$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: UI8er15sMOjZrY8OOkQq7SvtU7hOobZKuWG17hYvrCo= Subject key identifier: 65:6F:06:EA:8E:83:E9:48:ED:84:F1:9C:D5:94:58:99:8C:61:8C:35 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 05DE Signing time: Wed 18 Jun 2025 22:50:15 +0000 Manifest this update: Wed 18 Jun 2025 22:50:14 +0000 Manifest next update: Wed 25 Jun 2025 22:50:14 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: 5XT8vythZ9W/9+79t4bVbwNM87huPNNsTQFb6asFpZ0=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Jun 18 22:50:14 2025 GMT Not After : Jun 25 22:50:14 2025 GMT Subject: CN=685342a7-eee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:32:9c:02:99:53:96:64:10:1b:06:77:35:2b: 0c:26:c5:7b:20:70:59:3d:9a:fc:5c:51:ad:76:bf: 1b:48:09:ba:ab:c1:2d:db:72:64:06:42:7c:89:8f: b2:c1:0b:65:7d:95:e3:29:f1:c1:be:19:c7:7a:61: 58:91:60:d6:cc:db:d4:4c:19:f0:18:54:5e:9a:c3: 62:0a:6f:bf:bc:7c:17:de:08:4b:13:fe:06:f0:bd: 16:57:37:c5:d5:e9:97:48:3a:99:d3:12:e1:1b:96: 1e:a1:3e:b9:5f:27:81:a1:8d:86:4f:af:e0:92:9b: 0b:ac:ff:6e:85:52:e1:32:79:6a:57:32:26:b6:40: 95:69:99:6c:ed:6e:a7:e5:a9:55:3a:c8:2a:41:c8: a6:b1:de:2a:54:75:7c:ca:b2:49:97:45:6f:fb:fd: dd:0b:23:f3:d9:19:76:a6:44:1a:53:81:24:00:a9: 2c:0b:da:06:9e:95:49:4e:f3:c1:eb:b4:74:16:9b: af:c2:62:7c:dd:7d:17:7e:2d:70:18:98:c0:09:89: 68:38:88:4b:52:d3:4b:9b:9a:67:c9:da:a1:fe:76: 2e:8d:e4:e1:9b:3d:28:19:bf:0e:f3:74:70:53:3e: f2:a8:a6:a0:1f:0d:e4:e1:c9:b5:02:24:a8:cc:4f: 29:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6F:06:EA:8E:83:E9:48:ED:84:F1:9C:D5:94:58:99:8C:61:8C:35 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:11:0e:0d:6c:67:b5:36:a5:7a:b7:ac:0a:37:b8:ba:ef:db: 9a:14:f1:91:fc:06:b6:38:86:94:1f:6d:73:a9:38:ba:ff:73: 63:d7:25:52:65:bd:1d:71:a7:d1:82:76:01:f4:81:21:46:f4: 31:ba:8a:c8:6e:63:2a:55:73:67:5d:44:12:31:20:f1:5f:11: 3d:c3:b2:24:34:2b:38:61:8c:cf:ed:5e:7b:98:2a:00:35:05: c6:5e:62:0c:c9:b0:5b:b6:5a:b5:65:c3:2a:6c:64:92:da:fa: 76:f7:79:8b:f2:17:95:dc:15:72:a2:92:ed:57:49:af:ca:90: 4b:ce:a6:7e:a6:a3:c9:a0:00:3f:53:7b:6b:e7:b2:b0:e9:97: b6:e6:6a:d4:3d:20:78:92:ec:f7:4d:41:36:d9:f0:c8:d0:2d: e5:39:78:30:93:4d:3e:83:7f:b7:39:4b:e8:e8:e4:c8:d9:a7: 3f:d8:b5:94:b6:22:1d:82:f6:2e:a8:7c:ea:1d:cd:26:84:ca: bf:12:af:e6:10:47:55:c8:72:09:a9:4c:8c:37:e8:e5:b0:e6: 1a:61:85:fb:9e:b2:ed:4c:df:d0:c9:68:dc:99:64:e0:b5:4b: 63:64:e4:8f:8f:16:2b:7c:ca:1c:5a:ab:72:63:b7:c5:c5:0c: 11:a3:79:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNjE4MjI1MDE0WhcNMjUwNjI1MjI1MDE0WjAYMRYwFAYD VQQDEw02ODUzNDJhNy1lZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DKcAplTlmQQGwZ3NSsMJsV7IHBZPZr8XFGtdr8bSAm6q8Et23JkBkJ8iY+y wQtlfZXjKfHBvhnHemFYkWDWzNvUTBnwGFRemsNiCm+/vHwX3ghLE/4G8L0WVzfF 1emXSDqZ0xLhG5YeoT65XyeBoY2GT6/gkpsLrP9uhVLhMnlqVzImtkCVaZls7W6n 5alVOsgqQcimsd4qVHV8yrJJl0Vv+/3dCyPz2Rl2pkQaU4EkAKksC9oGnpVJTvPB 67R0FpuvwmJ83X0Xfi1wGJjACYloOIhLUtNLm5pnydqh/nYujeThmz0oGb8O83Rw Uz7yqKagHw3k4cm1AiSozE8pfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVvBuqO g+lI7YTxnNWUWJmMYYw1MB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWEQ4NbGe1NqV6t6wKN7i679uaFPGR/Aa2OIaUH21zqTi6/3Nj1yVS Zb0dcafRgnYB9IEhRvQxuorIbmMqVXNnXUQSMSDxXxE9w7IkNCs4YYzP7V57mCoA NQXGXmIMybBbtlq1ZcMqbGSS2vp293mL8heV3BVyopLtV0mvypBLzqZ+pqPJoAA/ U3tr57Kw6Ze25mrUPSB4kuz3TUE22fDI0C3lOXgwk00+g3+3OUvo6OTI2ac/2LWU tiIdgvYuqHzqHc0mhMq/Eq/mEEdVyHIJqUyMN+jlsOYaYYX7nrLtTN/QyWjcmWTg tUtjZOSPjxYrfMocWqtyY7fFxQwRo3nR -----END CERTIFICATE-----Generated at Fri Jun 20 17:35:06 2025 by rpki-client