$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft File: C6HFLWJbsbnkQzglDaPWTYBoego.mft (raw, json) Hash identifier: caHE8CThgBGoClo525lmoZoW2wJb4rY5xGd4J02lq8k= Subject key identifier: 66:0C:60:E7:EB:3D:BA:B3:F8:BF:6F:84:1F:48:44:38:87:18:F1:23 Authority key identifier: 0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A Certificate issuer: /CN=A9140E48/serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Certificate serial: 0560 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft Manifest number: 055A Signing time: Fri 08 Aug 2025 23:50:30 +0000 Manifest this update: Fri 08 Aug 2025 23:50:30 +0000 Manifest next update: Fri 15 Aug 2025 23:50:30 +0000 Files and hashes: 1: C6HFLWJbsbnkQzglDaPWTYBoego.crl (hash: l0kdBtrj1/myFcGKUfwbtPgpbiI1HX+drKtI3mzc0f0=) 2: D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa (hash: EHUc5Goa9nVY7SlTfmeqrv5ucf88hUBAHLp60F7iD50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1376 (0x560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E48, serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Validity Not Before: Aug 8 23:50:30 2025 GMT Not After : Aug 15 23:50:30 2025 GMT Subject: CN=68968d46-1c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6a:1b:02:8f:73:ef:18:39:d6:b2:6d:74:89: fe:b2:c6:7d:1e:4a:a1:74:66:04:12:ae:ab:35:44: 03:e7:e6:a8:42:b1:3c:c1:45:56:8e:56:d6:5a:3b: 67:ff:17:39:85:d2:38:33:b1:d8:75:97:5e:6e:f2: 1b:e6:c3:69:48:48:84:37:52:9d:88:5f:0e:43:3a: f3:92:1c:1b:b9:d4:42:1b:ea:ed:d2:df:f0:cf:73: 96:8e:e0:1a:d8:98:a0:6a:98:21:55:3d:52:2e:30: 95:23:a1:f6:69:07:1e:3c:b9:c1:61:de:db:91:f6: 01:cc:b9:c3:5b:d1:18:d1:19:1b:dc:bd:7f:a5:c9: 49:ad:5e:5c:55:4f:6f:a8:8b:80:c6:ff:c6:79:6c: 2c:ba:df:c0:d8:83:a4:cc:5d:bf:fd:cc:3c:87:46: 7c:58:6e:de:b6:cd:c7:75:12:c4:c2:65:ec:93:35: 98:c7:85:ee:10:7e:e0:b1:da:34:bc:17:e1:8c:fa: cf:82:db:d2:ee:72:f7:5b:cd:5a:5a:02:62:30:1f: 6f:35:93:94:a3:74:69:ff:13:f4:27:bc:36:da:99: 12:45:30:b9:b2:f2:4c:12:2f:ef:e9:07:f8:e0:0e: 11:4c:7b:d8:99:57:29:ec:cc:dd:7d:17:f5:f1:d4: 5f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0C:60:E7:EB:3D:BA:B3:F8:BF:6F:84:1F:48:44:38:87:18:F1:23 X509v3 Authority Key Identifier: keyid:0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:8d:35:11:b9:6d:bc:ca:f5:4b:5f:05:bd:0d:b2:c1:0a:31: 50:a8:c8:50:ea:5d:3a:50:fa:91:c5:58:be:3c:f9:25:51:2b: 51:d6:fb:e5:13:a7:5b:03:81:c1:7d:24:85:08:9e:bd:3c:6b: fc:37:5a:50:5b:3d:6a:0e:35:1c:ad:af:31:7e:15:bb:ad:db: 24:ad:ed:84:07:d7:14:b8:e5:fd:20:be:69:05:06:58:4b:f8: 96:82:14:be:c1:5a:06:32:e8:47:fd:c5:67:40:e4:61:c6:99: 62:d6:92:b5:55:1a:9b:f3:04:bd:4a:3e:3b:28:6e:1d:70:fa: 50:f9:26:7e:9a:3e:c0:79:f4:c5:af:6e:83:6f:61:88:bf:a0: fb:f5:1b:0a:16:e8:ab:fe:66:2f:29:06:e3:92:5e:94:69:c8: 3d:20:8e:1e:3b:90:73:95:68:d9:7d:db:55:e0:14:35:ce:04: ee:ff:0b:53:ae:00:d1:04:42:93:a0:0c:3b:a3:5a:ff:ab:ce: 93:6a:0b:ea:e5:60:b6:47:a6:3d:67:c6:4b:6f:ab:dd:9d:e3: 6a:33:29:2a:25:a8:d6:17:01:f9:a1:02:3a:26:c0:45:cf:29: 8b:c3:af:dc:89:19:6f:85:2d:32:24:bc:dd:fc:d0:4b:f7:a0: 2a:97:bc:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDgxMTAvBgNVBAUTKDBCQTFDNTJENjI1QkIxQjlFNDQzMzgyNTBEQTNENjRE ODA2ODdBMEEwHhcNMjUwODA4MjM1MDMwWhcNMjUwODE1MjM1MDMwWjAYMRYwFAYD VQQDEw02ODk2OGQ0Ni0xYzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGobAo9z7xg51rJtdIn+ssZ9HkqhdGYEEq6rNUQD5+aoQrE8wUVWjlbWWjtn /xc5hdI4M7HYdZdebvIb5sNpSEiEN1KdiF8OQzrzkhwbudRCG+rt0t/wz3OWjuAa 2JigapghVT1SLjCVI6H2aQcePLnBYd7bkfYBzLnDW9EY0Rkb3L1/pclJrV5cVU9v qIuAxv/GeWwsut/A2IOkzF2//cw8h0Z8WG7ets3HdRLEwmXskzWYx4XuEH7gsdo0 vBfhjPrPgtvS7nL3W81aWgJiMB9vNZOUo3Rp/xP0J7w22pkSRTC5svJMEi/v6Qf4 4A4RTHvYmVcp7MzdfRf18dRf2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYMYOfr Pbqz+L9vhB9IRDiHGPEjMB8GA1UdIwQYMBaAFAuhxS1iW7G55EM4JQ2j1k2AaHoK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0OC81MEVGRDg3NkY5 RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNibmtRemdsRGFQV1RZQm9l Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2SEZMV0pic2Jua1F6Z2xEYVBXVFlCb2Vnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0OC81MEVGRDg3NkY5RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNi bmtRemdsRGFQV1RZQm9lZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJjTURuW28yvVLXwW9DbLBCjFQqMhQ6l06UPqRxVi+PPklUStR1vvl E6dbA4HBfSSFCJ69PGv8N1pQWz1qDjUcra8xfhW7rdskre2EB9cUuOX9IL5pBQZY S/iWghS+wVoGMuhH/cVnQORhxpli1pK1VRqb8wS9Sj47KG4dcPpQ+SZ+mj7AefTF r26Db2GIv6D79RsKFuir/mYvKQbjkl6Uacg9II4eO5BzlWjZfdtV4BQ1zgTu/wtT rgDRBEKToAw7o1r/q86Tagvq5WC2R6Y9Z8ZLb6vdneNqMykqJajWFwH5oQI6JsBF zymLw6/ciRlvhS0yJLzd/NBL96Aql7zo -----END CERTIFICATE-----Generated at Sun Aug 10 13:59:27 2025 by rpki-client