$ rpki-client -vvf rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft File: FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft (raw, json) Hash identifier: 6KePNO8CH0aeNMcTx9JvR6OYKvdk1rXKGiIOUr+fc+I= Subject key identifier: E7:28:DC:B5:4C:04:A8:C7:5A:BF:51:F4:37:10:6D:21:98:10:DE:DF Authority key identifier: 15:28:F6:3D:28:F3:E1:36:69:02:C6:B6:4A:F5:86:6C:CB:A8:DA:C4 Certificate issuer: /CN=A9189BB3/serialNumber=1528F63D28F3E1366902C6B64AF5866CCBA8DAC4 Certificate serial: 0599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft Manifest number: 058C Signing time: Thu 12 Jun 2025 22:55:04 +0000 Manifest this update: Thu 12 Jun 2025 22:55:03 +0000 Manifest next update: Thu 19 Jun 2025 22:55:03 +0000 Files and hashes: 1: FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl (hash: r72R6RuhmynoTvs/aJdtst21Eiqf/9UWLEBbtVTmxbA=) 2: AB532852B38911ED825BDC70C4F9AE02.roa (hash: ANHxtKugodgoKSgnFI0z3Q5CTPRRYAMndCAFyQe7v1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189BB3, serialNumber=1528F63D28F3E1366902C6B64AF5866CCBA8DAC4 Validity Not Before: Jun 12 22:55:03 2025 GMT Not After : Jun 19 22:55:03 2025 GMT Subject: CN=684b5ac7-684b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:95:47:99:67:52:5e:57:48:da:21:77:cb:a3: 71:f0:42:a6:73:c0:27:3d:65:07:5b:3e:d7:cf:b7: 24:71:0d:dc:76:54:4a:8d:17:de:37:e4:bb:67:7d: 13:c9:56:20:ab:27:20:3c:4a:f8:04:19:e9:60:81: 10:34:98:46:30:d0:f3:31:d8:bd:e1:a1:94:e6:be: 9a:8a:d8:37:77:8f:53:4a:c1:74:29:f0:c1:a1:2f: 24:54:ae:4c:7d:7a:25:b4:20:fe:5c:a9:80:ec:75: ae:e7:95:ee:13:94:95:9c:3b:d9:42:37:c5:9f:09: 8a:56:f1:fc:66:45:a3:52:c4:31:44:f1:5e:5a:f8: 5a:c1:ef:23:ff:ad:f7:28:1d:ff:0b:be:14:3f:05: 71:7f:43:34:b7:10:e8:5f:52:7d:47:ea:b6:a5:cb: d7:20:60:0c:62:f3:06:24:8d:0d:2d:41:3e:9f:13: 1b:d0:10:74:27:a2:c2:f9:42:92:21:ca:f2:9b:b7: 42:59:31:52:bd:8b:70:1b:bd:c4:cb:04:4b:ab:9d: 37:65:3d:45:40:4f:ba:8e:7d:02:ad:9e:f4:5e:78: 01:eb:d6:40:ad:3c:16:5f:e9:e8:dc:d8:21:ad:69: 0c:11:59:b2:59:02:0d:d2:a6:0c:63:54:4b:7a:ff: fe:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:28:DC:B5:4C:04:A8:C7:5A:BF:51:F4:37:10:6D:21:98:10:DE:DF X509v3 Authority Key Identifier: keyid:15:28:F6:3D:28:F3:E1:36:69:02:C6:B6:4A:F5:86:6C:CB:A8:DA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:b1:ac:45:d4:a1:f3:fa:8a:39:e9:4b:b5:09:40:26:bb:a0: 