$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: CRZd2z7ageYzspCa5Ge1MB1updEtp2jUVEvtX+iqM9s= Subject key identifier: 57:B6:90:E3:22:72:02:8A:F3:CD:AC:E2:FA:D4:3E:4A:58:4B:64:FB Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1BE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1BD8 Signing time: Wed 18 Jun 2025 16:15:06 +0000 Manifest this update: Wed 18 Jun 2025 16:15:06 +0000 Manifest next update: Wed 25 Jun 2025 16:15:06 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: pF/TacqBTy7x2r7vW/UaGX7Q/xBLnPbZnZtxs7dOc10=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7141 (0x1be5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Jun 18 16:15:06 2025 GMT Not After : Jun 25 16:15:06 2025 GMT Subject: CN=6852e60a-03c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f0:2e:3b:22:e2:fa:91:39:ac:3b:78:2a:18: 0f:eb:5a:7e:cb:99:f6:21:b7:07:a1:d6:3c:63:61: 58:e4:0f:99:b3:c0:f9:15:fc:0a:83:1a:b3:c3:3c: b2:91:9c:f6:83:4b:27:4f:a1:c8:d4:19:ef:a4:a1: 3f:ff:0e:e5:ed:73:c2:ad:20:39:07:72:cf:f8:91: 37:b6:de:c7:c9:f7:d1:ce:ce:10:bb:cb:58:03:8f: 1e:40:c0:3e:a5:3c:17:af:ab:dd:7c:f6:44:12:6e: c9:a1:b5:75:d7:00:2a:30:26:ac:e2:25:71:04:cb: be:9b:76:06:bb:2d:b3:78:30:a4:14:b5:3e:21:94: db:8e:8f:9f:16:0f:e4:1a:67:c9:8d:ef:5d:5e:21: 32:e2:40:06:94:19:df:c3:a3:dd:ac:54:a7:ce:33: a6:2d:b2:df:9d:c2:70:90:c3:ed:c0:f3:b4:c3:d0: 23:91:51:b0:3b:02:52:ac:81:ff:f6:65:29:45:93: 82:7c:3c:fc:41:03:36:9b:e5:92:0f:0d:05:b0:30: 4e:19:2b:93:b7:43:29:d0:73:8f:8d:a6:64:cd:e2: a2:a5:8f:40:7c:9b:45:49:29:2e:21:ef:34:f7:62: 9d:fc:e8:3b:e7:da:f0:3a:8b:ef:ce:59:93:70:69: 87:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B6:90:E3:22:72:02:8A:F3:CD:AC:E2:FA:D4:3E:4A:58:4B:64:FB X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f6:68:61:3d:06:df:9c:7d:a6:1c:6d:5e:42:98:42:12:c7: fd:41:fe:54:71:56:2c:4f:f5:18:5b:97:e8:11:f0:25:ee:9e: ca:64:55:b1:60:0b:3d:d0:01:a8:bf:4e:c0:3d:79:e8:85:92: 1a:53:14:38:a4:34:95:dd:93:bd:1f:d2:f9:4d:95:e6:53:38: 2b:73:a8:15:cc:84:8c:80:57:cf:e3:be:22:8e:85:1b:3e:ee: 0a:3c:55:f0:61:5d:9a:b6:cb:82:e7:1c:44:62:99:6a:34:9c: c9:74:84:f8:0d:8b:5a:c1:a2:1b:91:f2:7e:d9:4d:c5:dd:d8: 5e:5b:8c:e5:45:b2:05:78:21:14:47:c6:91:35:9d:31:d0:c1: f2:59:91:85:c3:ef:14:a9:90:d2:f2:f5:34:ca:66:8e:ea:e0: f1:2d:29:b4:22:3e:4b:5e:39:96:48:86:ee:07:18:31:d8:e9: bf:71:41:75:36:ee:52:e3:ca:15:89:68:e5:24:c5:cc:2b:17: f9:e0:f0:33:25:fd:c9:09:5a:e9:cd:bf:50:7e:75:8a:d1:7b: 8e:bb:22:1d:ed:ee:6b:0a:ed:f8:6e:1b:5e:36:93:fe:2e:4e: 7e:59:ed:06:74:f3:8d:c1:32:f7:25:8f:4d:2e:48:27:85:ae: d8:25:fb:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUwNjE4MTYxNTA2WhcNMjUwNjI1MTYxNTA2WjAYMRYwFAYD VQQDEw02ODUyZTYwYS0wM2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PAuOyLi+pE5rDt4KhgP61p+y5n2IbcHodY8Y2FY5A+Zs8D5FfwKgxqzwzyy kZz2g0snT6HI1BnvpKE//w7l7XPCrSA5B3LP+JE3tt7HyffRzs4Qu8tYA48eQMA+ pTwXr6vdfPZEEm7JobV11wAqMCas4iVxBMu+m3YGuy2zeDCkFLU+IZTbjo+fFg/k GmfJje9dXiEy4kAGlBnfw6PdrFSnzjOmLbLfncJwkMPtwPO0w9AjkVGwOwJSrIH/ 9mUpRZOCfDz8QQM2m+WSDw0FsDBOGSuTt0Mp0HOPjaZkzeKipY9AfJtFSSkuIe80 92Kd/Og759rwOovvzlmTcGmHOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFe2kOMi cgKK882s4vrUPkpYS2T7MB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg9mhhPQbfnH2mHG1eQphCEsf9Qf5UcVYsT/UYW5foEfAl7p7KZFWx YAs90AGov07APXnohZIaUxQ4pDSV3ZO9H9L5TZXmUzgrc6gVzISMgFfP474ijoUb Pu4KPFXwYV2atsuC5xxEYplqNJzJdIT4DYtawaIbkfJ+2U3F3dheW4zlRbIFeCEU R8aRNZ0x0MHyWZGFw+8UqZDS8vU0ymaO6uDxLSm0Ij5LXjmWSIbuBxgx2Om/cUF1 Nu5S48oViWjlJMXMKxf54PAzJf3JCVrpzb9QfnWK0XuOuyId7e5rCu34bhteNpP+ Lk5+We0GdPONwTL3JY9NLkgnha7YJftG -----END CERTIFICATE-----Generated at Fri Jun 20 10:02:16 2025 by rpki-client