$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: Ruf7nUH4s+OBZd219crdhfJJH+660BR5P2Kadps0+gw= Subject key identifier: D4:9B:24:D5:F4:91:BA:F5:28:BF:4E:1E:5C:D7:1D:73:78:AD:12:80 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: BD Signing time: Fri 13 Jun 2025 04:49:55 +0000 Manifest this update: Fri 13 Jun 2025 04:49:54 +0000 Manifest next update: Fri 20 Jun 2025 04:49:54 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: SNfqlw3FsNA8gIFfXThnoY/335pcCJM7Q9f14pJlQas=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: 1IspOhl6gwbhdZvL5rloqYpEEE+IPoe5ali+fyL8EWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Jun 13 04:49:54 2025 GMT Not After : Jun 20 04:49:54 2025 GMT Subject: CN=684badf2-211e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d1:3a:69:00:6b:69:49:6f:22:06:cd:77:8e: 35:27:5e:0f:e7:fd:71:32:a1:64:2d:4e:3e:37:19: d9:ba:d7:f1:b9:eb:f1:1c:b0:8f:0a:e7:13:c8:46: 1f:0e:2d:13:22:98:42:bb:9c:95:bc:a4:b4:92:77: 1a:e3:c7:05:68:14:c4:c2:0a:50:9c:b2:77:bd:8d: a5:1f:9d:51:5d:17:ff:a9:0c:e4:c4:49:2b:a2:22: ae:b1:94:be:9c:78:00:70:f6:24:b5:7d:89:95:82: 03:70:a3:6a:96:97:bd:72:25:53:37:33:f8:80:50: 45:27:42:0d:85:07:f2:5c:87:8a:1a:f5:55:93:fe: d4:66:d9:a7:c8:d3:a3:bf:43:1f:05:42:c2:9f:e6: 7c:7b:b4:5c:76:30:9e:97:ea:e3:2e:4a:02:2b:91: 6a:0e:9f:4c:cb:72:c3:92:e6:f2:40:b3:e7:29:ad: 4c:0a:18:1e:15:4b:b5:08:bb:88:c0:db:c9:ec:1b: 79:36:09:8b:b4:83:1c:22:bd:13:29:7b:72:ff:69: a8:c0:6d:09:a3:34:a9:4f:8a:8f:60:f0:66:f5:81: 1a:99:ff:0e:0d:30:4d:97:4b:db:24:45:50:ce:25: 7d:cb:8c:c0:2a:e8:c7:76:1d:0e:c2:c3:7a:b7:c1: 23:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9B:24:D5:F4:91:BA:F5:28:BF:4E:1E:5C:D7:1D:73:78:AD:12:80 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:8f:24:ea:45:1c:a7:c7:7c:ef:a4:7c:9b:1e:83:6f:5d:b2: 48:ca:5f:62:6b:18:a1:8e:4a:81:a3:86:2b:06:c9:40:7e:46: b0:07:25:58:da:df:bd:d0:ab:fd:7b:9e:c7:ce:2d:3a:dd:6a: 80:0a:92:c3:e3:da:0a:cc:94:84:45:76:38:45:f7:18:40:b6: 13:e0:07:29:37:65:73:c1:2c:39:a7:d8:af:d0:01:dd:2e:bd: 2f:d6:d8:93:58:44:24:8a:d0:54:d7:f6:69:8e:fa:6c:7e:e2: 0d:20:9f:7f:8c:b8:49:03:11:db:03:06:45:a2:f8:ce:14:28: 0a:5a:35:ad:5d:99:99:6b:2b:57:92:52:6c:18:3d:de:08:fc: 72:eb:1d:d8:d7:f7:db:25:d4:48:59:e7:0e:22:ff:e8:45:e3: c0:27:74:d8:cc:d7:fe:ce:61:c1:e8:17:b7:ec:bb:86:6a:7f: 80:53:8b:55:ed:ae:99:c7:10:bf:0b:5e:35:11:c1:47:c5:7b: d2:f2:db:28:c5:30:7a:39:93:8f:2d:3a:39:9a:48:c5:56:93: b3:c4:9f:b5:9f:65:6b:59:44:8c:20:35:b4:42:d3:07:cf:a1: 65:e8:dd:4b:70:26:92:7c:c4:6e:98:a0:09:70:a8:4c:a8:bd: ae:1b:35:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUwNjEzMDQ0OTU0WhcNMjUwNjIwMDQ0OTU0WjAYMRYwFAYD VQQDEw02ODRiYWRmMi0yMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dE6aQBraUlvIgbNd441J14P5/1xMqFkLU4+NxnZutfxuevxHLCPCucTyEYf Di0TIphCu5yVvKS0knca48cFaBTEwgpQnLJ3vY2lH51RXRf/qQzkxEkroiKusZS+ nHgAcPYktX2JlYIDcKNqlpe9ciVTNzP4gFBFJ0INhQfyXIeKGvVVk/7UZtmnyNOj v0MfBULCn+Z8e7RcdjCel+rjLkoCK5FqDp9My3LDkubyQLPnKa1MChgeFUu1CLuI wNvJ7Bt5NgmLtIMcIr0TKXty/2mowG0JozSpT4qPYPBm9YEamf8ODTBNl0vbJEVQ ziV9y4zAKujHdh0OwsN6t8Ej8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSbJNX0 kbr1KL9OHlzXHXN4rRKAMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVjyTqRRynx3zvpHybHoNvXbJIyl9iaxihjkqBo4YrBslAfkawByVY 2t+90Kv9e57Hzi063WqACpLD49oKzJSERXY4RfcYQLYT4AcpN2VzwSw5p9iv0AHd Lr0v1tiTWEQkitBU1/ZpjvpsfuINIJ9/jLhJAxHbAwZFovjOFCgKWjWtXZmZaytX klJsGD3eCPxy6x3Y1/fbJdRIWecOIv/oRePAJ3TYzNf+zmHB6Be37LuGan+AU4tV 7a6ZxxC/C141EcFHxXvS8tsoxTB6OZOPLTo5mkjFVpOzxJ+1n2VrWUSMIDW0QtMH z6Fl6N1LcCaSfMRumKAJcKhMqL2uGzUW -----END CERTIFICATE-----Generated at Sat Jun 14 17:58:33 2025 by rpki-client