$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft File: 065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json) Hash identifier: rTJAtqLSLbOmVN+yhtTDnb5XYZGDFAjAkQVtDvA7sF4= Subject key identifier: 69:74:63:A6:74:4B:67:DC:B8:37:8D:EB:6B:84:6D:7D:7C:3B:55:2A Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF Certificate issuer: /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft Manifest number: 0185 Signing time: Fri 13 Jun 2025 02:39:21 +0000 Manifest this update: Fri 13 Jun 2025 02:39:20 +0000 Manifest next update: Fri 20 Jun 2025 02:39:20 +0000 Files and hashes: 1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: dkFsKHELJvTSPyyWZ/9vI4CxUiCKY8Enz0ZDP4dJMMI=) 2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: Odfpid+S8/X10dkHkByuVcfAeQDpGtmiKeMq57hIa04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163B62, serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Validity Not Before: Jun 13 02:39:20 2025 GMT Not After : Jun 20 02:39:20 2025 GMT Subject: CN=684b8f58-eccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3e:24:8c:aa:cd:84:8e:69:ed:57:6f:d5:50: d7:13:a3:14:06:1a:49:5d:81:bd:ff:61:df:3f:25: fc:51:f2:d9:ec:3f:8b:1a:45:f3:a9:8b:f4:46:06: 76:7e:6c:8e:9e:ee:31:50:33:e8:3f:4e:8a:b0:1e: ac:7e:60:77:e8:d1:81:15:1d:a1:db:1a:14:3e:e6: e6:18:a7:53:94:a3:c8:53:39:04:89:f9:ce:c6:ab: 8a:0d:05:2c:04:77:82:41:81:3d:0e:8a:1e:21:c5: c6:8d:dd:1a:4f:75:8f:89:48:be:93:c9:79:57:bc: 5a:6c:8d:ab:6d:0f:5b:e5:18:de:65:79:71:3e:a2: 5d:08:bc:d0:8c:ea:50:34:19:cc:74:60:4c:21:b6: 2b:1d:8e:df:f0:f7:d2:b9:0a:61:e9:36:c0:e5:27: 69:c9:c8:a1:a8:d3:6f:5c:59:12:9a:9d:b2:6e:81: 03:d4:88:1d:cd:76:51:62:0b:20:11:38:03:d0:fc: 24:9b:1a:2a:72:98:15:7f:95:d0:60:27:76:1e:b7: c1:8d:95:cc:a7:b6:94:54:1d:0f:3f:f6:1a:97:91: 34:44:47:ec:42:2c:c3:7d:67:1a:77:9d:b5:a6:4e: 30:45:5c:0f:85:07:e8:63:ea:bb:6e:33:d8:c9:d1: 12:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:74:63:A6:74:4B:67:DC:B8:37:8D:EB:6B:84:6D:7D:7C:3B:55:2A X509v3 Authority Key Identifier: keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:40:75:cc:7a:8a:7a:b5:a0:52:95:e4:17:3f:0b:32:ee:e6: 98:5e:4a:fd:fa:43:44:50:c4:c7:f9:29:13:98:4e:fb:f9:70: 13:14:86:c9:a9:4d:fe:e6:24:b9:d6:01:0b:8a:04:6e:df:62: 06:4a:b3:92:28:ab:ab:f4:23:19:c5:26:72:0a:34:6f:0e:c6: fc:fd:e6:ca:19:05:e8:e2:fc:d7:f5:9b:ad:a0:dd:70:2f:6c: 20:a6:e9:4b:f7:3b:9a:91:26:88:4a:de:5e:f8:74:68:33:20: cd:47:9e:c4:c8:6f:33:b8:a4:bc:96:1d:8e:1b:55:23:17:ff: df:08:ca:58:26:7b:22:1d:46:6b:03:0c:ab:f2:5e:8c:6b:13: 4e:5a:bb:cf:9b:0a:f8:9b:7d:01:78:f2:f8:70:f6:94:6a:ed: cb:2d:ad:92:7c:1b:79:d2:99:17:b1:54:e6:8f:61:88:e2:73: 56:19:89:7a:4c:ee:56:36:17:35:d1:77:fa:94:fe:79:2e:11: 04:e4:b3:a5:0c:80:67:aa:57:e4:f6:be:40:a4:3a:d1:0c:22: 3b:e3:ed:82:ff:0d:6b:fc:74:3b:0a:5e:57:a2:47:84:06:1b: 95:db:3a:3f:a0:42:a8:85:ef:7d:18:22:ab:fd:b9:09:85:10: 49:dc:7d:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5 NjYyQTI3RkYwHhcNMjUwNjEzMDIzOTIwWhcNMjUwNjIwMDIzOTIwWjAYMRYwFAYD VQQDEw02ODRiOGY1OC1lY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0j4kjKrNhI5p7Vdv1VDXE6MUBhpJXYG9/2HfPyX8UfLZ7D+LGkXzqYv0RgZ2 fmyOnu4xUDPoP06KsB6sfmB36NGBFR2h2xoUPubmGKdTlKPIUzkEifnOxquKDQUs BHeCQYE9DooeIcXGjd0aT3WPiUi+k8l5V7xabI2rbQ9b5RjeZXlxPqJdCLzQjOpQ NBnMdGBMIbYrHY7f8PfSuQph6TbA5SdpycihqNNvXFkSmp2yboED1IgdzXZRYgsg ETgD0PwkmxoqcpgVf5XQYCd2HrfBjZXMp7aUVB0PP/Yal5E0REfsQizDfWcad521 pk4wRVwPhQfoY+q7bjPYydESTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGl0Y6Z0 S2fcuDeN62uEbX18O1UqMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjQHXMeop6taBSleQXPwsy7uaYXkr9+kNEUMTH+SkTmE77+XATFIbJ qU3+5iS51gELigRu32IGSrOSKKur9CMZxSZyCjRvDsb8/ebKGQXo4vzX9ZutoN1w L2wgpulL9zuakSaISt5e+HRoMyDNR57EyG8zuKS8lh2OG1UjF//fCMpYJnsiHUZr Awyr8l6MaxNOWrvPmwr4m30BePL4cPaUau3LLa2SfBt50pkXsVTmj2GI4nNWGYl6 TO5WNhc10Xf6lP55LhEE5LOlDIBnqlfk9r5ApDrRDCI74+2C/w1r/HQ7Cl5XokeE BhuV2zo/oEKohe99GCKr/bkJhRBJ3H1N -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:09 2025 by rpki-client