$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft File: 9ncWp9N92wPcVtA6uQKnIDfqGdk.mft (raw, json) Hash identifier: 0vOkYj/AlfD7hSfQKbJWSThT0NI2EM6DWfCvhjy8I+I= Subject key identifier: 58:CB:BA:BA:5C:11:20:91:26:2A:0B:DD:30:ED:55:5E:3D:97:4A:E6 Authority key identifier: F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 Certificate issuer: /CN=A918F1EE/serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft Manifest number: 40 Signing time: Fri 13 Jun 2025 06:22:05 +0000 Manifest this update: Fri 13 Jun 2025 06:22:05 +0000 Manifest next update: Fri 20 Jun 2025 06:22:05 +0000 Files and hashes: 1: 9ncWp9N92wPcVtA6uQKnIDfqGdk.crl (hash: 0ySITZKohQweKGm657dyVhwcA5v7ftBkdBEUHZb45Xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1EE, serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Validity Not Before: Jun 13 06:22:05 2025 GMT Not After : Jun 20 06:22:05 2025 GMT Subject: CN=684bc38d-99ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:46:d2:a2:05:c3:7a:e9:70:00:8f:fd:90:a3: b7:ac:1c:d6:32:a6:ec:e3:e2:74:ae:19:1c:9e:f7: d0:a1:d0:32:5a:74:b0:25:cf:5a:2f:98:78:b0:a2: 92:d0:2c:4e:d2:a9:3b:cb:d7:e7:9b:a4:09:47:d1: de:76:8b:05:10:25:7a:7c:da:ee:ea:23:1d:c7:1b: a3:74:05:81:43:6e:d2:1d:3a:2d:5b:a2:31:51:73: f6:06:2c:4f:dd:31:87:e8:6c:50:d7:1b:71:82:2f: 5b:b2:72:f2:22:07:d1:4f:ae:60:87:eb:df:41:10: bf:46:d1:35:93:07:c6:a4:79:bf:1e:4e:f1:68:41: 82:a9:5e:92:c9:1b:7d:2c:2b:c7:cb:63:7a:87:41: f7:b6:87:4f:a6:64:ba:3c:6a:e5:be:be:68:64:37: 00:dc:d6:2d:97:8d:8e:28:d1:b0:9a:82:63:5b:d0: c5:e7:40:10:0a:84:ab:c2:20:37:30:aa:95:fa:1e: 81:3b:c3:c6:9d:cd:90:de:35:8d:a1:df:6b:ba:98: 51:03:32:b1:a2:37:34:66:51:26:62:ba:38:6b:25: e0:08:40:a0:99:1d:3e:5a:bc:51:40:b9:6b:f9:97: ee:fb:01:ff:8d:98:4a:f4:5f:1d:0b:f8:ab:88:a4: d3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CB:BA:BA:5C:11:20:91:26:2A:0B:DD:30:ED:55:5E:3D:97:4A:E6 X509v3 Authority Key Identifier: keyid:F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c5:c8:9b:86:3f:55:ee:34:9a:5b:b6:9e:91:fa:34:f7:45: 43:1e:51:41:5b:6b:13:0e:ab:4b:bc:ae:4c:04:8b:8e:c2:26: c7:29:8a:88:ef:63:56:79:0d:37:21:68:2c:5a:3b:79:dd:c2: 82:02:7f:87:d8:8e:94:ac:1b:4d:6b:97:00:ab:1f:59:98:ab: 58:46:80:b0:ca:48:61:0c:9b:19:6e:54:3e:3f:ff:d5:5d:36: 48:eb:5d:a0:86:bd:8c:18:3c:39:1e:0c:de:60:86:b5:fd:bf: 28:a6:c0:3a:3d:36:10:f9:e2:47:7a:38:03:00:5b:42:ab:a9: fd:b2:99:36:01:0a:a3:b5:cf:38:38:6b:1e:8b:e3:9d:07:7a: d1:58:de:25:69:61:94:30:50:2b:fa:da:aa:7e:87:13:e7:a6: c5:13:f3:4b:21:5b:03:5e:2f:7a:4a:b5:95:2e:74:ab:60:8f: 79:b0:85:a2:29:5f:a4:59:07:e9:6b:23:70:6b:5b:6c:4f:51: f1:62:93:a1:db:3c:d3:c2:34:d9:34:57:08:d6:9b:75:f7:63: f3:3d:3f:b5:ee:7c:e1:0a:6b:7f:0c:42:25:5f:c2:2c:86:d1: 22:e3:85:b1:a8:33:eb:54:1e:66:76:12:3b:e8:a4:41:29:76: 86:d5:d1:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFFRTExMC8GA1UEBRMoRjY3NzE2QTdEMzdEREIwM0RDNTZEMDNBQjkwMkE3MjAz N0VBMTlEOTAeFw0yNTA2MTMwNjIyMDVaFw0yNTA2MjAwNjIyMDVaMBgxFjAUBgNV BAMTDTY4NGJjMzhkLTk5YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhRtKiBcN66XAAj/2Qo7esHNYypuzj4nSuGRye99Ch0DJadLAlz1ovmHiwopLQ LE7SqTvL1+ebpAlH0d52iwUQJXp82u7qIx3HG6N0BYFDbtIdOi1bojFRc/YGLE/d MYfobFDXG3GCL1uycvIiB9FPrmCH699BEL9G0TWTB8akeb8eTvFoQYKpXpLJG30s K8fLY3qHQfe2h0+mZLo8auW+vmhkNwDc1i2XjY4o0bCagmNb0MXnQBAKhKvCIDcw qpX6HoE7w8adzZDeNY2h32u6mFEDMrGiNzRmUSZiujhrJeAIQKCZHT5avFFAuWv5 l+77Af+NmEr0Xx0L+KuIpNPTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWMu6ulwR IJEmKgvdMO1VXj2XSuYwHwYDVR0jBBgwFoAU9ncWp9N92wPcVtA6uQKnIDfqGdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUVFL0YzMkNGNEU4RTc1 MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQY1Z0QTZ1UUtuSURmcUdk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOW5jV3A5Tjkyd1BjVnRBNnVRS25JRGZxR2RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUVFL0YzMkNGNEU4RTc1MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQ Y1Z0QTZ1UUtuSURmcUdkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI7FyJuGP1XuNJpbtp6R+jT3RUMeUUFbaxMOq0u8rkwEi47CJscpiojv Y1Z5DTchaCxaO3ndwoICf4fYjpSsG01rlwCrH1mYq1hGgLDKSGEMmxluVD4//9Vd NkjrXaCGvYwYPDkeDN5ghrX9vyimwDo9NhD54kd6OAMAW0Krqf2ymTYBCqO1zzg4 ax6L450HetFY3iVpYZQwUCv62qp+hxPnpsUT80shWwNeL3pKtZUudKtgj3mwhaIp X6RZB+lrI3BrW2xPUfFik6HbPNPCNNk0VwjWm3X3Y/M9P7XufOEKa38MQiVfwiyG 0SLjhbGoM+tUHmZ2EjvopEEpdobV0Vg= -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:52 2025 by rpki-client