$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: oo43vtCBTwBEcePE2cjRuVY5LmkqkeLQ9eQ3iEr2yfE= Subject key identifier: 27:29:8E:7A:22:FC:D4:C1:CC:54:BB:3C:E4:1E:32:D3:56:A5:48:CE Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 0136 Signing time: Wed 18 Jun 2025 15:28:07 +0000 Manifest this update: Wed 18 Jun 2025 15:28:06 +0000 Manifest next update: Wed 25 Jun 2025 15:28:06 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: iq4LqTI0UI/yTndoRk/Sg9Ryhy5L62H4r5WBrgnkc3k=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: 4RQI+EFj/mJJo3iDsYdl0ustKcpifsqTMWOHIgjxyFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 15:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Jun 18 15:28:06 2025 GMT Not After : Jun 25 15:28:06 2025 GMT Subject: CN=6852db06-333e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:00:a0:dd:62:af:52:46:c3:f5:08:fa:25:4b: fb:6a:07:bf:0c:9e:6d:d7:00:c9:7a:48:eb:1d:b7: 55:30:ee:c2:48:8b:3b:8e:6d:f7:4f:6b:0d:e5:f1: cc:3f:c7:d4:c8:5a:34:5e:f6:2c:df:1c:78:62:27: da:eb:51:23:85:b3:c0:59:a9:c4:8f:77:54:9d:0e: 67:b3:c8:cb:99:86:29:47:33:ce:0f:3d:17:84:38: a8:f8:8f:79:c8:9e:6f:c9:ec:76:30:ee:1f:b4:3c: 61:63:8b:78:04:bb:ac:f4:cb:9f:e5:af:39:e8:ce: ec:51:0b:11:d0:3e:cf:a2:e0:91:6c:ca:5f:e4:30: 1b:40:11:ed:c3:42:2a:80:1a:54:fa:d3:ce:d5:4c: ba:8a:79:b2:9e:83:fe:57:c1:fa:b1:1a:e1:7c:1e: da:0f:87:1a:d9:d8:a9:00:81:d9:52:88:6b:85:13: 2f:9c:ba:ae:5a:95:8b:05:30:e1:82:0e:81:0e:f9: ac:1f:b3:a8:7b:6e:7a:73:d7:43:04:1b:4e:38:10: dd:6f:e0:03:90:0e:26:38:8f:95:47:e1:82:88:02: a2:6b:24:31:b1:08:78:b3:07:98:fd:19:23:7c:d4: 34:41:90:f1:7a:ab:d1:f0:05:f4:81:a6:4c:49:44: 15:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:29:8E:7A:22:FC:D4:C1:CC:54:BB:3C:E4:1E:32:D3:56:A5:48:CE X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:e4:4b:53:05:13:08:c9:eb:86:35:52:0d:f8:12:78:6a:f1: 1d:5a:b1:9e:9a:72:9a:97:72:89:32:d5:f5:55:8a:01:be:ae: 07:08:a8:19:fb:6e:9d:f4:14:46:70:cd:fd:1c:6f:43:a3:2d: 2d:ea:8a:e3:45:7e:56:ff:49:e5:60:4a:13:9d:2b:33:38:68: 8f:78:48:fd:83:42:a2:28:cb:90:0e:d2:68:84:82:57:14:e3: ab:44:7b:17:f5:ba:69:5c:dd:1a:43:8b:fe:98:54:5a:5d:9d: 0e:00:4a:98:8b:43:25:63:b0:a1:f7:d8:a7:9c:af:63:d2:74: a4:bf:70:47:c5:15:f4:79:b6:2c:97:70:06:ff:42:ac:1e:84: 94:d3:73:43:0f:fb:78:d8:7f:ac:0a:17:db:aa:c0:d9:d2:c5: 70:3d:2d:32:c4:bf:26:c3:d2:e0:23:31:e4:ab:49:aa:6a:ce: b0:58:39:5a:0b:bf:4c:f0:3c:69:b8:6d:e7:13:e0:a7:5e:f3: 6f:d1:92:83:c9:12:82:54:7b:d6:06:42:54:45:de:3b:5d:a2: 1f:5a:f2:df:6d:9f:a6:5e:3d:23:b4:56:c5:99:b8:04:3f:41: 12:7f:4c:b4:16:21:8f:4c:a3:0c:f9:e3:df:e7:f4:bc:0d:c5: 51:4b:91:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUwNjE4MTUyODA2WhcNMjUwNjI1MTUyODA2WjAYMRYwFAYD VQQDEw02ODUyZGIwNi0zMzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QCg3WKvUkbD9Qj6JUv7age/DJ5t1wDJekjrHbdVMO7CSIs7jm33T2sN5fHM P8fUyFo0XvYs3xx4Yifa61EjhbPAWanEj3dUnQ5ns8jLmYYpRzPODz0XhDio+I95 yJ5vyex2MO4ftDxhY4t4BLus9Muf5a856M7sUQsR0D7PouCRbMpf5DAbQBHtw0Iq gBpU+tPO1Uy6inmynoP+V8H6sRrhfB7aD4ca2dipAIHZUohrhRMvnLquWpWLBTDh gg6BDvmsH7Ooe256c9dDBBtOOBDdb+ADkA4mOI+VR+GCiAKiayQxsQh4sweY/Rkj fNQ0QZDxeqvR8AX0gaZMSUQVzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcpjnoi /NTBzFS7POQeMtNWpUjOMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz5EtTBRMIyeuGNVIN+BJ4avEdWrGemnKal3KJMtX1VYoBvq4HCKgZ +26d9BRGcM39HG9Doy0t6orjRX5W/0nlYEoTnSszOGiPeEj9g0KiKMuQDtJohIJX FOOrRHsX9bppXN0aQ4v+mFRaXZ0OAEqYi0MlY7Ch99innK9j0nSkv3BHxRX0ebYs l3AG/0KsHoSU03NDD/t42H+sChfbqsDZ0sVwPS0yxL8mw9LgIzHkq0mqas6wWDla C79M8DxpuG3nE+CnXvNv0ZKDyRKCVHvWBkJURd47XaIfWvLfbZ+mXj0jtFbFmbgE P0ESf0y0FiGPTKMM+ePf5/S8DcVRS5E/ -----END CERTIFICATE-----Generated at Fri Jun 20 16:30:25 2025 by rpki-client