$ rpki-client -vvf rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft File: ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft (raw, json) Hash identifier: q+wmNrWs0tua1gAObrqschnVDY0phu8F6coL4ZdbdXU= Subject key identifier: 42:19:B3:93:C8:35:5C:1F:5C:A2:05:67:BB:FF:21:55:0C:BE:68:DE Authority key identifier: 6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 Certificate issuer: /CN=A919C451/serialNumber=6A185BF417A2EB02A12E19D57590AD8D118475F7 Certificate serial: 0C4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft Manifest number: 0C45 Signing time: Fri 20 Jun 2025 18:26:08 +0000 Manifest this update: Fri 20 Jun 2025 18:26:08 +0000 Manifest next update: Fri 27 Jun 2025 18:26:08 +0000 Files and hashes: 1: ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl (hash: kv55lT1n2SuNb+0BajsuRCmD2woZfyZYJSDPE7PWCug=) 2: F0208B2012BC11EBB3294950C4F9AE02.roa (hash: eaM5ERmLR+NewtcyA9NoXbFVJmh3ke0mtpONHl7mYGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 18:26:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C451, serialNumber=6A185BF417A2EB02A12E19D57590AD8D118475F7 Validity Not Before: Jun 20 18:26:08 2025 GMT Not After : Jun 27 18:26:08 2025 GMT Subject: CN=6855a7c0-f2bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:65:9f:45:58:8f:04:16:6d:e4:db:33:a5:39: d4:03:35:21:c4:14:df:fd:c1:0d:1d:8a:88:89:7c: 64:95:e1:be:50:ab:aa:76:20:cc:97:14:7a:c1:5e: 99:4e:fa:7a:84:de:16:02:ad:06:cb:b0:00:bb:51: b6:4a:17:0f:b9:97:3b:96:59:0c:31:1d:95:87:96: 20:cb:7f:1d:f6:6d:ce:c8:1c:fb:98:d9:35:1c:e3: ad:95:10:98:ad:eb:08:10:53:76:4e:b4:d0:34:15: 26:ea:2c:56:55:4f:c7:5a:34:21:54:65:d3:88:99: 1b:4b:82:75:1c:13:2f:4b:4a:b0:61:8b:82:91:13: ca:bd:40:8c:a0:7d:c5:65:1f:e8:b3:e4:ab:52:82: 40:3a:73:5d:df:9d:f3:82:e0:12:80:c7:7b:90:6a: eb:92:f8:58:bb:95:b2:0f:62:75:11:3d:8c:9e:4e: ec:ee:25:34:0c:c8:fe:8d:8c:38:2e:b4:67:9b:22: 9c:99:d1:0e:c6:54:a6:cb:78:33:b1:06:89:a3:3b: 2f:c0:72:37:52:88:d3:79:c3:60:4c:50:18:ad:26: d5:8f:38:e5:dd:91:a9:43:5b:f1:99:df:34:81:dd: e4:94:17:54:da:8f:12:12:91:be:ad:a2:a1:46:cb: 50:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:19:B3:93:C8:35:5C:1F:5C:A2:05:67:BB:FF:21:55:0C:BE:68:DE X509v3 Authority Key Identifier: keyid:6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:5e:e8:e7:fe:b8:10:ec:69:f7:c9:4d:9e:52:e7:10:fd:7e: 76:33:30:4b:c3:29:af:f9:76:30:e0:12:c2:52:f4:3c:2a:d6: 96:36:f4:71:a7:bb:9f:3d:92:f9:87:11:1f:af:eb:46:23:e9: 07:c4:47:be:b2:3d:ce:d1:c6:18:82:c1:d0:61:75:92:33:09: 9b:5b:01:2f:a4:7c:8a:0d:94:81:69:d9:33:1f:b0:38:b1:65: b8:27:c2:26:68:5d:ae:14:5f:8a:c9:9b:f0:b5:52:f4:d0:6b: aa:a1:41:6b:04:fb:b4:3d:a9:60:fc:a5:bc:de:f5:f2:f1:21: 24:91:7d:71:b8:a6:cc:76:f0:5b:78:6b:ad:7d:ce:f9:83:5a: f9:c9:fc:5e:5b:8f:dd:92:86:b1:b3:db:52:73:90:44:e3:1e: c0:5d:ed:59:3c:cc:60:05:71:68:a7:b6:91:76:f5:24:f6:bd: 17:50:f7:a4:d8:66:9a:95:e5:83:68:5f:42:9f:b4:d4:f1:d6: ee:28:24:f8:80:ae:43:d7:b2:18:09:92:32:d3:8d:41:30:a1: e9:53:11:53:0a:5e:6e:05:aa:0d:9f:63:82:33:7f:48:1a:a0: 70:96:dd:85:49:fe:76:e8:b0:a2:9d:3c:8a:24:23:7c:50:09: 51:e8:b1:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0NTExMTAvBgNVBAUTKDZBMTg1QkY0MTdBMkVCMDJBMTJFMTlENTc1OTBBRDhE MTE4NDc1RjcwHhcNMjUwNjIwMTgyNjA4WhcNMjUwNjI3MTgyNjA4WjAYMRYwFAYD VQQDEw02ODU1YTdjMC1mMmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2WfRViPBBZt5NszpTnUAzUhxBTf/cENHYqIiXxkleG+UKuqdiDMlxR6wV6Z Tvp6hN4WAq0Gy7AAu1G2ShcPuZc7llkMMR2Vh5Ygy38d9m3OyBz7mNk1HOOtlRCY resIEFN2TrTQNBUm6ixWVU/HWjQhVGXTiJkbS4J1HBMvS0qwYYuCkRPKvUCMoH3F ZR/os+SrUoJAOnNd353zguASgMd7kGrrkvhYu5WyD2J1ET2Mnk7s7iU0DMj+jYw4 LrRnmyKcmdEOxlSmy3gzsQaJozsvwHI3UojTecNgTFAYrSbVjzjl3ZGpQ1vxmd80 gd3klBdU2o8SEpG+raKhRstQYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIZs5PI NVwfXKIFZ7v/IVUMvmjeMB8GA1UdIwQYMBaAFGoYW/QXousCoS4Z1XWQrY0RhHX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ1MS9COTM0OTM3QTA2 RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3S2hMaG5WZFpDdGpSR0Vk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoaGI5QmVpNndLaExoblZkWkN0alJHRWRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ1MS9COTM0OTM3QTA2RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3 S2hMaG5WZFpDdGpSR0VkZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHXujn/rgQ7Gn3yU2eUucQ/X52MzBLwymv+XYw4BLCUvQ8KtaWNvRx p7ufPZL5hxEfr+tGI+kHxEe+sj3O0cYYgsHQYXWSMwmbWwEvpHyKDZSBadkzH7A4 sWW4J8ImaF2uFF+KyZvwtVL00GuqoUFrBPu0Palg/KW83vXy8SEkkX1xuKbMdvBb eGutfc75g1r5yfxeW4/dkoaxs9tSc5BE4x7AXe1ZPMxgBXFop7aRdvUk9r0XUPek 2GaaleWDaF9Cn7TU8dbuKCT4gK5D17IYCZIy041BMKHpUxFTCl5uBaoNn2OCM39I GqBwlt2FSf526LCinTyKJCN8UAlR6LHD -----END CERTIFICATE-----Generated at Sat Jun 21 03:22:30 2025 by rpki-client