$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: 9EoO2TU4iLQTC0l5GxAGXeWulla48V7bMsbNNRCcEqo= Subject key identifier: 24:B9:BB:D5:36:BB:EA:BA:C9:9C:4C:62:9E:42:FF:A0:96:50:1E:1B Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: 6A Signing time: Sun 15 Jun 2025 06:04:29 +0000 Manifest this update: Sun 15 Jun 2025 06:04:28 +0000 Manifest next update: Sun 22 Jun 2025 06:04:28 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: 4BYhCchQem3bIL9HEUHf9baZTvu4MIOCXxQ2ontCUAQ=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Jun 15 06:04:28 2025 GMT Not After : Jun 22 06:04:28 2025 GMT Subject: CN=684e626c-5053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b0:d5:f7:75:74:4e:0d:5c:3f:18:a8:42:c7: ee:ab:9b:d5:3a:8e:a9:dc:e6:01:53:6e:96:89:d5: cc:bc:34:b8:e4:35:43:6e:42:cc:65:27:7b:77:ff: 8a:22:46:68:af:1c:66:84:f4:dd:d6:9a:44:fb:9e: eb:76:6e:6a:be:32:7d:67:6c:54:bd:bb:0c:a8:05: 5e:b4:4b:c2:9b:b7:ec:57:d5:8e:17:65:db:19:cd: b9:71:8e:46:6b:65:f7:5d:2b:77:97:cb:62:0f:c4: 96:6f:ba:33:3a:7f:4f:a4:e1:ce:9c:82:c3:0d:21: cd:5e:dc:72:9e:97:f2:00:1b:f3:46:de:41:2e:01: f6:14:ba:04:f4:2b:84:40:01:e3:b9:36:37:f2:de: 44:a8:07:41:39:f6:2a:d1:8b:db:62:96:97:be:c1: dd:c9:17:83:22:b9:cd:9e:a1:66:2f:9f:44:06:ad: af:1f:d2:fe:04:af:72:24:44:b4:98:42:19:91:1a: fa:95:df:5d:4f:1c:f9:8c:26:64:c6:d7:f5:48:80: f4:1e:7b:17:ef:f2:b4:7f:56:54:9a:d8:3e:34:e8: cd:6f:88:7d:c5:fd:71:72:e1:16:42:77:53:5e:6e: d6:24:f0:6c:20:53:2b:cb:f3:20:c2:cb:ce:09:a5: 8c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B9:BB:D5:36:BB:EA:BA:C9:9C:4C:62:9E:42:FF:A0:96:50:1E:1B X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:c6:99:e4:e3:e9:95:3b:3d:da:6a:d5:ba:90:12:25:39:27: 1f:b7:5b:1b:f0:1a:88:11:ed:05:b1:99:20:3e:e6:c4:98:79: a0:94:1f:96:54:7a:fe:37:a1:60:ca:82:09:17:c7:44:23:f0: 95:b3:aa:9a:ca:a5:97:f4:1e:96:e7:40:00:22:d8:85:e9:2c: 6c:d4:da:ef:90:38:7c:b5:91:eb:31:1c:63:55:c9:b5:c7:84: f2:63:9c:bf:5a:2f:67:13:71:39:fa:bf:a3:1f:a2:98:47:5a: 50:ff:27:09:c0:2b:6c:41:23:1d:0a:0f:36:d8:26:c2:88:97: 4e:68:32:d0:cc:07:a4:72:f8:a7:b1:21:df:3c:1c:98:f5:79: ea:8b:82:77:1c:e8:52:4f:28:c3:6a:bc:94:fc:d1:7d:1b:45: 08:84:63:b7:6b:33:85:87:2c:1f:3b:07:27:f3:d9:ad:41:97: 1e:34:8a:87:b8:84:43:c8:d8:14:f5:a0:ee:13:18:dc:e2:c1: 99:17:21:24:4c:9b:2e:e3:8c:89:9f:7a:b7:48:89:50:f2:8f: 27:77:3e:98:a0:0b:3f:94:f9:21:d6:49:b3:f5:47:6c:d3:27: f8:e1:ac:58:c4:d4:0b:b7:93:8e:11:d3:43:89:d8:af:a6:f9: 1d:33:98:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkZDNTExMC8GA1UEBRMoQUQ1NDVEMjUwNEZFMURFOTJBRTE3NjZERjQ2NTc2MzdE QjdBN0U3NTAeFw0yNTA2MTUwNjA0MjhaFw0yNTA2MjIwNjA0MjhaMBgxFjAUBgNV BAMTDTY4NGU2MjZjLTUwNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgsNX3dXRODVw/GKhCx+6rm9U6jqnc5gFTbpaJ1cy8NLjkNUNuQsxlJ3t3/4oi RmivHGaE9N3WmkT7nut2bmq+Mn1nbFS9uwyoBV60S8Kbt+xX1Y4XZdsZzblxjkZr ZfddK3eXy2IPxJZvujM6f0+k4c6cgsMNIc1e3HKel/IAG/NG3kEuAfYUugT0K4RA AeO5Njfy3kSoB0E59irRi9tilpe+wd3JF4Miuc2eoWYvn0QGra8f0v4Er3IkRLSY QhmRGvqV311PHPmMJmTG1/VIgPQeexfv8rR/VlSa2D406M1viH3F/XFy4RZCd1Ne btYk8GwgUyvL8yDCy84JpYzNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJLm71Ta7 6rrJnExinkL/oJZQHhswHwYDVR0jBBgwFoAUrVRdJQT+Hekq4XZt9GV2N9t6fnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRkM1L0U1MzlDREEwQUIz RjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZu VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclZSZEpRVC1IZWtxNFhadDlHVjJOOXQ2Zm5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RkM1L0U1MzlDREEwQUIzRjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVr cTRYWnQ5R1YyTjl0NmZuVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHDGmeTj6ZU7Pdpq1bqQEiU5Jx+3WxvwGogR7QWxmSA+5sSYeaCUH5ZU ev43oWDKggkXx0Qj8JWzqprKpZf0HpbnQAAi2IXpLGzU2u+QOHy1kesxHGNVybXH hPJjnL9aL2cTcTn6v6MfophHWlD/JwnAK2xBIx0KDzbYJsKIl05oMtDMB6Ry+Kex Id88HJj1eeqLgncc6FJPKMNqvJT80X0bRQiEY7drM4WHLB87Byfz2a1Blx40ioe4 hEPI2BT1oO4TGNziwZkXISRMmy7jjImferdIiVDyjyd3PpigCz+U+SHWSbP1R2zT J/jhrFjE1Au3k44R00OJ2K+m+R0zmJg= -----END CERTIFICATE-----Generated at Mon Jun 16 14:42:33 2025 by rpki-client