$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: NhsBNOcyNKHtJiYfjN0SzFZbS/a7EwIU04P+0kfGT3A= Subject key identifier: 21:D5:8E:89:93:A4:23:AC:98:FD:CF:71:61:6B:9D:8C:D3:CD:45:1D Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 072B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 071E Signing time: Wed 18 Jun 2025 21:44:26 +0000 Manifest this update: Wed 18 Jun 2025 21:44:26 +0000 Manifest next update: Wed 25 Jun 2025 21:44:26 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: ZTUzLRIGoqo+/VFKSuhBDdCkxmDZkOHiaDWpt6+wfws=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: 2jsCymQavrx92Kq4v6h75mDYqdyK8XpnNBvpUzJpvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1835 (0x72b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Jun 18 21:44:26 2025 GMT Not After : Jun 25 21:44:26 2025 GMT Subject: CN=6853333a-003d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:00:a0:52:a5:60:46:1b:ec:0d:ff:09:1a:71: 85:49:1f:48:e6:c8:22:35:f1:b2:b6:12:00:7a:1d: 57:25:48:bb:59:eb:cd:67:60:c0:a0:c6:95:3b:54: 84:45:9e:0a:2d:47:4b:08:21:03:3f:70:a0:b2:3e: b0:d5:b2:58:25:98:b3:31:b9:e5:ca:eb:9b:65:e2: a8:fb:2b:d3:cd:02:7e:c8:e0:5a:6a:3d:ca:5c:89: 78:78:2b:80:95:d2:5b:eb:34:59:49:52:a8:8c:3f: 93:a7:04:e6:8a:2d:03:13:a7:c5:39:d0:64:eb:a2: f6:08:9a:77:63:e4:87:d0:e9:6a:30:83:4d:25:00: 42:c6:ef:42:f9:15:64:5f:80:af:c1:1d:a5:05:af: c8:96:15:5a:b8:20:47:f2:2f:52:ea:2d:16:b4:02: 18:f4:45:79:fb:1d:ce:73:fe:04:3e:00:a1:07:d2: 82:11:95:e0:7d:ac:91:68:93:8a:f2:90:91:a2:86: be:f3:41:54:2e:cd:c8:32:26:fe:47:28:57:4e:ce: 78:18:13:18:19:cf:e6:77:ad:e3:c1:24:4d:16:30: d3:3a:c9:3e:1a:f3:d8:d1:1a:95:02:de:e9:d7:89: 9f:d4:4a:19:80:4f:91:8a:df:52:3a:f0:e0:30:14: 5a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D5:8E:89:93:A4:23:AC:98:FD:CF:71:61:6B:9D:8C:D3:CD:45:1D X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:5b:92:4d:f1:00:bf:c8:7f:07:53:a6:7a:c5:7f:2a:14:5f: 4c:df:e7:78:d2:40:b2:e1:d2:ac:26:a0:f2:30:e9:ec:2d:ff: 06:43:5d:de:4f:ac:b0:84:d0:96:d3:38:0f:f5:7f:0a:48:43: 58:27:d2:8f:20:f1:04:78:ee:63:0d:60:25:f1:7a:d9:3e:96: 86:76:87:d6:81:8f:64:da:2c:a0:dd:23:fc:6d:49:95:57:44: 99:3b:9f:6a:a6:63:84:61:17:23:c0:09:c6:cc:ad:f9:f8:a1: 31:78:08:e9:eb:05:ed:c5:f9:4e:3f:1d:cd:81:93:a7:72:02: 6b:40:94:19:0b:83:18:df:a6:8b:55:2c:c6:81:ab:0a:1f:87: 6e:8b:41:03:5a:7f:36:6b:a0:cd:56:ac:af:4b:45:2f:49:64: 2e:44:cc:58:ae:3d:bd:86:cc:22:f9:6b:41:9f:52:31:92:5b: eb:af:b8:6d:07:c6:5d:dc:e6:30:4f:f3:04:e7:52:df:68:73: fc:0f:04:4b:59:de:a4:f3:7e:e4:4f:93:d1:d6:bb:60:cf:34: b9:d8:60:6d:c3:db:ee:f6:77:d1:ee:88:d2:63:38:c3:a2:1e: aa:99:75:07:27:2c:8a:f4:1b:11:eb:39:c1:65:bd:27:56:b2: 58:0c:55:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjUwNjE4MjE0NDI2WhcNMjUwNjI1MjE0NDI2WjAYMRYwFAYD VQQDEw02ODUzMzMzYS0wMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwCgUqVgRhvsDf8JGnGFSR9I5sgiNfGythIAeh1XJUi7WevNZ2DAoMaVO1SE RZ4KLUdLCCEDP3Cgsj6w1bJYJZizMbnlyuubZeKo+yvTzQJ+yOBaaj3KXIl4eCuA ldJb6zRZSVKojD+TpwTmii0DE6fFOdBk66L2CJp3Y+SH0OlqMINNJQBCxu9C+RVk X4CvwR2lBa/IlhVauCBH8i9S6i0WtAIY9EV5+x3Oc/4EPgChB9KCEZXgfayRaJOK 8pCRooa+80FULs3IMib+RyhXTs54GBMYGc/md63jwSRNFjDTOsk+GvPY0RqVAt7p 14mf1EoZgE+Rit9SOvDgMBRaqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHVjomT pCOsmP3PcWFrnYzTzUUdMB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOW5JN8QC/yH8HU6Z6xX8qFF9M3+d40kCy4dKsJqDyMOnsLf8GQ13e T6ywhNCW0zgP9X8KSENYJ9KPIPEEeO5jDWAl8XrZPpaGdofWgY9k2iyg3SP8bUmV V0SZO59qpmOEYRcjwAnGzK35+KExeAjp6wXtxflOPx3NgZOncgJrQJQZC4MY36aL VSzGgasKH4dui0EDWn82a6DNVqyvS0UvSWQuRMxYrj29hswi+WtBn1Ixklvrr7ht B8Zd3OYwT/ME51LfaHP8DwRLWd6k837kT5PR1rtgzzS52GBtw9vu9nfR7ojSYzjD oh6qmXUHJyyK9BsR6znBZb0nVrJYDFVk -----END CERTIFICATE-----Generated at Fri Jun 20 06:37:44 2025 by rpki-client