHqZvOPVs sjYoGxFqbuA4+gAjauwFsaLQ5W7qTyWjVaMe3q4tgDGB8oq3pNVhEWV7Mmq7yvx/ 5LetG9VVa/TNyHNs6DH/3ivvEAlV/1G3q5jLptknj2yi7uVHBH502Cuv581SM75h 4YuL3Cv4HW4L6408BHsm4stsbLIY7kYLGN245UiasXDgjUeooEMiG1DKDfE2WwuZ HXkq9K2yQJjihxJEo5A1sEvo1M9vUD4+qnjnoKfGuKoLEb0nr4YL1Xn4QpL7d8PM GKnwAr6SLllxkZ5Vl4AU8QrW3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa1KOwx 77zrDqpagdOsyN1lTwBeMB8GA1UdIwQYMBaAFHThy4M2Joc0eJMsohGIqI/fLp3g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUUxMy8xODNGOTlGQThE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kT0hMZ3pZbWh6UjRreXlpRVlpb2o5OHVu ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RPSExnelltaHpSNGt5eWlFWWlvajk4dW5lQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUUxMy8xODNGOTlGQThEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kT0hMZ3pZbWh6 UjRreXlpRVlpb2o5OHVuZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJq3wYLUyy+QGH4Xa0eyQHqrJRAIut8cjyo+N0g+sDXGybT2Sl6SZp vNeQ2cRauC7MjpKbHDuYRrPFq4upne0jX+CNYC/hCm/3buSkHFEPW4IeOZna//Ct /G3x0+chIh1EXdpmMCOwBBDa6CB8cXUphPZUkOuzrTZ4woM736F6WpJ032ytGIfe Qmt0F750HX7hDPW4pfy3CnpOXWg0l0bgRDrm8Yrb8sRcpJ2vHO/KpnD1lQu+T5BC JHoVG3RmX5TcF3DQQWyLcl2+VbdZTVLYL8qkRXjS7a9J74+AzkQYxPL2NRYf9iGV 9jgaeN8ZGuAtGsm8pzSrgtMVCiyQ5khI -----END CERTIFICATE-----Generated at Sun Jun 15 09:55:08 2025 by rpki-client