$ rpki-client -vvf rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft File: k-dhjM_iZIDXknoYcbrYP--d9IQ.mft (raw, json) Hash identifier: p21VY6cTui5z0QSLDZYNEmnuhwVIFCQkdA7oDcqLZzs= Subject key identifier: EB:2F:26:FC:FC:22:47:7E:31:D2:96:07:C5:E8:70:D7:FF:BB:B4:B1 Authority key identifier: 93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 Certificate issuer: /CN=A915F438/serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Certificate serial: 252E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft Manifest number: 251A Signing time: Sat 14 Jun 2025 15:43:53 +0000 Manifest this update: Sat 14 Jun 2025 15:43:52 +0000 Manifest next update: Sat 21 Jun 2025 15:43:52 +0000 Files and hashes: 1: k-dhjM_iZIDXknoYcbrYP--d9IQ.crl (hash: monLbJMEgIftqg/Uxbuna4a8JvO6D3M9MZysmpeIYIA=) 2: 657B47B61C2F11E880C4ED7BC4F9AE02.roa (hash: cn19kmgTI5pykmKU6ztYW1fuk/UgkkZVZQRR4mCHAg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9518 (0x252e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F438, serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Validity Not Before: Jun 14 15:43:52 2025 GMT Not After : Jun 21 15:43:52 2025 GMT Subject: CN=684d98b9-9f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:51:92:f7:e3:fa:dc:ab:4c:22:b1:10:9e:cf: 23:30:41:fc:70:00:e5:fc:a5:ed:14:0c:93:af:2d: 19:37:a9:3b:2f:c4:9c:b6:ce:c4:17:7d:5e:e1:27: b0:e3:36:6e:89:97:f4:6d:f6:8b:d7:be:c3:5a:ad: 29:68:0c:b5:dc:c4:c6:8a:dc:52:eb:f9:3b:fd:8a: e7:41:bc:68:e5:7f:fc:be:71:f4:b4:0f:b6:72:64: 59:51:0a:62:83:7e:e6:92:db:32:4c:0c:bc:24:6a: 5f:b6:63:f9:ad:e5:de:a3:81:37:71:9a:c4:48:0e: e9:00:fe:48:fa:86:88:8d:68:80:be:ad:d5:8c:f6: 0a:d7:39:5b:74:df:b9:5e:62:ef:7b:9c:7d:82:9d: ed:1c:3a:20:6b:04:68:6b:9d:64:2d:6a:4b:3c:56: be:17:9a:c0:d3:29:df:10:89:0e:95:b2:9a:85:9d: a8:68:7f:19:19:b4:ea:2a:77:64:64:73:3d:b6:29: 70:21:f2:39:2e:5c:d5:f2:6d:67:29:ff:30:6f:da: 4c:7e:36:17:64:55:96:b9:7d:13:b3:16:8d:c2:08: 50:3d:ca:06:25:52:9b:8e:6f:f5:de:94:92:4f:75: ab:79:47:36:64:66:5c:7a:b3:d7:da:fa:92:4f:88: ab:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:2F:26:FC:FC:22:47:7E:31:D2:96:07:C5:E8:70:D7:FF:BB:B4:B1 X509v3 Authority Key Identifier: keyid:93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:04:58:ed:ed:09:e3:6b:f3:07:52:b9:29:e5:ea:b2:72:9d: 09:d3:f5:e7:a8:aa:88:6e:87:b3:f8:5f:35:47:c2:a0:2c:0f: 8a:45:53:42:ca:bd:24:5c:4c:eb:bd:38:24:f5:fe:7e:14:2f: ad:5f:ba:5d:f5:8f:12:03:d1:5c:a1:2d:85:01:70:41:7d:a2: 44:72:48:9e:f5:39:22:91:f1:84:1a:fa:f7:5c:32:6a:dc:9e: 7e:7e:20:4d:a0:07:4f:76:28:08:d1:80:7e:85:65:b3:6f:12: ff:60:8f:62:75:b0:38:10:91:24:fc:75:1b:22:dc:6d:a7:05: 15:d2:60:e2:6f:ed:de:7b:23:6a:44:b4:fb:fb:97:c8:b3:a5: 69:35:33:2b:02:a6:ea:6a:53:41:79:c1:95:95:0c:29:56:d1: 6b:a9:ad:2a:9f:3b:91:fc:db:2f:0e:d0:d7:4a:8a:45:68:89: 54:43:aa:00:9c:c7:94:08:ce:56:d6:92:f6:b3:fe:c2:35:14: d1:45:cf:98:ea:30:d6:dc:49:2b:81:9e:ae:19:28:0d:ac:3e: 7a:9e:62:3f:b8:e9:19:54:e7:41:05:bb:c4:0e:63:fb:6a:00: 6f:f0:37:fe:c4:37:51:36:68:37:cc:f5:c0:d1:06:80:ef:93: d3:09:76:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY0MzgxMTAvBgNVBAUTKDkzRTc2MThDQ0ZFMjY0ODBENzkyN0ExODcxQkFEODNG RUY5REY0ODQwHhcNMjUwNjE0MTU0MzUyWhcNMjUwNjIxMTU0MzUyWjAYMRYwFAYD VQQDEw02ODRkOThiOS05Zjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21GS9+P63KtMIrEQns8jMEH8cADl/KXtFAyTry0ZN6k7L8Scts7EF31e4Sew 4zZuiZf0bfaL177DWq0paAy13MTGitxS6/k7/YrnQbxo5X/8vnH0tA+2cmRZUQpi g37mktsyTAy8JGpftmP5reXeo4E3cZrESA7pAP5I+oaIjWiAvq3VjPYK1zlbdN+5 XmLve5x9gp3tHDogawRoa51kLWpLPFa+F5rA0ynfEIkOlbKahZ2oaH8ZGbTqKndk ZHM9tilwIfI5LlzV8m1nKf8wb9pMfjYXZFWWuX0TsxaNwghQPcoGJVKbjm/13pSS T3WreUc2ZGZcerPX2vqST4ir9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsvJvz8 Ikd+MdKWB8XocNf/u7SxMB8GA1UdIwQYMBaAFJPnYYzP4mSA15J6GHG62D/vnfSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjQzOC9CN0VGNTNGRTJC NEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJRFhrbm9ZY2JyWVAtLWQ5 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2stZGhqTV9pWklEWGtub1ljYnJZUC0tZDlJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjQzOC9CN0VGNTNGRTJCNEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJ RFhrbm9ZY2JyWVAtLWQ5SVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQBFjt7Qnja/MHUrkp5eqycp0J0/XnqKqIboez+F81R8KgLA+KRVNC yr0kXEzrvTgk9f5+FC+tX7pd9Y8SA9FcoS2FAXBBfaJEckie9TkikfGEGvr3XDJq 3J5+fiBNoAdPdigI0YB+hWWzbxL/YI9idbA4EJEk/HUbItxtpwUV0mDib+3eeyNq RLT7+5fIs6VpNTMrAqbqalNBecGVlQwpVtFrqa0qnzuR/NsvDtDXSopFaIlUQ6oA nMeUCM5W1pL2s/7CNRTRRc+Y6jDW3EkrgZ6uGSgNrD56nmI/uOkZVOdBBbvEDmP7 agBv8Df+xDdRNmg3zPXA0QaA75PTCXZl -----END CERTIFICATE-----Generated at Sat Jun 14 18:47:38 2025 by rpki-client