$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft File: 9lz9HPOxxajqYIcfo8NAYdtM84M.mft (raw, json) Hash identifier: hBpnvxcZp48jTwDvCMcBnWkbfPGBZQErrhVX8/iqOmk= Subject key identifier: 42:75:43:DF:9B:64:2B:65:10:21:D9:8B:22:3C:A1:82:64:56:D5:99 Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft Manifest number: 0162 Signing time: Fri 20 Jun 2025 19:53:09 +0000 Manifest this update: Fri 20 Jun 2025 19:53:09 +0000 Manifest next update: Fri 27 Jun 2025 19:53:09 +0000 Files and hashes: 1: 9lz9HPOxxajqYIcfo8NAYdtM84M.crl (hash: P8Dukhz8SBX+yg048Owo3WKM9t0MaWlOaW9ojveSPqE=) 2: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (hash: iTrEAAlkJw9OclXVQcOsLhF2OGcA/o+GNahTLZ1PRQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Validity Not Before: Jun 20 19:53:09 2025 GMT Not After : Jun 27 19:53:09 2025 GMT Subject: CN=6855bc25-dda2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:39:68:27:12:64:8d:42:22:67:62:4b:12:4e: 6b:91:f2:b5:19:07:e9:6a:34:ba:26:59:29:08:3c: f7:49:49:8c:09:15:b2:35:d8:d6:f1:7c:6c:21:cd: 14:46:25:10:cc:75:b7:e8:0d:ce:91:96:09:a8:1b: 86:6f:03:26:9f:86:18:b0:4c:58:79:66:44:e2:68: 62:65:62:dd:13:e0:1a:1b:11:af:7d:2d:04:f3:43: 34:b8:8b:48:f9:85:8a:8d:c0:03:53:31:24:8d:b5: 8d:84:54:bb:90:85:3e:da:a9:60:e6:15:75:ce:1b: df:a6:2b:d6:ab:3c:a7:70:2b:3f:e0:c6:66:b0:50: de:9a:cd:bb:5d:8b:82:3d:c5:d8:52:b1:e0:5b:3e: 2a:54:8f:b2:df:35:2a:8b:96:b9:c6:20:ec:ac:3d: 93:63:a0:cf:51:89:62:e4:06:2e:06:1a:68:d6:2c: 4a:4a:c9:64:3c:78:1b:8a:e6:a2:c6:eb:72:15:91: 8e:34:37:9d:16:36:ff:d2:ca:d0:ca:4e:1f:32:74: e8:13:e0:53:33:73:e4:6e:68:8f:37:22:72:5a:29: 45:e7:b5:fd:17:d8:25:d0:22:54:f4:fc:21:b0:1c: 6f:78:03:63:fd:5c:37:f6:4a:74:97:6b:0f:20:a1: 0b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:75:43:DF:9B:64:2B:65:10:21:D9:8B:22:3C:A1:82:64:56:D5:99 X509v3 Authority Key Identifier: keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:85:ac:74:73:4e:74:3a:35:62:2f:d3:c4:47:2f:be:fb:ef: c2:37:91:3e:23:74:29:f6:53:81:28:cd:4d:f8:29:15:0c:09: 65:d3:8c:1d:85:7d:df:ae:d9:d3:69:4f:0c:97:27:a4:c8:ba: e3:07:48:22:00:74:e4:c1:d8:03:53:a0:00:a4:fa:46:2d:52: ef:d6:9f:15:6c:32:29:5e:59:30:3b:06:84:f7:55:42:ca:04: f1:1f:ae:8d:c0:26:2f:ed:eb:88:d6:9e:8a:40:b5:38:f6:93: 1e:ce:66:5a:31:0c:b2:25:67:83:1f:f2:b9:c8:c5:09:60:e1: 51:c2:69:48:14:d6:8b:c3:7c:39:2b:d5:5e:a1:01:56:96:0b: 5f:ba:21:26:f7:3e:f4:25:1f:e7:d1:61:13:91:ef:c7:94:5c: 7e:72:79:00:58:d8:f9:5d:ea:67:35:2f:bb:80:dc:07:fd:b4: bb:7d:1c:0a:12:e2:33:7c:dc:4d:1a:fb:51:b5:ad:66:76:2f: 04:d0:95:75:17:40:fb:8d:26:37:eb:50:99:3e:3b:73:fd:c1: 07:53:b0:ef:1f:86:4e:c9:94:65:61:34:e2:65:53:21:80:c7: 8f:91:eb:5c:4c:93:03:e5:af:be:27:1e:d0:36:80:7e:6a:63: f7:78:c8:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKEY2NUNGRDFDRjNCMUM1QThFQTYwODcxRkEzQzM0MDYx REI0Q0YzODMwHhcNMjUwNjIwMTk1MzA5WhcNMjUwNjI3MTk1MzA5WjAYMRYwFAYD VQQDEw02ODU1YmMyNS1kZGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzloJxJkjUIiZ2JLEk5rkfK1GQfpajS6JlkpCDz3SUmMCRWyNdjW8XxsIc0U RiUQzHW36A3OkZYJqBuGbwMmn4YYsExYeWZE4mhiZWLdE+AaGxGvfS0E80M0uItI +YWKjcADUzEkjbWNhFS7kIU+2qlg5hV1zhvfpivWqzyncCs/4MZmsFDems27XYuC PcXYUrHgWz4qVI+y3zUqi5a5xiDsrD2TY6DPUYli5AYuBhpo1ixKSslkPHgbiuai xutyFZGONDedFjb/0srQyk4fMnToE+BTM3PkbmiPNyJyWilF57X9F9gl0CJU9Pwh sBxveANj/Vw39kp0l2sPIKELrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJ1Q9+b ZCtlECHZiyI8oYJkVtWZMB8GA1UdIwQYMBaAFPZc/RzzscWo6mCHH6PDQGHbTPOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9DRUU2ODgyMjM3 QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhhanFZSWNmbzhOQVlkdE04 NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsejlIUE94eGFqcVlJY2ZvOE5BWWR0TTg0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9DRUU2ODgyMjM3QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhh anFZSWNmbzhOQVlkdE04NE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGhax0c050OjViL9PERy++++/CN5E+I3Qp9lOBKM1N+CkVDAll04wd hX3frtnTaU8MlyekyLrjB0giAHTkwdgDU6AApPpGLVLv1p8VbDIpXlkwOwaE91VC ygTxH66NwCYv7euI1p6KQLU49pMezmZaMQyyJWeDH/K5yMUJYOFRwmlIFNaLw3w5 K9VeoQFWlgtfuiEm9z70JR/n0WETke/HlFx+cnkAWNj5XepnNS+7gNwH/bS7fRwK EuIzfNxNGvtRta1mdi8E0JV1F0D7jSY361CZPjtz/cEHU7DvH4ZOyZRlYTTiZVMh gMePketcTJMD5a++Jx7QNoB+amP3eMi+ -----END CERTIFICATE-----Generated at Sun Jun 22 00:04:42 2025 by rpki-client