$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: 5kYKDr5UB71n/XY+q8in4N63sCdO1Xmn63ehQ1EtiWM= Subject key identifier: 27:60:63:C2:29:D8:53:BD:EE:F7:C6:6A:A3:B4:93:09:FF:72:31:8C Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: 9D Signing time: Fri 13 Jun 2025 05:10:18 +0000 Manifest this update: Fri 13 Jun 2025 05:10:18 +0000 Manifest next update: Fri 20 Jun 2025 05:10:18 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: +DGChRHtCuD9K/kENXlHgF+jWBVoO3FFoK63dfd4PME=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: FQoFMhaO39gGEcc2pn8CyPB8yz5sPKJ5LS8scOVr+nU=) 3: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Jun 13 05:10:18 2025 GMT Not After : Jun 20 05:10:18 2025 GMT Subject: CN=684bb2ba-98d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:96:4a:c0:e6:30:c1:db:f5:de:5d:cc:f0:2c: 56:43:2e:5d:32:1d:d5:d5:c2:93:70:c2:4c:03:74: c6:a8:54:9b:bd:a9:3a:87:85:4a:8c:33:1d:d4:33: 67:22:63:a3:b4:b6:4e:a5:25:32:1d:5b:12:a2:49: 6c:d1:7f:d4:4e:38:67:dc:9e:fe:95:c5:07:ee:05: 0f:6c:6e:12:03:fc:21:99:00:d7:51:76:59:dd:70: 1d:54:88:1c:45:0b:31:01:d9:c7:d6:80:e7:40:ac: a3:a7:f3:64:a4:bc:ae:4e:84:8e:13:06:59:78:16: 43:69:20:ea:db:16:e5:c6:fd:0f:ef:c4:54:3c:83: 84:02:fe:b6:63:56:5f:9b:30:b8:88:7b:e9:eb:ba: 68:c2:a0:0a:c3:32:5b:f8:56:d3:e3:a0:cd:9d:dc: 05:ab:44:26:27:24:2b:6d:48:ec:f4:e9:40:c4:c1: eb:f2:d4:1a:5b:b6:7a:d2:bb:ab:fc:f0:b0:c6:17: 7e:77:ae:b0:22:3f:c3:f2:21:65:af:5e:ae:e2:83: 07:b6:90:0f:0b:6a:3e:a4:92:53:4b:cb:aa:50:50: f6:da:e4:44:50:c3:7a:3c:be:ac:23:77:9b:80:80: 78:3b:70:7b:47:63:b8:ed:aa:7d:63:1b:e9:8e:2d: 50:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:60:63:C2:29:D8:53:BD:EE:F7:C6:6A:A3:B4:93:09:FF:72:31:8C X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:58:16:7a:71:23:2a:be:0e:26:da:d1:78:bc:bd:6d:d6:81: d8:55:76:ba:31:2e:89:a4:81:65:ef:bc:87:ef:fa:dc:44:a2: 13:e1:8d:e3:7f:21:8f:28:9d:44:8a:8e:35:f5:d0:1c:ad:37: f2:7e:d9:7d:d1:b1:0e:a4:a6:f5:a2:43:6a:10:4d:cd:9a:69: 3a:b1:b2:9a:54:47:4a:a0:e5:ad:89:09:3e:3f:a2:10:81:c8: 27:bd:06:f9:d0:38:9a:ff:6f:d6:22:a1:b0:dc:ac:0c:dd:bd: 60:88:56:a4:00:05:7e:b9:a8:58:7c:62:70:ee:6a:0e:ed:24: bb:62:59:99:97:7b:22:89:aa:50:be:1a:37:43:80:d6:bf:8b: bd:b5:62:3f:90:aa:95:99:b7:90:44:f0:d5:79:c3:c3:39:b6: 6c:7a:03:c7:26:1e:69:01:fa:cf:da:61:54:cd:3c:58:b6:b3: a7:f6:3e:dd:0a:05:ce:86:e9:03:b1:8e:b0:8f:89:9d:b5:2c: 2b:b1:4f:c9:a0:22:70:76:f6:d9:03:b0:d0:62:f8:6a:be:3b: d8:40:2b:e6:3c:3d:ec:f8:bc:6d:0c:e2:99:7a:90:d1:19:d0: 20:c7:ba:21:4f:2f:7f:32:59:ca:86:98:cf:14:ab:c5:e7:5d: d1:38:a7:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUwNjEzMDUxMDE4WhcNMjUwNjIwMDUxMDE4WjAYMRYwFAYD VQQDEw02ODRiYjJiYS05OGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZZKwOYwwdv13l3M8CxWQy5dMh3V1cKTcMJMA3TGqFSbvak6h4VKjDMd1DNn ImOjtLZOpSUyHVsSokls0X/UTjhn3J7+lcUH7gUPbG4SA/whmQDXUXZZ3XAdVIgc RQsxAdnH1oDnQKyjp/NkpLyuToSOEwZZeBZDaSDq2xblxv0P78RUPIOEAv62Y1Zf mzC4iHvp67powqAKwzJb+FbT46DNndwFq0QmJyQrbUjs9OlAxMHr8tQaW7Z60rur /PCwxhd+d66wIj/D8iFlr16u4oMHtpAPC2o+pJJTS8uqUFD22uREUMN6PL6sI3eb gIB4O3B7R2O47ap9Yxvpji1QOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdgY8Ip 2FO97vfGaqO0kwn/cjGMMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApWBZ6cSMqvg4m2tF4vL1t1oHYVXa6MS6JpIFl77yH7/rcRKIT4Y3j fyGPKJ1Eio419dAcrTfyftl90bEOpKb1okNqEE3Nmmk6sbKaVEdKoOWtiQk+P6IQ gcgnvQb50Dia/2/WIqGw3KwM3b1giFakAAV+uahYfGJw7moO7SS7YlmZl3siiapQ vho3Q4DWv4u9tWI/kKqVmbeQRPDVecPDObZsegPHJh5pAfrP2mFUzTxYtrOn9j7d CgXOhukDsY6wj4mdtSwrsU/JoCJwdvbZA7DQYvhqvjvYQCvmPD3s+LxtDOKZepDR GdAgx7ohTy9/MlnKhpjPFKvF513ROKfa -----END CERTIFICATE-----Generated at Sat Jun 14 20:46:21 2025 by rpki-client