$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: 97hG2T3iLmiIhJH4jwQjIBsfhgUwckR8Qz05pefMphY= Subject key identifier: 9E:3B:06:85:FA:D4:34:53:A7:11:95:49:3B:C6:72:FF:CF:CF:3D:4B Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 64 Signing time: Wed 18 Jun 2025 19:27:58 +0000 Manifest this update: Wed 18 Jun 2025 19:27:57 +0000 Manifest next update: Wed 25 Jun 2025 19:27:57 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: TGXhv/9+6HfBjO1SGn/Z4nnk/vwMLDB6bzJb/bK0V8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Jun 18 19:27:57 2025 GMT Not After : Jun 25 19:27:57 2025 GMT Subject: CN=6853133e-165d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:99:68:67:7e:e5:0e:cd:64:07:68:9d:55:bb: 9f:25:d5:5e:35:fa:9f:ac:99:c9:7e:49:c2:f6:78: 9e:52:d8:71:b3:31:60:32:82:ff:d4:17:3f:66:3f: 25:f3:0d:9d:96:e7:e0:73:a4:2b:d6:d8:1b:f6:0a: 3b:68:19:3b:c5:49:4b:58:13:7c:76:e5:6a:78:cd: 0c:09:a3:9f:65:29:da:07:22:33:b2:78:a3:56:11: 4a:f8:51:3f:ea:1e:b0:de:a8:50:4b:e3:78:7b:f1: 88:82:e3:cb:ed:9b:7c:53:2a:20:9f:b0:16:49:1b: d0:ac:35:1a:c8:9b:45:87:b9:ca:ad:58:0d:c8:bc: 71:9e:f3:74:14:54:1e:23:7e:6e:cd:5a:50:6e:75: 97:a6:dd:79:e7:1a:17:eb:59:fe:94:28:a9:35:7b: 8a:c3:95:a3:78:8a:40:33:94:ea:2c:52:18:55:91: 88:c3:b0:97:a4:0d:65:53:48:42:37:71:b2:2c:d4: a0:d1:7f:97:08:de:84:1f:b7:69:03:75:72:4d:70: f9:44:db:61:c2:d4:6c:22:26:aa:c1:6a:c5:96:68: bd:24:fa:09:01:ab:ad:32:7a:f4:19:96:0f:02:04: 07:c4:9e:79:c1:e4:06:aa:3b:7b:8e:97:b2:98:d5: 5e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3B:06:85:FA:D4:34:53:A7:11:95:49:3B:C6:72:FF:CF:CF:3D:4B X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:3c:30:e9:41:cc:4b:6f:22:5b:2c:5f:b3:25:bb:c0:89:74: 59:4a:eb:97:10:12:96:a6:2c:78:fd:ae:43:de:96:74:70:65: ad:27:d5:ca:1b:ee:57:e3:08:a3:0c:0c:52:db:e7:dc:18:cd: 11:b0:fb:eb:a6:56:20:83:be:65:26:ba:6d:13:1e:db:19:1a: 3f:fc:dd:08:45:ed:d0:44:79:1b:80:85:e3:ef:09:73:6b:9c: a1:2f:84:a3:e9:a6:6a:60:11:61:dd:da:f1:f9:35:0f:9b:d9: 67:26:2e:f2:7b:19:3a:29:77:89:36:6c:f2:8b:80:7e:bd:db: 83:06:56:20:39:db:37:b0:a5:ea:78:b0:e4:4b:f4:26:16:a0: 6c:0e:35:de:92:ec:ba:f4:a9:90:15:1f:17:96:66:1b:99:02: b7:cd:85:54:26:87:f6:ef:b9:7f:3d:5c:2a:d0:b7:28:1e:d7: 9c:ea:00:64:e7:db:ab:b3:6d:5f:1c:63:68:8d:80:f6:51:61: ad:83:58:8e:8c:56:47:9c:05:ab:dc:68:83:df:2c:ff:49:7f: 05:44:f3:39:77:79:f7:2b:f9:59:76:9c:f6:52:e5:a1:e5:07: 96:46:ee:9f:2d:1c:f0:c9:0d:cf:e3:ad:e2:f1:24:97:09:aa: 10:c7:ee:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzhBRjExMC8GA1UEBRMoODQwRkQ2RjdFODkxRTM4MDRBN0RCMzA5RDA0Q0U4NUMx QUY3ODZEMTAeFw0yNTA2MTgxOTI3NTdaFw0yNTA2MjUxOTI3NTdaMBgxFjAUBgNV BAMTDTY4NTMxMzNlLTE2NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNmWhnfuUOzWQHaJ1Vu58l1V41+p+smcl+ScL2eJ5S2HGzMWAygv/UFz9mPyXz DZ2W5+BzpCvW2Bv2CjtoGTvFSUtYE3x25Wp4zQwJo59lKdoHIjOyeKNWEUr4UT/q HrDeqFBL43h78YiC48vtm3xTKiCfsBZJG9CsNRrIm0WHucqtWA3IvHGe83QUVB4j fm7NWlBudZem3XnnGhfrWf6UKKk1e4rDlaN4ikAzlOosUhhVkYjDsJekDWVTSEI3 cbIs1KDRf5cI3oQft2kDdXJNcPlE22HC1GwiJqrBasWWaL0k+gkBq60yevQZlg8C BAfEnnnB5AaqO3uOl7KY1V6bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnjsGhfrU NFOnEZVJO8Zy/8/PPUswHwYDVR0jBBgwFoAUhA/W9+iR44BKfbMJ0EzoXBr3htEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDOEFGLzE5N0ZGN0EyQjQw OTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaEFfVzktaVI0NEJLZmJNSjBFem9YQnIzaHRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD OEFGLzE5N0ZGN0EyQjQwOTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRC S2ZiTUowRXpvWEJyM2h0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA08MOlBzEtvIlssX7Mlu8CJdFlK65cQEpamLHj9rkPelnRwZa0n1cob 7lfjCKMMDFLb59wYzRGw++umViCDvmUmum0THtsZGj/83QhF7dBEeRuAhePvCXNr nKEvhKPppmpgEWHd2vH5NQ+b2WcmLvJ7GTopd4k2bPKLgH6924MGViA52zewpep4 sORL9CYWoGwONd6S7Lr0qZAVHxeWZhuZArfNhVQmh/bvuX89XCrQtyge15zqAGTn 26uzbV8cY2iNgPZRYa2DWI6MVkecBavcaIPfLP9JfwVE8zl3efcr+Vl2nPZS5aHl B5ZG7p8tHPDJDc/jreLxJJcJqhDH7ls= -----END CERTIFICATE-----Generated at Thu Jun 19 16:44:08 2025 by rpki-client