$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft File: 0ba-fNUVRYE-wxdmgHrN2YepD98.mft (raw, json) Hash identifier: sNxufCvHqAqn70xUbZtpR4/HPuUVeAvi1P2MfNot0f8= Subject key identifier: D1:89:BB:D5:41:E2:06:66:86:F2:02:C1:7C:F3:2C:43:B7:F4:9C:EA Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft Manifest number: 08E9 Signing time: Mon 16 Jun 2025 20:13:36 +0000 Manifest this update: Mon 16 Jun 2025 20:13:36 +0000 Manifest next update: Mon 23 Jun 2025 20:13:36 +0000 Files and hashes: 1: 0ba-fNUVRYE-wxdmgHrN2YepD98.crl (hash: CQ7c7OjfN6+JFAY/qzgvGT7YIW0LLM/ifeMzVulK9/c=) 2: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (hash: bj4egIAAlTEUd+3GyfnPFN1nOaWoeA00wwzQy3Jloew=) 3: F4757B1018C811EB94A5327AC4F9AE02.roa (hash: j+7FuDdUw+7PzuykOYS3riW81hh3FFiLyNobRrPETRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F, serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Jun 16 20:13:36 2025 GMT Not After : Jun 23 20:13:36 2025 GMT Subject: CN=68507af0-f605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d2:49:b1:1d:07:2f:5a:32:36:ae:87:ae:b8: 63:ae:cc:8d:01:df:08:64:e3:aa:49:88:6f:46:37: 47:3f:4f:76:03:d6:66:e6:a1:81:45:3a:9a:57:42: 25:f9:70:1f:a9:85:93:e6:60:eb:f7:07:75:55:f1: 23:44:33:b4:d9:78:79:94:76:98:38:8d:d0:95:a9: 98:70:40:2a:5d:35:c0:bb:4a:9f:09:4b:31:a1:ec: d7:0e:30:cb:81:5d:c6:be:19:a3:f8:c1:0d:4c:c9: 2b:08:75:75:c9:16:47:9a:18:b4:61:24:c1:f9:f2: 52:eb:b0:ec:74:96:ff:f2:1d:9d:09:13:c5:b3:0f: de:99:45:33:8f:c5:c6:56:2f:4c:48:51:78:8f:5c: 9d:2c:73:77:e3:8a:50:5d:40:44:a9:0b:db:da:eb: 86:52:2d:4e:77:5f:77:ef:e6:20:ea:3c:32:03:db: 1c:37:f5:75:53:d3:bd:86:de:b2:d4:30:8e:86:38: 0e:78:45:6e:ba:97:c4:19:0f:02:58:59:59:ec:98: 69:82:20:6f:20:9b:33:80:25:e0:b8:61:e8:46:4e: 15:28:07:d1:5e:50:df:ff:cc:27:c5:00:a1:5b:67: 4f:a7:60:ea:07:a9:e2:1f:64:de:e1:11:1c:cc:7d: 3a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:89:BB:D5:41:E2:06:66:86:F2:02:C1:7C:F3:2C:43:B7:F4:9C:EA X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:bf:cb:cb:5a:a0:2c:b0:71:15:cd:d9:90:d4:b0:32:00:0d: 86:17:14:da:73:9f:c3:c0:ac:62:56:1f:a7:e9:a6:43:73:d1: 85:69:61:5c:b3:63:97:00:95:3c:94:e3:d4:48:e6:e2:94:7e: c4:5f:9f:0f:e9:66:23:97:46:22:a3:24:57:5a:a5:a3:20:7d: 74:bf:e2:f5:51:7f:84:87:95:b9:77:03:59:b0:5f:f3:72:df: 0e:de:e7:1d:3c:61:c1:91:1c:32:5d:cc:8b:7e:25:00:32:e1: a5:90:c1:13:ee:80:f5:c9:73:b5:d5:47:ad:45:61:a5:a7:58: 69:7c:51:27:1b:20:be:ab:ef:6c:11:6f:2f:df:20:11:30:73: 11:8c:ae:be:02:42:af:e8:69:f7:ae:a3:60:e8:04:da:30:4a: d4:ec:08:14:bc:50:c7:17:54:ee:ac:10:ef:8f:2c:0c:18:2b: 63:c4:4b:84:9a:e3:24:83:95:54:48:9b:01:28:c7:e1:91:c9: 4b:c4:56:de:03:f3:3d:0a:86:0a:26:2b:cf:90:fd:24:43:f3: ac:0e:09:dc:44:82:0e:b4:63:72:b5:fd:1d:92:76:b0:32:32: 0e:0e:ac:ca:3d:0c:f5:95:64:90:d7:5d:51:93:a0:ae:a0:c0: 3d:f4:36:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjUwNjE2MjAxMzM2WhcNMjUwNjIzMjAxMzM2WjAYMRYwFAYD VQQDEw02ODUwN2FmMC1mNjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutJJsR0HL1oyNq6HrrhjrsyNAd8IZOOqSYhvRjdHP092A9Zm5qGBRTqaV0Il +XAfqYWT5mDr9wd1VfEjRDO02Xh5lHaYOI3QlamYcEAqXTXAu0qfCUsxoezXDjDL gV3Gvhmj+MENTMkrCHV1yRZHmhi0YSTB+fJS67DsdJb/8h2dCRPFsw/emUUzj8XG Vi9MSFF4j1ydLHN344pQXUBEqQvb2uuGUi1Od1937+Yg6jwyA9scN/V1U9O9ht6y 1DCOhjgOeEVuupfEGQ8CWFlZ7JhpgiBvIJszgCXguGHoRk4VKAfRXlDf/8wnxQCh W2dPp2DqB6niH2Te4REczH06WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGJu9VB 4gZmhvICwXzzLEO39JzqMB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDE4Ri83NUI5MEQyNEFGQjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZ RS13eGRtZ0hyTjJZZXBEOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTv8vLWqAssHEVzdmQ1LAyAA2GFxTac5/DwKxiVh+n6aZDc9GFaWFc s2OXAJU8lOPUSObilH7EX58P6WYjl0YioyRXWqWjIH10v+L1UX+Eh5W5dwNZsF/z ct8O3ucdPGHBkRwyXcyLfiUAMuGlkMET7oD1yXO11UetRWGlp1hpfFEnGyC+q+9s EW8v3yARMHMRjK6+AkKv6Gn3rqNg6ATaMErU7AgUvFDHF1TurBDvjywMGCtjxEuE muMkg5VUSJsBKMfhkclLxFbeA/M9CoYKJivPkP0kQ/OsDgncRIIOtGNytf0dknaw MjIODqzKPQz1lWSQ111Rk6CuoMA99DZf -----END CERTIFICATE-----Generated at Tue Jun 17 23:28:31 2025 by rpki-client