$ rpki-client -vvf rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft File: 9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft (raw, json) Hash identifier: XfpHAKtTr7lpbSITV9dz/9IR8ITzoylc0TKA7uYrswg= Subject key identifier: 61:3E:EE:97:F5:59:97:E9:8E:45:01:B6:61:65:F2:D8:77:AF:69:F6 Authority key identifier: F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74 Certificate issuer: /CN=A9153049/serialNumber=F62D2A685DCEC97E1583902A8EF9EE5170782074 Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft Manifest number: 0C37 Signing time: Thu 12 Jun 2025 18:24:00 +0000 Manifest this update: Thu 12 Jun 2025 18:23:59 +0000 Manifest next update: Thu 19 Jun 2025 18:23:59 +0000 Files and hashes: 1: 9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl (hash: 8FLmfk6FJFvo299ebmLaa9PFsb9W7iMXz+CTPhVHv7U=) 2: 4D6224A80C4A11EAABCEF428C4F9AE02.roa (hash: LoUT2MaD5/F/EBumNr9K+cDj9oFe1lrYI+mckDlhBHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153049, serialNumber=F62D2A685DCEC97E1583902A8EF9EE5170782074 Validity Not Before: Jun 12 18:23:59 2025 GMT Not After : Jun 19 18:23:59 2025 GMT Subject: CN=684b1b3f-91b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:35:f9:95:34:a2:74:9d:ad:6c:c8:19:7d:51: 96:0e:d0:31:59:fd:64:4c:0c:f6:b6:dc:ee:62:b2: c3:4b:7c:98:07:b7:ed:18:1f:20:be:45:ed:0e:2c: a7:07:7d:90:c9:4b:85:5d:e5:fe:15:df:30:9b:4f: 78:ba:28:78:94:e8:61:94:d1:22:71:9a:d0:89:f6: a2:ac:5d:58:fc:e2:d4:d6:53:ba:3b:e6:7b:db:41: ec:a6:d3:5f:e9:34:60:54:16:ae:60:ed:15:31:e7: 1c:1f:cf:8c:f6:9e:5d:15:28:df:62:8a:02:d0:a1: 9b:73:a5:4c:33:b7:2e:9f:dd:de:30:b5:e1:5f:1c: 68:b6:d7:f8:dd:78:b2:4d:1e:cc:33:df:f1:f6:05: f9:e5:23:88:51:17:fe:b3:4b:81:b3:12:af:a9:d6: 9d:3c:46:77:78:67:2c:bd:9e:46:2b:92:9b:42:72: 61:d9:14:c9:1a:a1:56:7c:af:fc:d1:b6:bf:ed:f1: 1f:99:04:17:7c:64:a4:de:13:e6:4e:4e:bc:49:20: 30:7f:d2:df:f2:c0:49:08:6f:9f:fa:c1:74:06:29: 9b:65:9f:8c:e1:9a:04:03:b9:4f:10:6a:80:41:f9: 85:28:1d:93:c2:24:6d:e8:37:88:3e:7b:d9:36:54: b1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3E:EE:97:F5:59:97:E9:8E:45:01:B6:61:65:F2:D8:77:AF:69:F6 X509v3 Authority Key Identifier: keyid:F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:b3:24:5e:6e:96:27:3f:f6:ff:c3:5f:94:93:a8:b3:4d:bd: c0:53:4a:04:8b:2b:7d:1f:1f:7a:98:f7:54:53:88:2b:63:fe: 66:29:08:9d:93:5d:bf:ff:ff:44:98:27:92:fc:88:e3:15:84: d8:42:b6:0e:e1:23:d0:60:c2:45:43:b6:e3:b0:bf:db:49:3a: e9:db:8e:8f:b2:80:ed:55:3b:15:0d:2a:dd:6e:01:a5:e7:5b: 80:4e:eb:c2:8c:fd:10:fa:3f:92:be:82:a0:fe:28:01:7f:75: 6d:1f:55:2b:c1:fe:98:64:53:5b:f7:a8:78:2c:3a:6b:32:2b: b6:ea:84:0c:bd:5a:05:84:cd:26:ec:39:2e:ec:b9:06:ca:44: d7:66:0b:00:8d:99:1b:1d:f9:bc:60:47:48:98:6f:ea:90:91: 78:e9:59:45:35:68:9a:f0:d7:d2:41:ff:58:a0:b3:50:62:f0: 61:71:2a:7f:c9:49:9c:88:ed:0b:2d:4c:a6:17:2b:48:48:43: ff:a3:4e:87:f9:9c:7b:d3:8d:ca:2d:1a:14:8c:2a:f6:0f:d4: f5:93:0c:67:aa:66:0d:26:98:c4:e0:2d:f0:9c:e2:c8:db:f1: 1b:55:48:db:bd:3e:85:de:ba:d7:fd:f9:dd:9c:47:b9:3f:5e: 84:cb:2c:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMwNDkxMTAvBgNVBAUTKEY2MkQyQTY4NURDRUM5N0UxNTgzOTAyQThFRjlFRTUx NzA3ODIwNzQwHhcNMjUwNjEyMTgyMzU5WhcNMjUwNjE5MTgyMzU5WjAYMRYwFAYD VQQDEw02ODRiMWIzZi05MWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DX5lTSidJ2tbMgZfVGWDtAxWf1kTAz2ttzuYrLDS3yYB7ftGB8gvkXtDiyn B32QyUuFXeX+Fd8wm094uih4lOhhlNEicZrQifairF1Y/OLU1lO6O+Z720HsptNf 6TRgVBauYO0VMeccH8+M9p5dFSjfYooC0KGbc6VMM7cun93eMLXhXxxottf43Xiy TR7MM9/x9gX55SOIURf+s0uBsxKvqdadPEZ3eGcsvZ5GK5KbQnJh2RTJGqFWfK/8 0ba/7fEfmQQXfGSk3hPmTk68SSAwf9Lf8sBJCG+f+sF0BimbZZ+M4ZoEA7lPEGqA QfmFKB2TwiRt6DeIPnvZNlSxkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGE+7pf1 WZfpjkUBtmFl8th3r2n2MB8GA1UdIwQYMBaAFPYtKmhdzsl+FYOQKo757lFweCB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzA0OS9BREFDNTI4MjA5 RDYxMUVBOUVCMzM4MUNDNEY5QUUwMi85aTBxYUYzT3lYNFZnNUFxanZudVVYQjRJ SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlpMHFhRjNPeVg0Vmc1QXFqdm51VVhCNElIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzA0OS9BREFDNTI4MjA5RDYxMUVBOUVCMzM4MUNDNEY5QUUwMi85aTBxYUYzT3lY NFZnNUFxanZudVVYQjRJSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQsyRebpYnP/b/w1+Uk6izTb3AU0oEiyt9Hx96mPdUU4grY/5mKQid k12///9EmCeS/IjjFYTYQrYO4SPQYMJFQ7bjsL/bSTrp246PsoDtVTsVDSrdbgGl 51uATuvCjP0Q+j+SvoKg/igBf3VtH1Urwf6YZFNb96h4LDprMiu26oQMvVoFhM0m 7Dku7LkGykTXZgsAjZkbHfm8YEdImG/qkJF46VlFNWia8NfSQf9YoLNQYvBhcSp/ yUmciO0LLUymFytISEP/o06H+Zx7043KLRoUjCr2D9T1kwxnqmYNJpjE4C3wnOLI 2/EbVUjbvT6F3rrX/fndnEe5P16EyyxL -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:41 2025 by rpki-client