$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: vPQKBiqSdpgrS4ZCo0EyILUS8pMCa2GM+DMsst1Tx8Y= Subject key identifier: 8B:88:0C:7C:98:92:02:F4:F0:F2:4B:CC:80:F3:E7:31:A0:A8:30:03 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: AE Signing time: Thu 19 Jun 2025 05:40:33 +0000 Manifest this update: Thu 19 Jun 2025 05:40:32 +0000 Manifest next update: Thu 26 Jun 2025 05:40:32 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: 7wN943zxFY9Nzi2uMrAJTUu+GgDR2zgYNE4e3mCqRGA=) 2: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: 8/Hd/HSfsJzaFCQ02un66M2YDgdginFixcaFn5JQidY=) 3: DB9E3242C8E811EF86365B2AC4F9AE02.roa (hash: v6pTRro113en+h2WsmtXqk2rxE6NwkgghVA0fGJU70E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Jun 19 05:40:32 2025 GMT Not After : Jun 26 05:40:32 2025 GMT Subject: CN=6853a2d0-2bb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ec:1c:aa:c5:89:1d:b6:bb:bf:74:ac:94:7b: f6:a0:90:19:a4:42:f8:89:c2:3c:6f:9f:1f:74:6e: a5:82:32:cc:e9:ef:1d:d7:06:af:33:48:67:85:3c: 68:59:1b:c1:27:bd:07:ff:2e:5b:6e:f6:01:d8:cb: ee:27:26:d7:95:af:b4:46:ee:36:51:b0:95:0a:fe: f8:c3:4f:b6:71:eb:51:bf:12:b8:9a:01:9b:1a:1e: 03:f8:d5:8a:01:cd:d3:41:21:45:32:c4:cc:b8:be: a4:30:a6:43:34:12:d0:5c:ff:9d:a6:a4:1e:b6:2b: 50:9d:fe:fe:60:8c:ca:a6:31:97:05:61:f8:c1:f7: 1d:aa:42:13:29:9c:5a:60:83:f8:31:df:f8:4a:46: 84:79:72:d7:f9:37:f4:3b:8d:a3:a7:65:4a:69:58: a8:46:ff:fb:93:8c:b9:97:13:8e:4f:bc:ef:0a:9a: ff:dc:76:aa:62:29:a7:56:33:1e:30:d0:ec:e9:e9: ff:93:7d:32:40:22:78:21:6e:ed:3c:6f:03:c1:1f: 8b:2b:e1:9f:4a:e4:3c:9e:52:aa:00:68:2f:b8:84: b5:3b:ac:ec:8a:18:d9:57:ed:89:8f:4e:08:e3:42: 9a:65:61:b8:4b:dc:05:b1:d0:a9:da:0f:fc:51:e5: 1d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:88:0C:7C:98:92:02:F4:F0:F2:4B:CC:80:F3:E7:31:A0:A8:30:03 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:62:73:5d:7e:b8:08:52:f0:5a:6e:9c:5c:c8:dc:c3:d3:cc: d9:18:5d:18:b5:21:ef:da:a3:80:fa:89:d5:31:d2:d0:7d:c5: 05:18:95:f1:70:9f:e1:4c:26:1e:e0:c2:ec:d1:ca:e1:be:c2: d0:eb:78:bf:30:12:b8:50:18:d1:8d:56:d9:db:f9:69:18:99: dd:01:ff:c8:bb:69:8b:60:8c:e9:1d:55:cd:34:a5:3f:1d:6b: 58:0e:f5:db:21:a4:a0:f0:06:b8:0a:ff:cf:b2:72:5c:a3:19: 1a:f4:69:9e:04:a9:5c:47:82:09:86:47:8e:45:fc:ff:0b:8b: f2:2f:eb:cd:86:e3:c6:72:f9:5e:a5:11:8b:bf:71:b4:cc:4a: f0:d0:0a:2d:b7:83:5a:d1:7b:ff:33:49:c7:53:fe:a6:ff:03: cf:84:05:75:76:02:bc:f0:d4:df:5e:12:6f:5d:ff:bd:a1:ac: 27:f1:97:e4:23:f9:1f:96:36:3b:75:39:db:e9:cb:a0:85:a8: 95:b2:5c:38:e0:bd:ad:67:44:7d:d2:8b:ef:54:c9:27:56:22: 8c:7f:a9:3d:d0:50:06:c6:98:35:44:38:e6:6d:c4:e3:8f:54: 32:44:5c:c6:01:3a:57:8f:52:54:dc:ee:c0:99:c4:4b:32:b3: 22:5d:07:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUwNjE5MDU0MDMyWhcNMjUwNjI2MDU0MDMyWjAYMRYwFAYD VQQDEw02ODUzYTJkMC0yYmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsewcqsWJHba7v3SslHv2oJAZpEL4icI8b58fdG6lgjLM6e8d1wavM0hnhTxo WRvBJ70H/y5bbvYB2MvuJybXla+0Ru42UbCVCv74w0+2cetRvxK4mgGbGh4D+NWK Ac3TQSFFMsTMuL6kMKZDNBLQXP+dpqQetitQnf7+YIzKpjGXBWH4wfcdqkITKZxa YIP4Md/4SkaEeXLX+Tf0O42jp2VKaVioRv/7k4y5lxOOT7zvCpr/3HaqYimnVjMe MNDs6en/k30yQCJ4IW7tPG8DwR+LK+GfSuQ8nlKqAGgvuIS1O6zsihjZV+2Jj04I 40KaZWG4S9wFsdCp2g/8UeUdfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuIDHyY kgL08PJLzIDz5zGgqDADMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTYnNdfrgIUvBabpxcyNzD08zZGF0YtSHv2qOA+onVMdLQfcUFGJXx cJ/hTCYe4MLs0crhvsLQ63i/MBK4UBjRjVbZ2/lpGJndAf/Iu2mLYIzpHVXNNKU/ HWtYDvXbIaSg8Aa4Cv/PsnJcoxka9GmeBKlcR4IJhkeORfz/C4vyL+vNhuPGcvle pRGLv3G0zErw0Aott4Na0Xv/M0nHU/6m/wPPhAV1dgK88NTfXhJvXf+9oawn8Zfk I/kfljY7dTnb6cughaiVslw44L2tZ0R90ovvVMknViKMf6k90FAGxpg1RDjmbcTj j1QyRFzGATpXj1JU3O7AmcRLMrMiXQel -----END CERTIFICATE-----Generated at Fri Jun 20 08:36:12 2025 by rpki-client