$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: aZLhsd3pL8Gx2wWkbB7F61plAS1Afh4wP+7WdVEPLHo= Subject key identifier: E8:68:B9:E9:CB:77:DE:2C:B3:C5:58:FD:7C:34:C9:B3:4B:D4:11:E4 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 0120 Signing time: Fri 13 Jun 2025 03:47:55 +0000 Manifest this update: Fri 13 Jun 2025 03:47:54 +0000 Manifest next update: Fri 20 Jun 2025 03:47:54 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: nzNlgvqrzl/s7nz03bZZOjwhdZclaIIYNx1auttK3vA=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: 8cegSUbUuoPE7mPNDdYwV/tSOtw6Sjag/azXHzK7Lu8=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: l/0cV1WqKHlm3zfBuP747PhglBf2SLieAswGuN8ioE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Jun 13 03:47:54 2025 GMT Not After : Jun 20 03:47:54 2025 GMT Subject: CN=684b9f6b-d9c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:71:6c:48:51:2c:fe:c7:63:92:6a:31:9d:e1: 1f:86:97:3c:b6:51:3e:a6:a9:70:87:1d:98:ad:3c: 22:2a:71:ab:4c:83:dd:ab:6c:ed:65:9c:25:de:7e: 32:1b:2d:f8:81:9f:e4:4a:71:cb:ee:3f:76:ea:ee: a3:6f:bb:93:01:44:64:25:cc:ad:db:0f:75:f3:b4: dc:05:d0:dd:a8:d6:de:f4:35:b7:d9:68:ab:17:ea: e2:96:38:01:af:a6:f2:a7:c9:cf:51:07:3f:a3:cb: 0f:94:6a:36:b0:8e:36:b2:ad:f3:33:a0:e0:c9:8e: 6b:28:ad:23:67:09:da:06:82:5b:66:39:3d:ce:ec: 17:fd:bc:62:3b:4f:0e:60:2d:00:0f:9d:f9:5c:fd: aa:6a:4b:01:e2:18:4d:2f:ab:cb:fb:3a:0c:d7:8c: ba:09:42:20:11:55:1b:92:f1:a6:fe:28:0c:7f:97: 12:e9:24:c2:dc:39:c5:61:55:56:98:a5:09:6c:33: dc:40:ef:41:7a:15:8b:2e:02:e2:db:8d:98:ac:15: 86:8b:5f:e9:72:e5:64:17:f4:7a:f1:1e:cd:fa:b8: d7:1b:eb:ec:ed:9d:bd:94:f4:d1:da:ff:7a:d8:d2: 7f:f9:00:7d:66:b9:67:f8:9d:bf:55:b4:34:89:ea: 02:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:68:B9:E9:CB:77:DE:2C:B3:C5:58:FD:7C:34:C9:B3:4B:D4:11:E4 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:dd:e2:c9:db:10:fa:41:fe:15:ab:1c:9b:78:66:2d:87:85: ea:10:00:35:2f:aa:54:00:8e:34:17:b6:bd:c1:b3:ca:ed:17: 53:cc:ac:3a:a8:93:f1:dd:e3:28:a7:d9:fa:01:54:7c:74:95: dc:ad:65:5e:d4:22:8e:87:6b:e0:c2:e5:da:29:af:92:13:c8: 57:86:09:9f:a1:80:3a:46:23:df:36:f5:5e:16:07:69:06:27: 61:15:14:61:a9:03:e5:20:49:b7:e6:a8:7e:61:ce:70:a9:9f: 2b:b9:c6:1d:10:26:b5:ff:7e:75:c0:4a:04:52:a4:10:c1:d8: 78:db:57:79:93:93:6c:8d:6d:f4:a1:08:36:a8:2a:06:34:ff: 53:6b:b1:b8:e8:3e:b6:4d:53:4c:aa:25:56:41:fd:70:9c:70: 54:ad:be:fc:43:e4:1f:d6:ad:b8:cc:dc:80:87:f8:3a:2c:1d: 30:44:e5:0f:57:a1:6a:7d:76:b8:61:33:69:b7:15:a9:d4:c5: c7:8c:69:37:6e:18:cf:29:c3:c9:84:f1:b5:41:21:06:60:a0: e6:af:2d:c3:92:b6:6d:ca:7e:48:6f:ab:7e:15:a5:fb:d6:8b: 07:2f:43:a2:4e:5f:c6:bc:03:ec:99:63:96:1c:88:42:87:eb: 36:a7:52:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwNjEzMDM0NzU0WhcNMjUwNjIwMDM0NzU0WjAYMRYwFAYD VQQDEw02ODRiOWY2Yi1kOWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HFsSFEs/sdjkmoxneEfhpc8tlE+pqlwhx2YrTwiKnGrTIPdq2ztZZwl3n4y Gy34gZ/kSnHL7j926u6jb7uTAURkJcyt2w9187TcBdDdqNbe9DW32WirF+riljgB r6byp8nPUQc/o8sPlGo2sI42sq3zM6DgyY5rKK0jZwnaBoJbZjk9zuwX/bxiO08O YC0AD535XP2qaksB4hhNL6vL+zoM14y6CUIgEVUbkvGm/igMf5cS6STC3DnFYVVW mKUJbDPcQO9BehWLLgLi242YrBWGi1/pcuVkF/R68R7N+rjXG+vs7Z29lPTR2v96 2NJ/+QB9Zrln+J2/VbQ0ieoCHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhouenL d94ss8VY/Xw0ybNL1BHkMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP3eLJ2xD6Qf4VqxybeGYth4XqEAA1L6pUAI40F7a9wbPK7RdTzKw6 qJPx3eMop9n6AVR8dJXcrWVe1CKOh2vgwuXaKa+SE8hXhgmfoYA6RiPfNvVeFgdp BidhFRRhqQPlIEm35qh+Yc5wqZ8rucYdECa1/351wEoEUqQQwdh421d5k5NsjW30 oQg2qCoGNP9Ta7G46D62TVNMqiVWQf1wnHBUrb78Q+Qf1q24zNyAh/g6LB0wROUP V6FqfXa4YTNptxWp1MXHjGk3bhjPKcPJhPG1QSEGYKDmry3DkrZtyn5Ib6t+FaX7 1osHL0OiTl/GvAPsmWOWHIhCh+s2p1K4 -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:56 2025 by rpki-client