$ rpki-client -vvf rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft File: fSf9xw_NGLbdWwQmla_djBc1wTA.mft (raw, json) Hash identifier: qhGr7MeyvXMp2no5tY41SrXUtVC8dJsYdOsGFrw0/d0= Subject key identifier: 2D:69:0C:F4:E0:27:11:53:18:29:83:B4:8F:5B:72:40:B2:A5:0E:FE Authority key identifier: 7D:27:FD:C7:0F:CD:18:B6:DD:5B:04:26:95:AF:DD:8C:17:35:C1:30 Certificate issuer: /CN=A9122041/serialNumber=7D27FDC70FCD18B6DD5B042695AFDD8C1735C130 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft Manifest number: EB Signing time: Sun 15 Jun 2025 04:27:25 +0000 Manifest this update: Sun 15 Jun 2025 04:27:24 +0000 Manifest next update: Sun 22 Jun 2025 04:27:24 +0000 Files and hashes: 1: fSf9xw_NGLbdWwQmla_djBc1wTA.crl (hash: I5Kp9lC18otX7IuY50g9ph+Akv18puAb+CwhBxhJdlA=) 2: E46B7DACDC3611EEBE5CDD37C4F9AE02.roa (hash: EUS1TcmCLEChYsSUsTW2xirwCeaCm7aIPgo/Dh+GRoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.crl rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122041, serialNumber=7D27FDC70FCD18B6DD5B042695AFDD8C1735C130 Validity Not Before: Jun 15 04:27:24 2025 GMT Not After : Jun 22 04:27:24 2025 GMT Subject: CN=684e4bad-0430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:55:3b:bc:a7:57:47:5b:77:69:46:50:9e:5c: 1b:80:fb:a4:35:d0:e9:ea:0b:3d:ce:00:6f:8a:2c: f9:a6:71:48:c7:a1:b8:1d:69:13:1b:91:b0:e9:d3: b6:69:dc:99:5b:48:6e:fa:a4:6e:5e:61:48:57:1e: e5:0a:dc:f1:85:c0:71:8c:12:6c:da:32:c9:3a:cd: 53:e3:a8:79:63:63:bf:26:eb:5c:9f:93:6f:6a:13: d9:3e:cb:bd:ba:39:c3:2d:f1:f6:08:5f:3e:ef:e8: 3d:f3:76:d6:be:76:2a:20:63:24:23:17:bd:a1:72: f3:c6:c0:2f:3c:cf:a1:4c:76:10:6a:c4:dd:81:a6: 20:1f:5b:e6:30:f7:a1:92:7b:82:a4:fe:8c:d6:69: f3:b7:1d:e6:9c:fb:bd:88:02:ca:b5:ee:80:de:9f: d0:bc:0e:73:df:af:5e:06:5c:9a:75:87:c3:6f:28: 5b:02:b1:8a:8a:93:f4:58:8a:7d:3d:25:02:c2:3b: f6:98:81:1c:f7:82:8f:3a:18:ff:a2:36:a5:ca:84: 4c:5b:9a:40:8f:1d:27:7b:dc:ab:75:44:69:77:f6: 4d:21:69:34:17:ce:b9:bd:59:3d:f8:e8:71:d8:21: b0:1c:23:db:55:6c:27:23:b1:c9:7a:52:7f:56:fe: f2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:69:0C:F4:E0:27:11:53:18:29:83:B4:8F:5B:72:40:B2:A5:0E:FE X509v3 Authority Key Identifier: keyid:7D:27:FD:C7:0F:CD:18:B6:DD:5B:04:26:95:AF:DD:8C:17:35:C1:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:eb:6e:2a:96:69:d0:e7:dd:39:06:6d:39:5e:79:ae:42:7c: 