$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft File: s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json) Hash identifier: C2etQ0yyhBO9YUJR6SzBxTUXeU1clVL3FEzNksNOoH8= Subject key identifier: 5B:64:F5:F1:19:E9:8E:8A:55:BE:48:84:3F:A5:E6:B8:B6:66:30:E0 Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D Certificate issuer: /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Certificate serial: 14D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft Manifest number: 14C9 Signing time: Mon 16 Jun 2025 16:53:48 +0000 Manifest this update: Mon 16 Jun 2025 16:53:48 +0000 Manifest next update: Mon 23 Jun 2025 16:53:48 +0000 Files and hashes: 1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: 6Ax2dGb1PmNgC5SvSJzSdHxRroZabtXctnFu5AzfXj8=) 2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: Kpm1VRvUmk2GXeAxfKW1BgX1xl9xSgMJHiJXTqUoDIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5330 (0x14d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Validity Not Before: Jun 16 16:53:48 2025 GMT Not After : Jun 23 16:53:48 2025 GMT Subject: CN=68504c1c-f60c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:79:0c:53:51:52:ac:37:1c:cb:14:0c:38:a9: 45:e0:2a:f5:22:11:d0:fe:1d:4b:e6:b6:cb:32:85: d9:65:52:2d:c1:cd:73:60:4f:6d:8d:a5:bc:d6:ae: da:84:19:eb:e9:6f:b1:7e:b0:b5:57:50:a5:64:e2: f6:d8:2b:8a:de:7a:d3:ee:18:aa:c4:22:97:39:68: 1f:61:d5:f9:93:6a:35:b8:09:a4:11:73:c2:8e:6f: ba:d2:35:e2:30:aa:7f:87:b8:48:63:35:ba:c1:d7: 46:ff:fe:c9:b0:f4:7c:cb:f8:e3:a1:cb:d4:0f:d6: de:e6:4c:b3:9b:af:18:38:2b:fb:07:88:3f:68:e6: 35:b8:ff:70:65:63:75:b6:7c:c8:e1:ea:02:37:e6: c1:c6:2d:af:03:05:36:37:f3:d0:5b:04:0a:fc:c1: 1d:d2:d2:16:e7:8c:74:cd:d0:72:95:91:33:9b:e6: d6:ca:1b:07:eb:b5:23:11:cf:00:00:cf:60:a7:c2: 60:4b:a8:fd:29:33:01:58:22:22:3b:b5:44:39:50: 90:14:77:2b:01:57:3e:98:a5:cf:3e:a4:25:08:f5: 79:01:91:07:b3:92:5b:0c:3c:21:e2:5c:06:ac:da: 4a:6d:a1:0e:05:a7:d1:24:bc:71:10:9f:18:76:5a: f6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:64:F5:F1:19:E9:8E:8A:55:BE:48:84:3F:A5:E6:B8:B6:66:30:E0 X509v3 Authority Key Identifier: keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:2b:8c:b5:d8:a7:60:32:12:b3:35:e1:c3:c5:ca:96:5e:9a: 5f:9b:e4:99:a3:c2:b2:07:ec:2e:cb:f3:24:c3:fc:e2:08:2a: c9:a4:60:24:42:ec:b7:23:83:3a:26:1d:ab:99:ef:d3:0d:8b: e3:fe:c4:b4:5c:04:e6:01:a5:32:88:07:c6:d2:49:69:0f:4d: a1:27:9b:4b:69:b1:47:c3:a0:b9:e3:20:1a:81:f7:e9:cc:0b: a2:05:27:bc:b3:36:9b:47:64:61:6a:c2:8b:82:eb:31:9b:99: 52:35:b9:6c:4c:cf:7d:28:05:5d:92:08:88:03:82:25:6b:c8: a9:30:b6:06:95:69:2e:88:d8:16:17:24:4f:a8:8b:39:92:59: cc:bd:ee:1e:74:ff:5a:e9:39:25:ef:e2:e8:6b:c4:3f:1b:35: e5:dc:65:4d:21:2b:c6:f2:85:57:d7:ba:02:9f:80:64:3a:10: 48:9e:9d:5c:96:57:f4:dc:79:5e:51:8f:9b:0c:84:85:00:34: 17:ec:41:74:3e:83:4c:c4:16:9e:b2:76:fc:da:d3:12:5d:97: 99:b7:9d:4a:f1:60:67:fc:bb:64:76:2e:f8:c3:77:81:93:e8: 72:b2:37:c8:dc:4c:8a:c2:82:fc:72:f3:f1:a6:0e:d9:dd:be: 73:6d:a9:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCOTExMTAvBgNVBAUTKEIzNUE3MkU1NkYwOTAyQzdFMUI4RDgxMkM1RDgzNjU0 MTFEREEzMUQwHhcNMjUwNjE2MTY1MzQ4WhcNMjUwNjIzMTY1MzQ4WjAYMRYwFAYD VQQDEw02ODUwNGMxYy1mNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9nkMU1FSrDccyxQMOKlF4Cr1IhHQ/h1L5rbLMoXZZVItwc1zYE9tjaW81q7a hBnr6W+xfrC1V1ClZOL22CuK3nrT7hiqxCKXOWgfYdX5k2o1uAmkEXPCjm+60jXi MKp/h7hIYzW6wddG//7JsPR8y/jjocvUD9be5kyzm68YOCv7B4g/aOY1uP9wZWN1 tnzI4eoCN+bBxi2vAwU2N/PQWwQK/MEd0tIW54x0zdBylZEzm+bWyhsH67UjEc8A AM9gp8JgS6j9KTMBWCIiO7VEOVCQFHcrAVc+mKXPPqQlCPV5AZEHs5JbDDwh4lwG rNpKbaEOBafRJLxxEJ8Ydlr2wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtk9fEZ 6Y6KVb5IhD+l5ri2ZjDgMB8GA1UdIwQYMBaAFLNacuVvCQLH4bjYEsXYNlQR3aMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI5MS83NjMwNEE3ODVB OTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFzZmh1TmdTeGRnMlZCSGRv eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MxcHk1VzhKQXNmaHVOZ1N4ZGcyVkJIZG94MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI5MS83NjMwNEE3ODVBOTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFz Zmh1TmdTeGRnMlZCSGRveDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgK4y12KdgMhKzNeHDxcqWXppfm+SZo8KyB+wuy/Mkw/ziCCrJpGAk Quy3I4M6Jh2rme/TDYvj/sS0XATmAaUyiAfG0klpD02hJ5tLabFHw6C54yAagffp zAuiBSe8szabR2RhasKLgusxm5lSNblsTM99KAVdkgiIA4Ila8ipMLYGlWkuiNgW FyRPqIs5klnMve4edP9a6Tkl7+Loa8Q/GzXl3GVNISvG8oVX17oCn4BkOhBInp1c llf03HleUY+bDISFADQX7EF0PoNMxBaesnb82tMSXZeZt51K8WBn/Ltkdi74w3eB k+hysjfI3EyKwoL8cvPxpg7Z3b5zbanQ -----END CERTIFICATE-----Generated at Tue Jun 17 04:45:13 2025 by rpki-client