$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft File: n33tfQW4HeZsc1u4VH52BIycP1o.mft (raw, json) Hash identifier: jxiqe7hKRKtpwzEQp+B2Nfy94fF2PtzbnayyEaJEfQY= Subject key identifier: 69:CB:F9:B5:87:A1:5C:75:DE:24:32:9F:68:59:6F:98:F3:F1:FC:DA Authority key identifier: 9F:7D:ED:7D:05:B8:1D:E6:6C:73:5B:B8:54:7E:76:04:8C:9C:3F:5A Certificate issuer: /CN=A9148F9A/serialNumber=9F7DED7D05B81DE66C735BB8547E76048C9C3F5A Certificate serial: 05DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft Manifest number: 05D5 Signing time: Thu 12 Jun 2025 22:39:47 +0000 Manifest this update: Thu 12 Jun 2025 22:39:46 +0000 Manifest next update: Thu 19 Jun 2025 22:39:46 +0000 Files and hashes: 1: n33tfQW4HeZsc1u4VH52BIycP1o.crl (hash: UyVU5GsnxC+jIbKwRcuJJuuFfCz6FT3ont3EVw39O8A=) 2: 6A4E9778632F11EE8F22BC2EC4F9AE02.roa (hash: 4bTC2UNunl8WmbthP7AksvyRIOAjMvhZ4haA1p6DOkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.crl rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1500 (0x5dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F9A, serialNumber=9F7DED7D05B81DE66C735BB8547E76048C9C3F5A Validity Not Before: Jun 12 22:39:46 2025 GMT Not After : Jun 19 22:39:46 2025 GMT Subject: CN=684b5732-a90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:97:05:a5:57:92:fe:3b:8b:77:a4:57:03:b8: ac:56:b6:21:d6:e6:2b:8f:6d:32:e1:cb:06:fa:9f: 5a:c3:c0:fd:30:e7:55:85:c9:96:d5:24:7b:0e:65: a8:bc:30:4c:5d:70:ae:55:f4:f5:cf:8a:96:04:3c: e9:4f:eb:dd:ea:88:c5:79:6c:f1:eb:51:9c:aa:4e: 6b:bc:c6:0e:8a:a1:7f:41:0b:f2:a7:df:4d:0e:78: 9a:b5:85:7b:34:c0:71:c2:3b:cd:da:17:96:65:fd: 14:30:77:fe:3d:70:be:98:67:a3:4d:40:b6:5c:0a: a9:9c:69:f9:03:b1:9c:56:ed:24:42:96:06:f7:13: bd:69:01:15:3d:4d:69:db:13:28:d1:71:6f:1b:24: d7:b5:4a:59:ea:72:20:a3:7b:1a:de:13:8a:58:66: a7:f5:2d:73:0b:37:49:31:67:f1:6f:bd:2d:19:82: 10:26:4b:8e:b7:32:82:de:84:9b:1b:37:ee:a5:21: a6:63:38:63:c2:bb:4b:a2:46:87:d7:01:7e:99:65: fb:27:de:21:46:66:dc:1f:7a:d8:ee:65:8c:ea:fc: b6:dc:3e:e9:f5:9c:81:31:3f:79:1e:22:40:58:98: ac:fc:78:12:89:57:9d:7a:ec:70:eb:e1:a5:9b:0e: 74:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CB:F9:B5:87:A1:5C:75:DE:24:32:9F:68:59:6F:98:F3:F1:FC:DA X509v3 Authority Key Identifier: keyid:9F:7D:ED:7D:05:B8:1D:E6:6C:73:5B:B8:54:7E:76:04:8C:9C:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:df:c4:a7:dc:b0:92:ab:e8:bb:39:5d:52:f1:9c:f7:6d:f1: