$ rpki-client -vvf rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft File: 9fHi3rMlVisihf-LXeJd8srfdwc.mft (raw, json) Hash identifier: 6UvcKc9Ew1rud9SD6efHtO5+bDiL+iz62SQElsXLIC0= Subject key identifier: 08:49:C8:DB:50:83:D6:76:DB:9E:2C:B7:55:4E:12:B0:18:74:67:6E Authority key identifier: F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 Certificate issuer: /CN=A915B4B5/serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft Manifest number: DF Signing time: Sun 15 Jun 2025 04:37:08 +0000 Manifest this update: Sun 15 Jun 2025 04:37:07 +0000 Manifest next update: Sun 22 Jun 2025 04:37:07 +0000 Files and hashes: 1: 9fHi3rMlVisihf-LXeJd8srfdwc.crl (hash: 9p0q23HtiNnI9scm5Wz63R7xHbWLNJ8VJzAm0AHMdzo=) 2: E0207030F13611EE869F9E34C4F9AE02.roa (hash: 1cTaBvBAhxFneEeGlAFuRr/tcaFQd3vN8aAkRfuybSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B4B5, serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Validity Not Before: Jun 15 04:37:07 2025 GMT Not After : Jun 22 04:37:07 2025 GMT Subject: CN=684e4df3-8e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:50:27:55:24:fd:20:94:8b:1a:a6:e5:b8:4d: 56:16:5f:8d:d9:58:e0:04:0a:d5:22:98:84:c8:26: 69:58:51:e2:47:d7:c9:a6:6f:e5:b8:fe:b5:ef:b3: f4:88:e0:17:2e:da:28:ef:8d:0e:65:24:63:c2:9e: 2a:26:d9:ab:f8:62:e1:b8:53:3e:7d:b9:a9:f3:fc: 0e:22:41:73:08:26:2e:69:e4:65:eb:01:52:17:b6: 07:4b:7b:af:21:a0:f0:00:9f:e5:44:1e:23:96:87: 14:39:c4:0f:a6:eb:b7:cb:ad:88:d9:07:9e:9f:22: be:cd:79:45:3c:69:44:b6:90:ce:69:dd:4c:48:4b: 88:7d:69:f5:60:ae:db:3b:8f:93:04:94:aa:fe:4a: 7a:19:00:bc:d5:18:fd:96:45:94:e3:3c:8a:f1:15: ae:e5:fb:9c:b6:a3:b5:4d:3b:70:c3:a0:f4:f6:17: 93:62:2d:4e:a9:b6:16:91:e0:68:ec:34:04:26:fb: 2a:fd:e9:4a:37:b1:ef:05:06:11:df:49:e2:cb:cf: aa:d7:83:cd:2d:d0:42:ab:ea:e0:d3:4e:c9:2c:bb: 3a:59:ae:29:97:c7:c0:e6:e0:5e:a3:c0:82:22:74: c7:2d:04:9b:3e:6e:6d:65:34:0a:44:67:10:b6:21: f1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:49:C8:DB:50:83:D6:76:DB:9E:2C:B7:55:4E:12:B0:18:74:67:6E X509v3 Authority Key Identifier: keyid:F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:8f:a4:3d:ca:11:25:3d:fd:e2:37:59:8a:3a:44:37:ff:1c: af:7b:21:c8:dd:7d:1a:6f:4a:97:34:3d:b6:bb:6c:15:e3:df: aa:d5:06:3e:b5:fa:4b:4c:8f:27:ec:9e:2a:e6:a0:b8:c4:e7: ce:f7:59:b7:e2:38:15:6b:55:1c:6a:2b:ef:96:77:3f:5d:b8: cf:21:20:85:f3:d6:78:8b:d8:f9:bf:56:74:49:4a:68:b2:1d: 1a:9e:48:25:91:e3:7b:f5:ba:cb:73:2e:7d:1e:79:a8:10:9a: d6:fb:d9:42:69:0b:6c:49:7a:28:8e:b4:32:48:1d:c2:1f:cc: dd:ec:2f:55:31:49:e4:00:f6:a5:46:b4:bf:78:3f:b2:e1:99: fd:ad:bc:13:4b:9f:bb:d2:75:99:b7:e6:b6:e8:14:46:2a:03: ac:e0:6f:11:95:d4:52:51:4e:b3:33:38:a7:4b:7c:47:cb:83: 11:9a:ff:12:c9:73:60:98:dd:c9:c1:6f:f6:1a:d5:4f:f0:ec: f1:e1:b4:43:e7:c8:2c:de:eb:ff:31:39:20:23:56:e1:44:8e: 28:a3:57:ba:5c:c3:ad:49:9d:1c:b4:72:00:61:9b:29:bd:f0: 26:1c:aa:88:7a:4e:ec:08:7e:1f:64:29:ce:7c:bc:d4:e2:c1: a9:73:c9:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI0QjUxMTAvBgNVBAUTKEY1RjFFMkRFQjMyNTU2MkIyMjg1RkY4QjVERTI1REYy Q0FERjc3MDcwHhcNMjUwNjE1MDQzNzA3WhcNMjUwNjIyMDQzNzA3WjAYMRYwFAYD VQQDEw02ODRlNGRmMy04ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6VAnVST9IJSLGqbluE1WFl+N2VjgBArVIpiEyCZpWFHiR9fJpm/luP6177P0 iOAXLtoo740OZSRjwp4qJtmr+GLhuFM+fbmp8/wOIkFzCCYuaeRl6wFSF7YHS3uv IaDwAJ/lRB4jlocUOcQPpuu3y62I2QeenyK+zXlFPGlEtpDOad1MSEuIfWn1YK7b O4+TBJSq/kp6GQC81Rj9lkWU4zyK8RWu5fuctqO1TTtww6D09heTYi1OqbYWkeBo 7DQEJvsq/elKN7HvBQYR30niy8+q14PNLdBCq+rg007JLLs6Wa4pl8fA5uBeo8CC InTHLQSbPm5tZTQKRGcQtiHxTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhJyNtQ g9Z2254st1VOErAYdGduMB8GA1UdIwQYMBaAFPXx4t6zJVYrIoX/i13iXfLK33cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjRCNS80MENFOUYyQUYx MzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZpc2loZi1MWGVKZDhzcmZk d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlmSGkzck1sVmlzaWhmLUxYZUpkOHNyZmR3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjRCNS80MENFOUYyQUYxMzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZp c2loZi1MWGVKZDhzcmZkd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjj6Q9yhElPf3iN1mKOkQ3/xyveyHI3X0ab0qXND22u2wV49+q1QY+ tfpLTI8n7J4q5qC4xOfO91m34jgVa1Ucaivvlnc/XbjPISCF89Z4i9j5v1Z0SUpo sh0ankglkeN79brLcy59HnmoEJrW+9lCaQtsSXoojrQySB3CH8zd7C9VMUnkAPal RrS/eD+y4Zn9rbwTS5+70nWZt+a26BRGKgOs4G8RldRSUU6zMzinS3xHy4MRmv8S yXNgmN3JwW/2GtVP8Ozx4bRD58gs3uv/MTkgI1bhRI4oo1e6XMOtSZ0ctHIAYZsp vfAmHKqIek7sCH4fZCnOfLzU4sGpc8lp -----END CERTIFICATE-----Generated at Mon Jun 16 04:15:25 2025 by rpki-client