$ rpki-client -vvf rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft File: ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft (raw, json) Hash identifier: rcz/uJCN0bexlfqhA7Sits0iXQGc9KLqOlU5bPsDtK4= Subject key identifier: C2:B3:26:94:DA:E5:32:D9:1B:D3:71:39:8E:42:AB:72:A7:B0:64:26 Authority key identifier: 6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A Certificate issuer: /CN=A9199BDF/serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Certificate serial: 0F57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft Manifest number: 0F49 Signing time: Sat 14 Jun 2025 17:31:42 +0000 Manifest this update: Sat 14 Jun 2025 17:31:42 +0000 Manifest next update: Sat 21 Jun 2025 17:31:42 +0000 Files and hashes: 1: ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl (hash: GZ+0eFFdNqZfL4x9p2KY4uYtK2k2JgwQktdnrRGP1eU=) 2: D193920E709411E99F95933EC4F9AE02.roa (hash: Rwnl5e54mLk+LHSVaZTg2cOR8P1YS+fQ04gmO2RO2+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199BDF, serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Validity Not Before: Jun 14 17:31:42 2025 GMT Not After : Jun 21 17:31:42 2025 GMT Subject: CN=684db1fe-fc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:55:7c:9b:c1:8d:44:43:e9:59:3e:52:f5:ce: 3a:bf:61:49:f2:f3:19:d6:b7:d9:63:9c:24:9a:07: 0d:b0:d2:77:6a:c9:51:0c:d2:14:7b:cf:6b:b9:d1: 3c:08:55:40:3c:c4:3f:e2:29:5f:ba:af:a0:b4:7d: 22:08:78:d3:99:4c:0b:c1:13:81:62:74:ba:26:a2: 80:77:8e:86:fe:27:bb:65:33:73:d3:ef:b3:3e:bc: 1b:b6:bf:22:e5:27:4b:47:5f:39:f7:58:c8:3c:5f: e2:50:2c:a0:3c:ae:7a:39:0b:66:1c:4e:f3:af:bb: 08:e8:4c:dc:fd:de:14:1f:c1:23:c5:a8:29:ad:95: 60:e0:b7:87:ff:4d:c7:db:13:a1:45:5a:34:4e:f1: 6f:5d:14:06:46:ca:be:54:c6:0c:ed:93:14:2b:e8: 0a:36:15:a8:99:43:a4:d3:bc:94:eb:e2:7b:c5:92: d4:58:fe:a9:c8:4c:98:66:37:fd:9a:da:e8:fb:32: 93:60:7a:9a:0e:3d:b2:7e:1d:83:45:8f:0a:54:bf: 65:41:8e:73:32:28:4a:05:1d:cc:53:ba:98:8d:3b: d1:ab:84:ef:8c:04:10:16:9d:a2:aa:6a:40:6f:3f: 68:68:48:79:ca:9e:4c:b5:54:37:80:77:ef:49:ee: 84:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B3:26:94:DA:E5:32:D9:1B:D3:71:39:8E:42:AB:72:A7:B0:64:26 X509v3 Authority Key Identifier: keyid:6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:2c:ac:a3:0e:13:e2:5a:86:e0:d9:71:a5:f7:d6:55:25:70: e3:d0:0d:04:a9:c9:38:b9:47:09:8f:82:4a:7e:78:04:e3:b9: 69:bb:98:f1:53:3e:22:64:e9:03:19:00:cb:65:83:f7:e3:d9: a4:d5:d5:bc:2b:b8:b8:01:52:2c:ad:c8:ff:1e:99:10:a5:3f: 96:65:0b:48:83:ed:f0:9f:54:76:23:b4:7c:18:59:e9:6e:bc: d8:49:6d:be:43:99:eb:17:4e:8a:94:c6:19:f7:74:2b:1a:29: ad:34:32:6d:6a:2e:02:8d:5a:7a:7d:cd:e7:ba:b1:18:7c:45: c5:1a:34:a7:0d:7e:a1:dc:f5:d2:7a:35:61:69:9b:bf:12:70: 81:0b:d9:4f:16:e3:0b:da:08:14:71:92:ea:91:9a:ff:0f:87: 9d:14:d1:ff:4d:60:bb:e7:6d:68:f0:d9:ea:84:02:2b:c2:16: ce:96:44:5a:76:7e:68:bb:da:43:a9:ff:77:44:40:14:b4:91: ad:cf:73:ba:ac:76:82:e8:c5:d8:1a:c7:1a:fc:4a:b9:d4:08: af:ca:d9:c1:b1:d0:87:20:62:9e:ff:1c:32:99:e4:a2:d5:32: 5a:cf:ae:25:66:60:23:bc:f6:a5:0d:54:6b:cf:4a:17:f0:07: 8e:42:e5:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCREYxMTAvBgNVBAUTKDZBNEY0MzExMDA1MEYwNjgxOTY0RDg1OEY5MTQ0RTA1 MkJCODg5OUEwHhcNMjUwNjE0MTczMTQyWhcNMjUwNjIxMTczMTQyWjAYMRYwFAYD VQQDEw02ODRkYjFmZS1mYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA61V8m8GNREPpWT5S9c46v2FJ8vMZ1rfZY5wkmgcNsNJ3aslRDNIUe89rudE8 CFVAPMQ/4ilfuq+gtH0iCHjTmUwLwROBYnS6JqKAd46G/ie7ZTNz0++zPrwbtr8i 5SdLR18591jIPF/iUCygPK56OQtmHE7zr7sI6Ezc/d4UH8EjxagprZVg4LeH/03H 2xOhRVo0TvFvXRQGRsq+VMYM7ZMUK+gKNhWomUOk07yU6+J7xZLUWP6pyEyYZjf9 mtro+zKTYHqaDj2yfh2DRY8KVL9lQY5zMihKBR3MU7qYjTvRq4TvjAQQFp2iqmpA bz9oaEh5yp5MtVQ3gHfvSe6EZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKzJpTa 5TLZG9NxOY5Cq3KnsGQmMB8GA1UdIwQYMBaAFGpPQxEAUPBoGWTYWPkUTgUruIma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUJERi9FNzBFMEE5ODcw OTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThHZ1paTmhZLVJST0JTdTRp Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrOURFUUJROEdnWlpOaFktUlJPQlN1NGlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUJERi9FNzBFMEE5ODcwOTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThH Z1paTmhZLVJST0JTdTRpWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCLKyjDhPiWobg2XGl99ZVJXDj0A0Eqck4uUcJj4JKfngE47lpu5jx Uz4iZOkDGQDLZYP349mk1dW8K7i4AVIsrcj/HpkQpT+WZQtIg+3wn1R2I7R8GFnp brzYSW2+Q5nrF06KlMYZ93QrGimtNDJtai4CjVp6fc3nurEYfEXFGjSnDX6h3PXS ejVhaZu/EnCBC9lPFuML2ggUcZLqkZr/D4edFNH/TWC7521o8NnqhAIrwhbOlkRa dn5ou9pDqf93REAUtJGtz3O6rHaC6MXYGsca/Eq51AivytnBsdCHIGKe/xwymeSi 1TJaz64lZmAjvPalDVRrz0oX8AeOQuXT -----END CERTIFICATE-----Generated at Sat Jun 14 19:41:09 2025 by rpki-client