$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: zp1veS7/9vDgVeUG4Lf5h946V4EQzdMH8YujFchpTPs= Subject key identifier: 60:ED:ED:B7:39:D7:D2:BD:2B:81:C7:0E:A8:C5:96:39:55:1F:12:FE Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 0266 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0263 Signing time: Sun 15 Jun 2025 01:28:43 +0000 Manifest this update: Sun 15 Jun 2025 01:28:43 +0000 Manifest next update: Sun 22 Jun 2025 01:28:43 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: ebSibSSHLExPMBzsCm/dTOPoKx/OyibKA3e01O7xoO8=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Jun 15 01:28:43 2025 GMT Not After : Jun 22 01:28:43 2025 GMT Subject: CN=684e21cb-becf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:49:56:ee:50:07:9e:d2:b6:a6:b9:3d:a7:8f: 81:21:14:96:bc:c1:f6:99:de:64:2e:de:52:6e:ce: 4b:d3:38:3d:60:cc:93:b7:39:d3:66:eb:cb:ad:d6: ac:bb:6e:4a:8d:69:e9:c8:fc:72:47:34:2d:c6:aa: 5b:2c:cb:30:1b:e8:fa:04:d9:91:7a:0a:ab:4f:fe: bf:f4:7a:b2:7a:63:57:1f:3b:72:bc:cf:0d:64:11: db:b9:b2:26:c2:9f:a0:53:60:56:f1:78:66:8c:94: 6b:db:3f:50:94:4f:5c:3e:79:45:ae:61:89:d5:77: 30:ba:77:ef:f8:b4:02:44:24:ac:90:f7:5a:d6:6a: 6f:57:18:45:a8:c1:a4:82:4a:26:34:0d:e5:6d:67: d2:bb:78:6e:dd:4a:b7:f6:44:90:07:d1:a3:00:3f: 21:b6:8d:a9:3b:82:d5:e5:c0:6c:34:ce:4a:5c:37: f8:c8:a4:1b:36:ad:70:b9:fa:ea:c9:8b:1b:36:04: a4:ad:f0:db:68:0f:24:d8:3e:4d:32:57:07:b3:06: a1:97:fe:2f:24:16:fa:eb:84:6a:15:10:89:3e:9d: 91:cc:93:8c:cf:ce:01:ad:7e:cd:b2:6f:94:29:59: f8:b5:1a:d8:a1:f2:9a:c2:ad:26:5f:f5:8f:e6:b4: 83:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:ED:ED:B7:39:D7:D2:BD:2B:81:C7:0E:A8:C5:96:39:55:1F:12:FE X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c1:1d:93:db:ce:1c:27:47:4c:ee:15:6f:fc:05:f8:da:26: d5:bc:78:fd:3f:29:db:a2:b4:ca:33:3c:65:8e:64:34:98:1c: a8:6a:58:e2:86:70:a6:e4:9e:90:0d:a1:7c:7c:13:38:c3:e3: b3:3b:5b:f4:79:7f:d3:16:71:2f:72:ad:cb:50:1b:b6:0e:08: 34:23:ba:d7:6f:43:94:aa:95:09:04:81:30:91:62:30:d8:f3: 6a:82:f8:96:88:37:73:9e:e6:25:67:db:14:26:c3:4b:d8:84: be:bf:67:0f:d2:28:ad:d3:a4:1a:1f:af:9c:b7:f1:21:3b:8d: cc:34:6c:6f:20:37:d1:92:49:7d:44:e4:fa:29:bb:eb:7d:eb: 8f:68:e7:54:36:c3:a5:de:af:0a:80:ad:80:f6:42:ec:05:93: ae:de:d5:46:5b:03:89:01:ec:41:a4:cd:0d:95:af:42:ea:2f: 8b:22:23:32:f3:be:c4:df:ff:b9:39:ad:97:76:99:0e:a0:ef: c4:1f:71:67:45:3c:22:99:b1:23:54:60:70:ca:a2:9b:9f:6c: 55:2e:d1:ae:75:85:85:97:00:12:3c:c1:30:b2:18:ab:f2:c6: 2d:88:b0:9b:24:ef:ac:66:ab:18:32:dd:6c:2f:94:13:b5:e1: fd:40:a9:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwNjE1MDEyODQzWhcNMjUwNjIyMDEyODQzWjAYMRYwFAYD VQQDEw02ODRlMjFjYi1iZWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxElW7lAHntK2prk9p4+BIRSWvMH2md5kLt5Sbs5L0zg9YMyTtznTZuvLrdas u25KjWnpyPxyRzQtxqpbLMswG+j6BNmRegqrT/6/9HqyemNXHztyvM8NZBHbubIm wp+gU2BW8XhmjJRr2z9QlE9cPnlFrmGJ1Xcwunfv+LQCRCSskPda1mpvVxhFqMGk gkomNA3lbWfSu3hu3Uq39kSQB9GjAD8hto2pO4LV5cBsNM5KXDf4yKQbNq1wufrq yYsbNgSkrfDbaA8k2D5NMlcHswahl/4vJBb664RqFRCJPp2RzJOMz84BrX7Nsm+U KVn4tRrYofKawq0mX/WP5rSDqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDt7bc5 19K9K4HHDqjFljlVHxL+MB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAwR2T284cJ0dM7hVv/AX42ibVvHj9PynborTKMzxljmQ0mByoalji hnCm5J6QDaF8fBM4w+OzO1v0eX/TFnEvcq3LUBu2Dgg0I7rXb0OUqpUJBIEwkWIw 2PNqgviWiDdznuYlZ9sUJsNL2IS+v2cP0iit06QaH6+ct/EhO43MNGxvIDfRkkl9 ROT6KbvrfeuPaOdUNsOl3q8KgK2A9kLsBZOu3tVGWwOJAexBpM0Nla9C6i+LIiMy 877E3/+5Oa2XdpkOoO/EH3FnRTwimbEjVGBwyqKbn2xVLtGudYWFlwASPMEwshir 8sYtiLCbJO+sZqsYMt1sL5QTteH9QKlh -----END CERTIFICATE-----Generated at Sun Jun 15 09:48:06 2025 by rpki-client