$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: /h231oz+Ug05ws8l397QOU6eCwcIbO9PM8g/TBWPU3Y= Subject key identifier: 36:B9:FE:ED:9C:DB:32:E9:04:C8:01:92:15:31:37:46:58:4C:A4:09 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0EC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0EB5 Signing time: Wed 18 Jun 2025 17:36:32 +0000 Manifest this update: Wed 18 Jun 2025 17:36:32 +0000 Manifest next update: Wed 25 Jun 2025 17:36:32 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: zXHeIjUTXLwtjiOjmEM+jDOSde0TS1PAf39RI3MCk6w=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: az5u8maauMT/Sx2+Phgo1Z/ovh8gwvsYIRukSLKNLEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3778 (0xec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Jun 18 17:36:32 2025 GMT Not After : Jun 25 17:36:32 2025 GMT Subject: CN=6852f920-3ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2f:fb:2c:dd:e4:e0:6b:48:93:b7:33:23:80: f1:de:f5:84:56:7d:9b:26:99:14:3c:36:ee:d4:c2: b0:ae:91:c4:ae:45:9f:cb:04:3e:c7:f7:44:9b:8a: fb:80:e1:ea:0c:72:6b:ca:b2:e6:17:55:5a:d1:22: e4:ee:de:f0:e4:54:93:44:87:cd:ba:08:23:86:4f: b4:ce:01:13:4e:d4:96:d9:f2:27:50:8b:5a:f1:f0: 7d:73:8f:fb:90:48:cc:92:47:1e:c2:05:84:70:dc: 65:28:38:01:16:f4:26:da:44:94:b3:26:37:4f:ad: 1a:85:ba:33:18:3a:5a:d6:9b:87:4b:e3:9d:bf:a9: 59:99:c5:bd:63:68:0d:bf:62:59:e7:db:a4:fc:8b: ed:35:79:c3:cf:98:8b:a0:9a:1d:0f:75:25:22:27: 32:35:df:ee:11:a3:6a:11:04:e5:8e:91:d5:ed:c8: f8:8d:68:08:03:4e:fb:39:c3:89:78:10:46:93:b9: 44:38:2e:2a:6d:bb:67:57:4d:ca:ef:8d:fb:4d:6c: 12:ba:07:99:69:4b:43:a2:ee:66:69:35:18:43:57: 4f:38:99:e9:44:34:9c:65:ab:ab:3c:ef:e8:9f:37: b4:11:e8:f4:74:f9:2f:19:f1:99:92:bb:66:6f:35: 07:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B9:FE:ED:9C:DB:32:E9:04:C8:01:92:15:31:37:46:58:4C:A4:09 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:c9:1b:fc:e4:c7:14:65:90:91:a1:42:4d:1e:ba:9a:f6:f0: b2:3b:3d:a7:09:fd:16:2b:8e:5e:db:e4:8c:e1:b9:cb:b5:db: 40:86:13:11:0f:54:30:3c:de:56:84:0f:85:9f:2b:74:15:56: e5:5e:fa:67:5a:dc:dd:21:79:06:2f:c9:83:59:72:eb:0d:e3: 72:a0:49:29:5a:e0:ed:c8:c6:1b:42:78:09:53:fe:f8:f1:03: 7c:ec:f2:5b:e7:b3:1b:d3:15:05:7a:b6:fc:cd:7f:2a:ce:34: b2:0f:d8:da:98:1a:e2:7a:63:00:2f:ee:96:ea:6d:56:2e:65: bd:ad:b5:a3:4a:a6:cb:33:4c:06:7b:3b:7f:6c:18:fa:7b:3b: 98:a2:21:b7:2f:18:31:30:2e:96:cc:89:aa:39:a3:9e:fe:31: ba:82:0e:8e:3e:60:87:b8:1b:1f:31:de:3d:49:b5:42:57:ce: 9b:db:d4:5a:7e:d9:1a:47:a8:c5:7c:f2:01:4b:2b:86:71:0f: 56:ad:94:ad:32:90:c1:31:07:df:0a:7a:ed:56:14:6a:ed:dd: b1:c9:df:6d:2e:be:ba:34:81:43:7d:3a:17:e9:ee:60:63:94: 46:30:b0:c2:5f:1c:81:3c:92:3a:8a:27:91:99:66:82:9f:f7: 50:67:88:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUwNjE4MTczNjMyWhcNMjUwNjI1MTczNjMyWjAYMRYwFAYD VQQDEw02ODUyZjkyMC0zZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi/7LN3k4GtIk7czI4Dx3vWEVn2bJpkUPDbu1MKwrpHErkWfywQ+x/dEm4r7 gOHqDHJryrLmF1Va0SLk7t7w5FSTRIfNuggjhk+0zgETTtSW2fInUIta8fB9c4/7 kEjMkkcewgWEcNxlKDgBFvQm2kSUsyY3T60ahbozGDpa1puHS+Odv6lZmcW9Y2gN v2JZ59uk/IvtNXnDz5iLoJodD3UlIicyNd/uEaNqEQTljpHV7cj4jWgIA077OcOJ eBBGk7lEOC4qbbtnV03K7437TWwSugeZaUtDou5maTUYQ1dPOJnpRDScZaurPO/o nze0Eej0dPkvGfGZkrtmbzUHPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDa5/u2c 2zLpBMgBkhUxN0ZYTKQJMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWyRv85McUZZCRoUJNHrqa9vCyOz2nCf0WK45e2+SM4bnLtdtAhhMR D1QwPN5WhA+Fnyt0FVblXvpnWtzdIXkGL8mDWXLrDeNyoEkpWuDtyMYbQngJU/74 8QN87PJb57Mb0xUFerb8zX8qzjSyD9jamBriemMAL+6W6m1WLmW9rbWjSqbLM0wG ezt/bBj6ezuYoiG3LxgxMC6WzImqOaOe/jG6gg6OPmCHuBsfMd49SbVCV86b29Ra ftkaR6jFfPIBSyuGcQ9WrZStMpDBMQffCnrtVhRq7d2xyd9tLr66NIFDfToX6e5g Y5RGMLDCXxyBPJI6iieRmWaCn/dQZ4hG -----END CERTIFICATE-----Generated at Fri Jun 20 13:27:20 2025 by rpki-client