$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft File: 6zLfknQ0rG06hoR937o9LoEAETE.mft (raw, json) Hash identifier: ObJb5/3V7iKDkwzzyUbmxbzpFSCTGTR0+FUV3Ltz+u8= Subject key identifier: 38:F0:F5:AC:CC:1C:9C:19:A4:E7:CB:B0:8C:37:F3:13:9D:2C:F3:D6 Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 Certificate issuer: /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft Manifest number: DD Signing time: Mon 21 Jul 2025 05:39:51 +0000 Manifest this update: Mon 21 Jul 2025 05:39:50 +0000 Manifest next update: Mon 28 Jul 2025 05:39:50 +0000 Files and hashes: 1: 6zLfknQ0rG06hoR937o9LoEAETE.crl (hash: t2JxHubpGYkGhBcBqvxGdtlJQcoq7o+Fmb8mJbJ4ERM=) 2: C562775017FD11EF9A320864C4F9AE02.roa (hash: mT/xhxJVAPolN6BiWxF1pYh0qrq0TTClAYLDrh0UW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911945B, serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Validity Not Before: Jul 21 05:39:50 2025 GMT Not After : Jul 28 05:39:50 2025 GMT Subject: CN=687dd2a6-77b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:33:bb:ef:66:fe:7f:cc:e6:ff:5d:be:07:0e: 76:5b:42:c8:c7:c7:57:7a:d2:05:df:1f:07:ce:46: 54:d6:aa:25:5e:76:c2:89:47:2c:bd:a3:a6:ca:e6: 9a:48:22:00:da:e6:0a:fd:ba:ad:aa:3d:77:c3:f7: ff:4e:27:5e:fd:76:ca:20:4b:44:be:1c:4f:2d:9f: 7d:84:a4:17:40:50:e6:aa:04:0f:33:45:fd:24:cc: 5d:3e:b2:f3:6c:c2:12:09:e4:bd:0b:42:fa:f6:63: b3:76:a3:94:11:0f:16:0f:df:07:c0:32:6a:3d:3a: b8:9b:c0:9d:22:44:63:a6:3d:22:c0:9d:ac:1f:21: ef:6f:b4:95:39:37:69:1e:0a:49:a9:d0:0d:a9:5c: d5:e7:17:1e:89:dc:16:b6:a5:04:ad:9e:87:3f:92: f0:ef:44:1f:6e:de:60:c5:92:bb:13:3a:95:41:15: 71:a8:90:c5:49:5e:e0:5f:d0:a5:44:b0:1c:96:59: 9d:9a:05:ae:31:6e:43:14:4e:f2:4d:e4:96:04:c5: 4c:a3:2d:77:0b:7e:93:12:02:9a:4d:70:dc:98:1c: a1:9e:e5:35:3a:b1:26:b0:bb:c2:3d:6c:2d:19:2c: 48:21:b9:6c:63:92:c1:46:4b:c7:db:aa:55:51:3f: d7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F0:F5:AC:CC:1C:9C:19:A4:E7:CB:B0:8C:37:F3:13:9D:2C:F3:D6 X509v3 Authority Key Identifier: keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:03:e6:77:9c:c6:67:6a:f8:54:4d:58:d6:7e:9d:b9:0f:6c: 59:19:5a:d7:03:c4:0b:9d:30:ef:da:cf:94:b9:0a:55:1e:12: be:01:b9:f4:18:8d:0b:6a:fd:13:63:8c:50:b9:e0:22:ff:36: 87:8b:ac:8c:01:93:48:cd:be:db:4c:df:94:e3:63:91:ad:d1: 6e:bd:d2:8e:ba:93:4a:fe:c6:2d:e9:21:88:63:ae:7d:25:b7: 6b:8f:73:f0:f3:8d:01:75:3e:85:b0:8b:b5:97:13:d6:34:6d: f2:a2:88:b7:b0:2a:ca:04:21:54:68:4c:4c:5b:d8:fe:48:12: 79:74:06:d2:52:7c:3f:a6:60:b2:19:58:df:18:28:e5:88:00: 05:11:06:2a:38:ec:21:be:83:c4:1e:5c:0b:84:b7:88:24:5c: a8:71:3a:3a:b5:79:81:8f:b6:d1:c2:0a:11:64:9f:06:21:4f: 7c:da:8b:f4:16:87:f5:2d:23:da:be:03:72:b0:fa:f6:27:42: e5:2f:cc:f7:bc:0c:22:7a:77:c4:6a:62:ed:92:e7:1d:fd:54: ee:c0:77:28:7a:b6:53:89:d9:0c:b0:7e:bd:ca:be:ea:eb:4b: 52:de:84:32:94:50:85:31:11:99:9e:6b:ce:d2:7b:3f:d7:eb: 70:53:b0:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0NUIxMTAvBgNVBAUTKEVCMzJERjkyNzQzNEFDNkQzQTg2ODQ3RERGQkEzRDJF ODEwMDExMzEwHhcNMjUwNzIxMDUzOTUwWhcNMjUwNzI4MDUzOTUwWjAYMRYwFAYD VQQDEw02ODdkZDJhNi03N2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zO772b+f8zm/12+Bw52W0LIx8dXetIF3x8HzkZU1qolXnbCiUcsvaOmyuaa SCIA2uYK/bqtqj13w/f/Tide/XbKIEtEvhxPLZ99hKQXQFDmqgQPM0X9JMxdPrLz bMISCeS9C0L69mOzdqOUEQ8WD98HwDJqPTq4m8CdIkRjpj0iwJ2sHyHvb7SVOTdp HgpJqdANqVzV5xceidwWtqUErZ6HP5Lw70Qfbt5gxZK7EzqVQRVxqJDFSV7gX9Cl RLAcllmdmgWuMW5DFE7yTeSWBMVMoy13C36TEgKaTXDcmByhnuU1OrEmsLvCPWwt GSxIIblsY5LBRkvH26pVUT/XGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjw9azM HJwZpOfLsIw38xOdLPPWMB8GA1UdIwQYMBaAFOsy35J0NKxtOoaEfd+6PS6BABEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTQ1Qi8zQUNGNzBDMDE3 RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJHMDZob1I5MzdvOUxvRUFF VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6TGZrblEwckcwNmhvUjkzN285TG9FQUVURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTQ1Qi8zQUNGNzBDMDE3RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJH MDZob1I5MzdvOUxvRUFFVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6A+Z3nMZnavhUTVjWfp25D2xZGVrXA8QLnTDv2s+UuQpVHhK+Abn0 GI0Lav0TY4xQueAi/zaHi6yMAZNIzb7bTN+U42ORrdFuvdKOupNK/sYt6SGIY659 Jbdrj3Pw840BdT6FsIu1lxPWNG3yooi3sCrKBCFUaExMW9j+SBJ5dAbSUnw/pmCy GVjfGCjliAAFEQYqOOwhvoPEHlwLhLeIJFyocTo6tXmBj7bRwgoRZJ8GIU982ov0 Fof1LSPavgNysPr2J0LlL8z3vAwienfEamLtkucd/VTuwHcoerZTidkMsH69yr7q 60tS3oQylFCFMRGZnmvO0ns/1+twU7AS -----END CERTIFICATE-----Generated at Mon Jul 21 12:57:32 2025 by rpki-client