$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: 5oNRyQuvXYgC0tt9reokvoLX2w4+yB4TXHhSssKHDr4= Subject key identifier: 79:F9:15:D0:04:5B:A4:81:C1:CC:E8:71:2B:05:4F:C7:7A:05:96:C0 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 07E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 07D7 Signing time: Wed 18 Jun 2025 20:55:26 +0000 Manifest this update: Wed 18 Jun 2025 20:55:26 +0000 Manifest next update: Wed 25 Jun 2025 20:55:26 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: g3dmlSIx0soUj1S1nTxPU8BM6XDEW3XCha7TxgysoVg=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: Es/KgzPMe1zYauziZBRZHyjZJ35reOpMCOBV6MckhCs=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: Ka3pUjVhAjV8Jw2bqRS1fw1Jl4NqlRDOjR/Fjs/H0+M=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: OhYJKozvfID8ylqYGKB5GjbLkxxbmKyR5Jo0rIME+Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Jun 18 20:55:26 2025 GMT Not After : Jun 25 20:55:26 2025 GMT Subject: CN=685327be-9aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b0:55:fb:11:f8:67:1d:e9:d1:f5:ef:4a:08: c9:e5:00:b7:3b:60:56:89:be:7a:27:06:74:cc:b4: d4:53:c5:6b:9d:6e:5f:c0:2f:eb:9f:e4:e0:78:7b: be:2f:cb:ce:9c:84:be:e2:23:90:e4:02:05:39:d4: 86:43:d3:2c:a6:d3:ca:2a:5b:df:ab:9c:88:d6:b9: ec:27:bc:58:db:cc:a5:a0:e0:50:01:e7:15:45:b7: 23:53:4c:70:81:82:22:47:84:66:19:9f:c8:b5:6e: fd:d6:37:15:f9:3f:04:aa:e6:f1:a2:ee:8f:22:75: a6:d4:c3:d6:2c:01:83:60:43:e3:6f:53:22:1d:88: 99:01:1c:1f:f7:1e:5b:2c:79:46:a5:31:f9:23:45: 3f:be:ea:d2:ac:79:c3:8d:19:05:af:55:5a:c6:c1: 9b:1e:35:03:e4:cd:aa:c6:5d:80:66:cd:d6:75:2e: 1f:8e:15:5d:22:38:db:7a:63:7d:ba:89:42:31:a3: bc:ab:0b:74:59:51:bd:c0:44:0d:9a:06:3c:f7:47: 9f:92:b9:fd:8a:c5:f4:f6:40:26:81:0c:61:72:3b: a8:10:f4:42:f5:17:11:e5:ba:b6:d1:93:ac:3f:68: 2f:cf:2e:f8:b3:5b:28:70:81:83:ab:a2:f7:00:2f: 8e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F9:15:D0:04:5B:A4:81:C1:CC:E8:71:2B:05:4F:C7:7A:05:96:C0 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:04:42:e8:58:96:88:85:48:47:77:05:ef:61:8b:a2:04:0b: b0:3f:4f:ae:62:e7:b4:75:25:c3:a7:58:0e:f1:55:bb:d8:41: 12:69:f6:8e:49:c1:ba:7c:82:36:32:c7:ca:dd:96:09:93:c9: 57:a1:e6:4c:12:88:39:7f:fc:b8:c5:5d:67:19:90:6e:d8:29: d4:de:f0:a9:d4:b2:ae:b0:f7:98:3b:30:ab:74:ac:4d:70:17: 15:67:7d:44:82:22:0d:4f:00:77:31:18:ee:f8:8f:e8:40:b7: 90:ea:ea:0c:48:80:5f:3a:29:b8:f7:55:3e:10:8b:56:1c:d6: 4e:e6:6d:4f:c5:8d:c1:0a:34:fc:24:6d:3e:86:61:7c:ee:a4: 30:f1:bd:75:0b:fc:58:5d:e6:80:a7:33:0e:31:45:76:0b:a8: 54:38:90:69:dc:38:6a:82:68:04:75:d0:e0:a2:59:6a:2c:0b: 99:99:3f:5d:e5:f4:52:ad:43:d8:6b:50:44:4c:30:98:4a:e9: dd:a0:d3:4d:c2:c3:5e:ce:79:66:ec:f2:99:23:36:b1:96:14: 38:82:c5:58:91:b6:a5:ab:c2:10:0a:ff:8e:1d:8c:46:63:a7: 7d:4c:cc:9c:ae:fe:ed:27:c0:df:9b:3e:46:8d:cb:0b:e2:be: 3b:14:ec:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUwNjE4MjA1NTI2WhcNMjUwNjI1MjA1NTI2WjAYMRYwFAYD VQQDEw02ODUzMjdiZS05YWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbBV+xH4Zx3p0fXvSgjJ5QC3O2BWib56JwZ0zLTUU8VrnW5fwC/rn+TgeHu+ L8vOnIS+4iOQ5AIFOdSGQ9MsptPKKlvfq5yI1rnsJ7xY28yloOBQAecVRbcjU0xw gYIiR4RmGZ/ItW791jcV+T8Equbxou6PInWm1MPWLAGDYEPjb1MiHYiZARwf9x5b LHlGpTH5I0U/vurSrHnDjRkFr1VaxsGbHjUD5M2qxl2AZs3WdS4fjhVdIjjbemN9 uolCMaO8qwt0WVG9wEQNmgY890efkrn9isX09kAmgQxhcjuoEPRC9RcR5bq20ZOs P2gvzy74s1socIGDq6L3AC+OcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHn5FdAE W6SBwczocSsFT8d6BZbAMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9BELoWJaIhUhHdwXvYYuiBAuwP0+uYue0dSXDp1gO8VW72EESafaO ScG6fII2MsfK3ZYJk8lXoeZMEog5f/y4xV1nGZBu2CnU3vCp1LKusPeYOzCrdKxN cBcVZ31EgiINTwB3MRju+I/oQLeQ6uoMSIBfOim491U+EItWHNZO5m1PxY3BCjT8 JG0+hmF87qQw8b11C/xYXeaApzMOMUV2C6hUOJBp3DhqgmgEddDgollqLAuZmT9d 5fRSrUPYa1BETDCYSundoNNNwsNeznlm7PKZIzaxlhQ4gsVYkbalq8IQCv+OHYxG Y6d9TMycrv7tJ8Dfmz5GjcsL4r47FOwr -----END CERTIFICATE-----Generated at Fri Jun 20 10:34:56 2025 by rpki-client