$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: zW8bGjXmNPMINvw0JARzPzTNPk8bPPDvG+69VHnjuvA= Subject key identifier: A8:6C:D7:8E:8E:1C:2A:E2:B1:5E:C2:66:93:1B:64:AE:28:8A:07:38 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1718 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 205A Signing time: Sat 14 Jun 2025 16:34:55 +0000 Manifest this update: Sat 14 Jun 2025 16:34:54 +0000 Manifest next update: Sat 21 Jun 2025 16:34:54 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: T+7jw1F+xruPaMe+tYxat5IzDewl3XFsuM5t/7KjfHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5912 (0x1718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Jun 14 16:34:54 2025 GMT Not After : Jun 21 16:34:54 2025 GMT Subject: CN=684da4af-cffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:67:b8:fa:1c:0a:e4:54:30:a0:95:ff:93:17: d5:e4:37:d2:ea:60:ec:16:ad:d1:67:fc:a3:c2:0f: 52:cc:69:71:eb:5f:61:ba:62:b4:2b:9b:ed:1e:cd: c7:7a:29:2c:0c:0d:c3:6b:e8:41:4a:6b:10:32:db: 1d:6c:3e:7c:b7:41:26:46:b9:3c:14:57:4e:70:e4: 6e:ab:03:17:b9:86:eb:31:a6:aa:93:a0:b6:75:8d: 95:ff:80:3f:84:9c:5b:19:c0:2d:0c:04:28:ef:e8: 23:95:67:87:08:46:c3:de:ec:84:dc:59:43:1c:c8: e4:ac:eb:08:53:91:46:f4:9d:2b:e3:9f:cc:9b:5d: 5e:62:81:3e:8c:f9:66:4e:5b:f1:f9:3e:32:f5:78: ec:fa:66:5d:5a:26:2c:9a:bd:5c:e4:9f:ee:ce:e0: db:11:13:fe:0c:b7:38:29:35:37:6e:ff:94:8b:34: 00:ff:91:ec:93:f9:53:96:31:73:28:6f:b7:12:9b: fb:1e:55:c2:af:04:ee:b5:7a:74:fe:29:84:b7:be: 8a:77:7f:bd:35:c7:6c:d1:b9:27:90:73:ae:1f:7f: 4b:15:57:28:71:a3:0f:ef:e9:b0:87:be:96:a7:5b: 05:2c:6c:b2:df:09:8c:ce:08:61:df:2b:30:32:fc: a6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6C:D7:8E:8E:1C:2A:E2:B1:5E:C2:66:93:1B:64:AE:28:8A:07:38 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:62:f1:e4:d1:2e:e2:11:57:40:ee:43:68:82:09:7b:dd:c7: de:44:76:27:37:f6:b9:4a:b1:a8:29:45:96:14:09:c0:3e:62: 60:b9:b0:58:34:da:a8:e6:5c:5d:e0:08:d0:e1:52:6c:c3:f0: f9:b4:8b:68:48:80:d3:92:88:52:bf:59:e0:51:50:e8:a5:63: 7b:3e:e3:c4:9b:99:e4:2a:23:1e:cf:9f:f6:85:75:c9:83:28: e7:80:0c:c0:92:a7:3f:09:f9:b6:62:73:f1:5a:1b:63:d1:68: 80:04:90:31:34:c9:4b:d0:55:31:47:6f:9f:ca:0b:96:e4:22: 2b:20:b5:5e:1a:09:3b:ae:62:06:61:ad:0c:3f:3c:ca:b0:34: 73:a3:ba:e7:47:b1:64:e8:b1:7d:60:26:6a:ba:86:44:7f:60: 0b:0b:04:fc:92:ba:5e:48:10:f4:5a:4e:e3:33:67:50:34:d5: 79:3d:c0:73:1a:91:50:ec:8b:8c:d8:8f:42:4f:be:0e:b9:d6: 96:71:f8:f7:9c:51:86:a0:8f:ef:27:b2:be:64:3b:5b:24:33: 59:d4:36:b5:4f:7d:6b:a0:be:4c:c3:e1:64:9a:4f:05:0c:89: 9a:2f:21:4e:7c:d0:04:c5:98:37:4e:94:66:e0:2c:93:6f:bf: 46:f2:d8:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwNjE0MTYzNDU0WhcNMjUwNjIxMTYzNDU0WjAYMRYwFAYD VQQDEw02ODRkYTRhZi1jZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGe4+hwK5FQwoJX/kxfV5DfS6mDsFq3RZ/yjwg9SzGlx619humK0K5vtHs3H eiksDA3Da+hBSmsQMtsdbD58t0EmRrk8FFdOcORuqwMXuYbrMaaqk6C2dY2V/4A/ hJxbGcAtDAQo7+gjlWeHCEbD3uyE3FlDHMjkrOsIU5FG9J0r45/Mm11eYoE+jPlm Tlvx+T4y9Xjs+mZdWiYsmr1c5J/uzuDbERP+DLc4KTU3bv+UizQA/5Hsk/lTljFz KG+3Epv7HlXCrwTutXp0/imEt76Kd3+9Ncds0bknkHOuH39LFVcocaMP7+mwh76W p1sFLGyy3wmMzghh3yswMvymFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhs146O HCrisV7CZpMbZK4oigc4MB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsYvHk0S7iEVdA7kNoggl73cfeRHYnN/a5SrGoKUWWFAnAPmJgubBY NNqo5lxd4AjQ4VJsw/D5tItoSIDTkohSv1ngUVDopWN7PuPEm5nkKiMez5/2hXXJ gyjngAzAkqc/Cfm2YnPxWhtj0WiABJAxNMlL0FUxR2+fyguW5CIrILVeGgk7rmIG Ya0MPzzKsDRzo7rnR7Fk6LF9YCZquoZEf2ALCwT8krpeSBD0Wk7jM2dQNNV5PcBz GpFQ7IuM2I9CT74OudaWcfj3nFGGoI/vJ7K+ZDtbJDNZ1Da1T31roL5Mw+Fkmk8F DImaLyFOfNAExZg3TpRm4CyTb79G8thv -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:36 2025 by rpki-client