$ rpki-client -vvf rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft File: 84ggnKyyxrgUysV4XUv002zElx8.mft (raw, json) Hash identifier: YgnWo+ooFmOnRTGy2PJihYA2NYkeNdQzThKSzIThGYo= Subject key identifier: 2D:16:E0:93:1F:36:63:D4:AB:9B:9E:F0:85:39:A0:3A:FA:FB:27:31 Authority key identifier: F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F Certificate issuer: /CN=A9138A50/serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Certificate serial: 0458 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft Manifest number: 0453 Signing time: Thu 12 Jun 2025 23:47:31 +0000 Manifest this update: Thu 12 Jun 2025 23:47:31 +0000 Manifest next update: Thu 19 Jun 2025 23:47:31 +0000 Files and hashes: 1: 84ggnKyyxrgUysV4XUv002zElx8.crl (hash: 51sne4axlamaO1QLXhGcFSLzmv3u073QryurqCdrFSA=) 2: 0DA4853256FC11EC8032440FC4F9AE02.roa (hash: qCU/OsBRO4+PMlzfkCWYCpZe9YTKzCH9brvEdyELMJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138A50, serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Validity Not Before: Jun 12 23:47:31 2025 GMT Not After : Jun 19 23:47:31 2025 GMT Subject: CN=684b6713-b08a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:72:28:80:3d:81:9b:7d:c7:49:5f:23:4e:3e: da:27:64:92:c5:1b:18:8a:0e:1f:84:71:c8:31:a5: 93:2e:d8:a9:0f:c7:ed:2e:4e:c5:ff:9f:13:c8:5b: 28:d3:33:c2:fd:38:36:03:25:ab:f7:df:bc:c1:d9: dd:ff:45:5a:e4:e0:1c:48:2c:62:5d:d9:5e:c5:92: 60:ec:f1:ea:88:e0:96:97:65:38:5c:25:bc:22:7d: fd:80:39:bb:af:ee:be:00:d2:d6:f1:59:f1:5d:bb: d0:e8:da:3b:7f:e4:df:3a:cb:ba:68:e7:0d:80:c7: c8:be:9e:62:ca:30:06:3e:05:f7:cf:7f:42:cf:9c: 90:42:66:d3:3f:2a:5f:6c:55:93:36:65:9b:cf:92: e2:b9:c3:f9:4f:12:01:f2:2c:3d:98:dc:bd:bb:a1: 59:6b:7f:a4:4e:20:be:10:25:c1:67:48:1e:02:ea: ba:3a:a9:d8:b6:81:73:1b:a0:3d:b1:ca:50:24:03: 06:3a:3a:10:b5:b1:fd:2a:f2:29:ed:30:52:d3:22: fd:01:2a:e9:e3:51:ea:32:91:3e:8d:e5:bd:1f:3b: 16:68:3f:01:a7:d2:c0:e9:c6:0c:5e:58:4f:97:88: a9:96:b1:85:88:a2:28:ff:5d:1f:95:1d:0a:fc:e3: d8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:16:E0:93:1F:36:63:D4:AB:9B:9E:F0:85:39:A0:3A:FA:FB:27:31 X509v3 Authority Key Identifier: keyid:F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:68:7b:4d:be:3d:68:53:76:80:e2:53:d1:8b:0d:ad:1b:b5: 9d:c7:5d:59:22:af:9f:df:95:5e:78:cf:90:a7:d5:7c:1e:7a: 48:da:f9:95:a0:8f:dc:55:2b:c4:94:ba:73:25:3c:5d:11:2d: 79:0d:37:ef:cf:0e:02:2e:4b:13:c9:5e:c9:0a:85:09:58:ce: 97:f1:d2:ff:b7:14:6c:25:aa:a5:a2:fd:72:ac:b2:25:8c:35: 11:8c:62:d9:c1:41:13:1a:01:70:e0:ec:3a:12:7c:8f:b9:2e: b2:d0:aa:b7:6e:5d:a6:d5:31:83:51:23:b9:55:0c:e0:8b:09: 93:96:b5:2d:e3:ca:a3:bd:38:d3:5c:12:52:09:5b:22:1a:57: 16:6b:9d:56:19:ca:98:0c:4d:ba:42:09:06:2b:28:67:fb:e1: 40:fd:e8:a7:60:4a:62:3e:f0:2b:e4:15:a4:35:df:b1:2b:e5: d1:37:85:c0:c9:b1:21:7b:0e:02:b2:13:16:d4:8e:6c:d1:e9: 6b:0d:e0:4d:7d:e7:90:49:05:2e:9d:1e:98:55:23:78:01:bc: 8f:f5:4c:53:f2:42:7a:5e:81:10:c4:12:21:13:5d:d9:5c:ff: c4:70:65:ff:e5:e4:b1:a5:ca:2d:24:ec:bd:2f:75:20:ed:61: 4b:83:2e:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhBNTAxMTAvBgNVBAUTKEYzODgyMDlDQUNCMkM2QjgxNENBQzU3ODVENEJGNEQz NkNDNDk3MUYwHhcNMjUwNjEyMjM0NzMxWhcNMjUwNjE5MjM0NzMxWjAYMRYwFAYD VQQDEw02ODRiNjcxMy1iMDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnIogD2Bm33HSV8jTj7aJ2SSxRsYig4fhHHIMaWTLtipD8ftLk7F/58TyFso 0zPC/Tg2AyWr99+8wdnd/0Va5OAcSCxiXdlexZJg7PHqiOCWl2U4XCW8In39gDm7 r+6+ANLW8VnxXbvQ6No7f+TfOsu6aOcNgMfIvp5iyjAGPgX3z39Cz5yQQmbTPypf bFWTNmWbz5LiucP5TxIB8iw9mNy9u6FZa3+kTiC+ECXBZ0geAuq6OqnYtoFzG6A9 scpQJAMGOjoQtbH9KvIp7TBS0yL9ASrp41HqMpE+jeW9HzsWaD8Bp9LA6cYMXlhP l4iplrGFiKIo/10flR0K/OPYRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0W4JMf NmPUq5ue8IU5oDr6+ycxMB8GA1UdIwQYMBaAFPOIIJysssa4FMrFeF1L9NNsxJcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEE1MC9DOUE3QTQzODU2 RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhyZ1V5c1Y0WFV2MDAyekVs eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0Z2duS3l5eHJnVXlzVjRYVXYwMDJ6RWx4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEE1MC9DOUE3QTQzODU2RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhy Z1V5c1Y0WFV2MDAyekVseDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgaHtNvj1oU3aA4lPRiw2tG7Wdx11ZIq+f35VeeM+Qp9V8HnpI2vmV oI/cVSvElLpzJTxdES15DTfvzw4CLksTyV7JCoUJWM6X8dL/txRsJaqlov1yrLIl jDURjGLZwUETGgFw4Ow6EnyPuS6y0Kq3bl2m1TGDUSO5VQzgiwmTlrUt48qjvTjT XBJSCVsiGlcWa51WGcqYDE26QgkGKyhn++FA/einYEpiPvAr5BWkNd+xK+XRN4XA ybEhew4CshMW1I5s0elrDeBNfeeQSQUunR6YVSN4AbyP9UxT8kJ6XoEQxBIhE13Z XP/EcGX/5eSxpcotJOy9L3Ug7WFLgy42 -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:57 2025 by rpki-client