$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: nYhnubNnRR+HSlIvvyAt2OG17wMMwPEc4nOfFFDvuSs= Subject key identifier: D5:E5:8B:4D:EF:40:8E:BB:4A:99:E2:5F:7A:6B:9F:4F:67:E9:1C:28 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0395 Signing time: Thu 19 Jun 2025 00:43:35 +0000 Manifest this update: Thu 19 Jun 2025 00:43:35 +0000 Manifest next update: Thu 26 Jun 2025 00:43:35 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: e463QEZyGg51Wbvou9VrzDXkwYEdz60tRS6TteHsdII=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Jun 19 00:43:35 2025 GMT Not After : Jun 26 00:43:35 2025 GMT Subject: CN=68535d37-1c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ac:45:b9:d3:7b:2b:ee:00:8b:a3:6f:cf:bb: 95:5f:4b:fb:de:dc:91:f7:66:1f:ac:f9:9c:b0:c1: b7:93:4a:9e:5b:db:c3:0c:0e:d4:be:2e:f4:9b:4e: a7:8c:a4:ae:a2:28:e1:2a:65:00:4e:ae:21:c0:c2: 43:9d:57:13:3c:6c:94:1d:9e:cd:94:d6:33:59:9b: 82:c1:90:0e:64:5a:81:5e:eb:bc:5f:08:41:9f:2c: e6:d3:2f:6c:f6:0c:5a:77:36:82:59:b9:20:75:c7: 4f:3b:a2:ba:ab:b0:eb:45:46:b9:d2:03:08:0f:38: 49:1a:93:b2:25:a9:f4:60:e5:fd:b3:df:32:3a:68: 37:0e:08:85:de:cc:7f:74:77:6b:11:93:5e:b6:fe: 4b:17:85:ca:7f:02:f5:3b:d3:50:48:65:85:e8:ae: e7:ff:90:6a:29:73:90:2c:b7:8e:b1:be:34:c0:21: 71:86:65:da:8c:8e:8e:17:59:86:94:9f:7c:fc:96: b9:1f:3c:a9:bf:86:54:14:f1:39:77:b9:4a:7b:f0: d3:bb:aa:66:b4:88:35:a7:a4:c2:10:01:a0:99:73: 7d:a4:aa:0f:f5:c0:f2:b6:c7:78:05:e2:06:49:e7: d3:73:88:01:de:d4:e6:f0:0e:e0:4e:dd:9a:9c:a6: 4d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E5:8B:4D:EF:40:8E:BB:4A:99:E2:5F:7A:6B:9F:4F:67:E9:1C:28 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:cf:33:84:4f:f4:c1:6f:68:3b:22:81:a0:5c:ee:c3:0f:76: 3e:f4:af:1c:d8:c6:f4:b0:41:be:65:c5:05:2e:f5:2d:e5:11: 36:bf:c1:ce:e6:03:8f:e9:74:1d:46:c6:2c:07:3d:8c:b2:12: 19:c6:ad:99:2f:28:7d:02:2d:7a:ea:6e:3f:cf:98:77:28:89: ce:82:ec:e4:8b:e1:1b:d7:5b:c8:c0:a8:ee:23:39:60:ea:d0: eb:dd:a0:35:b1:76:e3:ee:39:fd:00:02:1d:50:5c:25:0d:3b: f9:05:ff:6b:a0:c8:0f:0f:e6:43:79:99:76:c8:6a:3c:4e:97: c5:62:d6:37:9d:12:4e:75:3e:a6:15:ab:f3:62:72:57:cc:63: 72:9b:fe:e7:77:a3:72:d8:a5:e0:c3:ed:3b:ac:1a:21:34:ab: fb:bd:3b:cc:39:d3:58:84:4a:dd:20:05:e4:c6:f1:a1:68:fe: 24:fb:9c:e5:76:0f:25:85:ca:03:eb:4b:24:ec:df:74:fe:6d: 81:46:90:80:3e:31:52:ed:ce:77:2d:af:ae:f3:3d:44:54:a5: e1:75:b5:f6:4c:28:da:a2:b3:f6:27:8b:2d:97:99:11:88:3e: 00:fa:a9:b8:5c:ce:39:31:96:14:7f:10:dd:1d:2c:56:96:38: 53:1f:80:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUwNjE5MDA0MzM1WhcNMjUwNjI2MDA0MzM1WjAYMRYwFAYD VQQDEw02ODUzNWQzNy0xYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6xFudN7K+4Ai6Nvz7uVX0v73tyR92YfrPmcsMG3k0qeW9vDDA7Uvi70m06n jKSuoijhKmUATq4hwMJDnVcTPGyUHZ7NlNYzWZuCwZAOZFqBXuu8XwhBnyzm0y9s 9gxadzaCWbkgdcdPO6K6q7DrRUa50gMIDzhJGpOyJan0YOX9s98yOmg3DgiF3sx/ dHdrEZNetv5LF4XKfwL1O9NQSGWF6K7n/5BqKXOQLLeOsb40wCFxhmXajI6OF1mG lJ98/Ja5Hzypv4ZUFPE5d7lKe/DTu6pmtIg1p6TCEAGgmXN9pKoP9cDytsd4BeIG SefTc4gB3tTm8A7gTt2anKZNnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXli03v QI67SpniX3prn09n6RwoMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClzzOET/TBb2g7IoGgXO7DD3Y+9K8c2Mb0sEG+ZcUFLvUt5RE2v8HO 5gOP6XQdRsYsBz2MshIZxq2ZLyh9Ai166m4/z5h3KInOguzki+Eb11vIwKjuIzlg 6tDr3aA1sXbj7jn9AAIdUFwlDTv5Bf9roMgPD+ZDeZl2yGo8TpfFYtY3nRJOdT6m FavzYnJXzGNym/7nd6Ny2KXgw+07rBohNKv7vTvMOdNYhErdIAXkxvGhaP4k+5zl dg8lhcoD60sk7N90/m2BRpCAPjFS7c53La+u8z1EVKXhdbX2TCjaorP2J4stl5kR iD4A+qm4XM45MZYUfxDdHSxWljhTH4B3 -----END CERTIFICATE-----Generated at Fri Jun 20 21:39:23 2025 by rpki-client