e1:a0:51:9e:48:a9:ea:02:ee:a7:18:95:6e:df:8f:a8:cc:4b: ea:b9:b7:82:b6:e2:53:00:3b:94:4d:c6:65:f6:4b:f3:7c:f2: e3:e8:36:91:60:8e:3e:36:17:b9:3e:55:e8:14:ed:e8:2f:f2: 16:c2:2e:00:f9:c0:44:6a:82:6e:47:d6:a9:65:28:9c:70:99: ba:e4:1c:58:3e:10:98:f6:3a:74:18:16:67:4a:39:5a:98:23: b2:b7:cf:5e:38:91:42:19:4a:6e:b0:21:4e:ac:5d:47:04:01: dd:fd:29:3e:69:aa:d6:db:1f:d3:87:58:0f:98:c3:bf:56:56: 5e:00:78:21:6d:a9:6b:51:d6:db:6b:f4:9a:58:a9:b9:2a:1c: 0b:69:94:8b:fd:65:60:42:df:1d:c2:1c:0b:ab:be:3d:b5:ab: b6:00:87:5b:2f:50:8c:b2:bc:64:5f:8a:77:10:be:22:04:bd: 6a:cc:7e:17:f0:d8:22:d9:a4:bc:d6:32:fc:bd:34:2c:79:25: 7b:e7:3e:ff:8e:3e:d6:61:74:6c:c3:c4:d3:58:22:e9:34:97: 73:fc:fa:3e:6c:50:19:f8:f8:df:34:22:f7:12:fc:f2:97:6c: ed:76:09:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGOUExMTAvBgNVBAUTKDlGN0RFRDdEMDVCODFERTY2QzczNUJCODU0N0U3NjA0 OEM5QzNGNUEwHhcNMjUwNjEyMjIzOTQ2WhcNMjUwNjE5MjIzOTQ2WjAYMRYwFAYD VQQDEw02ODRiNTczMi1hOTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJcFpVeS/juLd6RXA7isVrYh1uYrj20y4csG+p9aw8D9MOdVhcmW1SR7DmWo vDBMXXCuVfT1z4qWBDzpT+vd6ojFeWzx61Gcqk5rvMYOiqF/QQvyp99NDniatYV7 NMBxwjvN2heWZf0UMHf+PXC+mGejTUC2XAqpnGn5A7GcVu0kQpYG9xO9aQEVPU1p 2xMo0XFvGyTXtUpZ6nIgo3sa3hOKWGan9S1zCzdJMWfxb70tGYIQJkuOtzKC3oSb GzfupSGmYzhjwrtLokaH1wF+mWX7J94hRmbcH3rY7mWM6vy23D7p9ZyBMT95HiJA WJis/HgSiVedeuxw6+Glmw50QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnL+bWH oVx13iQyn2hZb5jz8fzaMB8GA1UdIwQYMBaAFJ997X0FuB3mbHNbuFR+dgSMnD9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY5QS9DMEVBNTc5OEJF NDUxMUVCQjBDNUQwODRDNEY5QUUwMi9uMzN0ZlFXNEhlWnNjMXU0Vkg1MkJJeWNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24zM3RmUVc0SGVac2MxdTRWSDUyQkl5Y1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY5QS9DMEVBNTc5OEJFNDUxMUVCQjBDNUQwODRDNEY5QUUwMi9uMzN0ZlFXNEhl WnNjMXU0Vkg1MkJJeWNQMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA438Sn3LCSq+i7OV1S8Zz3bfHhoFGeSKnqAu6nGJVu34+ozEvqubeC tuJTADuUTcZl9kvzfPLj6DaRYI4+Nhe5PlXoFO3oL/IWwi4A+cBEaoJuR9apZSic cJm65BxYPhCY9jp0GBZnSjlamCOyt89eOJFCGUpusCFOrF1HBAHd/Sk+aarW2x/T h1gPmMO/VlZeAHghbalrUdbba/SaWKm5KhwLaZSL/WVgQt8dwhwLq749tau2AIdb L1CMsrxkX4p3EL4iBL1qzH4X8Ngi2aS81jL8vTQseSV75z7/jj7WYXRsw8TTWCLp NJdz/Po+bFAZ+PjfNCL3Evzyl2ztdgk8 -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:27 2025 by rpki-client