$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json) Hash identifier: y3bng+CIcG8Oq+t/GpkweOkKoul24N9en69QOGF8otc= Subject key identifier: 5A:93:10:C4:52:F2:1F:DD:83:27:CA:33:8F:C3:BB:B7:93:C2:DE:1A Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft Manifest number: 5A Signing time: Tue 17 Jun 2025 06:02:50 +0000 Manifest this update: Tue 17 Jun 2025 06:02:50 +0000 Manifest next update: Tue 24 Jun 2025 06:02:50 +0000 Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: Yv3kmgTfeMzM8migqjoCMiNFuqtr7McS2A6C08i7Oug=) 2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: NFkplWmsMA3dKF672WmukIl9RpnNjHUYN1V/j7l+GN0=) 3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: FPrJ8rYYz3zXm+ulxONvcKZWR1V8127XQSJ/4rwqktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C, serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Validity Not Before: Jun 17 06:02:50 2025 GMT Not After : Jun 24 06:02:50 2025 GMT Subject: CN=6851050a-ebbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:01:81:d9:f8:c3:39:88:44:90:09:c7:28:2a: 12:d4:a2:20:14:79:b5:45:70:47:3b:4f:37:06:07: 33:6f:cd:af:f0:bd:f7:1c:b8:80:32:60:71:38:90: 50:59:91:1f:53:a1:1c:f3:da:17:e5:7b:9c:95:aa: 21:9b:be:f9:52:47:a3:f7:bf:11:dd:75:19:04:17: 5c:11:6f:64:07:31:f5:39:1f:76:63:4a:48:f7:89: 2f:3c:90:4d:1c:d4:2e:04:33:f1:dc:af:c1:00:c6: d5:1d:d0:46:0b:0c:94:33:68:be:e2:00:b1:d4:3d: db:22:12:58:01:58:cd:33:f2:8a:b9:1b:fa:d2:16: 43:7e:40:0e:8d:b0:c5:77:42:83:47:3e:a9:e9:e6: 81:1d:36:de:d9:8c:ab:c8:f1:11:85:1c:55:cd:57: 1d:5d:c9:4d:07:d8:48:ac:b6:7a:ff:be:b3:cc:6d: 86:02:32:87:31:ad:1e:2f:aa:0c:7a:54:94:23:18: ce:55:2d:99:cc:1e:42:36:71:63:64:29:28:5a:7e: 39:cb:42:71:66:87:0d:28:f2:aa:09:3c:86:c3:2c: e9:1e:f6:71:04:e6:8c:03:74:72:e2:dc:b7:71:0f: af:39:ca:af:8d:63:a3:1e:88:57:97:21:a0:eb:2d: c2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:93:10:C4:52:F2:1F:DD:83:27:CA:33:8F:C3:BB:B7:93:C2:DE:1A X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:8a:fd:3e:13:a4:68:d4:3a:85:fb:4b:3f:04:b0:8a:b0:20: d2:a8:8f:95:c1:ee:0b:28:30:ed:f4:a4:6b:93:23:e9:fd:d2: 52:75:d0:d6:76:d0:75:b8:b4:79:3c:15:92:8c:f8:d6:21:36: 5c:21:a3:e3:e0:f8:7d:a7:44:a5:db:74:2a:28:48:f8:0b:c7: 21:06:eb:5c:7b:73:ce:7a:e6:51:4f:d7:45:86:a0:08:ab:89: 72:fa:13:07:02:8f:b0:0c:66:72:d6:f3:f7:75:f5:1e:64:9f: 25:f3:c2:7e:d5:f0:10:ba:b1:17:c9:9b:fc:42:af:af:7d:09: a4:cd:f5:1b:e5:02:61:88:3b:c7:92:ef:f6:51:86:6c:55:85: ad:ae:d5:e5:9a:1f:90:b6:53:15:b9:0b:a8:39:14:3f:20:b6: a5:38:d9:93:6e:ae:65:ee:60:4f:16:c1:3c:73:61:2d:37:e5: 7d:95:8e:a4:16:80:c6:85:17:c7:0c:77:a5:89:2f:b2:6c:46: 29:5b:a7:50:8a:e6:13:f1:1c:5b:25:b5:f8:96:74:53:85:4d: 75:1e:e6:cb:6c:1a:e2:e0:aa:5a:ba:52:7d:f4:ce:91:2d:9b: 9a:28:67:0e:28:bf:98:e0:34:35:b0:67:4f:e0:74:9f:96:a9: d2:71:70:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NkEzQzExMC8GA1UEBRMoRUU4MTlBNDlCOEM4QTg0NDEzRUU4RkU4MzI2RUYxMzdG NTE4NUM2NjAeFw0yNTA2MTcwNjAyNTBaFw0yNTA2MjQwNjAyNTBaMBgxFjAUBgNV BAMTDTY4NTEwNTBhLWViYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXAYHZ+MM5iESQCccoKhLUoiAUebVFcEc7TzcGBzNvza/wvfccuIAyYHE4kFBZ kR9ToRzz2hfle5yVqiGbvvlSR6P3vxHddRkEF1wRb2QHMfU5H3ZjSkj3iS88kE0c 1C4EM/Hcr8EAxtUd0EYLDJQzaL7iALHUPdsiElgBWM0z8oq5G/rSFkN+QA6NsMV3 QoNHPqnp5oEdNt7ZjKvI8RGFHFXNVx1dyU0H2Eistnr/vrPMbYYCMocxrR4vqgx6 VJQjGM5VLZnMHkI2cWNkKShafjnLQnFmhw0o8qoJPIbDLOke9nEE5owDdHLi3Ldx D685yq+NY6MeiFeXIaDrLcJJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWpMQxFLy H92DJ8ozj8O7t5PC3howHwYDVR0jBBgwFoAU7oGaSbjIqEQT7o/oMm7xN/UYXGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2QTNDLzdCRkI0Q0FDQzZB MDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN29HYVNiaklxRVFUN29fb01tN3hOX1VZWEdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 QTNDLzdCRkI0Q0FDQzZBMDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVR VDdvX29NbTd4Tl9VWVhHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIOK/T4TpGjUOoX7Sz8EsIqwINKoj5XB7gsoMO30pGuTI+n90lJ10NZ2 0HW4tHk8FZKM+NYhNlwho+Pg+H2nRKXbdCooSPgLxyEG61x7c8565lFP10WGoAir iXL6EwcCj7AMZnLW8/d19R5knyXzwn7V8BC6sRfJm/xCr699CaTN9RvlAmGIO8eS 7/ZRhmxVha2u1eWaH5C2UxW5C6g5FD8gtqU42ZNurmXuYE8WwTxzYS035X2VjqQW gMaFF8cMd6WJL7JsRilbp1CK5hPxHFsltfiWdFOFTXUe5stsGuLgqlq6Un30zpEt m5ooZw4ov5jgNDWwZ0/gdJ+WqdJxcCM= -----END CERTIFICATE-----Generated at Thu Jun 19 05:58:38 2025 by rpki-client