$ rpki-client -vvf rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft File: _5I0f11UaIEf0lOki_xp_lcKpFA.mft (raw, json) Hash identifier: XNx+VLjMDzKxCDn+o+hzRKEwyPvDDVj7/QvmPTG1i+k= Subject key identifier: C3:83:D3:3C:C0:5C:30:F9:C6:B9:AC:A3:1B:01:1A:87:60:81:03:B9 Authority key identifier: FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 Certificate issuer: /CN=A9191769/serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft Manifest number: 8D Signing time: Tue 17 Jun 2025 05:25:50 +0000 Manifest this update: Tue 17 Jun 2025 05:25:49 +0000 Manifest next update: Tue 24 Jun 2025 05:25:49 +0000 Files and hashes: 1: _5I0f11UaIEf0lOki_xp_lcKpFA.crl (hash: pzUH40jpPJ8D6LGjj1u2S8rRJCSn64u2Q2NKJPreLqQ=) 2: 4D36C07677C311EF84D38A3BC4F9AE02.roa (hash: JXSolNPYFIreOexnYnb4A7e51oAbg28HPMtSTeakZI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191769, serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Validity Not Before: Jun 17 05:25:49 2025 GMT Not After : Jun 24 05:25:49 2025 GMT Subject: CN=6850fc5e-339a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b9:51:02:9d:1d:a1:3d:bb:47:3d:40:1d:9d: b7:10:ba:1c:23:bb:d1:24:d0:a7:2d:15:01:a5:a7: 5d:1d:21:97:81:b1:fe:76:3e:94:be:3f:ae:61:61: 8b:ef:41:99:42:14:1b:6a:7f:a9:29:53:7c:b1:fd: d3:88:e7:84:91:92:57:6a:68:22:62:39:5b:69:46: b8:e8:9d:d7:0c:35:39:fe:d9:ec:5a:ad:9a:f1:86: 71:4d:d2:2f:a4:cb:1b:12:27:1a:0f:a2:34:aa:7b: 72:45:51:e6:b5:bb:c8:70:48:60:fc:84:91:a3:c4: 81:0a:9b:22:77:c1:9f:ee:80:d3:31:61:c7:46:80: 57:40:18:71:b9:7e:14:43:65:5e:2e:dd:a6:b5:12: 3e:6b:08:97:62:36:32:f7:72:1b:08:71:95:55:65: 6c:cb:cb:90:b3:8b:ab:c1:eb:be:66:5d:81:0d:88: b1:70:fe:89:a2:39:3f:db:b8:2c:39:17:87:dc:62: 93:1b:c6:a3:6d:59:3b:2a:0f:8f:0f:03:e9:db:c5: d6:e7:ee:f3:34:7e:68:ab:78:55:88:a8:b7:14:2b: 7a:e2:ff:8f:52:99:13:78:7c:a1:5b:7f:b8:47:22: 20:d1:4a:35:56:9a:37:28:a7:9d:03:07:ec:1b:e6: 7b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:83:D3:3C:C0:5C:30:F9:C6:B9:AC:A3:1B:01:1A:87:60:81:03:B9 X509v3 Authority Key Identifier: keyid:FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:56:a6:5e:cd:b1:c9:2c:67:e9:c8:b3:7a:6c:6a:fe:49:3d: 67:3b:3e:eb:7a:a9:bc:e0:f9:aa:d1:38:f6:b0:3e:c4:de:bd: bd:32:c6:14:bb:a9:0d:52:dd:e6:6d:8d:c1:9d:52:f6:0a:6a: ea:72:e5:bb:26:81:26:85:05:5c:1a:e5:88:9d:a1:cd:dc:ea: c0:44:63:5f:e5:a5:30:50:c8:f6:77:f7:fc:66:d9:46:8c:83: 6a:e4:40:fa:bd:b6:82:09:4a:43:a2:07:ba:fe:0e:a8:e8:41: aa:db:c6:b9:dc:43:a8:32:5e:00:58:8b:7a:60:d8:00:bd:68: 0a:23:ae:e9:29:89:a4:39:91:ff:a3:34:a2:8c:d2:cc:4c:23: 3d:50:bb:06:e9:f0:e3:54:22:c4:36:50:8b:e8:03:ac:b6:6a: aa:69:76:99:43:9d:a6:7c:25:c9:aa:2a:d9:a0:57:9e:29:76: 87:06:da:85:74:e9:98:d0:09:12:c8:94:76:cd:06:1d:2e:9a: 6e:24:f1:f5:fc:6f:fb:64:d1:78:0d:ad:1c:56:a7:c1:a6:8e: 7d:a9:58:8f:b7:07:d2:81:b8:18:4b:c3:96:70:62:3e:4a:c6: 18:7b:e5:1b:90:37:8c:ed:22:cf:1c:e2:6f:81:92:50:0c:70: cf:a4:9e:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE3NjkxMTAvBgNVBAUTKEZGOTIzNDdGNUQ1NDY4ODExRkQyNTNBNDhCRkM2OUZF NTcwQUE0NTAwHhcNMjUwNjE3MDUyNTQ5WhcNMjUwNjI0MDUyNTQ5WjAYMRYwFAYD VQQDEw02ODUwZmM1ZS0zMzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrlRAp0doT27Rz1AHZ23ELocI7vRJNCnLRUBpaddHSGXgbH+dj6Uvj+uYWGL 70GZQhQban+pKVN8sf3TiOeEkZJXamgiYjlbaUa46J3XDDU5/tnsWq2a8YZxTdIv pMsbEicaD6I0qntyRVHmtbvIcEhg/ISRo8SBCpsid8Gf7oDTMWHHRoBXQBhxuX4U Q2VeLt2mtRI+awiXYjYy93IbCHGVVWVsy8uQs4urweu+Zl2BDYixcP6Jojk/27gs OReH3GKTG8ajbVk7Kg+PDwPp28XW5+7zNH5oq3hViKi3FCt64v+PUpkTeHyhW3+4 RyIg0Uo1Vpo3KKedAwfsG+Z7zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOD0zzA XDD5xrmsoxsBGodggQO5MB8GA1UdIwQYMBaAFP+SNH9dVGiBH9JTpIv8af5XCqRQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTc2OS9EMjZERERCMDc3 QkUxMUVGOUYyQTQ1NDdDNEY5QUUwMi9fNUkwZjExVWFJRWYwbE9raV94cF9sY0tw RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL181STBmMTFVYUlFZjBsT2tpX3hwX2xjS3BGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTc2OS9EMjZERERCMDc3QkUxMUVGOUYyQTQ1NDdDNEY5QUUwMi9fNUkwZjExVWFJ RWYwbE9raV94cF9sY0twRkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDVqZezbHJLGfpyLN6bGr+ST1nOz7reqm84Pmq0Tj2sD7E3r29MsYU u6kNUt3mbY3BnVL2CmrqcuW7JoEmhQVcGuWInaHN3OrARGNf5aUwUMj2d/f8ZtlG jINq5ED6vbaCCUpDoge6/g6o6EGq28a53EOoMl4AWIt6YNgAvWgKI67pKYmkOZH/ ozSijNLMTCM9ULsG6fDjVCLENlCL6AOstmqqaXaZQ52mfCXJqirZoFeeKXaHBtqF dOmY0AkSyJR2zQYdLppuJPH1/G/7ZNF4Da0cVqfBpo59qViPtwfSgbgYS8OWcGI+ SsYYe+UbkDeM7SLPHOJvgZJQDHDPpJ5W -----END CERTIFICATE-----Generated at Wed Jun 18 06:46:30 2025 by rpki-client