$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft File: g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft (raw, json) Hash identifier: /i5y3QJWVsjgiBLzAZ3jsCHOBC+m/VmfP6EUNpJjhzU= Subject key identifier: 18:49:9F:2B:45:90:D3:AB:D1:DF:9B:1F:15:C9:B5:F3:86:10:7A:B0 Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Certificate serial: 0742 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft Manifest number: 06C2 Signing time: Thu 12 Jun 2025 22:19:00 +0000 Manifest this update: Thu 12 Jun 2025 22:19:00 +0000 Manifest next update: Thu 19 Jun 2025 22:19:00 +0000 Files and hashes: 1: g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl (hash: oc1dViLSoLSgGEJHOZjJ9sE5G40snNQCBy++6MbJatI=) 2: 756E0BBCEAE711EE88CD8641C4F9AE02.roa (hash: XGyaR0ustoTHYGTHylMLu/5dtoppDHHQmGzCG+ndx/Q=) 3: 993EAAD4522911EFA600C035C4F9AE02.roa (hash: FlAdyp5eoMvMr4EUAvrOqk0AMOfz/t2ORscVMWvVvIs=) 4: 9AE082EC318D11F0A159DF79C4F9AE02.roa (hash: dj/LmQc2hRVWA4GM8f+Wg6owa5LOjJ859j6JGTqOjXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756B7, serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Validity Not Before: Jun 12 22:19:00 2025 GMT Not After : Jun 19 22:19:00 2025 GMT Subject: CN=684b5254-3ab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:28:32:00:82:4c:b3:bb:1a:f5:ca:5a:be:37: 8f:39:4d:f1:7d:04:ea:2c:71:f6:bc:ab:b1:4f:ad: 11:c2:a9:56:10:2f:9a:58:aa:fb:db:08:8f:cb:cc: 86:34:29:3c:c8:95:71:2c:a8:ad:9f:d9:c3:4e:48: b3:67:0b:91:e7:00:a3:9b:ce:c0:3f:c0:33:4f:a1: 99:78:6b:9a:ec:be:77:1a:f6:08:45:26:5c:e6:db: c1:e9:c8:2a:49:bb:0b:87:48:c3:5f:49:6d:d5:c3: 47:6f:cd:50:40:1a:6e:58:b7:7b:fb:90:74:c1:50: 41:a8:67:9c:83:6b:15:74:50:b4:27:f0:42:48:aa: 12:b7:f0:2f:39:5b:dd:15:8c:ba:a2:2a:68:6a:28: 8d:2f:58:ac:d8:7b:61:73:46:76:da:7e:04:1a:9f: e5:e5:88:30:1e:2e:12:de:0d:2b:e3:52:ea:d4:1a: c4:cc:bf:a0:97:a9:76:7e:49:3a:48:5f:28:07:4f: 4f:b9:de:04:30:a9:e7:86:44:7b:aa:22:10:2a:a3: 72:b0:b7:63:d9:79:e2:dd:23:b1:5a:7f:6f:22:cb: 51:8e:f6:26:b4:8b:42:aa:6c:9f:8f:57:0e:9f:9f: 6f:cc:99:ac:80:4f:9c:e3:0d:9d:da:a8:ef:5b:2f: 5b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:49:9F:2B:45:90:D3:AB:D1:DF:9B:1F:15:C9:B5:F3:86:10:7A:B0 X509v3 Authority Key Identifier: keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:35:7d:5e:6a:f4:01:9b:5f:f5:a3:f7:bf:95:0c:bb:a2:79: bb:0e:d1:b2:87:65:d8:87:97:28:79:c0:88:2d:45:06:4f:ff: 3f:9e:a7:bf:b3:8f:a9:5a:1a:26:11:a9:0c:0b:d5:8f:db:89: 3b:27:cb:05:b1:33:89:fe:7a:0f:1d:62:1a:3f:07:20:1e:f4: f2:48:76:08:bd:a8:5b:2f:f6:f1:0d:c5:6e:9b:30:7e:89:9c: f9:42:39:68:68:88:de:52:a1:0f:9a:75:3c:e5:ee:ca:28:80: 0b:e8:dd:d7:61:0f:d2:01:e7:2c:6e:ca:a0:51:cb:ab:60:25: 06:11:31:02:a6:04:63:89:40:04:0a:f4:5c:9a:41:a0:c9:b8: 64:c6:ae:21:8e:8e:18:66:8a:68:b0:0b:29:34:13:4f:1b:f7: 6b:a8:b4:85:f0:8d:61:08:73:4d:ec:78:d1:c0:23:4b:33:bf: 42:d0:27:f0:fd:ec:45:5c:19:0a:4f:72:30:6f:c6:ad:f3:c3: e9:27:c7:8e:69:eb:0f:9f:b2:fe:38:e8:b7:75:e7:a1:c2:b2: 09:d9:a5:4c:c0:14:45:27:0a:32:dd:3d:a2:8a:a3:a7:66:25: d7:7c:a0:0a:66:aa:3a:11:04:81:10:21:4d:ee:59:d3:5e:6b: a4:ad:20:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE QzdFNjA2MUUwHhcNMjUwNjEyMjIxOTAwWhcNMjUwNjE5MjIxOTAwWjAYMRYwFAYD VQQDEw02ODRiNTI1NC0zYWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSgyAIJMs7sa9cpavjePOU3xfQTqLHH2vKuxT60RwqlWEC+aWKr72wiPy8yG NCk8yJVxLKitn9nDTkizZwuR5wCjm87AP8AzT6GZeGua7L53GvYIRSZc5tvB6cgq SbsLh0jDX0lt1cNHb81QQBpuWLd7+5B0wVBBqGecg2sVdFC0J/BCSKoSt/AvOVvd FYy6oipoaiiNL1is2Hthc0Z22n4EGp/l5YgwHi4S3g0r41Lq1BrEzL+gl6l2fkk6 SF8oB09Pud4EMKnnhkR7qiIQKqNysLdj2Xni3SOxWn9vIstRjvYmtItCqmyfj1cO n59vzJmsgE+c4w2d2qjvWy9bWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhJnytF kNOr0d+bHxXJtfOGEHqwMB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2 N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZCNy85NUVGN0RCQTk2N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFa MGpTMFJXMXZablhjZm1CaDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxNX1eavQBm1/1o/e/lQy7onm7DtGyh2XYh5coecCILUUGT/8/nqe/ s4+pWhomEakMC9WP24k7J8sFsTOJ/noPHWIaPwcgHvTySHYIvahbL/bxDcVumzB+ iZz5QjloaIjeUqEPmnU85e7KKIAL6N3XYQ/SAecsbsqgUcurYCUGETECpgRjiUAE CvRcmkGgybhkxq4hjo4YZoposAspNBNPG/drqLSF8I1hCHNN7HjRwCNLM79C0Cfw /exFXBkKT3Iwb8at88PpJ8eOaesPn7L+OOi3deehwrIJ2aVMwBRFJwoy3T2iiqOn ZiXXfKAKZqo6EQSBECFN7lnTXmukrSCh -----END CERTIFICATE-----Generated at Sat Jun 14 17:57:26 2025 by rpki-client