$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft File: emYQUZRc4uj7SubeY7KEeLDO014.mft (raw, json) Hash identifier: F51VsvD3sivXpEWvy5ATXZ0WEcmi+lkMobzBXtKB7bQ= Subject key identifier: 51:19:38:38:D4:5D:E6:27:AA:BE:E6:2B:77:71:6C:9B:7D:44:53:BC Authority key identifier: 7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E Certificate issuer: /CN=A9165FF3/serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Certificate serial: 3497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft Manifest number: 3492 Signing time: Mon 16 Jun 2025 15:02:20 +0000 Manifest this update: Mon 16 Jun 2025 15:02:19 +0000 Manifest next update: Mon 23 Jun 2025 15:02:19 +0000 Files and hashes: 1: emYQUZRc4uj7SubeY7KEeLDO014.crl (hash: JmQ+mXVLVVfBIUJEtu6SEBIK8S51b7S+NTiwMyFZJ04=) 2: 5FBB084EAE6A11ECAA9D756AC4F9AE02.roa (hash: wwzdt+29bN5sRkpJd/eidoVjChYLuUnZj02CyiHrUiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13463 (0x3497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FF3, serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Validity Not Before: Jun 16 15:02:19 2025 GMT Not After : Jun 23 15:02:19 2025 GMT Subject: CN=685031fc-27e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2a:18:da:04:69:05:9e:e3:c0:a1:fe:0f:db: 20:14:d2:cb:c2:e3:3f:1d:58:88:db:b1:6c:35:8d: 71:d1:96:2e:b1:67:c6:ba:e5:da:11:df:75:0b:b6: 9f:c0:7c:94:6c:ce:e5:8c:50:c8:5e:8c:dd:43:97: 4b:47:d1:87:5d:71:88:d1:c0:b0:3b:22:ab:c1:c2: 37:2a:bb:5f:78:5b:76:5d:67:66:00:88:e8:79:cc: 04:b2:73:3c:92:d7:8b:0f:d3:7c:da:c7:99:23:33: e2:60:9f:1f:24:2d:3b:88:85:4b:cf:60:8a:16:93: c7:0b:9b:17:f1:eb:1b:c3:7a:33:bf:d4:58:80:0a: de:c2:e1:d1:a0:7b:09:2a:62:0f:bf:c9:a6:59:74: 2d:ce:72:44:19:34:a7:11:ba:9b:7e:7c:cc:68:4d: 86:18:2c:a4:aa:8f:26:34:04:dc:e7:af:82:ce:44: 6a:fb:91:39:9e:7d:bf:40:c7:6b:ad:f8:42:0c:bf: 37:3b:0f:17:d1:4f:96:21:d3:fd:a1:3a:f5:2c:67: 9b:b5:f8:e5:99:70:62:21:c5:4b:3b:96:f1:82:d0: c3:7b:e5:96:99:50:6e:19:81:17:b6:9b:2e:5c:a3: 9f:9a:66:c2:1e:58:24:be:d3:bc:e1:1b:e4:21:a4: 06:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:19:38:38:D4:5D:E6:27:AA:BE:E6:2B:77:71:6C:9B:7D:44:53:BC X509v3 Authority Key Identifier: keyid:7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ea:9a:8c:2e:c3:d6:de:d2:ec:ea:3a:1c:07:83:0a:39:39: d4:04:04:8a:3a:3a:5f:0c:fe:07:1d:25:66:4b:60:9f:ee:1b: 27:7d:ee:18:55:52:c5:d7:47:b4:89:9b:b2:dc:09:a8:f0:f2: 12:05:0d:64:01:66:ac:50:85:32:92:ba:ad:13:2b:6a:63:df: 1a:c8:4b:b9:e1:c4:23:71:d4:4e:b5:5a:e8:92:27:b9:10:51: 5f:59:eb:80:92:5f:57:4b:18:4d:ea:54:3a:86:b7:41:22:c1: de:6e:2c:27:a7:b6:0b:2b:63:7e:5d:be:ea:f9:b5:bb:27:17: d0:de:6a:3b:8e:99:aa:75:6e:ba:26:d1:7e:13:26:75:38:dc: ce:d7:c5:a2:4f:03:85:d0:4f:1c:fd:2d:7f:74:ea:3a:1a:f7: 54:a6:01:6e:de:5b:8c:30:f4:bf:51:ba:b4:45:2a:38:8a:84: 01:2c:16:9c:03:32:e5:6c:e1:bc:fd:f9:91:b8:84:0f:3f:55: f1:45:b2:e2:68:e8:36:d4:0d:d5:56:79:2c:32:50:d9:90:7c: 99:03:38:f6:03:0a:e1:df:9c:b2:21:2c:0e:f8:27:29:ca:40: 99:4e:11:06:1d:e4:e0:cc:c4:ff:da:9f:77:4b:35:98:2b:ea: 14:f9:7a:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGRjMxMTAvBgNVBAUTKDdBNjYxMDUxOTQ1Q0UyRThGQjRBRTZERTYzQjI4NDc4 QjBDRUQzNUUwHhcNMjUwNjE2MTUwMjE5WhcNMjUwNjIzMTUwMjE5WjAYMRYwFAYD VQQDEw02ODUwMzFmYy0yN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSoY2gRpBZ7jwKH+D9sgFNLLwuM/HViI27FsNY1x0ZYusWfGuuXaEd91C7af wHyUbM7ljFDIXozdQ5dLR9GHXXGI0cCwOyKrwcI3KrtfeFt2XWdmAIjoecwEsnM8 kteLD9N82seZIzPiYJ8fJC07iIVLz2CKFpPHC5sX8esbw3ozv9RYgArewuHRoHsJ KmIPv8mmWXQtznJEGTSnEbqbfnzMaE2GGCykqo8mNATc56+CzkRq+5E5nn2/QMdr rfhCDL83Ow8X0U+WIdP9oTr1LGebtfjlmXBiIcVLO5bxgtDDe+WWmVBuGYEXtpsu XKOfmmbCHlgkvtO84RvkIaQGcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEZODjU XeYnqr7mK3dxbJt9RFO8MB8GA1UdIwQYMBaAFHpmEFGUXOLo+0rm3mOyhHiwztNe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZGMy9DRUFCQjRFNjFE OUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1ajdTdWJlWTdLRWVMRE8w MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtWVFVWlJjNHVqN1N1YmVZN0tFZUxETzAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZGMy9DRUFCQjRFNjFEOUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1 ajdTdWJlWTdLRWVMRE8wMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh6pqMLsPW3tLs6jocB4MKOTnUBASKOjpfDP4HHSVmS2Cf7hsnfe4Y VVLF10e0iZuy3Amo8PISBQ1kAWasUIUykrqtEytqY98ayEu54cQjcdROtVrokie5 EFFfWeuAkl9XSxhN6lQ6hrdBIsHebiwnp7YLK2N+Xb7q+bW7JxfQ3mo7jpmqdW66 JtF+EyZ1ONzO18WiTwOF0E8c/S1/dOo6GvdUpgFu3luMMPS/Ubq0RSo4ioQBLBac AzLlbOG8/fmRuIQPP1XxRbLiaOg21A3VVnksMlDZkHyZAzj2Awrh35yyISwO+Ccp ykCZThEGHeTgzMT/2p93SzWYK+oU+Xqx -----END CERTIFICATE-----Generated at Wed Jun 18 01:27:29 2025 by rpki-client