$ rpki-client -vvf rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft File: 9cHnH7saQdeYC-JY2XxIc5qvgso.mft (raw, json) Hash identifier: 2reHSm4g3iE46QTZX57/mDLMhyYEAAvN39oHl8LQMB4= Subject key identifier: 2F:44:79:47:7E:44:C2:EA:A9:4F:BE:87:DE:62:7B:41:DB:92:51:91 Authority key identifier: F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA Certificate issuer: /CN=A913D16D/serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Certificate serial: 046E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft Manifest number: 0468 Signing time: Mon 16 Jun 2025 23:45:06 +0000 Manifest this update: Mon 16 Jun 2025 23:45:05 +0000 Manifest next update: Mon 23 Jun 2025 23:45:05 +0000 Files and hashes: 1: 9cHnH7saQdeYC-JY2XxIc5qvgso.crl (hash: x5Y/jfdt0gYG0BuPZ11dR+P2rX9VpqYjkYCRN2Rdje4=) 2: 3D546FCE4F0711EC960AFD0CC4F9AE02.roa (hash: OH+ilqdv9s3kTRrQEcIweA5ha/9ZRdWs4Wko3puaZH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D16D, serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Validity Not Before: Jun 16 23:45:05 2025 GMT Not After : Jun 23 23:45:05 2025 GMT Subject: CN=6850ac82-2cef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ea:1e:30:ea:bd:cf:bf:f5:08:dc:3b:09:09: 5d:13:13:fd:22:ea:a1:d9:36:7e:e5:06:28:35:34: 07:11:97:55:c4:fa:12:0f:aa:8a:96:f0:eb:a6:22: 11:73:6b:77:5f:31:b0:32:a3:9e:db:99:ce:dd:5d: 5f:ef:11:81:c6:55:05:b7:a0:09:34:c7:72:3d:c8: 87:0f:28:be:e3:5c:46:88:00:e5:d0:4c:32:01:a4: 2c:41:19:e5:73:86:fb:8a:6f:fa:52:f7:c1:64:e1: 84:1b:3b:7e:25:19:c5:ed:45:41:c2:94:b5:07:08: e8:0a:9e:6c:27:f5:d1:07:8f:c2:de:12:c5:51:b2: a1:85:fb:ba:47:3c:d7:0a:8f:74:25:68:4d:ce:98: 92:52:15:d0:7f:58:33:95:c5:30:7d:5a:ba:ff:4a: 8a:ea:64:1d:b1:01:3a:0e:35:09:16:ca:e3:60:b3: d7:2d:80:85:7b:cb:4c:e2:4a:1b:01:c7:04:c0:38: 0a:30:f6:12:49:de:2a:e6:77:27:2b:35:bc:ff:75: d2:d8:9b:92:89:64:92:34:a5:4f:8e:ce:a3:58:f8: 5a:01:c7:b9:af:fe:7c:c9:09:55:72:b9:5a:45:5a: 14:98:69:9f:ca:b0:be:41:14:b1:74:3e:df:4b:6b: cd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:44:79:47:7E:44:C2:EA:A9:4F:BE:87:DE:62:7B:41:DB:92:51:91 X509v3 Authority Key Identifier: keyid:F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e6:69:85:a0:0e:19:c3:78:6c:6c:db:b6:2c:10:b5:18:11: 04:e7:d2:48:92:5e:53:3c:20:cf:e6:51:6c:b9:c6:19:23:d9: 56:f0:b5:6b:4f:16:4a:a4:e6:87:16:da:9b:83:75:fe:e9:6e: fb:db:70:64:2b:ab:2c:99:3c:6c:fb:f9:9a:c2:ae:a2:48:97: 4b:0c:4f:3e:97:3d:c0:38:6d:f8:e9:ba:5f:00:2b:59:3c:4e: ce:ef:38:39:3f:b5:63:68:c2:ab:5b:c6:d3:c3:10:54:72:8a: 06:c4:b9:27:92:4a:23:cf:c6:28:03:db:04:6a:4b:63:d6:29: c7:5d:04:7f:60:f9:81:34:ac:08:d2:46:c1:8e:f6:a0:95:0f: 12:78:9f:c5:60:12:5c:57:0b:09:ab:42:4f:7a:0d:d3:c0:c2: c3:22:90:02:c6:ae:08:a1:a3:4d:df:63:4d:c4:7f:4c:92:69: 6c:c2:fb:d6:cc:0e:d0:fd:13:11:e7:e8:24:2c:87:21:cf:90: 47:6e:3d:ef:c8:e9:84:63:e1:94:d4:c8:17:62:68:66:67:5c: c9:1a:5e:ba:4d:61:d0:f8:fd:c9:bc:c8:ba:bf:fb:d8:bd:f3: 04:1c:15:0d:c9:cf:12:1b:a0:6f:e2:f6:f7:41:91:65:b0:c3: 25:63:85:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxNkQxMTAvBgNVBAUTKEY1QzFFNzFGQkIxQTQxRDc5ODBCRTI1OEQ5N0M0ODcz OUFBRjgyQ0EwHhcNMjUwNjE2MjM0NTA1WhcNMjUwNjIzMjM0NTA1WjAYMRYwFAYD VQQDEw02ODUwYWM4Mi0yY2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOoeMOq9z7/1CNw7CQldExP9Iuqh2TZ+5QYoNTQHEZdVxPoSD6qKlvDrpiIR c2t3XzGwMqOe25nO3V1f7xGBxlUFt6AJNMdyPciHDyi+41xGiADl0EwyAaQsQRnl c4b7im/6UvfBZOGEGzt+JRnF7UVBwpS1BwjoCp5sJ/XRB4/C3hLFUbKhhfu6RzzX Co90JWhNzpiSUhXQf1gzlcUwfVq6/0qK6mQdsQE6DjUJFsrjYLPXLYCFe8tM4kob AccEwDgKMPYSSd4q5ncnKzW8/3XS2JuSiWSSNKVPjs6jWPhaAce5r/58yQlVcrla RVoUmGmfyrC+QRSxdD7fS2vNPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9EeUd+ RMLqqU++h95ie0HbklGRMB8GA1UdIwQYMBaAFPXB5x+7GkHXmAviWNl8SHOar4LK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDE2RC9GMDQyMDdBNDRG MDIxMUVDOUQyRDFFMzdDNEY5QUUwMi85Y0huSDdzYVFkZVlDLUpZMlh4SWM1cXZn c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljSG5IN3NhUWRlWUMtSlkyWHhJYzVxdmdzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDE2RC9GMDQyMDdBNDRGMDIxMUVDOUQyRDFFMzdDNEY5QUUwMi85Y0huSDdzYVFk ZVlDLUpZMlh4SWM1cXZnc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf5mmFoA4Zw3hsbNu2LBC1GBEE59JIkl5TPCDP5lFsucYZI9lW8LVr TxZKpOaHFtqbg3X+6W7723BkK6ssmTxs+/mawq6iSJdLDE8+lz3AOG346bpfACtZ PE7O7zg5P7VjaMKrW8bTwxBUcooGxLknkkojz8YoA9sEaktj1inHXQR/YPmBNKwI 0kbBjvaglQ8SeJ/FYBJcVwsJq0JPeg3TwMLDIpACxq4IoaNN32NNxH9MkmlswvvW zA7Q/RMR5+gkLIchz5BHbj3vyOmEY+GU1MgXYmhmZ1zJGl66TWHQ+P3JvMi6v/vY vfMEHBUNyc8SG6Bv4vb3QZFlsMMlY4Vg -----END CERTIFICATE-----Generated at Wed Jun 18 08:17:48 2025 by rpki-client