$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: 4b6wLp1Or4R1HmtvHUUFW+eAxxRz0SlubgQB6h9AlT8= Subject key identifier: C2:53:F4:57:E5:5C:F8:DF:41:F9:F3:6B:AB:23:C8:2C:75:05:0A:09 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1B9A Signing time: Thu 12 Jun 2025 16:13:00 +0000 Manifest this update: Thu 12 Jun 2025 16:13:00 +0000 Manifest next update: Thu 19 Jun 2025 16:13:00 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: bqUUt4KtGZtp9qzjoLr1IqFJJmi/gIRJnQBK3yMxW5Q=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7084 (0x1bac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Jun 12 16:13:00 2025 GMT Not After : Jun 19 16:13:00 2025 GMT Subject: CN=684afc8c-45f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:41:0d:0f:fa:3e:30:e0:ed:bf:63:55:8a: e7:b0:c8:5d:63:75:fe:62:9f:10:50:98:d3:e0:ee: 93:96:70:53:bf:e2:58:f5:ea:d9:e6:b1:40:4c:a1: 40:2f:a8:92:f3:d4:31:d5:33:1a:77:4b:4b:4f:12: d3:04:16:7c:c1:1c:7c:9b:01:78:bc:d0:ff:4c:bf: 9f:09:ce:7c:6d:73:54:de:87:1d:f2:bd:3c:a4:aa: 14:62:c8:40:14:e4:bb:c0:fc:a9:ef:2d:51:22:4a: 7b:13:86:6d:97:53:a0:e0:87:7a:28:9d:60:0c:56: 1e:ac:6e:1a:eb:c0:d3:ff:55:72:f9:38:9d:91:5c: 14:b2:32:9d:4a:4f:43:61:5f:b7:7f:f4:11:25:f9: 23:ed:6a:da:f5:bf:2b:e2:77:e4:85:e6:cd:5c:7e: c3:fa:22:57:7f:08:9f:97:18:c4:2b:04:88:d7:f2: fe:e8:59:83:f5:54:bd:f7:d5:51:dc:29:29:94:bc: f1:4d:18:05:ed:db:9b:5f:48:5a:c4:88:49:f6:3f: 88:72:f9:f2:e4:69:d5:49:0d:6f:41:36:e1:f5:4e: a7:aa:85:88:6d:f0:97:11:ea:38:e9:d9:6f:8c:74: fd:89:88:5c:7b:15:18:b6:67:8e:56:41:eb:50:d1: 8e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:53:F4:57:E5:5C:F8:DF:41:F9:F3:6B:AB:23:C8:2C:75:05:0A:09 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:27:6e:af:57:3d:34:2c:6a:86:83:d9:47:30:d1:2d:2c:41: 07:96:16:0b:3f:1a:40:e0:3b:df:47:09:23:68:af:f3:ae:89: e2:f4:d4:0a:f0:4b:e7:fa:75:8a:3f:a8:46:c9:34:db:2c:c1: 64:f5:9e:f8:18:13:89:41:0c:86:71:20:e2:db:cf:8d:0a:15: 3e:61:b2:34:85:7e:57:8b:e2:e9:e4:f6:22:05:74:3d:67:42: 63:67:54:bf:c9:d0:b0:be:b8:c6:59:ea:69:3b:bc:1f:71:e6: cf:09:29:f8:79:3b:e4:21:e3:a8:83:f2:6a:5f:bc:d3:1b:15: 7a:d2:98:eb:b7:4e:e5:cb:00:71:bf:73:6b:b2:f0:4d:fe:e1: 8a:ce:06:3e:13:7b:ba:ef:93:df:e5:9e:31:c3:e1:ab:02:84: cd:93:44:4b:34:22:b6:b3:c9:88:d1:34:19:ad:0a:62:27:fe: f1:84:3d:95:57:00:05:e1:0c:f6:1e:68:f9:da:b4:c7:74:9d: 60:1f:ec:3f:76:52:7c:b3:9c:5d:69:a6:50:99:07:8b:fa:86: e0:e4:d7:72:33:11:cf:a6:18:5d:87:41:f8:44:64:70:0c:eb: 74:70:d5:8e:0c:24:28:3f:5f:44:d3:b1:3d:dd:b2:6b:26:65: a9:cd:df:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwNjEyMTYxMzAwWhcNMjUwNjE5MTYxMzAwWjAYMRYwFAYD VQQDEw02ODRhZmM4Yy00NWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufhBDQ/6PjDg7b9jVYrnsMhdY3X+Yp8QUJjT4O6TlnBTv+JY9erZ5rFATKFA L6iS89Qx1TMad0tLTxLTBBZ8wRx8mwF4vND/TL+fCc58bXNU3ocd8r08pKoUYshA FOS7wPyp7y1RIkp7E4Ztl1Og4Id6KJ1gDFYerG4a68DT/1Vy+TidkVwUsjKdSk9D YV+3f/QRJfkj7Wra9b8r4nfkhebNXH7D+iJXfwiflxjEKwSI1/L+6FmD9VS999VR 3CkplLzxTRgF7dubX0haxIhJ9j+Icvny5GnVSQ1vQTbh9U6nqoWIbfCXEeo46dlv jHT9iYhcexUYtmeOVkHrUNGO5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJT9Ffl XPjfQfnza6sjyCx1BQoJMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaJ26vVz00LGqGg9lHMNEtLEEHlhYLPxpA4DvfRwkjaK/zroni9NQK 8Evn+nWKP6hGyTTbLMFk9Z74GBOJQQyGcSDi28+NChU+YbI0hX5Xi+Lp5PYiBXQ9 Z0JjZ1S/ydCwvrjGWeppO7wfcebPCSn4eTvkIeOog/JqX7zTGxV60pjrt07lywBx v3NrsvBN/uGKzgY+E3u675Pf5Z4xw+GrAoTNk0RLNCK2s8mI0TQZrQpiJ/7xhD2V VwAF4Qz2Hmj52rTHdJ1gH+w/dlJ8s5xdaaZQmQeL+obg5NdyMxHPphhdh0H4RGRw DOt0cNWODCQoP19E07E93bJrJmWpzd8C -----END CERTIFICATE-----Generated at Sat Jun 14 17:49:23 2025 by rpki-client