$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: xHk3uwZJ9pJ0QeaSaoc7zz4zaGlrJNsP/c9UjitJtFw= Subject key identifier: 0A:1D:AC:BA:B8:EF:8A:5D:E2:7C:7F:F0:7A:A5:61:3F:71:32:5A:23 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 348C Signing time: Sat 14 Jun 2025 14:57:32 +0000 Manifest this update: Sat 14 Jun 2025 14:57:32 +0000 Manifest next update: Sat 21 Jun 2025 14:57:32 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: NpCutNrBxBAd+bvoWAwz7J3H06n2L05UiDmyPi/G1+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Jun 14 14:57:32 2025 GMT Not After : Jun 21 14:57:32 2025 GMT Subject: CN=684d8ddc-ae6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:20:1c:4a:af:c7:93:0b:85:f7:e1:08:ce:39: 10:22:7b:5c:7d:85:30:2c:24:20:04:97:45:0a:a5: 8c:02:b0:4d:22:b4:7c:37:89:50:5d:3c:52:20:1e: fb:4f:ef:6a:b6:fe:e6:62:22:50:86:3d:16:1a:99: c3:ef:b8:e4:67:ee:68:64:a8:c6:94:d2:b5:9a:f8: bf:33:b3:d0:5e:32:8f:80:78:c1:3d:2c:9d:98:90: e6:f8:12:1b:87:21:47:5c:ae:d5:48:9f:54:3e:6f: 06:cc:69:0d:2f:32:7d:94:5b:17:8b:c7:92:e0:5a: 7e:0a:e2:19:ba:6f:1b:37:1c:ed:af:02:c8:7d:27: 8c:fb:7d:47:5a:53:84:be:e1:d5:fd:55:87:3b:95: cc:2f:57:0c:1c:5c:06:35:e9:99:8d:b1:e3:39:f1: 82:54:17:a3:07:aa:2a:89:31:5a:45:54:b2:2f:96: e2:49:82:4f:6b:2f:b0:a1:6e:55:69:17:be:1e:e0: 79:a2:4d:01:7e:35:b7:22:6b:47:b0:44:64:9d:81: 46:ea:29:a0:3f:87:ab:cd:c9:0a:e0:e3:22:55:fb: 6a:95:02:b7:9c:bc:0b:48:ec:ce:30:e9:90:f5:1e: b7:96:db:5f:9e:71:82:03:f0:9d:ff:41:6a:f9:f4: 0f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:1D:AC:BA:B8:EF:8A:5D:E2:7C:7F:F0:7A:A5:61:3F:71:32:5A:23 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:36:1c:9e:c5:9d:50:3c:10:81:ea:df:c3:80:1d:61:7d:2a: 58:ce:a5:0d:58:78:9a:94:ab:21:d9:28:8a:88:13:d8:61:f6: fd:03:1d:bb:42:67:53:0e:20:9f:15:9d:f9:b0:15:7b:f8:70: f5:6e:54:a0:d8:e9:f6:7c:a9:31:84:29:f1:86:93:4a:df:94: 9f:9f:e0:59:67:31:04:e6:b8:0e:44:ee:94:53:1b:fa:46:04: 3a:f6:42:2c:9f:09:e3:9f:06:43:8b:d6:19:0f:50:8f:57:df: 1d:4e:c1:ee:84:d2:2b:d4:0a:32:af:9e:d0:7d:f9:4d:07:3e: 2d:06:9c:8e:ff:61:8a:01:55:fd:80:f1:fd:77:f8:17:a1:92: 32:3c:50:cc:c9:73:e8:2e:ae:28:bd:29:11:f3:d4:21:54:9b: 19:86:c9:dd:0f:48:45:b3:48:37:18:61:da:ab:bd:b3:6f:bf: bc:48:ab:ec:d7:bc:5a:1f:f3:7a:ff:af:41:cd:fe:56:31:2c: 05:1e:aa:1d:d8:49:ad:fd:dc:81:59:91:cd:26:93:8f:34:1a: 67:8f:95:63:55:90:13:50:a2:90:8a:e0:4e:34:49:43:ee:bf: 41:16:01:e3:be:e5:a2:ed:1f:52:8e:48:24:c5:f3:43:9c:03: dc:ea:e3:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUwNjE0MTQ1NzMyWhcNMjUwNjIxMTQ1NzMyWjAYMRYwFAYD VQQDEw02ODRkOGRkYy1hZTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiAcSq/HkwuF9+EIzjkQIntcfYUwLCQgBJdFCqWMArBNIrR8N4lQXTxSIB77 T+9qtv7mYiJQhj0WGpnD77jkZ+5oZKjGlNK1mvi/M7PQXjKPgHjBPSydmJDm+BIb hyFHXK7VSJ9UPm8GzGkNLzJ9lFsXi8eS4Fp+CuIZum8bNxztrwLIfSeM+31HWlOE vuHV/VWHO5XML1cMHFwGNemZjbHjOfGCVBejB6oqiTFaRVSyL5biSYJPay+woW5V aRe+HuB5ok0BfjW3ImtHsERknYFG6imgP4erzckK4OMiVftqlQK3nLwLSOzOMOmQ 9R63lttfnnGCA/Cd/0Fq+fQPwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAodrLq4 74pd4nx/8HqlYT9xMlojMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3NhyexZ1QPBCB6t/DgB1hfSpYzqUNWHialKsh2SiKiBPYYfb9Ax27 QmdTDiCfFZ35sBV7+HD1blSg2On2fKkxhCnxhpNK35Sfn+BZZzEE5rgORO6UUxv6 RgQ69kIsnwnjnwZDi9YZD1CPV98dTsHuhNIr1Aoyr57QfflNBz4tBpyO/2GKAVX9 gPH9d/gXoZIyPFDMyXPoLq4ovSkR89QhVJsZhsndD0hFs0g3GGHaq72zb7+8SKvs 17xaH/N6/69Bzf5WMSwFHqod2Emt/dyBWZHNJpOPNBpnj5VjVZATUKKQiuBONElD 7r9BFgHjvuWi7R9SjkgkxfNDnAPc6uPM -----END CERTIFICATE-----Generated at Sat Jun 14 17:35:25 2025 by rpki-client