$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: Zbg9906knOBE26f9jXR+tw1Fz/IPWCUUhTJcPQcEfbE= Subject key identifier: 6E:34:C2:B0:BF:C4:B0:EA:37:C0:CA:A0:57:D6:13:D5:6B:D9:CC:15 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 0755 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 074F Signing time: Thu 12 Jun 2025 21:20:52 +0000 Manifest this update: Thu 12 Jun 2025 21:20:52 +0000 Manifest next update: Thu 19 Jun 2025 21:20:52 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: keLtaPAJ4buf7ALvYNmZGtYOmHeG2uTYxAJrh7w5vcc=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: dyvPcZxPt0csBuZZARHE9y3XiMCjfKdl2w86flcHLuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1877 (0x755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Jun 12 21:20:52 2025 GMT Not After : Jun 19 21:20:52 2025 GMT Subject: CN=684b44b4-1e97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:27:9d:63:da:2d:ce:83:5e:86:76:52:07:4f: 2b:0e:53:84:2f:2a:19:b6:a8:d8:9a:cb:79:b4:29: 74:f8:eb:a5:83:38:4d:66:64:fa:84:84:f7:15:04: fe:4e:2e:31:6a:9c:67:15:a0:12:b0:9a:c0:94:ac: 65:69:a9:d6:ee:53:1d:7b:8b:0e:7b:1f:b9:e0:de: e9:b1:4a:38:de:28:b9:04:37:b1:ed:65:da:51:fc: 0c:76:52:31:94:3f:04:c4:16:29:ee:80:4a:31:a6: a2:2a:53:f1:de:ac:e0:c5:ce:1c:12:e5:59:0e:d1: 15:44:fd:23:1c:cd:ce:10:06:76:fd:f8:38:c6:06: 11:b0:82:4f:05:0e:5f:f7:ba:84:de:16:dc:1b:a0: 5e:06:b5:6b:5a:07:15:ae:30:41:ca:24:41:25:8e: cc:ea:93:b7:4b:61:1d:4c:15:d4:88:5c:ab:55:ab: a8:a3:26:a6:64:96:e8:ef:a4:cf:a6:a3:9a:b1:84: ac:81:66:5a:d6:80:dd:6a:aa:43:eb:ae:40:a1:20: e8:c4:29:60:1f:74:3f:6d:6f:50:3c:e1:45:c6:6b: af:96:49:f8:e7:e2:69:c9:64:4d:a7:f7:96:70:e5: d0:36:64:9b:74:86:47:ca:2c:12:b2:ef:44:e4:59: 1a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:34:C2:B0:BF:C4:B0:EA:37:C0:CA:A0:57:D6:13:D5:6B:D9:CC:15 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:7e:71:60:08:55:45:89:07:38:bc:46:bd:99:4b:cc:cb:88: e5:ba:4d:48:14:17:bf:bc:9b:7f:80:d7:98:e2:67:54:75:8c: 21:ac:68:fa:6b:bb:8b:16:1b:dc:ed:64:e4:3e:39:cd:d4:d2: f9:c7:6b:64:51:16:1e:4b:aa:93:00:f0:c4:49:2f:f5:e7:79: 1d:89:9e:fa:dc:53:fd:9b:49:2b:7c:da:33:0d:1e:a0:43:89: 08:76:64:11:08:b6:1a:2c:78:40:ff:69:ac:33:11:e7:de:e0: 12:3e:cd:d4:31:0c:8c:8b:a2:7c:a5:07:97:ac:0a:08:d7:3d: c0:fa:f7:50:03:2b:21:52:22:b2:f9:75:1b:a5:b9:19:76:16: 80:48:0c:d8:bf:6f:3b:2a:40:4d:36:17:f8:df:d1:02:f1:86: b2:c0:8b:c5:90:9b:49:9b:ec:05:3c:d3:bc:24:54:92:27:35: 01:15:25:f0:1b:0d:69:77:7d:a2:e9:a5:1f:b0:b3:f4:9e:a1: ca:72:d1:25:37:5b:2d:47:51:f2:ec:66:aa:ee:4b:1f:10:ad: 8f:83:5d:ff:ca:20:dc:59:0f:6c:e5:77:ba:a3:3e:97:7c:f4: 58:22:7a:a7:fb:28:c2:41:91:22:8e:e4:aa:61:8a:b4:34:34: a9:11:a5:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjUwNjEyMjEyMDUyWhcNMjUwNjE5MjEyMDUyWjAYMRYwFAYD VQQDEw02ODRiNDRiNC0xZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yedY9otzoNehnZSB08rDlOELyoZtqjYmst5tCl0+OulgzhNZmT6hIT3FQT+ Ti4xapxnFaASsJrAlKxlaanW7lMde4sOex+54N7psUo43ii5BDex7WXaUfwMdlIx lD8ExBYp7oBKMaaiKlPx3qzgxc4cEuVZDtEVRP0jHM3OEAZ2/fg4xgYRsIJPBQ5f 97qE3hbcG6BeBrVrWgcVrjBByiRBJY7M6pO3S2EdTBXUiFyrVauooyamZJbo76TP pqOasYSsgWZa1oDdaqpD665AoSDoxClgH3Q/bW9QPOFFxmuvlkn45+JpyWRNp/eW cOXQNmSbdIZHyiwSsu9E5FkalwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG40wrC/ xLDqN8DKoFfWE9Vr2cwVMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCfnFgCFVFiQc4vEa9mUvMy4jluk1IFBe/vJt/gNeY4mdUdYwhrGj6 a7uLFhvc7WTkPjnN1NL5x2tkURYeS6qTAPDESS/153kdiZ763FP9m0krfNozDR6g Q4kIdmQRCLYaLHhA/2msMxHn3uASPs3UMQyMi6J8pQeXrAoI1z3A+vdQAyshUiKy +XUbpbkZdhaASAzYv287KkBNNhf439EC8YaywIvFkJtJm+wFPNO8JFSSJzUBFSXw Gw1pd32i6aUfsLP0nqHKctElN1stR1Hy7Gaq7ksfEK2Pg13/yiDcWQ9s5Xe6oz6X fPRYInqn+yjCQZEijuSqYYq0NDSpEaXW -----END CERTIFICATE-----Generated at Sat Jun 14 18:19:48 2025 by rpki-client