$ rpki-client -vvf rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft File: _9C9_G0db07W7Tg5A59B6e3Gb7o.mft (raw, json) Hash identifier: reGtmk0IuYI5GAmFGz0w8d5DSTHzRecH5NPAsFrhN9Y= Subject key identifier: 81:78:9B:96:D5:51:BF:61:78:2B:3D:0F:20:EF:AD:97:72:A3:65:A2 Authority key identifier: FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA Certificate issuer: /CN=A919697D/serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Certificate serial: 085C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft Manifest number: 085C Signing time: Sat 14 Jun 2025 20:29:18 +0000 Manifest this update: Sat 14 Jun 2025 20:29:17 +0000 Manifest next update: Sat 21 Jun 2025 20:29:17 +0000 Files and hashes: 1: _9C9_G0db07W7Tg5A59B6e3Gb7o.crl (hash: CIH1a+5sih4WOZzY7FP5IpPH3yo4/5B6T+uCNt1elBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2140 (0x85c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919697D, serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Validity Not Before: Jun 14 20:29:17 2025 GMT Not After : Jun 21 20:29:17 2025 GMT Subject: CN=684ddb9d-25e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0f:8d:fd:d0:4d:14:8d:bd:9b:28:e1:43:71: fc:3b:b9:01:90:09:5c:f0:3d:a3:eb:31:a2:23:bc: de:d5:48:79:a8:99:cb:ef:66:d1:a4:3c:17:cc:08: bd:89:64:11:84:8c:9f:7a:a1:58:22:22:ac:4e:97: dc:03:da:76:bb:46:f2:4a:8f:06:fd:43:30:d2:61: 05:ca:49:28:fc:fa:57:d5:bf:33:63:44:1d:ca:a3: e6:74:28:f8:aa:18:5e:f9:0a:8c:ce:d6:e3:5e:69: f5:f6:74:79:31:ae:3d:4b:ae:64:43:10:dd:be:dc: 88:49:f6:1e:e1:2f:8f:ba:8f:ce:8a:59:6a:db:ed: 95:0f:7c:b6:8d:dd:25:e6:6a:01:98:4c:7c:ce:41: 3c:5a:c2:5b:0d:d2:ec:57:81:20:f3:fc:ea:0a:a4: 8d:95:39:d1:3c:00:d0:68:13:04:8b:d2:6a:57:ef: a9:80:f4:d3:17:06:31:4c:38:5b:2a:a5:4f:89:be: 66:09:db:cb:98:0a:11:aa:f2:99:ca:6f:34:e1:0c: 00:8e:e6:d8:04:ff:7f:1d:87:76:49:32:a0:81:e3: c3:f4:43:c9:a4:51:42:11:a8:ed:61:52:0d:e2:01: 3c:d8:c9:cf:c5:74:45:2e:0b:97:23:06:eb:d0:94: 42:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:78:9B:96:D5:51:BF:61:78:2B:3D:0F:20:EF:AD:97:72:A3:65:A2 X509v3 Authority Key Identifier: keyid:FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:2a:a8:23:a9:b3:c7:6e:44:5a:fd:5d:af:72:24:7c:c3:76: 9e:c8:ff:4a:7f:54:2d:42:1b:74:93:95:0b:b9:02:74:be:73: eb:17:94:0c:bc:d5:ed:dc:6f:b0:47:c7:54:dc:2a:85:8c:48: e6:a0:3a:c1:e0:90:48:e8:60:e1:83:52:01:79:d9:4d:9f:df: f9:2e:44:18:64:ba:7b:dc:e2:07:2d:ea:7b:b8:22:9d:bb:cf: ff:fd:23:2d:8f:e7:ff:54:78:ca:61:12:11:6b:63:6c:96:b8: b5:35:6c:da:a5:98:30:90:fe:da:1b:1d:0e:46:3d:9d:f0:57: 05:38:d9:72:1f:29:36:17:fd:13:f2:fc:ee:c9:54:b7:cf:23: 70:1a:e7:88:4d:7e:fe:b8:34:51:0a:f9:4c:6a:1f:e4:36:49: 95:76:51:65:9f:37:68:23:19:0d:78:09:8c:51:eb:18:c5:10: ea:b7:97:39:b5:b7:23:fd:e6:c7:f5:7e:f1:30:2e:00:e0:be: 4e:cc:c1:e3:a6:19:2c:14:0b:ec:14:34:8e:51:d2:75:1f:12: 70:4e:a5:b3:87:d8:ea:a5:2c:cf:d1:84:35:7f:cc:08:90:9a: 83:13:fe:03:eb:83:bd:4e:f7:6d:5a:0b:d0:c1:af:ab:37:03: 14:4b:db:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5N0QxMTAvBgNVBAUTKEZGRDBCREZDNkQxRDZGNEVENkVEMzgzOTAzOUY0MUU5 RURDNjZGQkEwHhcNMjUwNjE0MjAyOTE3WhcNMjUwNjIxMjAyOTE3WjAYMRYwFAYD VQQDEw02ODRkZGI5ZC0yNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA+N/dBNFI29myjhQ3H8O7kBkAlc8D2j6zGiI7ze1Uh5qJnL72bRpDwXzAi9 iWQRhIyfeqFYIiKsTpfcA9p2u0bySo8G/UMw0mEFykko/PpX1b8zY0QdyqPmdCj4 qhhe+QqMztbjXmn19nR5Ma49S65kQxDdvtyISfYe4S+Puo/Oillq2+2VD3y2jd0l 5moBmEx8zkE8WsJbDdLsV4Eg8/zqCqSNlTnRPADQaBMEi9JqV++pgPTTFwYxTDhb KqVPib5mCdvLmAoRqvKZym804QwAjubYBP9/HYd2STKggePD9EPJpFFCEajtYVIN 4gE82MnPxXRFLguXIwbr0JRCtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIF4m5bV Ub9heCs9DyDvrZdyo2WiMB8GA1UdIwQYMBaAFP/QvfxtHW9O1u04OQOfQentxm+6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njk3RC85RDI4RUMwQ0M3 QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIwN1c3VGc1QTU5QjZlM0di N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL185QzlfRzBkYjA3VzdUZzVBNTlCNmUzR2I3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njk3RC85RDI4RUMwQ0M3QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIw N1c3VGc1QTU5QjZlM0diN28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiKqgjqbPHbkRa/V2vciR8w3aeyP9Kf1QtQht0k5ULuQJ0vnPrF5QM vNXt3G+wR8dU3CqFjEjmoDrB4JBI6GDhg1IBedlNn9/5LkQYZLp73OIHLep7uCKd u8///SMtj+f/VHjKYRIRa2Nslri1NWzapZgwkP7aGx0ORj2d8FcFONlyHyk2F/0T 8vzuyVS3zyNwGueITX7+uDRRCvlMah/kNkmVdlFlnzdoIxkNeAmMUesYxRDqt5c5 tbcj/ebH9X7xMC4A4L5OzMHjphksFAvsFDSOUdJ1HxJwTqWzh9jqpSzP0YQ1f8wI kJqDE/4D64O9TvdtWgvQwa+rNwMUS9t5 -----END CERTIFICATE-----Generated at Sun Jun 15 08:35:26 2025 by rpki-client