$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: qdz1ETrhjY7iWqbjcsC4QwgJBgJH+1qJF+pVLh6A56k= Subject key identifier: 50:1E:E2:6E:CD:E9:31:FD:BA:A2:D7:12:1F:E0:B7:0B:5B:FE:5C:D2 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C34 Signing time: Sat 14 Jun 2025 18:27:22 +0000 Manifest this update: Sat 14 Jun 2025 18:27:22 +0000 Manifest next update: Sat 21 Jun 2025 18:27:22 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: pFZhaLrJp4vTNVTl1DsMDFj4MK52144IUfpPv8hrhHs=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3135 (0xc3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Jun 14 18:27:22 2025 GMT Not After : Jun 21 18:27:22 2025 GMT Subject: CN=684dbf0a-98c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:25:df:d5:2a:3a:09:a7:40:1b:90:63:94:f3: 78:03:02:d9:a0:ba:70:3c:ef:20:1f:ad:28:8c:b6: 1e:81:9c:da:4f:c8:9f:64:45:3d:98:e8:73:fd:14: a0:cf:e6:7f:0e:77:83:74:53:11:77:f1:1a:e4:1b: 0c:23:fa:8f:da:e3:a8:9f:f3:46:7f:bf:60:73:2e: 74:33:5f:6b:cf:1b:f8:e2:1e:04:ee:69:ee:4c:44: 9e:4a:60:d1:92:d0:8b:0a:d1:68:f3:cb:f8:de:aa: 26:5b:27:69:f0:14:90:46:a5:f6:17:06:a8:2f:ba: 55:1f:24:25:65:a1:21:93:49:31:00:60:5b:fa:2e: 3a:03:b4:b8:2f:1e:25:53:92:bd:82:c9:63:be:3f: b5:08:7a:de:a3:98:05:15:a5:9a:b6:d6:8a:71:d7: 6f:fe:ea:ae:09:e9:d6:ac:98:5f:b0:ef:1f:39:d0: 8c:28:d1:88:63:39:73:a7:51:b3:d0:2b:ba:03:e3: b3:0a:5f:2b:85:da:42:95:af:07:1c:b3:68:d5:c8: 8e:49:81:48:22:19:9a:a5:39:47:96:8b:ce:e9:5c: bc:93:92:76:90:a2:08:c2:a7:36:23:19:9c:41:dd: 13:a8:12:b0:80:43:92:75:25:09:01:df:d0:3c:d0: 05:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1E:E2:6E:CD:E9:31:FD:BA:A2:D7:12:1F:E0:B7:0B:5B:FE:5C:D2 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ce:7b:1f:08:6d:9e:fb:ae:ba:5f:99:17:5f:11:ef:15:50: 9e:61:6e:b3:b2:a2:b9:65:37:3c:e8:d7:cd:89:66:a0:bc:c8: b5:ab:cd:27:ce:cc:33:ce:b0:9e:23:e7:c9:bf:38:74:e3:ff: b0:04:ef:da:63:4d:0b:05:cd:cd:9b:e2:f7:e7:62:35:6e:c0: e8:c9:ea:56:2d:06:75:58:2b:b2:0b:47:cc:8b:4e:a2:ae:a1: ab:bd:db:db:84:5d:2c:76:94:d4:33:47:cb:62:e9:82:86:92: a2:c8:73:9e:fc:bb:7d:71:a1:12:6d:f4:3a:06:a3:53:05:0c: c7:5b:78:4b:58:de:0a:ab:28:e7:00:b3:1c:8b:b4:c7:6f:3c: 04:cf:db:2f:16:81:4b:c0:d5:61:d5:d0:72:5b:bd:ac:a3:f4: 3d:64:6e:a8:67:ba:a1:ff:1f:be:98:c0:5e:2c:9c:62:64:e4: cb:a0:c7:a7:83:7a:b2:cb:7d:22:47:fb:6f:fe:a5:10:42:e8: e8:46:aa:30:38:3b:b9:87:f9:4b:24:49:8a:43:1a:95:f2:af: e2:39:21:ef:69:e3:6c:20:f5:c3:6c:5d:08:68:39:ec:f4:e2: 34:57:0d:75:64:91:85:43:ec:47:f5:03:b6:d8:7d:04:f8:8b: d6:c2:e7:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwNjE0MTgyNzIyWhcNMjUwNjIxMTgyNzIyWjAYMRYwFAYD VQQDEw02ODRkYmYwYS05OGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SXf1So6CadAG5BjlPN4AwLZoLpwPO8gH60ojLYegZzaT8ifZEU9mOhz/RSg z+Z/DneDdFMRd/Ea5BsMI/qP2uOon/NGf79gcy50M19rzxv44h4E7mnuTESeSmDR ktCLCtFo88v43qomWydp8BSQRqX2FwaoL7pVHyQlZaEhk0kxAGBb+i46A7S4Lx4l U5K9gsljvj+1CHreo5gFFaWattaKcddv/uquCenWrJhfsO8fOdCMKNGIYzlzp1Gz 0Cu6A+OzCl8rhdpCla8HHLNo1ciOSYFIIhmapTlHlovO6Vy8k5J2kKIIwqc2Ixmc Qd0TqBKwgEOSdSUJAd/QPNAFrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAe4m7N 6TH9uqLXEh/gtwtb/lzSMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMznsfCG2e+666X5kXXxHvFVCeYW6zsqK5ZTc86NfNiWagvMi1q80n zswzzrCeI+fJvzh04/+wBO/aY00LBc3Nm+L352I1bsDoyepWLQZ1WCuyC0fMi06i rqGrvdvbhF0sdpTUM0fLYumChpKiyHOe/Lt9caESbfQ6BqNTBQzHW3hLWN4Kqyjn ALMci7THbzwEz9svFoFLwNVh1dByW72so/Q9ZG6oZ7qh/x++mMBeLJxiZOTLoMen g3qyy30iR/tv/qUQQujoRqowODu5h/lLJEmKQxqV8q/iOSHvaeNsIPXDbF0IaDns 9OI0Vw11ZJGFQ+xH9QO22H0E+IvWwufn -----END CERTIFICATE-----Generated at Mon Jun 16 18:51:39 2025 by rpki-client