$ rpki-client -vvf rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft File: phmVDMpkZIerm9RKQff2ybQJs9c.mft (raw, json) Hash identifier: EknjYEmCKoIVqEvth0WiEf+hPAKDiJgq584dPInr08Q= Subject key identifier: BA:74:C2:A5:8A:DF:C5:FE:27:54:1B:0E:29:EC:76:0A:EE:09:95:BD Authority key identifier: A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 Certificate issuer: /CN=A9138EEB/serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft Manifest number: C0 Signing time: Tue 17 Jun 2025 04:49:18 +0000 Manifest this update: Tue 17 Jun 2025 04:49:18 +0000 Manifest next update: Tue 24 Jun 2025 04:49:18 +0000 Files and hashes: 1: phmVDMpkZIerm9RKQff2ybQJs9c.crl (hash: jVDIR1NAM5m43wlHlvUB4ctEcvwrNq9KULUdJWqJSE4=) 2: DBF621F42C7211EF8FB22F85C4F9AE02.roa (hash: RJoaBkivOrsbbGOk4+rF7GV3mPNikd+l5jkX1SaMaN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138EEB, serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Validity Not Before: Jun 17 04:49:18 2025 GMT Not After : Jun 24 04:49:18 2025 GMT Subject: CN=6850f3ce-280c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:47:d6:da:4e:7d:d9:0d:b5:11:be:62:9b:3e: 37:df:63:c6:aa:7b:d7:7c:13:af:b7:8b:ab:f8:91: 3f:c5:79:15:01:db:7a:2c:ec:d5:a8:6d:c7:a3:20: 43:f4:35:c2:f1:9c:d2:46:03:01:80:3c:11:a1:0c: 0e:61:1a:17:67:f2:fc:f9:1d:1d:fa:cb:b4:ad:11: 35:b7:c5:73:e9:a3:c5:f9:2a:e8:50:14:49:1b:00: 82:9c:0e:2b:8e:9c:e1:8d:bf:b3:61:99:08:bb:a6: a3:90:cf:45:e5:58:a3:24:d6:6a:95:23:60:fd:bc: 2e:e9:8e:9e:d6:29:e1:cf:5a:19:3a:9a:67:25:55: 1a:5a:a7:82:6e:68:15:c6:9d:72:2e:97:fa:25:f3: 33:1e:3f:04:ca:3f:db:f2:a9:22:03:20:67:3a:40: 39:56:46:63:f4:93:0f:35:db:27:82:ab:16:c0:80: 19:60:a2:0a:bf:9e:b4:45:de:62:ce:c0:7c:66:9f: de:c9:3c:d0:40:74:3a:16:4b:34:0a:3b:f5:3f:23: e9:d4:c9:89:b4:6f:41:7f:42:08:64:fa:57:0e:d0: 0c:53:82:97:c5:4e:fa:9c:40:10:e5:a9:a0:5f:8d: e4:03:80:f2:1b:f0:b1:60:7e:61:dd:6f:ed:2b:ba: 5a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:74:C2:A5:8A:DF:C5:FE:27:54:1B:0E:29:EC:76:0A:EE:09:95:BD X509v3 Authority Key Identifier: keyid:A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b6:40:84:e6:57:c1:d6:ea:ff:8b:0d:23:df:4f:85:4d:92: e9:9d:ec:43:ce:eb:21:c2:fa:e6:f5:41:cd:22:54:5f:37:25: 97:f3:48:0e:f3:9a:20:a9:91:15:76:28:e0:31:2d:51:4d:bf: ed:98:6a:84:1b:38:72:0e:27:77:f4:50:ad:55:94:97:3c:04: a7:f4:dc:fc:1a:6f:15:11:54:0e:d2:c2:5c:4e:6a:6e:08:47: 60:8f:9f:7f:55:ef:c5:9e:4c:46:5b:79:d4:8a:ba:33:80:4f: dc:23:99:d8:49:a8:4f:7f:25:df:5b:ce:d9:e2:51:b3:07:8c: 85:1c:c9:7d:1f:bd:8d:26:14:85:b8:b1:73:7f:36:0d:ab:ce: 25:d5:ea:f0:e8:75:aa:c9:81:74:0f:d4:a6:5b:6c:01:38:07: a0:76:fe:61:17:d1:5d:bc:fe:52:9c:90:12:cd:9b:a7:10:d4: 43:6a:11:51:1a:37:42:bc:a6:d5:42:67:19:8d:fd:f9:8d:d6: 1d:9b:51:80:2b:5d:cd:03:7c:50:07:55:d5:c8:d0:84:d7:a4: 39:8a:60:14:4c:80:10:7c:bc:33:d7:e3:a8:ce:f6:be:27:51: d6:e5:b3:7d:d3:6d:79:90:57:8a:dc:90:1e:ef:dc:67:70:3a: 25:d0:d7:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhFRUIxMTAvBgNVBAUTKEE2MTk5NTBDQ0E2NDY0ODdBQjlCRDQ0QTQxRjdGNkM5 QjQwOUIzRDcwHhcNMjUwNjE3MDQ0OTE4WhcNMjUwNjI0MDQ0OTE4WjAYMRYwFAYD VQQDEw02ODUwZjNjZS0yODBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0fW2k592Q21Eb5imz4332PGqnvXfBOvt4ur+JE/xXkVAdt6LOzVqG3HoyBD 9DXC8ZzSRgMBgDwRoQwOYRoXZ/L8+R0d+su0rRE1t8Vz6aPF+SroUBRJGwCCnA4r jpzhjb+zYZkIu6ajkM9F5VijJNZqlSNg/bwu6Y6e1inhz1oZOppnJVUaWqeCbmgV xp1yLpf6JfMzHj8Eyj/b8qkiAyBnOkA5VkZj9JMPNdsngqsWwIAZYKIKv560Rd5i zsB8Zp/eyTzQQHQ6Fks0Cjv1PyPp1MmJtG9Bf0IIZPpXDtAMU4KXxU76nEAQ5amg X43kA4DyG/CxYH5h3W/tK7paIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLp0wqWK 38X+J1QbDinsdgruCZW9MB8GA1UdIwQYMBaAFKYZlQzKZGSHq5vUSkH39sm0CbPX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEVFQi9GNDkxMTQ4MDJC QzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJZXJtOVJLUWZmMnliUUpz OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BobVZETXBrWkllcm05UktRZmYyeWJRSnM5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEVFQi9GNDkxMTQ4MDJCQzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJ ZXJtOVJLUWZmMnliUUpzOWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBstkCE5lfB1ur/iw0j30+FTZLpnexDzushwvrm9UHNIlRfNyWX80gO 85ogqZEVdijgMS1RTb/tmGqEGzhyDid39FCtVZSXPASn9Nz8Gm8VEVQO0sJcTmpu CEdgj59/Ve/FnkxGW3nUirozgE/cI5nYSahPfyXfW87Z4lGzB4yFHMl9H72NJhSF uLFzfzYNq84l1erw6HWqyYF0D9SmW2wBOAegdv5hF9FdvP5SnJASzZunENRDahFR GjdCvKbVQmcZjf35jdYdm1GAK13NA3xQB1XVyNCE16Q5imAUTIAQfLwz1+Oozva+ J1HW5bN90215kFeK3JAe79xncDol0Nfh -----END CERTIFICATE-----Generated at Wed Jun 18 06:38:21 2025 by rpki-client