$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft File: -S21ujUS5Gp82_tLNRS9b_hcjz0.mft (raw, json) Hash identifier: /iLsrQ3ZjcetFl4jqf+7XuLmSbODzW9JcchDggQ6nEk= Subject key identifier: 79:F2:3C:84:91:49:92:03:75:CB:5B:6A:BD:2F:D0:FA:1C:C4:38:6A Authority key identifier: F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D Certificate issuer: /CN=A9131A30/serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft Manifest number: FD Signing time: Sun 15 Jun 2025 04:20:56 +0000 Manifest this update: Sun 15 Jun 2025 04:20:56 +0000 Manifest next update: Sun 22 Jun 2025 04:20:56 +0000 Files and hashes: 1: -S21ujUS5Gp82_tLNRS9b_hcjz0.crl (hash: z6qduns79BrCkVkwNMxTOzkcF4aIx+2WVxpeJc6F238=) 2: C3CCADD2CAF211EEBA58E81EC4F9AE02.roa (hash: 78U/w57PvT+FVEdRzkbgRL49bNVYISozUZOyQlDFcE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:20:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A30, serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Validity Not Before: Jun 15 04:20:56 2025 GMT Not After : Jun 22 04:20:56 2025 GMT Subject: CN=684e4a28-29db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cd:db:f0:4e:a3:17:5b:98:c9:41:cd:07:94: 84:14:40:64:82:74:0d:6f:f6:66:71:31:8c:18:99: c2:e3:8a:87:31:51:a1:ab:68:d3:34:f5:10:c5:2b: de:6b:12:34:89:24:34:0d:6f:16:46:ba:d4:af:17: fe:79:3f:0a:6e:d8:8e:0a:af:4c:72:13:15:0c:c8: b3:6c:8e:f8:1b:91:15:c9:51:49:f2:73:5d:08:58: 7f:0a:d7:db:61:7b:8a:6c:b7:4a:5f:17:be:c0:46: c8:54:51:db:a9:9a:83:42:5f:29:15:4b:53:77:d8: c8:d8:7c:da:5b:b5:4f:6c:44:aa:fb:f3:3d:9f:c4: 31:25:a7:07:21:ec:ca:d8:86:b7:7b:94:8c:3c:ff: 41:56:4f:34:d6:54:54:94:22:bf:af:99:cb:41:eb: e7:40:6e:46:a0:7f:cb:f3:28:0e:7e:d6:1f:44:48: 9e:d8:26:77:d9:9d:ac:7c:ac:b3:3f:5b:3c:27:09: 0a:ff:0b:d0:04:8c:49:2d:39:6f:e2:8a:c4:ca:a9: 8e:ce:98:16:93:83:04:63:1f:d6:ed:7b:a2:ba:90: 7c:6a:d5:6a:a6:34:a0:54:19:7c:90:3b:76:35:20: 23:9c:63:fd:17:14:3c:8d:ca:38:ef:c1:c5:54:5e: e8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F2:3C:84:91:49:92:03:75:CB:5B:6A:BD:2F:D0:FA:1C:C4:38:6A X509v3 Authority Key Identifier: keyid:F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:40:92:5f:83:0f:72:61:9d:64:73:65:93:48:7c:16:85:d5: d1:86:05:d9:c4:8a:cf:88:87:7b:56:06:2d:ef:a8:9c:ac:c9: 90:82:d1:93:10:e2:b6:2b:e6:c2:23:6f:8b:12:2f:3d:8e:e5: ea:24:e9:0a:3c:26:ff:f1:7f:51:c9:4f:11:ed:63:0f:01:79: 16:6e:a7:1d:be:c2:78:7c:37:e1:98:59:d2:bd:23:b1:99:df: b9:66:b6:cd:f1:16:f2:a6:7a:fd:c2:5a:06:fd:65:1b:07:0d: 87:ef:61:9b:8e:c1:0c:22:8b:3d:2c:81:21:38:cd:65:7f:1f: fe:db:d0:4a:ee:3d:4a:cc:eb:29:80:7c:6b:42:55:58:ca:f7: 34:68:f0:f5:bf:7c:91:b6:bf:e3:dd:17:d7:50:48:ee:e1:c8: 5a:ee:c3:bd:cd:a8:7c:68:43:b1:24:38:ed:da:69:d6:ef:14: 83:59:a5:0d:68:e4:7d:c8:bf:d3:43:97:08:c6:58:07:3c:52: b6:44:3d:2a:ae:b2:2a:6c:07:2e:88:68:ef:ee:a0:aa:41:9b: 69:02:f1:8c:fe:80:de:7d:bf:d7:7a:31:1c:42:14:56:c8:0e: 2b:cf:b2:46:11:41:09:89:88:8b:f5:63:96:dc:96:29:6d:0d: e2:f5:f7:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMzAxMTAvBgNVBAUTKEY5MkRCNUJBMzUxMkU0NkE3Q0RCRkI0QjM1MTRCRDZG Rjg1QzhGM0QwHhcNMjUwNjE1MDQyMDU2WhcNMjUwNjIyMDQyMDU2WjAYMRYwFAYD VQQDEw02ODRlNGEyOC0yOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu83b8E6jF1uYyUHNB5SEFEBkgnQNb/ZmcTGMGJnC44qHMVGhq2jTNPUQxSve axI0iSQ0DW8WRrrUrxf+eT8KbtiOCq9MchMVDMizbI74G5EVyVFJ8nNdCFh/Ctfb YXuKbLdKXxe+wEbIVFHbqZqDQl8pFUtTd9jI2HzaW7VPbESq+/M9n8QxJacHIezK 2Ia3e5SMPP9BVk801lRUlCK/r5nLQevnQG5GoH/L8ygOftYfREie2CZ32Z2sfKyz P1s8JwkK/wvQBIxJLTlv4orEyqmOzpgWk4MEYx/W7XuiupB8atVqpjSgVBl8kDt2 NSAjnGP9FxQ8jco478HFVF7oYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnyPISR SZIDdctbar0v0PocxDhqMB8GA1UdIwQYMBaAFPkttbo1EuRqfNv7SzUUvW/4XI89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEzMC80QjdBMTg2QUNB RjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVHcDgyX3RMTlJTOWJfaGNq ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1TMjF1alVTNUdwODJfdExOUlM5Yl9oY2p6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEzMC80QjdBMTg2QUNBRjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVH cDgyX3RMTlJTOWJfaGNqejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJQJJfgw9yYZ1kc2WTSHwWhdXRhgXZxIrPiId7VgYt76icrMmQgtGT EOK2K+bCI2+LEi89juXqJOkKPCb/8X9RyU8R7WMPAXkWbqcdvsJ4fDfhmFnSvSOx md+5ZrbN8Rbypnr9wloG/WUbBw2H72GbjsEMIos9LIEhOM1lfx/+29BK7j1KzOsp gHxrQlVYyvc0aPD1v3yRtr/j3RfXUEju4cha7sO9zah8aEOxJDjt2mnW7xSDWaUN aOR9yL/TQ5cIxlgHPFK2RD0qrrIqbAcuiGjv7qCqQZtpAvGM/oDefb/XejEcQhRW yA4rz7JGEUEJiYiL9WOW3JYpbQ3i9feT -----END CERTIFICATE-----Generated at Mon Jun 16 04:08:40 2025 by rpki-client