$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft File: C6HFLWJbsbnkQzglDaPWTYBoego.mft (raw, json) Hash identifier: 5Rll2L9KegnG6g6o91d1L8V+D2o5yerdDk/kpZWpQRw= Subject key identifier: F4:85:E5:8B:C8:DB:2C:7A:54:7B:DC:42:35:0A:9F:F1:2C:0A:7D:57 Authority key identifier: 0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A Certificate issuer: /CN=A9140E48/serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Certificate serial: 0543 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft Manifest number: 053D Signing time: Thu 12 Jun 2025 23:04:49 +0000 Manifest this update: Thu 12 Jun 2025 23:04:48 +0000 Manifest next update: Thu 19 Jun 2025 23:04:48 +0000 Files and hashes: 1: C6HFLWJbsbnkQzglDaPWTYBoego.crl (hash: Hh/BDBBdv6qbMMojVdr0WWJLLSUTUfO7l6MQaLG35IY=) 2: D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa (hash: EHUc5Goa9nVY7SlTfmeqrv5ucf88hUBAHLp60F7iD50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:04:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1347 (0x543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E48, serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Validity Not Before: Jun 12 23:04:48 2025 GMT Not After : Jun 19 23:04:48 2025 GMT Subject: CN=684b5d11-1a67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3c:63:de:b1:1f:d0:9a:2e:53:78:50:cc:34: 44:81:5f:bc:b5:e9:a2:2b:6b:e5:b7:3c:61:90:fc: 2a:72:88:71:8e:ef:d1:ea:64:2c:ac:4e:30:bf:30: 47:f3:ab:59:fd:2f:bc:0b:09:77:a7:90:e0:eb:f4: 34:b3:ab:c7:3e:bf:0e:a5:3d:cb:5d:0a:55:e5:34: 5a:b8:da:24:ff:2f:30:28:a0:c0:7c:6a:35:c9:87: 7d:57:7e:d7:a2:02:47:0e:1a:97:b3:4a:bb:85:e3: c8:78:95:83:2b:17:19:dc:da:21:9a:54:5e:a1:db: 8b:c6:05:05:c4:e9:fa:a9:ea:56:35:d4:56:20:de: 6d:99:68:23:6f:a2:81:0b:ff:61:65:b2:21:8d:bc: 54:c8:a8:af:64:ea:55:d5:1d:7d:b2:34:a9:27:f8: d2:19:ed:b2:0b:52:62:07:6a:ad:19:dc:7b:01:e1: ff:6a:ec:2e:93:03:fb:da:b5:c0:29:52:d3:c0:14: 67:b7:58:52:bd:7c:c6:70:42:b7:3b:16:3e:6f:d2: 4e:eb:bf:fe:41:f6:35:97:4a:fa:18:60:7f:6e:4a: 6b:3d:f0:55:c7:47:3e:55:e9:d1:25:2a:d1:86:47: e6:a1:cd:b3:8f:0b:53:6d:ad:9c:47:39:5a:28:a8: c9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:85:E5:8B:C8:DB:2C:7A:54:7B:DC:42:35:0A:9F:F1:2C:0A:7D:57 X509v3 Authority Key Identifier: keyid:0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f4:05:77:6e:35:61:22:ee:18:e9:f9:9c:07:ee:3f:56:38: 5e:45:85:c7:38:fd:45:8d:7c:e3:7a:55:26:6f:ad:e8:48:66: e4:2b:07:0c:78:9e:90:60:78:5e:2f:53:68:33:b7:18:fb:c0: 36:31:8b:be:92:3f:af:0a:3a:b5:b1:c2:a9:18:b0:14:89:58: 9e:ba:7c:e9:00:05:9c:95:a8:43:22:9e:35:b6:b5:e8:e7:13: 4d:7c:30:61:c0:fc:15:37:ed:ac:b8:01:03:43:dc:ce:0d:9e: ef:0a:b0:39:6e:99:c6:40:cd:86:f2:60:da:9d:89:64:56:3e: 42:14:b4:52:49:6c:03:df:64:06:df:eb:96:3f:53:15:94:fd: 78:44:32:22:29:38:5e:a4:89:20:8f:76:3a:a7:1e:26:be:45: 17:ac:7a:56:1b:8d:15:e0:b6:cd:2e:de:ae:2e:21:24:73:83: 36:10:1c:27:77:7e:9a:ba:82:ce:b1:bd:37:a9:9e:58:49:6b: 2d:67:59:29:47:9e:e4:c2:33:33:a5:4e:e9:3f:04:1e:2e:3a: c0:32:1b:08:ba:aa:31:56:f5:df:00:cb:d2:ad:55:4d:f3:f8: 3d:33:d8:19:5d:91:3c:88:0b:75:0f:4f:37:ca:a5:91:1d:77: a5:46:21:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDgxMTAvBgNVBAUTKDBCQTFDNTJENjI1QkIxQjlFNDQzMzgyNTBEQTNENjRE ODA2ODdBMEEwHhcNMjUwNjEyMjMwNDQ4WhcNMjUwNjE5MjMwNDQ4WjAYMRYwFAYD VQQDEw02ODRiNWQxMS0xYTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Dxj3rEf0JouU3hQzDREgV+8temiK2vltzxhkPwqcohxju/R6mQsrE4wvzBH 86tZ/S+8Cwl3p5Dg6/Q0s6vHPr8OpT3LXQpV5TRauNok/y8wKKDAfGo1yYd9V37X ogJHDhqXs0q7hePIeJWDKxcZ3NohmlReoduLxgUFxOn6qepWNdRWIN5tmWgjb6KB C/9hZbIhjbxUyKivZOpV1R19sjSpJ/jSGe2yC1JiB2qtGdx7AeH/auwukwP72rXA KVLTwBRnt1hSvXzGcEK3OxY+b9JO67/+QfY1l0r6GGB/bkprPfBVx0c+VenRJSrR hkfmoc2zjwtTba2cRzlaKKjJGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSF5YvI 2yx6VHvcQjUKn/EsCn1XMB8GA1UdIwQYMBaAFAuhxS1iW7G55EM4JQ2j1k2AaHoK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0OC81MEVGRDg3NkY5 RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNibmtRemdsRGFQV1RZQm9l Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2SEZMV0pic2Jua1F6Z2xEYVBXVFlCb2Vnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0OC81MEVGRDg3NkY5RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNi bmtRemdsRGFQV1RZQm9lZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO9AV3bjVhIu4Y6fmcB+4/VjheRYXHOP1FjXzjelUmb63oSGbkKwcM eJ6QYHheL1NoM7cY+8A2MYu+kj+vCjq1scKpGLAUiVieunzpAAWclahDIp41trXo 5xNNfDBhwPwVN+2suAEDQ9zODZ7vCrA5bpnGQM2G8mDanYlkVj5CFLRSSWwD32QG 3+uWP1MVlP14RDIiKThepIkgj3Y6px4mvkUXrHpWG40V4LbNLt6uLiEkc4M2EBwn d36auoLOsb03qZ5YSWstZ1kpR57kwjMzpU7pPwQeLjrAMhsIuqoxVvXfAMvSrVVN 8/g9M9gZXZE8iAt1D083yqWRHXelRiED -----END CERTIFICATE-----Generated at Sat Jun 14 19:17:31 2025 by rpki-client