$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft File: e9PkPRNOUjXpdgPOi6lIa2KpseY.mft (raw, json) Hash identifier: VhH9pnFOWPA7xa5ggnj0jSRmfCI8qaAXqFLU9+WIym8= Subject key identifier: EA:31:1E:F6:65:5B:97:38:31:72:61:87:65:1A:BF:DE:CC:8C:D0:B0 Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft Manifest number: 0322 Signing time: Thu 19 Jun 2025 01:06:10 +0000 Manifest this update: Thu 19 Jun 2025 01:06:10 +0000 Manifest next update: Thu 26 Jun 2025 01:06:10 +0000 Files and hashes: 1: e9PkPRNOUjXpdgPOi6lIa2KpseY.crl (hash: 21cDwnJ1RVULoJFK1ds7tFMfCKmJ+Ng9qCFI40jqWl8=) 2: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (hash: 7ge7oc+Q12aZ6z9y4wrsw9dW7SCxd3kpwR7gaglsC78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631, serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: Jun 19 01:06:10 2025 GMT Not After : Jun 26 01:06:10 2025 GMT Subject: CN=68536282-4cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:04:6f:5b:ce:48:5e:51:c8:88:1e:30:fc:59: a9:35:2c:74:1e:2c:b8:47:65:9e:29:c7:83:7a:8f: fc:b6:a4:a5:73:9a:6b:90:f4:6c:cc:db:73:9c:84: ba:db:89:88:bd:a4:d4:34:c1:0e:54:a9:ee:3c:d9: 6f:2d:5f:bb:26:9f:dd:e3:d5:6f:42:45:53:c3:d6: d9:7b:22:12:68:9c:36:7f:47:9e:0e:72:07:e2:ef: 60:36:3c:06:2e:60:8d:d8:d0:7d:e4:a9:71:00:fa: 13:13:db:19:a5:e2:b2:b8:d8:49:90:cf:6a:41:28: 09:d6:2e:a7:95:72:fb:ab:81:61:1d:ae:b0:c4:be: ff:9f:49:d8:44:3b:ba:a9:90:b0:bd:5f:0a:c7:86: d6:be:ff:3d:2d:82:8d:4d:a8:82:d8:f4:51:40:a3: 44:3a:1a:91:e1:b6:df:6f:2b:c0:7e:9a:33:8e:a0: 78:7c:5c:2a:9f:fc:03:5a:ab:ff:16:a0:71:3b:8b: 4f:21:ad:aa:ba:03:7f:6e:20:54:d0:93:fa:d2:74: f3:e9:d7:c4:21:90:d6:1b:7c:b5:a9:88:71:c0:44: 64:ed:c5:9a:28:be:fb:18:9c:b5:04:74:cf:b8:59: e3:46:29:91:ad:a8:ca:bf:88:48:77:f4:67:97:ec: 25:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:31:1E:F6:65:5B:97:38:31:72:61:87:65:1A:BF:DE:CC:8C:D0:B0 X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:15:a3:9f:91:22:a9:4b:25:24:14:27:ab:fc:a5:95:08:ad: a2:f8:fa:65:c5:23:f9:fe:bc:03:fd:ed:ad:cd:8a:37:5a:14: 55:9f:88:5b:6d:06:81:62:7b:58:7a:f8:dd:ab:9e:e0:5e:6e: 37:da:2e:e8:5f:fc:fb:92:19:04:9a:d2:a6:7b:e8:a7:cb:5d: f4:15:ee:47:c0:ee:61:ac:4a:c8:f7:5f:c4:46:55:47:43:f4: cf:6c:d9:d5:66:05:d1:39:7f:53:37:bf:bc:53:05:0d:89:e9: 8b:73:1f:6f:2c:ea:c2:cd:03:a4:a2:45:b1:a2:5a:25:91:4a: 4d:4c:f8:a0:5c:62:a8:57:19:16:e6:ff:4e:db:c8:51:97:ec: 93:9d:b6:95:e2:71:a6:83:7a:e3:b9:93:36:68:a5:c0:4a:74: 93:4d:f2:52:00:87:85:dd:d0:a6:bb:3d:bb:95:b6:29:89:5f: 33:23:05:1f:c5:9e:87:49:04:1c:d5:87:89:45:27:b9:b9:a1: 2d:17:d3:30:bc:c5:5b:88:1e:d3:9a:06:c0:cd:8c:98:5c:0d: b2:a5:5b:a3:4c:18:54:13:be:90:fd:ac:37:a8:0c:de:cb:17: 17:40:9a:d1:7a:1a:51:31:6d:2a:c6:c7:a5:20:eb:1a:b9:be: f2:01:57:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjUwNjE5MDEwNjEwWhcNMjUwNjI2MDEwNjEwWjAYMRYwFAYD VQQDEw02ODUzNjI4Mi00Y2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQRvW85IXlHIiB4w/FmpNSx0Hiy4R2WeKceDeo/8tqSlc5prkPRszNtznIS6 24mIvaTUNMEOVKnuPNlvLV+7Jp/d49VvQkVTw9bZeyISaJw2f0eeDnIH4u9gNjwG LmCN2NB95KlxAPoTE9sZpeKyuNhJkM9qQSgJ1i6nlXL7q4FhHa6wxL7/n0nYRDu6 qZCwvV8Kx4bWvv89LYKNTaiC2PRRQKNEOhqR4bbfbyvAfpozjqB4fFwqn/wDWqv/ FqBxO4tPIa2qugN/biBU0JP60nTz6dfEIZDWG3y1qYhxwERk7cWaKL77GJy1BHTP uFnjRimRrajKv4hId/Rnl+wlTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoxHvZl W5c4MXJhh2Uav97MjNCwMB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYzMS8zOUU0RDdBOERDNzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1Vq WHBkZ1BPaTZsSWEyS3BzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDFaOfkSKpSyUkFCer/KWVCK2i+PplxSP5/rwD/e2tzYo3WhRVn4hb bQaBYntYevjdq57gXm432i7oX/z7khkEmtKme+iny130Fe5HwO5hrErI91/ERlVH Q/TPbNnVZgXROX9TN7+8UwUNiemLcx9vLOrCzQOkokWxololkUpNTPigXGKoVxkW 5v9O28hRl+yTnbaV4nGmg3rjuZM2aKXASnSTTfJSAIeF3dCmuz27lbYpiV8zIwUf xZ6HSQQc1YeJRSe5uaEtF9MwvMVbiB7TmgbAzYyYXA2ypVujTBhUE76Q/aw3qAze yxcXQJrRehpRMW0qxselIOsaub7yAVft -----END CERTIFICATE-----Generated at Thu Jun 19 05:57:44 2025 by rpki-client