$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: Ey0mo4u4fztH3gG8d73QLRtvN+4KyjNq4Lc/iKjOg+g= Subject key identifier: 07:E8:64:FA:F5:BC:C5:EB:8C:8F:E4:1F:91:0C:AA:91:76:14:4D:C0 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 97 Signing time: Sun 15 Jun 2025 05:32:38 +0000 Manifest this update: Sun 15 Jun 2025 05:32:38 +0000 Manifest next update: Sun 22 Jun 2025 05:32:38 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: Vh282Iwx140HU9u4i+zLNGWf4AxKe/JTwacSfHs2WE8=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: qpNZ0Lm7ohL4bDYSXZ5HFsKxSW3wfA050YYCOcr+GtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Jun 15 05:32:38 2025 GMT Not After : Jun 22 05:32:38 2025 GMT Subject: CN=684e5af6-b2d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:12:a8:ff:08:9b:74:cb:b0:1e:a0:47:95:b5: 1e:d7:95:cb:e6:31:1c:7c:b5:ca:88:3f:e2:ab:16: cd:79:32:be:7e:64:11:23:88:d1:b3:99:b0:24:9f: b8:b9:b9:ee:66:e7:3b:c3:8a:28:e5:99:d5:fc:16: c6:62:25:6c:c8:1b:ef:a9:5a:73:e0:ed:ee:3c:36: b7:67:ce:d6:f9:5d:4d:58:5e:af:b9:8a:1d:ed:a0: dd:4e:0e:5b:fe:86:e8:dc:80:f9:c9:bf:7f:b1:a2: 62:ec:23:f8:64:bd:9e:4c:d5:87:27:72:5f:48:16: 83:d6:8e:c3:43:66:a2:18:d9:73:28:0e:04:f8:e1: ef:ad:7b:f4:8d:c4:1a:80:20:e2:c5:a8:da:3d:aa: fe:bd:18:cb:a5:2c:aa:e8:23:3c:90:07:0c:eb:6a: 17:51:68:47:0c:59:db:89:3d:58:57:39:a1:f6:50: 30:be:7f:03:df:22:87:e6:b7:58:cb:2d:75:73:3d: 82:1c:8e:f1:c2:61:d1:a6:7a:f1:d7:38:a7:8d:d5: 3e:61:45:36:f0:3a:ab:b8:64:7c:2b:bf:2e:67:ae: 75:f9:20:7d:e1:3d:3d:aa:f2:39:ac:b3:bb:5e:4e: fc:50:8a:de:14:c0:41:e8:98:36:07:d9:b5:77:83: 9a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E8:64:FA:F5:BC:C5:EB:8C:8F:E4:1F:91:0C:AA:91:76:14:4D:C0 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4e:2b:e4:1e:10:82:62:af:de:f8:50:78:62:5b:e3:7e:c8: c2:f3:4d:b3:0a:87:db:f2:b5:24:56:9f:43:39:e3:b4:93:2c: 2e:89:43:4a:6c:90:75:68:31:f0:fc:02:47:76:86:eb:f7:9d: f6:65:32:14:69:f4:d9:1f:ae:d0:5f:5a:cb:8c:65:6e:96:82: 94:c7:44:3f:73:e8:33:d6:e3:58:74:eb:9f:ba:f2:d5:94:b6: a9:7d:c0:61:fb:db:b5:63:36:c7:f3:36:32:ed:cf:20:7c:60: e3:83:a3:81:00:19:14:a3:ed:4f:39:6c:c2:e6:67:bf:84:26: 38:22:96:df:a2:dd:c7:a8:ef:7a:01:01:38:4f:52:f9:d6:46: 54:aa:94:3c:99:ac:f2:6d:89:86:ed:0b:3f:43:29:0e:12:35: 0c:ff:26:17:7f:40:01:77:57:7a:ff:9e:bb:0f:21:8b:7b:15: f6:d9:f9:75:3f:27:8e:c5:d0:5a:d0:a1:a0:88:77:47:d7:69: bb:1c:af:0b:86:86:74:dc:3d:d3:5f:df:44:2f:60:86:0b:f9: eb:6d:f6:f7:59:c4:77:a3:12:67:78:f9:0b:5b:6e:3b:44:e6: a4:00:2a:a1:01:b7:ae:d2:d0:60:4f:9e:15:e0:3f:74:0f:ec: d2:3c:7d:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUwNjE1MDUzMjM4WhcNMjUwNjIyMDUzMjM4WjAYMRYwFAYD VQQDEw02ODRlNWFmNi1iMmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRKo/wibdMuwHqBHlbUe15XL5jEcfLXKiD/iqxbNeTK+fmQRI4jRs5mwJJ+4 ubnuZuc7w4oo5ZnV/BbGYiVsyBvvqVpz4O3uPDa3Z87W+V1NWF6vuYod7aDdTg5b /obo3ID5yb9/saJi7CP4ZL2eTNWHJ3JfSBaD1o7DQ2aiGNlzKA4E+OHvrXv0jcQa gCDixajaPar+vRjLpSyq6CM8kAcM62oXUWhHDFnbiT1YVzmh9lAwvn8D3yKH5rdY yy11cz2CHI7xwmHRpnrx1zinjdU+YUU28DqruGR8K78uZ651+SB94T09qvI5rLO7 Xk78UIreFMBB6Jg2B9m1d4OakwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfoZPr1 vMXrjI/kH5EMqpF2FE3AMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMTivkHhCCYq/e+FB4YlvjfsjC802zCofb8rUkVp9DOeO0kywuiUNK bJB1aDHw/AJHdobr9532ZTIUafTZH67QX1rLjGVuloKUx0Q/c+gz1uNYdOufuvLV lLapfcBh+9u1YzbH8zYy7c8gfGDjg6OBABkUo+1POWzC5me/hCY4Ipbfot3HqO96 AQE4T1L51kZUqpQ8mazybYmG7Qs/QykOEjUM/yYXf0ABd1d6/567DyGLexX22fl1 PyeOxdBa0KGgiHdH12m7HK8LhoZ03D3TX99EL2CGC/nrbfb3WcR3oxJnePkLW247 ROakACqhAbeu0tBgT54V4D90D+zSPH2Z -----END CERTIFICATE-----Generated at Mon Jun 16 14:53:15 2025 by rpki-client