$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: AitBhUMMX8FIkXE0VCtWXM6T4qCPxJtWmgGA26xGhPA= Subject key identifier: D3:80:4D:47:10:FE:6A:BB:5E:BD:DD:16:2E:45:EC:8A:1D:B5:45:1A Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: 9C Signing time: Sun 15 Jun 2025 05:25:02 +0000 Manifest this update: Sun 15 Jun 2025 05:25:02 +0000 Manifest next update: Sun 22 Jun 2025 05:25:02 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: FRUkR8qqYQNUpNvd9Cp6Jx3Xqfpvnvd9NccNhFJBPEo=) 2: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (hash: HnEUHlw9gil+mYxp63GxFhUGPoOAuwCoKZnzCLBninA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Jun 15 05:25:02 2025 GMT Not After : Jun 22 05:25:02 2025 GMT Subject: CN=684e592e-1397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b9:df:2c:30:21:e0:8c:d1:19:30:55:17:cf: f8:a3:b0:e4:54:27:1a:27:6d:5e:d7:32:57:51:f0: 70:52:c9:a9:18:c4:5e:d4:67:b3:24:63:ef:c4:ab: 9f:79:09:5f:34:c0:66:be:b1:0c:c4:1c:2a:09:23: 5b:5d:b0:df:97:d7:35:b8:c9:b6:39:18:dd:bc:b4: ce:2d:37:d6:57:12:31:36:22:86:e4:5d:ec:02:12: c5:3a:c6:9c:fd:24:68:67:00:7d:79:2f:db:1a:c9: a5:36:30:a4:14:fa:60:b5:21:b1:40:65:b8:35:cd: 52:8d:fd:97:79:32:11:fa:08:4a:50:3c:f5:ed:1b: 6c:15:68:e6:4f:45:15:bb:c3:20:5b:26:a0:1f:6a: ec:27:56:98:53:fa:7e:db:0a:a1:39:07:97:f6:81: 5f:58:27:19:5c:8a:16:b0:2e:a7:08:75:40:c6:b0: bb:98:78:9a:95:bd:24:e8:50:8c:dc:3e:63:16:82: c4:7e:37:05:e9:fc:63:5a:d4:53:85:0d:98:66:86: 44:8d:d2:8e:44:13:74:8b:0d:0d:91:49:4c:14:8e: 1e:fc:fb:9b:92:85:f7:62:7f:ab:4b:13:32:73:4e: 09:26:0e:9a:8e:a9:53:a1:4c:62:dd:4b:a0:40:4e: 76:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:80:4D:47:10:FE:6A:BB:5E:BD:DD:16:2E:45:EC:8A:1D:B5:45:1A X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:0c:0c:b3:5a:b9:16:f6:11:bc:44:e9:7d:9e:3d:d3:3d:4e: a6:5a:d9:8d:ef:3e:2b:97:c9:2d:3a:6c:a2:f1:bd:5e:d2:1c: 9a:56:cb:68:67:15:47:66:b6:d5:aa:41:d9:21:06:76:1f:98: 37:36:72:4b:3d:a3:34:04:1f:b0:39:30:66:23:21:1b:1d:2d: 26:3e:64:89:78:f0:3e:f1:e8:91:46:e3:90:ec:03:c3:f0:79: 4d:0a:3b:d0:ae:6c:af:e6:04:c3:0b:7e:d8:b7:00:4b:fc:ef: 83:2f:f8:b5:de:a8:05:2d:18:31:95:3b:89:0c:f5:09:9d:f9: f5:12:93:66:f2:67:46:8e:c9:ca:02:34:2b:49:97:bd:99:b3: a2:1b:98:68:33:3e:ed:d4:95:86:f2:66:d2:af:4b:cc:2f:fc: 34:de:ec:cd:8c:54:1f:cc:a8:b4:0b:46:67:3c:c5:62:ff:93: ac:01:bd:da:c2:78:ba:92:b8:7e:8e:f6:64:62:d2:12:70:94: 56:6b:c9:55:27:b6:29:30:ce:fd:b3:f7:bb:95:b7:b0:e2:12: 7f:54:cd:42:6a:36:8c:1a:da:0d:fa:39:13:36:31:af:8c:cd: 50:23:01:1e:e6:cf:aa:27:db:69:90:af:0c:06:b7:60:af:66: d7:75:68:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUwNjE1MDUyNTAyWhcNMjUwNjIyMDUyNTAyWjAYMRYwFAYD VQQDEw02ODRlNTkyZS0xMzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbnfLDAh4IzRGTBVF8/4o7DkVCcaJ21e1zJXUfBwUsmpGMRe1GezJGPvxKuf eQlfNMBmvrEMxBwqCSNbXbDfl9c1uMm2ORjdvLTOLTfWVxIxNiKG5F3sAhLFOsac /SRoZwB9eS/bGsmlNjCkFPpgtSGxQGW4Nc1Sjf2XeTIR+ghKUDz17RtsFWjmT0UV u8MgWyagH2rsJ1aYU/p+2wqhOQeX9oFfWCcZXIoWsC6nCHVAxrC7mHialb0k6FCM 3D5jFoLEfjcF6fxjWtRThQ2YZoZEjdKORBN0iw0NkUlMFI4e/PubkoX3Yn+rSxMy c04JJg6ajqlToUxi3UugQE52NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOATUcQ /mq7Xr3dFi5F7IodtUUaMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVDAyzWrkW9hG8ROl9nj3TPU6mWtmN7z4rl8ktOmyi8b1e0hyaVsto ZxVHZrbVqkHZIQZ2H5g3NnJLPaM0BB+wOTBmIyEbHS0mPmSJePA+8eiRRuOQ7APD 8HlNCjvQrmyv5gTDC37YtwBL/O+DL/i13qgFLRgxlTuJDPUJnfn1EpNm8mdGjsnK AjQrSZe9mbOiG5hoMz7t1JWG8mbSr0vML/w03uzNjFQfzKi0C0ZnPMVi/5OsAb3a wni6krh+jvZkYtIScJRWa8lVJ7YpMM79s/e7lbew4hJ/VM1CajaMGtoN+jkTNjGv jM1QIwEe5s+qJ9tpkK8MBrdgr2bXdWgA -----END CERTIFICATE-----Generated at Sun Jun 15 10:04:03 2025 by rpki-client