$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft File: g--P6e5IafC5SpX3RvWJS6H7MPA.mft (raw, json) Hash identifier: WjImEqEY/tSX2CLhKszeQSG0D2LDcTokKJr2A4nnkd8= Subject key identifier: 66:52:BF:4A:C9:86:A0:5C:77:F0:84:F5:DF:7F:74:7C:91:FA:30:55 Authority key identifier: 83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 Certificate issuer: /CN=A914EB9A/serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft Manifest number: C0 Signing time: Fri 13 Jun 2025 04:47:35 +0000 Manifest this update: Fri 13 Jun 2025 04:47:34 +0000 Manifest next update: Fri 20 Jun 2025 04:47:34 +0000 Files and hashes: 1: g--P6e5IafC5SpX3RvWJS6H7MPA.crl (hash: RWK/CDtcdVwyS7AN5rR2Ok/PIIFk+x91XoIbx1EGFOs=) 2: A368B23623C411EFB7164123C4F9AE02.roa (hash: xksJk5Cwcy8+0Thge3EVjB2r6Pp+L19aLaysM6rp0MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB9A, serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Validity Not Before: Jun 13 04:47:34 2025 GMT Not After : Jun 20 04:47:34 2025 GMT Subject: CN=684bad67-127c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:96:70:3b:a5:31:74:51:0b:9f:c2:2f:2c:fb: 14:98:d3:1f:29:38:2f:de:db:07:3e:b8:30:0b:f1: b8:fe:d9:10:16:38:08:16:a3:7c:51:a6:42:29:9b: f6:ee:01:9d:17:0a:93:3e:0a:67:1f:4a:df:e3:ee: 4a:62:42:82:2d:e5:51:62:24:15:c4:58:52:6e:bd: db:58:dd:28:68:fc:d6:0f:48:46:a1:51:65:55:10: ea:cb:4c:d9:aa:83:60:85:ae:98:18:73:58:5e:fb: 8d:46:d0:7b:4e:e7:d9:96:60:95:be:d0:43:9a:0f: 06:fb:93:78:70:41:2c:22:34:af:f6:60:16:17:1b: 8b:8d:4b:09:a5:0b:a9:6e:84:36:ba:f2:1d:f3:0d: 86:70:45:fe:e8:28:19:15:9d:b2:68:98:51:7e:5c: 2f:8b:8b:fd:ca:15:5a:0c:d8:4d:57:a7:5e:5e:c7: 86:82:a3:b2:94:94:7d:4a:38:7b:ce:64:69:32:ac: 66:9c:cd:08:20:69:b9:d3:50:d0:c0:d9:a6:e5:d3: 25:6e:e3:57:ea:87:c4:b2:cd:25:2c:c0:c2:7b:af: 25:ff:4d:f6:ed:97:d2:fb:0f:cb:19:c5:59:c4:a1: f7:82:94:d4:2b:6d:20:35:c5:bb:5c:08:ae:02:9b: f7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:52:BF:4A:C9:86:A0:5C:77:F0:84:F5:DF:7F:74:7C:91:FA:30:55 X509v3 Authority Key Identifier: keyid:83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b5:da:86:44:87:fe:9f:7e:af:49:44:99:0b:c6:49:17:b0: 81:57:6f:c3:e0:40:6c:10:52:1e:eb:73:33:d8:0f:e9:3c:4f: 9d:af:16:c6:14:33:59:0a:79:e0:e7:05:8d:3a:f1:4a:d6:8f: 56:4a:39:80:74:bd:20:60:49:f3:2d:c6:57:11:16:76:62:a9: 43:64:d6:67:81:e0:ae:df:93:59:9e:7d:71:a8:f8:e6:95:84: 44:a1:85:f4:e4:20:58:e4:68:05:90:8c:b9:0f:4c:f7:43:3b: 22:94:ca:1d:0d:a8:c4:6f:90:56:3f:36:46:01:af:1b:03:75: 30:c2:9e:35:b5:50:94:01:74:32:c1:bc:91:70:35:62:bc:07: f1:c4:24:4e:10:8d:61:b4:4c:95:ec:7f:a1:41:e1:d9:76:69: 66:2f:ba:3e:18:08:04:3a:77:bf:40:92:0f:3f:09:c7:47:c1: f3:dc:ba:b9:12:ab:0f:72:1a:7a:f5:8d:1d:b4:29:2e:40:2b: 75:ba:ff:0e:a8:28:99:d5:76:0e:10:d5:88:03:29:13:32:49: eb:11:42:e8:2b:e6:35:94:dd:1e:5c:82:e6:e0:8f:41:f9:18: 2f:2a:18:cf:59:e8:c1:2e:76:f9:5f:90:c2:1a:62:33:c9:95: 47:bf:d6:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCOUExMTAvBgNVBAUTKDgzRUY4RkU5RUU0ODY5RjBCOTRBOTVGNzQ2RjU4OTRC QTFGQjMwRjAwHhcNMjUwNjEzMDQ0NzM0WhcNMjUwNjIwMDQ0NzM0WjAYMRYwFAYD VQQDEw02ODRiYWQ2Ny0xMjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJZwO6UxdFELn8IvLPsUmNMfKTgv3tsHPrgwC/G4/tkQFjgIFqN8UaZCKZv2 7gGdFwqTPgpnH0rf4+5KYkKCLeVRYiQVxFhSbr3bWN0oaPzWD0hGoVFlVRDqy0zZ qoNgha6YGHNYXvuNRtB7TufZlmCVvtBDmg8G+5N4cEEsIjSv9mAWFxuLjUsJpQup boQ2uvId8w2GcEX+6CgZFZ2yaJhRflwvi4v9yhVaDNhNV6deXseGgqOylJR9Sjh7 zmRpMqxmnM0IIGm501DQwNmm5dMlbuNX6ofEss0lLMDCe68l/0327ZfS+w/LGcVZ xKH3gpTUK20gNcW7XAiuApv3ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZSv0rJ hqBcd/CE9d9/dHyR+jBVMB8GA1UdIwQYMBaAFIPvj+nuSGnwuUqV90b1iUuh+zDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI5QS9FNEE2NUVERTIz QzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFmQzVTcFgzUnZXSlM2SDdN UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ctLVA2ZTVJYWZDNVNwWDNSdldKUzZIN01QQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI5QS9FNEE2NUVERTIzQzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFm QzVTcFgzUnZXSlM2SDdNUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmtdqGRIf+n36vSUSZC8ZJF7CBV2/D4EBsEFIe63Mz2A/pPE+drxbG FDNZCnng5wWNOvFK1o9WSjmAdL0gYEnzLcZXERZ2YqlDZNZngeCu35NZnn1xqPjm lYREoYX05CBY5GgFkIy5D0z3QzsilModDajEb5BWPzZGAa8bA3Uwwp41tVCUAXQy wbyRcDVivAfxxCROEI1htEyV7H+hQeHZdmlmL7o+GAgEOne/QJIPPwnHR8Hz3Lq5 EqsPchp69Y0dtCkuQCt1uv8OqCiZ1XYOENWIAykTMknrEULoK+Y1lN0eXILm4I9B +RgvKhjPWejBLnb5X5DCGmIzyZVHv9a3 -----END CERTIFICATE-----Generated at Sun Jun 15 05:02:37 2025 by rpki-client