$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: j3ROh+NayRWoAzEZZTDKb+lMGj+A+jth7mqHpaingJg= Subject key identifier: 4F:83:CC:BA:92:F4:61:9C:32:B8:6C:22:0F:67:66:C5:1F:FB:45:73 Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 01E8 Signing time: Sat 07 Jun 2025 02:17:44 +0000 Manifest this update: Sat 07 Jun 2025 02:17:44 +0000 Manifest next update: Sat 14 Jun 2025 02:17:44 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: vWuLIJeJe7luSbXQmYR0RtOsDrjwFiocJ7xvEYsWFNU=) 2: 47DA361A3F8F11EF8FA3802DC4F9AE02.roa (hash: J1WS3Wr+Cq+Ya2W/A8acH4GDeK/tNPuqzs+ITQkHcD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF, serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: Jun 7 02:17:44 2025 GMT Not After : Jun 14 02:17:44 2025 GMT Subject: CN=6843a148-079b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e9:06:f2:82:5d:f7:03:9b:b9:9b:38:20:88: bd:c4:b5:c0:23:2b:90:0a:61:07:c4:ec:bf:7f:76: af:3b:2c:ca:d4:eb:7d:f2:aa:ec:90:06:ce:82:7b: 96:bc:cf:20:7c:da:48:44:54:47:57:a8:f8:64:1f: e7:96:95:db:dc:4c:23:a2:57:55:4a:f2:32:c9:d5: 21:f4:b0:7c:74:b3:6d:37:46:9f:6e:72:f1:fc:4e: 74:c1:18:d3:b7:86:e8:f4:87:06:f8:95:9a:f8:ac: 03:e1:19:f6:9e:02:e5:90:5f:4b:8f:28:ec:61:90: 47:df:6f:8a:45:84:a2:31:f8:e7:33:15:01:ac:ca: e1:6a:5f:6d:0d:f9:0a:84:c9:3f:43:e3:11:cf:d0: 55:31:ce:97:7d:34:56:66:c7:05:2a:bc:4c:57:e8: cd:58:d3:3b:cd:a2:0f:d7:e6:a5:44:05:40:01:2a: d0:ad:d0:62:1e:4b:e8:0b:6c:0e:7a:25:b3:f9:d0: 24:15:eb:b0:be:2b:05:7f:25:d2:04:6a:e2:64:da: fe:20:e5:05:7b:4d:ef:db:99:5b:8a:f8:d4:0b:25: 94:06:4b:14:6e:2f:93:6c:68:b6:07:fe:df:1d:f4: b3:d2:46:55:05:c2:a7:56:6d:97:6f:79:ea:46:19: 29:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:83:CC:BA:92:F4:61:9C:32:B8:6C:22:0F:67:66:C5:1F:FB:45:73 X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:af:39:4a:71:a6:70:40:fa:20:3d:c8:3c:f8:d8:30:86:a4: 07:82:b8:d9:fe:a6:6b:b8:f8:f8:da:db:13:6c:f1:e0:c0:51: 0b:95:99:12:63:62:ee:6e:08:a7:42:3a:03:7e:7f:02:e6:41: 26:7b:a5:0f:d8:0e:69:cb:43:f2:60:c4:c0:a9:d3:ec:66:bf: 00:66:a8:89:f5:2a:0d:e6:21:79:6a:79:ec:6b:23:d3:e7:11: 36:dd:14:92:1c:58:f2:15:be:a6:c2:d2:49:d4:b4:2f:2e:5b: 27:e2:a0:78:91:d2:d7:2e:40:e1:c8:b3:b6:66:bc:6d:fe:da: eb:60:3d:97:26:07:a3:c1:b6:11:09:cc:bd:4e:8b:b3:53:92: 2d:af:47:96:53:7f:40:11:06:f8:85:74:cf:2e:5a:b0:05:64: 31:98:f7:1e:4d:49:58:7f:ea:57:a4:6b:04:44:db:57:05:5b: fd:1c:f9:cb:2d:57:68:3e:a0:08:de:ef:ed:f8:d0:a5:2d:65: da:64:2d:6f:5e:80:ad:e9:ac:1a:8c:81:61:8c:f6:98:f5:8b: f7:fb:32:c3:2f:90:db:23:60:62:d1:b3:93:9b:ae:dd:4b:ac: 1a:fe:5b:8f:ed:2e:99:09:e5:99:66:e7:65:36:24:0d:39:45: 8b:6e:76:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjUwNjA3MDIxNzQ0WhcNMjUwNjE0MDIxNzQ0WjAYMRYwFAYD VQQDEw02ODQzYTE0OC0wNzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOkG8oJd9wObuZs4IIi9xLXAIyuQCmEHxOy/f3avOyzK1Ot98qrskAbOgnuW vM8gfNpIRFRHV6j4ZB/nlpXb3EwjoldVSvIyydUh9LB8dLNtN0afbnLx/E50wRjT t4bo9IcG+JWa+KwD4Rn2ngLlkF9LjyjsYZBH32+KRYSiMfjnMxUBrMrhal9tDfkK hMk/Q+MRz9BVMc6XfTRWZscFKrxMV+jNWNM7zaIP1+alRAVAASrQrdBiHkvoC2wO eiWz+dAkFeuwvisFfyXSBGriZNr+IOUFe03v25lbivjUCyWUBksUbi+TbGi2B/7f HfSz0kZVBcKnVm2Xb3nqRhkpRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+DzLqS 9GGcMrhsIg9nZsUf+0VzMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdrzlKcaZwQPogPcg8+NgwhqQHgrjZ/qZruPj42tsTbPHgwFELlZkS Y2LubginQjoDfn8C5kEme6UP2A5py0PyYMTAqdPsZr8AZqiJ9SoN5iF5annsayPT 5xE23RSSHFjyFb6mwtJJ1LQvLlsn4qB4kdLXLkDhyLO2Zrxt/trrYD2XJgejwbYR Ccy9TouzU5Itr0eWU39AEQb4hXTPLlqwBWQxmPceTUlYf+pXpGsERNtXBVv9HPnL LVdoPqAI3u/t+NClLWXaZC1vXoCt6awajIFhjPaY9Yv3+zLDL5DbI2Bi0bOTm67d S6wa/luP7S6ZCeWZZudlNiQNOUWLbnaZ -----END CERTIFICATE-----Generated at Sun Jun 8 06:09:51 2025 by rpki-client