$ rpki-client -vvf rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft File: rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft (raw, json) Hash identifier: rT17rCTp7TYK2oUiTftNj7FduARKDvX4g/tB4T4ng0o= Subject key identifier: E1:66:ED:57:02:D5:19:D8:E6:6E:4D:A6:5B:ED:88:0C:BA:41:3F:FE Authority key identifier: AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD Certificate issuer: /CN=A9164E50/serialNumber=ADF0F5ABAFFB9845B55CB361A092F56D4E4005DD Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft Manifest number: 066E Signing time: Sat 14 Jun 2025 22:07:01 +0000 Manifest this update: Sat 14 Jun 2025 22:07:00 +0000 Manifest next update: Sat 21 Jun 2025 22:07:00 +0000 Files and hashes: 1: rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl (hash: /+s705KHhI82SZNGLNZmVrqbZPppVn45bXNRNFXeLEo=) 2: D18881E6807A11EBB44A0A58C4F9AE02.roa (hash: 9X7s4Zr8J67+2NJv1oqimpUYFSW3VJpeiZEh6uYKUO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164E50, serialNumber=ADF0F5ABAFFB9845B55CB361A092F56D4E4005DD Validity Not Before: Jun 14 22:07:00 2025 GMT Not After : Jun 21 22:07:00 2025 GMT Subject: CN=684df285-9943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:10:f0:28:cf:7e:16:22:9f:23:60:73:78:f8: 7c:4f:9e:9a:d3:7d:ef:54:e3:40:68:70:67:0a:9c: 0d:6a:5a:97:e6:67:f5:47:99:bd:cd:7c:15:89:82: 55:71:db:07:fd:1b:af:9e:15:00:e3:aa:0e:22:85: ce:7d:3f:c5:82:1d:91:10:e9:15:4a:43:b6:2e:ae: e1:d0:5e:8a:fe:56:7f:49:87:c0:0f:1b:f5:49:55: a4:f7:e9:1a:a3:8d:a3:94:1b:c6:e7:c4:6f:18:f8: bd:af:19:d4:90:34:4e:b2:7b:5b:31:47:a5:06:5e: 01:7d:93:30:36:fe:dc:b4:a0:17:fd:82:52:99:b9: 80:92:75:15:f5:f5:de:06:cb:0b:ff:6a:ff:37:3f: b9:49:98:a3:a4:b9:f2:f3:2f:1a:5e:09:25:ce:ff: 3f:2e:78:e2:c2:ea:be:ea:1b:f4:d5:80:8f:de:16: a2:6c:17:f1:d4:c6:84:15:c8:42:02:3b:18:5f:6d: 87:1c:45:24:59:46:bc:c7:cf:25:d4:22:2b:14:7e: dd:01:ff:81:58:d6:40:e5:f1:4e:89:f5:34:fd:f9: be:89:2c:4e:9d:d0:d6:a5:29:9f:ec:3c:8e:f4:50: af:11:ec:30:46:93:a6:65:9c:43:d0:95:7b:91:df: 82:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:66:ED:57:02:D5:19:D8:E6:6E:4D:A6:5B:ED:88:0C:BA:41:3F:FE X509v3 Authority Key Identifier: keyid:AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:66:6e:28:72:03:d0:b0:a8:8f:04:f0:a8:ad:2f:9d:f0:0e: 77:8d:92:60:e7:0d:13:79:51:1e:82:d7:08:38:66:71:71:0a: ba:ea:6b:fb:2b:7b:83:f2:74:f1:c4:31:77:34:c7:8c:cd:f2: 59:8b:c6:5c:29:e5:00:41:cf:ec:36:16:eb:2e:af:3f:3a:53: fc:1f:ae:b9:1e:32:32:b8:fb:96:18:2b:20:b9:52:34:5b:f0: 7e:d2:9c:6f:3b:f2:53:28:7c:c0:e8:a1:54:1e:fe:0e:c0:bc: a0:ac:ea:a2:5a:8f:56:68:08:fb:f3:32:aa:c1:0c:98:24:5c: f1:1c:77:b1:73:fc:53:19:60:32:b7:6d:24:3e:24:b1:77:da: 00:8a:1f:ae:70:16:1b:95:1a:13:8c:0d:b1:d6:e2:24:31:1d: 99:4e:be:d5:a4:7f:06:96:c7:df:d4:a9:c9:f7:60:ba:9a:4a: 51:88:a7:4a:8b:10:51:8c:18:08:23:87:eb:c7:20:c9:af:8b: fa:17:22:bc:95:8a:20:8b:9d:de:bf:cd:c7:2a:c3:d3:f5:21: f5:6d:da:d0:dd:74:1e:26:e0:01:aa:f9:7f:67:14:4f:61:c7: a5:5c:31:95:be:28:e3:66:45:3b:77:14:5b:ed:0f:e6:61:7e: ad:a0:ea:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRFNTAxMTAvBgNVBAUTKEFERjBGNUFCQUZGQjk4NDVCNTVDQjM2MUEwOTJGNTZE NEU0MDA1REQwHhcNMjUwNjE0MjIwNzAwWhcNMjUwNjIxMjIwNzAwWjAYMRYwFAYD VQQDEw02ODRkZjI4NS05OTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9BDwKM9+FiKfI2BzePh8T56a033vVONAaHBnCpwNalqX5mf1R5m9zXwViYJV cdsH/RuvnhUA46oOIoXOfT/Fgh2REOkVSkO2Lq7h0F6K/lZ/SYfADxv1SVWk9+ka o42jlBvG58RvGPi9rxnUkDROsntbMUelBl4BfZMwNv7ctKAX/YJSmbmAknUV9fXe BssL/2r/Nz+5SZijpLny8y8aXgklzv8/Lnjiwuq+6hv01YCP3haibBfx1MaEFchC AjsYX22HHEUkWUa8x88l1CIrFH7dAf+BWNZA5fFOifU0/fm+iSxOndDWpSmf7DyO 9FCvEewwRpOmZZxD0JV7kd+CyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFm7VcC 1RnY5m5NplvtiAy6QT/+MB8GA1UdIwQYMBaAFK3w9auv+5hFtVyzYaCS9W1OQAXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEU1MC9BNDBBMjQyMDgw NkQxMUVCQThCRjk5NzZDNEY5QUUwMi9yZkQxcTZfN21FVzFYTE5ob0pMMWJVNUFC ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JmRDFxNl83bUVXMVhMTmhvSkwxYlU1QUJkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEU1MC9BNDBBMjQyMDgwNkQxMUVCQThCRjk5NzZDNEY5QUUwMi9yZkQxcTZfN21F VzFYTE5ob0pMMWJVNUFCZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlZm4ocgPQsKiPBPCorS+d8A53jZJg5w0TeVEegtcIOGZxcQq66mv7 K3uD8nTxxDF3NMeMzfJZi8ZcKeUAQc/sNhbrLq8/OlP8H665HjIyuPuWGCsguVI0 W/B+0pxvO/JTKHzA6KFUHv4OwLygrOqiWo9WaAj78zKqwQyYJFzxHHexc/xTGWAy t20kPiSxd9oAih+ucBYblRoTjA2x1uIkMR2ZTr7VpH8Glsff1KnJ92C6mkpRiKdK ixBRjBgII4frxyDJr4v6FyK8lYogi53ev83HKsPT9SH1bdrQ3XQeJuABqvl/ZxRP YcelXDGVvijjZkU7dxRb7Q/mYX6toOqt -----END CERTIFICATE-----Generated at Sun Jun 15 08:49:45 2025 by rpki-client