$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft File: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json) Hash identifier: 48fOHTReza0GZZ7r9Y+bo68Y1qMx8+q5ZJ3JnzQ4STI= Subject key identifier: 2B:72:BF:18:0B:E4:7E:E5:2B:7C:4E:C2:6C:80:37:24:BA:FF:3A:10 Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 Certificate issuer: /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Certificate serial: 07DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft Manifest number: 07D8 Signing time: Wed 18 Jun 2025 20:55:34 +0000 Manifest this update: Wed 18 Jun 2025 20:55:33 +0000 Manifest next update: Wed 25 Jun 2025 20:55:33 +0000 Files and hashes: 1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: QYvaAqQbCpV3r21WIs+TvYlNFScnxkXxgzaC6yDPAfI=) 2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: GW9s3WIygsKZLnHwRZ6mSkc9+Me0q/KYVWFIK75BZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2015 (0x7df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D8B, serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Validity Not Before: Jun 18 20:55:33 2025 GMT Not After : Jun 25 20:55:33 2025 GMT Subject: CN=685327c5-24de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0c:78:92:99:88:1e:20:92:e1:06:65:20:c3: d2:f2:1d:01:6e:a2:d2:1f:75:c0:71:22:91:af:53: 65:13:fc:cc:2b:d7:df:c5:58:82:ba:c1:6b:a6:85: 94:6a:2c:af:75:53:ac:85:98:f9:51:ac:25:0e:8d: 4e:7b:45:82:75:4c:89:4d:dd:c1:79:d3:f3:ea:76: be:4d:ad:f4:d5:85:b4:4c:e1:b4:f2:d5:46:06:b6: d8:54:00:96:f0:60:86:d4:d4:7a:38:13:c6:03:84: 94:53:a6:c8:74:18:8c:cd:52:51:1d:a9:28:ea:23: 4e:94:cc:93:87:58:23:63:7e:b1:73:04:0f:9c:dc: 1b:25:e0:c7:7b:bc:c5:f3:42:fa:ec:77:52:ba:c2: 17:79:9b:9f:35:15:92:7e:6c:01:7f:36:cc:2e:c2: 5a:24:a2:1a:68:5e:13:3d:68:92:db:65:ab:6c:29: ee:b5:e5:e4:75:32:ae:44:28:95:10:c2:46:44:70: db:26:26:41:fd:51:bc:29:bc:79:93:7f:c0:c5:ef: e2:2a:f1:76:6e:e6:0e:2d:e0:fe:0d:b7:ea:60:fa: 86:62:6d:4e:24:22:0b:a1:49:4c:fa:de:54:71:0d: b5:17:b6:5b:40:45:9a:8f:dc:c0:50:5a:52:67:49: 93:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:72:BF:18:0B:E4:7E:E5:2B:7C:4E:C2:6C:80:37:24:BA:FF:3A:10 X509v3 Authority Key Identifier: keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:06:2b:b4:71:89:31:10:59:69:32:37:3a:fd:b0:f3:44:ea: 09:02:ae:de:31:12:2f:d3:88:86:f3:f1:8b:5f:f2:c9:d4:17: a0:a3:c6:e6:50:2c:1a:87:4b:e7:42:9a:46:5a:28:ce:25:c7: 27:5c:d3:73:f4:77:62:43:c7:6d:d3:de:8a:c9:f9:0b:e9:f2: 13:b7:fa:f1:cd:a4:e0:45:d6:85:6b:60:e8:d8:d6:40:8f:47: a6:a4:d3:f3:40:52:a9:a7:69:9d:1e:99:b4:23:65:c4:59:db: ea:1d:7f:2f:85:aa:af:4d:16:ce:eb:34:f7:fd:78:95:9f:23: 18:1e:9a:2e:c3:3d:a3:80:7a:14:e7:ad:8c:61:bf:66:c2:ed: ed:86:05:b9:ff:3b:04:27:0f:a8:37:79:8e:3b:a2:47:c6:d6: ca:83:f2:65:42:9b:69:74:35:28:b0:aa:b5:53:43:0d:43:7d: 09:8b:7f:09:38:15:f2:ea:81:d4:92:06:82:6b:46:46:f3:dd: 29:7b:14:b2:7e:e8:c5:42:e9:40:00:9a:06:b1:8c:bf:ea:ec: fb:7b:9c:9e:90:c7:2c:06:be:9d:2b:53:a6:cc:a8:fe:50:ca: 96:7c:c6:f5:b9:17:49:f6:4e:25:fe:16:be:6f:97:a4:bf:e1: 3c:1d:58:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw RURENkFCMDAwHhcNMjUwNjE4MjA1NTMzWhcNMjUwNjI1MjA1NTMzWjAYMRYwFAYD VQQDEw02ODUzMjdjNS0yNGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswx4kpmIHiCS4QZlIMPS8h0BbqLSH3XAcSKRr1NlE/zMK9ffxViCusFrpoWU aiyvdVOshZj5UawlDo1Oe0WCdUyJTd3BedPz6na+Ta301YW0TOG08tVGBrbYVACW 8GCG1NR6OBPGA4SUU6bIdBiMzVJRHako6iNOlMyTh1gjY36xcwQPnNwbJeDHe7zF 80L67HdSusIXeZufNRWSfmwBfzbMLsJaJKIaaF4TPWiS22WrbCnuteXkdTKuRCiV EMJGRHDbJiZB/VG8Kbx5k3/Axe/iKvF2buYOLeD+DbfqYPqGYm1OJCILoUlM+t5U cQ21F7ZbQEWaj9zAUFpSZ0mT6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtyvxgL 5H7lK3xOwmyANyS6/zoQMB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0 MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEBiu0cYkxEFlpMjc6/bDzROoJAq7eMRIv04iG8/GLX/LJ1Bego8bm UCwah0vnQppGWijOJccnXNNz9HdiQ8dt096KyfkL6fITt/rxzaTgRdaFa2Do2NZA j0empNPzQFKpp2mdHpm0I2XEWdvqHX8vhaqvTRbO6zT3/XiVnyMYHpouwz2jgHoU 562MYb9mwu3thgW5/zsEJw+oN3mOO6JHxtbKg/JlQptpdDUosKq1U0MNQ30Ji38J OBXy6oHUkgaCa0ZG890pexSyfujFQulAAJoGsYy/6uz7e5yekMcsBr6dK1OmzKj+ UMqWfMb1uRdJ9k4l/ha+b5ekv+E8HVjk -----END CERTIFICATE-----Generated at Fri Jun 20 17:47:05 2025 by rpki-client