$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft File: 8gl4uKIsE6CwK586X8LUiKuovtU.mft (raw, json) Hash identifier: StBGaUqocQU8HVpLVSyrnOCAIsJNq/bvQRKKN1J2gVw= Subject key identifier: BA:FA:D3:A1:9F:D9:32:C6:74:A2:53:D1:02:03:83:32:7C:20:F0:70 Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 09F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft Manifest number: 09F1 Signing time: Thu 12 Jun 2025 19:39:44 +0000 Manifest this update: Thu 12 Jun 2025 19:39:44 +0000 Manifest next update: Thu 19 Jun 2025 19:39:44 +0000 Files and hashes: 1: 8gl4uKIsE6CwK586X8LUiKuovtU.crl (hash: +P4VTYWxt4X1Zn2Uuw8Y0qrHHMY46t3jfh/VSEzl2BU=) 2: BD7E578079E011EA8DD5907FC4F9AE02.roa (hash: iYxIY6VXdTf7gHnwepU+/VGZkh/V1c1cIjc+gsTh8TE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2551 (0x9f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C, serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: Jun 12 19:39:44 2025 GMT Not After : Jun 19 19:39:44 2025 GMT Subject: CN=684b2d00-7293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c9:39:3e:6c:ba:33:21:87:59:6f:bc:f7:db: 7f:05:64:63:ac:1d:37:c0:e4:b1:67:8e:e6:66:dc: 8f:a1:28:bd:b0:f3:83:d2:fd:ab:1c:60:35:15:24: 94:b4:0c:32:fe:5f:a4:57:89:4d:40:f2:ee:8e:5f: 26:a6:cf:3c:3e:56:81:36:52:95:dd:4b:49:31:fd: 5b:10:cc:23:a8:9d:d1:ab:cf:bc:57:c9:90:5d:55: 39:41:28:d0:03:12:e9:f9:78:b5:d1:59:20:87:50: 6a:72:e5:e8:27:fd:98:ec:34:95:7e:b3:6c:4c:7d: 86:2b:27:f4:55:79:c8:f4:e2:1b:5b:4d:b6:d7:c4: 1a:3e:fd:55:18:a8:11:2f:ca:38:54:d2:e1:e5:00: ca:d9:d2:b2:26:30:92:43:ef:8c:1c:06:c1:a1:5d: 4a:2b:57:31:14:5c:ae:5a:f7:f0:09:11:fc:b4:27: 66:a4:1d:77:77:c4:fa:32:ce:bb:7f:21:8f:49:e6: 39:52:d4:3d:b4:fd:17:f8:72:9f:fb:46:73:7f:88: ef:f9:2f:21:0b:57:d8:b2:31:d0:e1:98:95:d9:6c: 7a:88:f8:e1:47:50:67:43:63:9a:25:38:cc:c0:93: 65:a1:c3:42:6b:f3:e5:34:73:fe:c0:b6:47:f1:5e: e2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FA:D3:A1:9F:D9:32:C6:74:A2:53:D1:02:03:83:32:7C:20:F0:70 X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:d9:52:70:dd:b1:f9:82:60:97:53:28:6d:7b:5b:a5:56:cd: 81:87:3b:a8:4e:e7:e4:c4:01:e9:85:c5:0d:9a:8d:3d:43:df: 75:bc:15:ac:c5:9d:38:f6:3d:c8:ad:72:57:49:c5:ee:56:09: de:68:6f:c8:20:a0:30:89:de:a0:05:8e:1f:9b:27:bd:34:dc: c7:43:e7:b6:d7:92:ca:08:3c:6a:4e:e8:3b:c1:33:d8:76:ce: 92:5c:b6:da:db:61:0b:cf:52:8a:3d:bb:a6:43:5d:51:e3:fd: 95:08:87:09:da:32:e8:1e:6d:91:8e:47:47:d9:67:55:14:93: f1:f2:08:ed:bc:09:cc:da:1b:55:86:40:49:f2:9d:45:28:b1: ac:a6:35:a1:f8:cf:fd:09:32:ab:31:68:01:6e:55:49:39:19: 92:1d:9e:c3:40:e2:9f:bd:66:64:66:98:99:70:df:07:f4:3b: ec:72:58:d5:cf:ec:40:ce:fd:56:98:32:24:1f:8b:91:8b:31: ca:f2:5c:5c:a7:60:22:43:7b:c7:23:f4:18:e3:a0:53:05:9d: e3:f3:5d:c3:f0:5a:6a:e8:2b:ed:99:77:b4:b6:8f:fe:95:fc: 53:44:2e:0d:37:97:f1:6b:13:5f:0c:cc:ab:30:a0:c9:7d:30: a3:29:58:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjUwNjEyMTkzOTQ0WhcNMjUwNjE5MTkzOTQ0WjAYMRYwFAYD VQQDEw02ODRiMmQwMC03MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ck5Pmy6MyGHWW+899t/BWRjrB03wOSxZ47mZtyPoSi9sPOD0v2rHGA1FSSU tAwy/l+kV4lNQPLujl8mps88PlaBNlKV3UtJMf1bEMwjqJ3Rq8+8V8mQXVU5QSjQ AxLp+Xi10Vkgh1BqcuXoJ/2Y7DSVfrNsTH2GKyf0VXnI9OIbW02218QaPv1VGKgR L8o4VNLh5QDK2dKyJjCSQ++MHAbBoV1KK1cxFFyuWvfwCRH8tCdmpB13d8T6Ms67 fyGPSeY5UtQ9tP0X+HKf+0Zzf4jv+S8hC1fYsjHQ4ZiV2Wx6iPjhR1BnQ2OaJTjM wJNlocNCa/PlNHP+wLZH8V7imwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLr606Gf 2TLGdKJT0QIDgzJ8IPBwMB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUzQy81QkE4NzgyMDc5REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2 Q3dLNTg2WDhMVWlLdW92dFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC62VJw3bH5gmCXUyhte1ulVs2BhzuoTufkxAHphcUNmo09Q991vBWs xZ049j3IrXJXScXuVgneaG/IIKAwid6gBY4fmye9NNzHQ+e215LKCDxqTug7wTPY ds6SXLba22ELz1KKPbumQ11R4/2VCIcJ2jLoHm2RjkdH2WdVFJPx8gjtvAnM2htV hkBJ8p1FKLGspjWh+M/9CTKrMWgBblVJORmSHZ7DQOKfvWZkZpiZcN8H9DvscljV z+xAzv1WmDIkH4uRizHK8lxcp2AiQ3vHI/QY46BTBZ3j813D8Fpq6CvtmXe0to/+ lfxTRC4NN5fxaxNfDMyrMKDJfTCjKVhe -----END CERTIFICATE-----Generated at Sat Jun 14 18:53:00 2025 by rpki-client