6f:06:71:a4:39:6d:cc:fb:7f:08:a4:d7:f2:8c:cb:15:f9:a1: 92:30:a0:c9:fb:f5:3f:8b:7a:a5:0c:e7:27:8a:f7:89:d8:aa: 3e:36:35:5d:72:34:61:29:c4:aa:a6:76:7f:e8:81:f7:06:78: 0f:1e:7c:e4:bf:d9:27:fe:b7:9a:8a:96:91:5a:aa:c2:c9:4e: 63:ce:b8:e2:b1:51:90:d7:24:0c:3f:32:04:05:7a:05:31:7d: d2:21:17:58:61:74:78:d0:35:f9:2e:f6:65:8f:35:92:7c:5e: 93:40:1d:f6:63:b0:f8:cd:ad:0d:09:fd:f0:e4:9e:8b:44:26: 34:0c:50:97:96:c0:af:7b:73:7e:ff:8d:b7:fb:ae:16:6c:47: f4:bc:f2:5b:22:7d:3a:d9:df:c2:bf:27:0c:eb:af:6c:23:5f: 35:d5:d9:07:e0:5c:b3:1b:f3:47:4c:2f:c2:6c:6e:55:b3:db: ae:16:11:e2:45:40:d9:60:86:b7:28:46:b9:e0:c0:9f:5c:e5: ea:f8:51:38:01:7e:9c:c1:60:00:d4:2b:1c:89:a8:4d:49:49: 8c:00:ca:66:65:24:b1:8e:8c:7a:16:bb:ef:05:a1:d2:9b:32: 15:85:2f:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCQjMxMTAvBgNVBAUTKDE1MjhGNjNEMjhGM0UxMzY2OTAyQzZCNjRBRjU4NjZD Q0JBOERBQzQwHhcNMjUwNjEyMjI1NTAzWhcNMjUwNjE5MjI1NTAzWjAYMRYwFAYD VQQDEw02ODRiNWFjNy02ODRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4pVHmWdSXldI2iF3y6Nx8EKmc8AnPWUHWz7Xz7ckcQ3cdlRKjRfeN+S7Z30T yVYgqycgPEr4BBnpYIEQNJhGMNDzMdi94aGU5r6aitg3d49TSsF0KfDBoS8kVK5M fXoltCD+XKmA7HWu55XuE5SVnDvZQjfFnwmKVvH8ZkWjUsQxRPFeWvhawe8j/633 KB3/C74UPwVxf0M0txDoX1J9R+q2pcvXIGAMYvMGJI0NLUE+nxMb0BB0J6LC+UKS Icrym7dCWTFSvYtwG73EywRLq503ZT1FQE+6jn0CrZ70XngB69ZArTwWX+no3Ngh rWkMEVmyWQIN0qYMY1RLev/+bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOco3LVM BKjHWr9R9DcQbSGYEN7fMB8GA1UdIwQYMBaAFBUo9j0o8+E2aQLGtkr1hmzLqNrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUJCMy9BNDQ3ODY3NERG Q0UxMUVCOTU5QjUwMUZDNEY5QUUwMi9GU2oyUFNqejRUWnBBc2EyU3ZXR2JNdW8y c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTajJQU2p6NFRacEFzYTJTdldHYk11bzJzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUJCMy9BNDQ3ODY3NERGQ0UxMUVCOTU5QjUwMUZDNEY5QUUwMi9GU2oyUFNqejRU WnBBc2EyU3ZXR2JNdW8yc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgsaxF1KHz+oo56Uu1CUAmu6BvBnGkOW3M+38IpNfyjMsV+aGSMKDJ +/U/i3qlDOcniveJ2Ko+NjVdcjRhKcSqpnZ/6IH3BngPHnzkv9kn/reaipaRWqrC yU5jzrjisVGQ1yQMPzIEBXoFMX3SIRdYYXR40DX5LvZljzWSfF6TQB32Y7D4za0N Cf3w5J6LRCY0DFCXlsCve3N+/423+64WbEf0vPJbIn062d/CvycM669sI1811dkH 4FyzG/NHTC/CbG5Vs9uuFhHiRUDZYIa3KEa54MCfXOXq+FE4AX6cwWAA1CsciahN SUmMAMpmZSSxjox6FrvvBaHSmzIVhS+q -----END CERTIFICATE-----Generated at Sat Jun 14 18:49:57 2025 by rpki-client