$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft File: 5nG8sr6VpsiFJxIdiBXovPGKoeI.mft (raw, json) Hash identifier: 3fXB0uSuFQ+FkpOUohW0FRPg8t3AhlaCejgvPTCjn2k= Subject key identifier: E8:D3:C6:07:56:66:E6:16:1C:3B:7C:FA:AC:35:4E:1A:B1:DC:6A:15 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 09D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft Manifest number: 09CC Signing time: Wed 18 Jun 2025 19:49:08 +0000 Manifest this update: Wed 18 Jun 2025 19:49:08 +0000 Manifest next update: Wed 25 Jun 2025 19:49:08 +0000 Files and hashes: 1: 5nG8sr6VpsiFJxIdiBXovPGKoeI.crl (hash: sMI17c8CNKhjFDMJgTvLAI6ZSrMQAsgt+j10/2Z13TI=) 2: 209BA8B682DF11EAABBC5018C4F9AE02.roa (hash: BPcITeixSaXAriwkv0vsDzYrlqCAlvQdRZ4cRFHy1EA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2517 (0x9d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926, serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Jun 18 19:49:08 2025 GMT Not After : Jun 25 19:49:08 2025 GMT Subject: CN=68531834-63f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5d:50:d3:f5:a2:7f:f3:b3:0c:6d:de:3e:76: 16:86:12:eb:ce:7b:79:67:16:f5:b2:9d:05:e0:ff: 58:6d:37:ca:dc:85:6b:63:2b:36:bf:1c:c8:bd:1b: 1a:42:41:0e:5b:58:79:1b:a7:cd:e9:27:00:dd:1a: bd:7c:86:2c:b5:07:b6:38:5f:ba:14:3d:5c:61:d6: 24:51:2d:a8:ea:04:15:5d:6f:85:9c:d5:23:bb:de: 92:e7:91:4d:c1:f4:12:1b:3a:af:c2:67:35:08:29: 63:3c:25:16:44:5a:bf:c9:bd:ba:6a:fa:1a:cc:92: 9d:30:bf:92:61:f5:25:34:9b:fa:86:c7:38:cc:68: 5d:17:49:35:c0:c4:45:92:af:88:47:f8:29:81:ff: 11:da:86:c9:1a:20:92:57:3f:9e:4a:ad:66:42:30: d0:84:8e:9e:bd:7b:ee:6f:1f:ee:d0:aa:30:29:d0: 29:2e:aa:75:7a:35:97:95:3f:23:c7:bb:8c:01:d4: 0e:97:07:6f:91:04:43:8a:5a:5a:09:96:5b:a7:da: 43:68:06:94:e2:98:e2:46:42:cb:cd:0f:b4:34:29: 95:6f:3b:3e:df:bd:a9:1f:a7:2d:06:b4:dd:67:59: b9:90:aa:b3:a1:f4:9c:59:b2:78:32:ef:8c:e7:86: 00:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D3:C6:07:56:66:E6:16:1C:3B:7C:FA:AC:35:4E:1A:B1:DC:6A:15 X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a4:63:4b:1c:53:95:cf:30:58:b3:e2:2c:ca:dc:c6:40:b8: 51:93:70:0f:8a:91:8b:3b:4c:72:c1:33:6b:ed:1e:0c:ad:5f: 6c:72:7d:b0:41:96:c1:f6:d4:a9:d2:e3:f0:b5:60:74:d7:8b: dd:6d:ca:ef:c4:14:43:1a:65:e9:bd:59:df:7b:70:57:54:0c: 78:a6:5c:a4:d1:fc:d3:cc:d4:ab:68:d1:1b:ff:94:e6:bf:f3: f5:7f:46:23:37:95:05:a0:46:8c:85:cc:79:86:44:78:b5:66: 20:1e:3a:18:e6:92:76:ee:73:c2:24:45:c5:61:b4:6d:d4:40: ca:76:0f:ea:37:1d:97:04:01:9f:db:23:f5:d2:ab:12:9b:41: 0f:b4:5a:5b:78:06:7c:30:dd:cf:d3:6b:64:8e:7b:8b:17:f6: 0b:e0:ec:0b:f5:6b:a2:ca:bc:4c:ec:9d:fb:ae:40:9b:fa:f3: 07:48:09:d7:18:2c:ac:65:31:05:1c:93:0a:e4:bf:e3:05:37: e6:51:67:7b:bd:b7:ca:3f:b9:db:cf:1c:a3:7f:f6:2d:2f:f7: 97:da:4c:0c:69:97:e1:93:aa:3a:8f:f0:29:10:e9:2b:bc:d5: e6:59:f8:05:ab:bd:1d:64:4d:e4:f8:6c:de:6e:ac:91:7d:9f: c7:d7:71:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjUwNjE4MTk0OTA4WhcNMjUwNjI1MTk0OTA4WjAYMRYwFAYD VQQDEw02ODUzMTgzNC02M2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo11Q0/Wif/OzDG3ePnYWhhLrznt5Zxb1sp0F4P9YbTfK3IVrYys2vxzIvRsa QkEOW1h5G6fN6ScA3Rq9fIYstQe2OF+6FD1cYdYkUS2o6gQVXW+FnNUju96S55FN wfQSGzqvwmc1CCljPCUWRFq/yb26avoazJKdML+SYfUlNJv6hsc4zGhdF0k1wMRF kq+IR/gpgf8R2obJGiCSVz+eSq1mQjDQhI6evXvubx/u0KowKdApLqp1ejWXlT8j x7uMAdQOlwdvkQRDilpaCZZbp9pDaAaU4pjiRkLLzQ+0NCmVbzs+372pH6ctBrTd Z1m5kKqzofScWbJ4Mu+M54YAYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjTxgdW ZuYWHDt8+qw1Thqx3GoVMB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDkyNi9CMzg1NzhDNDgyRDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBz aUZKeElkaUJYb3ZQR0tvZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBspGNLHFOVzzBYs+IsytzGQLhRk3APipGLO0xywTNr7R4MrV9scn2w QZbB9tSp0uPwtWB014vdbcrvxBRDGmXpvVnfe3BXVAx4plyk0fzTzNSraNEb/5Tm v/P1f0YjN5UFoEaMhcx5hkR4tWYgHjoY5pJ27nPCJEXFYbRt1EDKdg/qNx2XBAGf 2yP10qsSm0EPtFpbeAZ8MN3P02tkjnuLF/YL4OwL9WuiyrxM7J37rkCb+vMHSAnX GCysZTEFHJMK5L/jBTfmUWd7vbfKP7nbzxyjf/YtL/eX2kwMaZfhk6o6j/ApEOkr vNXmWfgFq70dZE3k+GzebqyRfZ/H13H0 -----END CERTIFICATE-----Generated at Fri Jun 20 20:42:43 2025 by rpki-client