$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: VViEuPCce84d1/mBC5rFtbDWFqiOQ6Jt65FNZtgP/fA= Subject key identifier: F0:95:00:EB:33:21:1A:B5:99:4B:36:CF:86:C4:36:FE:E8:C7:CC:B2 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 25 Signing time: Sat 21 Jun 2025 06:50:46 +0000 Manifest this update: Sat 21 Jun 2025 06:50:46 +0000 Manifest next update: Sat 28 Jun 2025 06:50:46 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: U7x6buS6MUh5xvcVp1dI6L8GE2OKI68kn61cM251qQo=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 06:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: Jun 21 06:50:46 2025 GMT Not After : Jun 28 06:50:46 2025 GMT Subject: CN=68565646-79e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:46:88:f5:ab:8e:e1:67:6a:c4:9a:20:e1:41: 64:11:3d:ab:b2:a4:43:00:4b:6c:65:1e:3b:17:2a: 38:ab:bf:3b:40:18:34:89:fe:39:42:ab:38:d7:2b: d9:1d:4b:c2:0e:8c:c7:9d:75:35:05:a3:c9:4d:a2: 89:26:86:3a:98:f3:3d:24:17:f5:0e:24:1d:44:27: 20:09:43:a8:67:30:6c:ec:0c:8d:c9:85:77:e7:e5: d0:fe:8f:46:cc:00:de:8f:70:4a:5b:cc:7a:a5:31: 02:d9:a2:0f:58:00:2d:bc:c8:c9:75:8c:2d:d6:83: 25:1c:35:ef:7e:f7:7b:41:78:b7:73:12:9f:36:c5: db:66:ee:70:f3:aa:c8:5b:ef:f8:35:a6:19:32:c6: 5e:77:13:e0:d0:6b:ac:c7:ca:4b:1d:9e:37:d8:b4: 9f:8b:5f:ca:2d:c7:db:48:5f:34:61:20:e8:9c:a1: ea:ce:07:7e:e5:97:bb:43:18:2e:4b:60:ee:1d:7c: c3:5d:e5:55:51:9a:30:61:a2:33:eb:e3:a5:3f:5e: dd:2d:ac:72:46:f6:b3:c5:74:28:8c:70:46:c8:ee: 57:fe:9c:a0:41:d4:b0:e7:47:3e:48:b9:17:4d:11: 9a:c5:6c:0d:b4:f7:41:6a:69:7c:a1:c3:50:03:f1: 3c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:95:00:EB:33:21:1A:B5:99:4B:36:CF:86:C4:36:FE:E8:C7:CC:B2 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:dd:af:1c:e2:cb:61:1c:c8:53:92:50:52:66:d2:7b:3f:5d: 77:38:ed:92:19:cc:08:ec:67:93:18:a9:13:07:f5:78:52:43: 51:35:0f:90:97:98:c6:c9:11:4a:fe:3a:aa:67:f7:be:e3:9b: 31:4f:5b:db:11:a5:c9:c6:32:be:ad:15:0b:bc:c3:e5:dc:49: 6b:ba:5f:5d:de:79:0c:b6:0d:b3:56:f7:10:f8:4b:60:91:1f: 49:d2:26:e6:54:0e:68:58:d8:95:63:bf:14:4f:99:1e:76:1b: c8:05:f3:ae:18:cb:e4:02:a3:e4:a5:93:75:bf:3b:3b:aa:b8: e2:24:49:ae:27:c6:f8:2b:b1:a5:13:90:50:2e:2d:57:bf:2e: 48:5f:a9:c0:61:ec:54:ff:59:99:ad:c4:4a:86:cb:92:a1:ca: 97:ab:8d:e7:04:dd:3d:41:b7:1b:69:15:25:3e:b7:6a:3b:76: 45:f4:cb:bb:dc:ab:aa:94:27:7c:ef:0e:68:ff:ca:9c:94:73: 62:63:24:6a:22:1e:99:e4:5d:96:cd:ad:0b:f0:52:c4:c4:96: 4e:78:b3:db:37:44:28:45:54:bb:4b:b2:2c:35:49:2c:81:cc: 47:27:73:05:81:c5:93:40:3e:9e:be:5a:cb:8c:04:91:df:7f: fa:a8:96:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTA2MjEwNjUwNDZaFw0yNTA2MjgwNjUwNDZaMBgxFjAUBgNV BAMTDTY4NTY1NjQ2LTc5ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGRoj1q47hZ2rEmiDhQWQRPauypEMAS2xlHjsXKjirvztAGDSJ/jlCqzjXK9kd S8IOjMeddTUFo8lNookmhjqY8z0kF/UOJB1EJyAJQ6hnMGzsDI3JhXfn5dD+j0bM AN6PcEpbzHqlMQLZog9YAC28yMl1jC3WgyUcNe9+93tBeLdzEp82xdtm7nDzqshb 7/g1phkyxl53E+DQa6zHyksdnjfYtJ+LX8otx9tIXzRhIOicoerOB37ll7tDGC5L YO4dfMNd5VVRmjBhojPr46U/Xt0trHJG9rPFdCiMcEbI7lf+nKBB1LDnRz5IuRdN EZrFbA2090FqaXyhw1AD8TzhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8JUA6zMh GrWZSzbPhsQ2/ujHzLIwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALTdrxziy2EcyFOSUFJm0ns/XXc47ZIZzAjsZ5MYqRMH9XhSQ1E1D5CX mMbJEUr+Oqpn977jmzFPW9sRpcnGMr6tFQu8w+XcSWu6X13eeQy2DbNW9xD4S2CR H0nSJuZUDmhY2JVjvxRPmR52G8gF864Yy+QCo+Slk3W/OzuquOIkSa4nxvgrsaUT kFAuLVe/LkhfqcBh7FT/WZmtxEqGy5KhyperjecE3T1BtxtpFSU+t2o7dkX0y7vc q6qUJ3zvDmj/ypyUc2JjJGoiHpnkXZbNrQvwUsTElk54s9s3RChFVLtLsiw1SSyB zEcncwWBxZNAPp6+WsuMBJHff/qolmI= -----END CERTIFICATE-----Generated at Mon Jun 23 02:25:09 2025 by rpki-client