$ rpki-client -vvf rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft File: MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft (raw, json) Hash identifier: J+D57I58kkgtwEjR1bJpFBM9FTRI9YATyIiMm03MUn8= Subject key identifier: A5:45:32:80:02:15:B2:B2:49:33:2F:E4:11:22:96:C2:58:64:05:82 Authority key identifier: 32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 Certificate issuer: /CN=A9180127/serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft Manifest number: 0145 Signing time: Sun 15 Jun 2025 03:30:51 +0000 Manifest this update: Sun 15 Jun 2025 03:30:51 +0000 Manifest next update: Sun 22 Jun 2025 03:30:50 +0000 Files and hashes: 1: MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl (hash: naD7llxi2vgiGT5+5bpGBXYzKk42yoYaEWlyaRJypy0=) 2: 80A66D902A6411F09ACA5C61C4F9AE02.roa (hash: VkiCTpbHNMdBRPiF1oBiRg7dOTIy/YEbnzSkLjMcvbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 03:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180127, serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Validity Not Before: Jun 15 03:30:51 2025 GMT Not After : Jun 22 03:30:50 2025 GMT Subject: CN=684e3e6b-a241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f9:2b:44:7c:d4:ea:92:2f:2b:ce:6b:9a:19: e2:d4:f6:17:42:b6:da:7c:1e:77:27:f5:e1:0b:d3: ff:41:b6:6f:ba:0c:9e:77:45:d4:ab:88:2c:79:ec: 26:96:c9:70:f1:65:fa:1c:62:b9:83:d3:e7:28:15: 6c:22:f2:ab:f9:12:11:dd:3b:c3:f5:c9:55:fb:85: eb:8a:c8:a6:3f:43:4e:09:70:2a:92:ec:eb:50:98: 17:c5:85:b0:41:0f:2f:5a:67:54:24:2b:31:70:9d: 6b:50:58:72:95:6f:63:19:79:bb:d0:84:1b:fd:ab: 8f:d1:19:78:57:3a:29:04:5b:7a:1a:8f:27:dc:68: 40:cd:c7:6e:cc:2f:88:d7:b2:7f:a1:b2:4b:15:0e: 18:ed:a7:5d:a8:59:f3:ff:6a:80:af:1d:68:1a:8d: 61:d9:bd:6c:1d:d1:db:3b:0e:44:f8:5f:03:38:a1: 1b:1f:1e:1b:aa:04:b2:ae:a7:8a:57:e2:08:6c:45: c9:00:58:bd:76:0f:77:1d:da:da:c8:a5:e6:0e:bc: 74:b8:d6:2c:b7:2d:a7:b0:d0:91:85:93:69:9c:b9: fe:94:1a:a1:c1:fc:88:f1:a3:00:a5:e9:4e:b7:87: 5c:e8:b1:02:dd:72:f3:34:3a:63:29:0c:d3:00:5e: ef:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:45:32:80:02:15:B2:B2:49:33:2F:E4:11:22:96:C2:58:64:05:82 X509v3 Authority Key Identifier: keyid:32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5a:be:d2:01:90:91:f1:1a:fd:75:b2:36:3f:f9:ba:75:66: 8a:92:30:62:bc:11:ca:89:5a:4a:de:dd:9a:d9:9d:b0:63:bb: 09:3e:b3:cd:e9:f3:37:ea:67:94:d7:15:bd:a4:ec:a3:7b:ad: 19:63:1a:ff:ff:4a:a2:08:f5:e0:a7:aa:da:c3:1d:c6:39:19: 76:e9:a9:73:f6:83:77:68:0c:7d:6c:45:89:eb:e5:42:20:99: 75:4c:1c:09:98:9f:c9:93:db:2d:7e:d5:33:c9:69:44:02:15: 2e:a6:0f:0c:7e:0d:57:e7:76:bb:a5:ff:07:34:ec:94:01:b7: 56:61:9a:5a:7f:e0:a4:1c:4d:13:24:d2:b7:4c:1e:01:f2:b4: b2:33:20:4a:77:c4:5f:0a:d4:bc:32:82:e9:e7:a0:88:36:25: f1:35:47:7c:8b:da:b2:24:60:87:b9:30:3c:a7:81:5b:38:41: dd:7a:ad:d2:93:12:4e:fa:7f:6e:f1:32:87:36:93:a3:53:2b: b3:ee:5b:84:3b:a8:0c:9c:f9:01:d9:e1:cc:d5:dc:92:a1:b2: 5d:9d:e1:05:1c:66:9a:d1:fd:87:4e:2b:95:40:07:b7:ef:50: 52:06:b9:56:68:e5:84:4e:9d:80:d2:c2:c6:99:b5:05:58:30: 33:13:7d:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxMjcxMTAvBgNVBAUTKDMyMTVDNTUxNkFGQjU0RDhFNjEyRDFFQzNENTE4MkQz MjFFNTMxNzEwHhcNMjUwNjE1MDMzMDUxWhcNMjUwNjIyMDMzMDUwWjAYMRYwFAYD VQQDEw02ODRlM2U2Yi1hMjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/krRHzU6pIvK85rmhni1PYXQrbafB53J/XhC9P/QbZvugyed0XUq4gseewm lslw8WX6HGK5g9PnKBVsIvKr+RIR3TvD9clV+4XrisimP0NOCXAqkuzrUJgXxYWw QQ8vWmdUJCsxcJ1rUFhylW9jGXm70IQb/auP0Rl4VzopBFt6Go8n3GhAzcduzC+I 17J/obJLFQ4Y7addqFnz/2qArx1oGo1h2b1sHdHbOw5E+F8DOKEbHx4bqgSyrqeK V+IIbEXJAFi9dg93HdrayKXmDrx0uNYsty2nsNCRhZNpnLn+lBqhwfyI8aMApelO t4dc6LEC3XLzNDpjKQzTAF7v7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVFMoAC FbKySTMv5BEilsJYZAWCMB8GA1UdIwQYMBaAFDIVxVFq+1TY5hLR7D1RgtMh5TFx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDEyNy8xNkFGMUQyMDVC N0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZOam1FdEhzUFZHQzB5SGxN WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oWEZVV3I3Vk5qbUV0SHNQVkdDMHlIbE1YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDEyNy8xNkFGMUQyMDVCN0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZO am1FdEhzUFZHQzB5SGxNWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMWr7SAZCR8Rr9dbI2P/m6dWaKkjBivBHKiVpK3t2a2Z2wY7sJPrPN 6fM36meU1xW9pOyje60ZYxr//0qiCPXgp6rawx3GORl26alz9oN3aAx9bEWJ6+VC IJl1TBwJmJ/Jk9stftUzyWlEAhUupg8Mfg1X53a7pf8HNOyUAbdWYZpaf+CkHE0T JNK3TB4B8rSyMyBKd8RfCtS8MoLp56CINiXxNUd8i9qyJGCHuTA8p4FbOEHdeq3S kxJO+n9u8TKHNpOjUyuz7luEO6gMnPkB2eHM1dySobJdneEFHGaa0f2HTiuVQAe3 71BSBrlWaOWETp2A0sLGmbUFWDAzE31u -----END CERTIFICATE-----Generated at Mon Jun 16 17:13:08 2025 by rpki-client