$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: fUxBd9tBlyGba1cs5L3siC3YxrsBXAwJjA8/stasofk= Subject key identifier: E4:D6:FA:A9:5F:C8:3D:94:45:D6:1B:51:8F:D1:B2:AA:DF:42:52:BF Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 071F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2D12 Signing time: Sat 14 Jun 2025 15:40:47 +0000 Manifest this update: Sat 14 Jun 2025 15:40:46 +0000 Manifest next update: Sat 21 Jun 2025 15:40:46 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: k6RLDjxcTpFOvQQ9voIppWjANNtyYWDaB3InLOoypd4=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: 7/8a6b3fF4FCit/GoJJNeOaMoxKdi7vv4AgXU+onf50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1823 (0x71f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Jun 14 15:40:46 2025 GMT Not After : Jun 21 15:40:46 2025 GMT Subject: CN=684d97fe-6620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fc:2d:18:d5:d5:a5:74:93:38:69:e0:aa:e9: 3d:73:31:22:e1:f7:92:70:3e:17:b1:2a:07:ef:72: 52:f6:33:f0:79:87:99:15:6b:d7:9e:ac:9e:ae:cd: ed:f7:cb:5f:69:93:f1:92:a4:88:20:5a:96:82:02: 4b:18:f5:f5:d2:fa:06:e6:d7:33:8a:76:2c:7d:63: 4b:bd:a2:b3:98:c5:f5:ee:3d:6f:22:ca:c4:31:0f: a8:4f:bf:79:97:a2:a8:c1:b4:eb:04:65:2c:28:3c: e3:6b:d4:9b:25:ea:a4:90:32:eb:d0:43:e7:72:f8: af:81:a0:2a:72:3d:1a:ad:8f:d7:3f:42:ec:a4:e8: 8c:84:70:73:46:5b:47:4a:50:fa:21:d8:53:36:be: a8:68:0b:72:32:01:40:d8:e4:23:87:f0:cc:99:56: fa:c1:af:9d:08:52:51:d9:e0:b7:5c:4a:7b:85:af: 9e:71:3f:29:0c:93:a2:96:14:71:08:82:f6:ae:a7: c0:4d:21:3b:dd:a0:d9:fe:9a:5c:f3:dc:f7:e6:92: b3:a8:60:4e:22:1f:11:ef:16:44:3a:86:6e:33:c7: f6:65:0a:88:04:e4:db:3b:0c:16:b7:09:24:ad:71: e1:87:6c:62:8d:52:15:cb:ab:17:2b:9d:b3:d3:44: 6f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D6:FA:A9:5F:C8:3D:94:45:D6:1B:51:8F:D1:B2:AA:DF:42:52:BF X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:a4:54:bf:fd:bd:e9:06:42:71:b0:90:a8:3e:31:74:ea:c3: 8d:31:a7:ef:5b:be:10:c7:90:f6:8d:61:e2:81:34:a4:22:5f: ce:c9:8c:b3:21:35:b7:8d:1c:77:60:38:ef:60:ff:b2:56:d7: c1:60:d9:1a:27:5e:20:e9:f3:72:8e:4d:d2:85:f8:5b:78:6a: e2:b6:8e:db:99:3b:2e:a4:f2:38:56:1b:85:f3:a7:4b:62:32: 95:62:94:7d:30:48:36:10:b1:e0:93:c8:3c:ba:43:d4:7b:26: 8a:59:a1:bb:8b:f9:3c:9a:e1:bf:f7:48:8d:ff:c2:e5:7a:8d: 2a:a3:b1:58:cc:42:ae:88:ec:10:a1:ba:a0:97:98:1a:32:60: 82:16:58:63:b3:29:82:65:99:59:84:fe:a3:cd:23:17:41:65: 68:98:c8:52:a4:70:b5:83:67:de:78:d7:a2:7b:76:f1:e7:11: 8d:0f:54:36:67:1f:74:75:46:f3:ef:19:7e:02:d9:0e:0d:28: c2:c2:47:f7:03:34:d9:ab:21:f6:2c:86:53:e3:c2:78:11:a7: ca:05:07:c7:98:b6:61:ee:0f:d9:ec:89:40:71:1e:6a:87:0c: e0:86:6b:8b:fc:ae:29:74:46:40:b7:57:d2:e1:1f:b5:5c:67: c4:7d:f6:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjUwNjE0MTU0MDQ2WhcNMjUwNjIxMTU0MDQ2WjAYMRYwFAYD VQQDEw02ODRkOTdmZS02NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvwtGNXVpXSTOGngquk9czEi4feScD4XsSoH73JS9jPweYeZFWvXnqyers3t 98tfaZPxkqSIIFqWggJLGPX10voG5tczinYsfWNLvaKzmMX17j1vIsrEMQ+oT795 l6KowbTrBGUsKDzja9SbJeqkkDLr0EPncvivgaAqcj0arY/XP0LspOiMhHBzRltH SlD6IdhTNr6oaAtyMgFA2OQjh/DMmVb6wa+dCFJR2eC3XEp7ha+ecT8pDJOilhRx CIL2rqfATSE73aDZ/ppc89z35pKzqGBOIh8R7xZEOoZuM8f2ZQqIBOTbOwwWtwkk rXHhh2xijVIVy6sXK52z00RvawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTW+qlf yD2URdYbUY/RsqrfQlK/MB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6pFS//b3pBkJxsJCoPjF06sONMafvW74Qx5D2jWHigTSkIl/OyYyz ITW3jRx3YDjvYP+yVtfBYNkaJ14g6fNyjk3ShfhbeGrito7bmTsupPI4VhuF86dL YjKVYpR9MEg2ELHgk8g8ukPUeyaKWaG7i/k8muG/90iN/8Lleo0qo7FYzEKuiOwQ obqgl5gaMmCCFlhjsymCZZlZhP6jzSMXQWVomMhSpHC1g2feeNeie3bx5xGND1Q2 Zx90dUbz7xl+AtkODSjCwkf3AzTZqyH2LIZT48J4EafKBQfHmLZh7g/Z7IlAcR5q hwzghmuL/K4pdEZAt1fS4R+1XGfEffYr -----END CERTIFICATE-----Generated at Sun Jun 15 09:35:58 2025 by rpki-client