$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: 4R/tiSbCk83dlgjIEZN0FFX0pP6+Kd4PllGV5N5aMVs= Subject key identifier: 6D:B9:3D:0A:0A:D5:AC:43:42:34:11:3A:1D:44:0A:47:37:EC:39:D2 Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 0306 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 0302 Signing time: Thu 19 Jun 2025 00:44:56 +0000 Manifest this update: Thu 19 Jun 2025 00:44:55 +0000 Manifest next update: Thu 26 Jun 2025 00:44:55 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: QZkJe8Y3to5NcF6O2WfooebvC/xt0JAFcABosIqQdfY=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: X05nJ1j9oFxXKovC7MyWIX4IdW9s4NwJbF0XevapeM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Jun 19 00:44:55 2025 GMT Not After : Jun 26 00:44:55 2025 GMT Subject: CN=68535d88-5b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d2:bb:d5:0d:8a:1b:db:6e:b2:16:00:4f:f4: 2f:1c:d3:46:41:97:5e:cb:95:63:e4:f3:25:a1:a8: 89:fb:63:10:27:0d:f7:6d:db:01:e7:ff:80:ea:d5: de:56:2f:b1:cd:da:18:a8:ae:1f:e6:69:b6:0c:a5: 1f:f3:6f:64:b1:20:a9:97:99:cf:49:02:94:67:4d: cd:bf:10:80:76:a1:96:71:db:0a:f1:be:72:13:69: 08:9e:96:7a:2f:94:c8:fb:18:fc:f5:1f:29:b1:af: 99:c0:b0:f3:8a:cc:0d:8b:18:8b:aa:d3:4b:3a:4c: 02:6d:22:4a:ac:93:68:80:3b:ff:54:f4:93:46:57: 0c:ee:63:93:b4:7d:23:b5:25:b2:fb:98:6c:42:b8: 86:cb:91:0d:2d:18:af:d8:92:6e:1f:64:7d:71:e0: 50:c7:fb:87:66:2c:56:e2:23:60:0b:7e:95:df:5d: ec:41:af:fa:64:3f:90:e8:bb:4d:3b:a0:5f:23:d1: 27:5e:db:01:7b:fd:ad:59:49:61:62:41:52:71:af: 55:d8:b2:3e:83:ca:b1:2b:e5:00:2c:17:f8:6b:49: c1:0a:ae:77:43:89:7b:ba:89:23:5e:66:c8:a5:11: f8:65:70:ff:a4:0f:37:f6:f9:01:5d:40:3f:ac:df: 8b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B9:3D:0A:0A:D5:AC:43:42:34:11:3A:1D:44:0A:47:37:EC:39:D2 X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:68:00:7d:f7:bf:3d:f7:f0:c4:67:a1:a9:06:ef:d2:52:2e: 88:34:5b:b4:ba:a3:12:c5:9b:85:09:1d:ae:28:18:1f:82:8a: 7c:9b:0f:a7:dc:09:02:67:79:aa:1b:72:3e:5f:7d:bd:99:6f: 4e:ca:eb:2b:df:ff:b9:f4:cd:97:ff:e9:2c:10:74:0f:a4:75: 8d:c8:d3:36:c6:68:93:de:de:41:45:00:0a:27:6d:34:b1:6f: 1c:03:83:91:98:40:05:57:34:fb:a3:69:d5:73:e4:ad:4f:03: 91:b5:f2:75:53:1f:79:53:f4:88:47:61:c1:bc:e5:f8:08:b9: 50:11:eb:56:15:4b:21:0a:cc:c7:85:ed:c1:35:48:5d:dc:04: 47:2f:0e:ab:ff:be:84:9b:ae:ec:8e:c0:be:25:b8:0e:ad:8d: 5b:3b:bd:8f:89:3a:36:6f:e1:03:7e:8d:e4:1a:1e:ae:cb:d4: 18:1b:60:b7:12:ab:84:3f:6f:46:05:5e:01:05:18:a3:b1:1f: 10:af:86:2b:00:5b:29:41:51:fa:65:c9:25:27:0c:7c:fd:d6: d7:58:dd:20:5f:01:e9:78:bd:05:09:ba:e8:29:2d:eb:0c:78: 6a:f5:7d:16:cb:dd:d8:7a:d9:a0:0e:ef:be:b7:91:5f:c9:b5: 1e:24:06:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUwNjE5MDA0NDU1WhcNMjUwNjI2MDA0NDU1WjAYMRYwFAYD VQQDEw02ODUzNWQ4OC01YjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdK71Q2KG9tushYAT/QvHNNGQZdey5Vj5PMloaiJ+2MQJw33bdsB5/+A6tXe Vi+xzdoYqK4f5mm2DKUf829ksSCpl5nPSQKUZ03NvxCAdqGWcdsK8b5yE2kInpZ6 L5TI+xj89R8psa+ZwLDziswNixiLqtNLOkwCbSJKrJNogDv/VPSTRlcM7mOTtH0j tSWy+5hsQriGy5ENLRiv2JJuH2R9ceBQx/uHZixW4iNgC36V313sQa/6ZD+Q6LtN O6BfI9EnXtsBe/2tWUlhYkFSca9V2LI+g8qxK+UALBf4a0nBCq53Q4l7uokjXmbI pRH4ZXD/pA839vkBXUA/rN+LOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG25PQoK 1axDQjQROh1ECkc37DnSMB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbaAB997899/DEZ6GpBu/SUi6INFu0uqMSxZuFCR2uKBgfgop8mw+n 3AkCZ3mqG3I+X329mW9Oyusr3/+59M2X/+ksEHQPpHWNyNM2xmiT3t5BRQAKJ200 sW8cA4ORmEAFVzT7o2nVc+StTwORtfJ1Ux95U/SIR2HBvOX4CLlQEetWFUshCszH he3BNUhd3ARHLw6r/76Em67sjsC+JbgOrY1bO72PiTo2b+EDfo3kGh6uy9QYG2C3 EquEP29GBV4BBRijsR8Qr4YrAFspQVH6ZcklJwx8/dbXWN0gXwHpeL0FCbroKS3r DHhq9X0Wy93YetmgDu++t5FfybUeJAZl -----END CERTIFICATE-----Generated at Thu Jun 19 18:57:44 2025 by rpki-client