$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: W8gSSmvrq1TEl87iNVRImvNhHXFUJi97gBIch2xzMok= Subject key identifier: B8:43:8B:4E:05:B4:15:F3:5D:2D:AD:7F:FA:40:0B:D6:97:56:16:0C Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01D8 Signing time: Fri 13 Jun 2025 01:47:55 +0000 Manifest this update: Fri 13 Jun 2025 01:47:55 +0000 Manifest next update: Fri 20 Jun 2025 01:47:55 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: umFpA4tTYT28zDdAAVYBq9PJR9Fubyu5Uc+3nvTiZDc=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Jun 13 01:47:55 2025 GMT Not After : Jun 20 01:47:55 2025 GMT Subject: CN=684b834b-622c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:66:c0:a3:69:93:17:a1:ac:a0:aa:6c:43:9e: 93:b3:7e:38:c3:2c:72:bb:54:b2:ce:41:54:2d:b2: e7:e5:46:d2:6b:18:39:0c:6c:b7:80:6a:58:7f:49: cc:85:d4:cc:19:cf:e6:3f:ae:9c:a7:1b:86:59:e4: 34:77:54:bd:24:ff:d1:21:6c:21:ed:8a:9c:a6:cd: f2:8c:1b:cb:da:95:ab:a8:59:f4:d3:e8:bd:a3:45: e6:82:90:05:6f:84:e6:97:fd:fb:8d:52:43:bd:a1: b5:0b:5e:01:eb:c0:e3:b6:ac:71:1b:32:89:6e:cd: 56:02:c9:d6:37:a2:08:6b:06:93:c9:99:9e:9a:99: 42:ba:44:14:89:63:b1:01:1d:20:0a:86:10:cb:8b: c7:91:f7:83:68:9d:df:60:da:5f:26:dc:10:32:68: 64:e6:69:3a:22:9e:ef:cc:7a:9a:15:1b:e5:46:a8: d4:c4:fd:33:11:41:fb:7d:96:b4:4d:bc:a8:be:4a: 8f:2d:c0:6e:fd:6e:b7:59:b4:e7:5c:a6:07:aa:9e: ed:05:3f:13:f3:9f:04:e5:3c:3f:83:ba:64:ff:3c: 45:cd:eb:1d:f4:d6:9c:64:29:69:a1:c3:d0:53:eb: fe:0c:93:72:a6:f6:e0:a0:65:ac:63:ce:31:2a:eb: db:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:43:8B:4E:05:B4:15:F3:5D:2D:AD:7F:FA:40:0B:D6:97:56:16:0C X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:a0:d4:9a:31:25:98:d2:d1:d8:2a:e9:07:66:fe:80:af:92: 94:51:49:ac:e2:fc:87:b7:a4:84:03:06:75:12:2d:63:19:6c: 35:cb:08:72:6f:39:c5:c8:d3:2f:95:c9:4d:0e:1d:2d:42:e4: 3d:59:a8:0e:94:9f:00:4d:64:ae:35:63:60:5f:49:97:13:0e: 3b:ff:dc:6e:0d:9e:64:2c:c2:1d:73:c4:21:14:a9:f1:15:b2: 50:4d:8b:33:86:a2:e7:ea:d6:10:55:fc:03:7d:8b:fa:1a:92: 92:b1:08:fd:87:84:e2:f6:89:dc:49:10:c5:70:35:0b:ca:49: 3a:dc:dd:54:81:73:40:0f:db:bb:80:53:f3:e6:e0:3e:1f:9c: 09:07:e5:ee:44:82:f3:6f:60:96:5a:23:a4:58:5d:fa:97:b8: 0b:e8:44:f4:c3:b5:02:13:68:62:91:e6:01:39:00:21:8c:24: 50:b6:d7:26:89:c9:21:c3:3d:b9:5b:59:a1:5c:ff:4f:62:73: fa:b5:4f:b1:28:c5:45:f6:2f:d7:4d:48:2b:9c:95:66:30:a3: d8:14:2b:61:e1:8b:e9:da:3c:94:0e:71:77:70:bb:f0:2b:54: 30:2f:6b:66:fd:48:94:2b:ed:d3:5b:0d:bb:d2:01:41:3f:3a: c0:bf:32:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwNjEzMDE0NzU1WhcNMjUwNjIwMDE0NzU1WjAYMRYwFAYD VQQDEw02ODRiODM0Yi02MjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGbAo2mTF6GsoKpsQ56Ts344wyxyu1SyzkFULbLn5UbSaxg5DGy3gGpYf0nM hdTMGc/mP66cpxuGWeQ0d1S9JP/RIWwh7Yqcps3yjBvL2pWrqFn00+i9o0XmgpAF b4Tml/37jVJDvaG1C14B68DjtqxxGzKJbs1WAsnWN6IIawaTyZmemplCukQUiWOx AR0gCoYQy4vHkfeDaJ3fYNpfJtwQMmhk5mk6Ip7vzHqaFRvlRqjUxP0zEUH7fZa0 TbyovkqPLcBu/W63WbTnXKYHqp7tBT8T858E5Tw/g7pk/zxFzesd9NacZClpocPQ U+v+DJNypvbgoGWsY84xKuvbxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhDi04F tBXzXS2tf/pAC9aXVhYMMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKoNSaMSWY0tHYKukHZv6Ar5KUUUms4vyHt6SEAwZ1Ei1jGWw1ywhy bznFyNMvlclNDh0tQuQ9WagOlJ8ATWSuNWNgX0mXEw47/9xuDZ5kLMIdc8QhFKnx FbJQTYszhqLn6tYQVfwDfYv6GpKSsQj9h4Ti9oncSRDFcDULykk63N1UgXNAD9u7 gFPz5uA+H5wJB+XuRILzb2CWWiOkWF36l7gL6ET0w7UCE2hikeYBOQAhjCRQttcm ickhwz25W1mhXP9PYnP6tU+xKMVF9i/XTUgrnJVmMKPYFCth4Yvp2jyUDnF3cLvw K1QwL2tm/UiUK+3TWw270gFBPzrAvzKz -----END CERTIFICATE-----Generated at Sat Jun 14 19:16:47 2025 by rpki-client