39:de:33:cc:90:17:0c:f4:4a:1e:b3:e9:0c:91:48:3f:87:33: 86:51:d3:19:63:13:a1:b3:9f:35:5c:88:0f:e9:12:a9:71:14: d8:1c:28:d8:97:d7:30:db:3a:69:0b:38:27:ea:2b:8e:ec:2e: bd:18:8e:0a:fc:7c:59:d7:99:bc:81:d1:98:5a:1e:dc:ce:32: 08:2d:74:43:84:f8:c9:7b:60:e4:9a:ee:e6:ca:c5:8e:de:fc: 09:62:66:a8:7f:55:0a:85:a4:03:be:12:23:68:08:4f:85:82: 89:f0:83:fe:a5:02:8f:a3:69:a0:48:30:f4:e8:53:6c:a9:83: b8:3b:53:d2:6e:1d:ee:ab:28:76:57:72:9e:4a:0e:48:4e:ce: 75:b3:e1:a8:93:c4:d7:1c:89:cc:f9:ad:3d:bf:13:5f:f2:ef: e0:4b:7f:55:8f:3c:05:fe:51:7d:ae:9a:b1:53:f0:45:2f:3d: da:8e:9b:32:97:9f:f3:30:3e:4c:db:87:bb:14:b8:76:d3:a1: 64:21:77:bf:a6:ac:f6:e9:5b:55:54:7e:0d:ff:29:4f:45:33: e7:8d:68:69:87:0e:7f:d2:36:f9:b2:7e:7e:35:bb:ce:13:31: d0:fc:38:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIwNDExMTAvBgNVBAUTKDdEMjdGREM3MEZDRDE4QjZERDVCMDQyNjk1QUZERDhD MTczNUMxMzAwHhcNMjUwNjE1MDQyNzI0WhcNMjUwNjIyMDQyNzI0WjAYMRYwFAYD VQQDEw02ODRlNGJhZC0wNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVU7vKdXR1t3aUZQnlwbgPukNdDp6gs9zgBviiz5pnFIx6G4HWkTG5Gw6dO2 adyZW0hu+qRuXmFIVx7lCtzxhcBxjBJs2jLJOs1T46h5Y2O/Jutcn5NvahPZPsu9 ujnDLfH2CF8+7+g983bWvnYqIGMkIxe9oXLzxsAvPM+hTHYQasTdgaYgH1vmMPeh knuCpP6M1mnztx3mnPu9iALKte6A3p/QvA5z369eBlyadYfDbyhbArGKipP0WIp9 PSUCwjv2mIEc94KPOhj/ojalyoRMW5pAjx0ne9yrdURpd/ZNIWk0F865vVk9+Ohx 2CGwHCPbVWwnI7HJelJ/Vv7ymQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1pDPTg JxFTGCmDtI9bckCypQ7+MB8GA1UdIwQYMBaAFH0n/ccPzRi23VsEJpWv3YwXNcEw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjA0MS8yRTcyRTBBRURD MzUxMUVFOEZGMUE0MzNDNEY5QUUwMi9mU2Y5eHdfTkdMYmRXd1FtbGFfZGpCYzF3 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZTZjl4d19OR0xiZFd3UW1sYV9kakJjMXdUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjA0MS8yRTcyRTBBRURDMzUxMUVFOEZGMUE0MzNDNEY5QUUwMi9mU2Y5eHdfTkdM YmRXd1FtbGFfZGpCYzF3VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV624qlmnQ5905Bm05XnmuQnw53jPMkBcM9Eoes+kMkUg/hzOGUdMZ YxOhs581XIgP6RKpcRTYHCjYl9cw2zppCzgn6iuO7C69GI4K/HxZ15m8gdGYWh7c zjIILXRDhPjJe2Dkmu7mysWO3vwJYmaof1UKhaQDvhIjaAhPhYKJ8IP+pQKPo2mg SDD06FNsqYO4O1PSbh3uqyh2V3KeSg5ITs51s+Gok8TXHInM+a09vxNf8u/gS39V jzwF/lF9rpqxU/BFLz3ajpsyl5/zMD5M24e7FLh206FkIXe/pqz26VtVVH4N/ylP RTPnjWhphw5/0jb5sn5+NbvOEzHQ/DiV -----END CERTIFICATE-----Generated at Sun Jun 15 09:35:40 2025 by rpki-client