$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: HUmHcrNgiKw60ie3rWO14Iyo6Gqnlthou+7xr/rmdN0= Subject key identifier: 9A:64:1D:12:9B:BA:AD:F2:80:86:7B:17:9A:45:6F:16:00:96:B3:B8 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 01A3 Signing time: Fri 13 Jun 2025 02:20:59 +0000 Manifest this update: Fri 13 Jun 2025 02:20:59 +0000 Manifest next update: Fri 20 Jun 2025 02:20:59 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: WyPe25s8m+cpT9fPexupv23pQS0hQh+LhjqTWFuDP8w=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Jun 13 02:20:59 2025 GMT Not After : Jun 20 02:20:59 2025 GMT Subject: CN=684b8b0b-df2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d8:09:97:d8:a7:a5:5c:48:19:90:c2:7a:3b: dc:25:ed:c3:d9:6c:b9:14:33:85:fc:c3:a4:c0:17: 31:cc:28:68:c9:ee:46:d4:36:d8:98:56:fa:c7:1a: e0:ff:85:08:5c:ed:0b:13:73:98:74:f8:02:bd:3e: af:8b:71:60:fe:bf:32:d5:40:d7:01:1f:e5:dc:5a: 55:bf:8e:ef:77:32:cd:97:f7:66:87:79:55:ea:d3: da:e7:49:fc:0e:cf:f6:ee:28:6b:dc:3e:79:35:2c: 0e:fd:bf:ee:26:fe:73:e3:0b:24:b4:00:a7:95:0e: 5c:db:d9:80:35:55:e2:05:c8:bd:8d:f7:72:20:3f: 26:bf:74:93:ab:f0:1a:fe:83:ef:fa:94:ae:2e:1a: 48:b9:77:15:4c:26:75:94:63:97:71:31:71:aa:4f: 0f:eb:25:31:cb:ad:3a:86:55:41:eb:78:54:f6:a4: fd:77:0f:f9:19:83:45:ff:b2:38:e9:76:6c:e5:c5: 94:d7:e2:a2:2c:d3:b6:e6:c1:d1:c7:8e:bd:67:85: a5:af:cc:b4:c5:61:e2:4a:3f:1e:60:de:65:33:d2: 41:20:c9:30:00:d1:26:24:d7:e8:1f:db:95:77:2e: 2e:5c:63:fb:ea:dc:db:b8:f7:40:91:90:de:7f:d3: 8a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:64:1D:12:9B:BA:AD:F2:80:86:7B:17:9A:45:6F:16:00:96:B3:B8 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:1f:ac:9a:f0:f7:b0:1c:ad:e5:6e:e9:ea:40:6a:c0:35:b5: 2a:72:e1:a9:f1:20:4c:78:d0:be:65:f8:54:56:c4:6e:d3:d7: 6a:8c:53:a4:a5:24:84:65:d0:1e:7c:f9:84:04:be:16:e6:2c: e1:9d:74:e4:2c:a5:22:4b:0b:f0:16:19:b9:ae:05:02:53:5f: 85:9d:dd:e2:16:17:5d:1c:d6:88:cc:c2:ea:6e:cc:d3:57:5a: fc:c7:0b:02:ce:a4:98:ff:11:e2:f8:30:69:e2:9d:73:13:0a: 9d:57:85:aa:3d:64:2f:ff:4c:f8:dd:9c:a4:da:44:f6:46:01: 4e:52:e3:d3:68:c7:a7:4f:df:05:26:3c:7c:e5:24:db:51:09: f8:f3:2e:e2:2b:f5:50:11:c6:53:de:2d:69:e3:3c:50:b7:d4: 6e:c7:cf:4f:ff:11:26:14:04:f3:3e:f1:99:7a:81:0b:17:bd: 3f:8e:ae:b3:9a:0a:a2:54:88:28:69:3b:d2:b7:cc:14:00:b3: 1e:c4:03:dc:36:cc:4b:b7:8b:bf:a6:e0:dd:94:4c:59:e6:2b: 9d:51:e4:8f:35:3f:80:30:33:95:e6:e5:ca:b5:ea:53:29:41: e5:7c:d8:28:21:01:e6:81:86:88:3b:5a:8e:aa:3a:fd:c7:b4: 17:89:5b:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUwNjEzMDIyMDU5WhcNMjUwNjIwMDIyMDU5WjAYMRYwFAYD VQQDEw02ODRiOGIwYi1kZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNgJl9inpVxIGZDCejvcJe3D2Wy5FDOF/MOkwBcxzChoye5G1DbYmFb6xxrg /4UIXO0LE3OYdPgCvT6vi3Fg/r8y1UDXAR/l3FpVv47vdzLNl/dmh3lV6tPa50n8 Ds/27ihr3D55NSwO/b/uJv5z4wsktACnlQ5c29mANVXiBci9jfdyID8mv3STq/Aa /oPv+pSuLhpIuXcVTCZ1lGOXcTFxqk8P6yUxy606hlVB63hU9qT9dw/5GYNF/7I4 6XZs5cWU1+KiLNO25sHRx469Z4Wlr8y0xWHiSj8eYN5lM9JBIMkwANEmJNfoH9uV dy4uXGP76tzbuPdAkZDef9OKOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpkHRKb uq3ygIZ7F5pFbxYAlrO4MB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoH6ya8PewHK3lbunqQGrANbUqcuGp8SBMeNC+ZfhUVsRu09dqjFOk pSSEZdAefPmEBL4W5izhnXTkLKUiSwvwFhm5rgUCU1+Fnd3iFhddHNaIzMLqbszT V1r8xwsCzqSY/xHi+DBp4p1zEwqdV4WqPWQv/0z43Zyk2kT2RgFOUuPTaMenT98F Jjx85STbUQn48y7iK/VQEcZT3i1p4zxQt9Rux89P/xEmFATzPvGZeoELF70/jq6z mgqiVIgoaTvSt8wUALMexAPcNsxLt4u/puDdlExZ5iudUeSPNT+AMDOV5uXKtepT KUHlfNgoIQHmgYaIO1qOqjr9x7QXiVvo -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:57 2025 by rpki-client