$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft File: wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft (raw, json) Hash identifier: zqFo+Uu9Ttfma/j9jh7Gc5JTtrvbFnOYfkaKx1olEpE= Subject key identifier: C6:A7:4F:E1:31:A5:80:3E:70:12:D9:00:C5:3C:CE:88:3B:8C:5F:3A Authority key identifier: C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 Certificate issuer: /CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft Manifest number: 01C9 Signing time: Sat 07 Jun 2025 02:37:57 +0000 Manifest this update: Sat 07 Jun 2025 02:37:56 +0000 Manifest next update: Sat 14 Jun 2025 02:37:56 +0000 Files and hashes: 1: wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl (hash: BQrYsoUEYrkC2/0FkDo76UN05Mz8qLkDd2HJmxE2yhc=) 2: 949A543291B011EDA9CB747CC4F9AE02.roa (hash: IXWkWs++k8QNiBEV5gRLUUd6hmjdG0gw9M6G9nB2OC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D36, serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Validity Not Before: Jun 7 02:37:56 2025 GMT Not After : Jun 14 02:37:56 2025 GMT Subject: CN=6843a604-9319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:17:02:9c:6b:4a:85:a6:6a:4e:f1:d3:59:00: f9:5e:bb:45:51:a6:f3:a4:43:25:16:e1:19:f3:ba: 13:57:00:2d:bb:13:5f:9c:5f:7d:a5:be:72:40:83: ba:22:83:6e:b8:d5:55:a0:2b:96:e0:65:03:2c:84: 0c:ab:ee:d0:46:b9:6f:7e:ae:04:4a:48:bb:7c:08: fb:9a:9f:d5:e5:44:97:ad:00:04:f1:a2:0b:cf:27: 80:c0:e6:32:5f:79:95:26:d1:9c:78:f1:01:88:a9: 62:00:1e:96:44:93:8c:c7:1e:03:8c:b8:0b:ee:89: da:2e:ad:d3:b7:24:d7:e1:6d:24:95:5b:65:da:5c: 63:26:15:24:d5:45:df:6d:fc:a0:a1:b7:f0:de:30: 4e:f4:f5:72:e0:4b:a8:58:84:6c:3a:58:ac:9e:94: 21:95:1e:9d:c7:2b:f9:77:f4:ba:b6:36:35:17:5f: cd:3b:62:4f:af:70:00:65:bd:2e:61:29:c3:a6:a5: 94:7d:ac:1a:c3:ad:7f:7e:e9:08:2b:34:c4:73:ea: e6:b8:a9:28:5b:1b:00:ab:b4:68:58:6b:44:1d:06: 7a:ba:23:e1:94:62:7d:82:ad:3f:5c:5e:75:8d:17: c5:b3:a7:49:43:3c:5b:29:cd:52:d3:e2:a5:aa:33: 01:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A7:4F:E1:31:A5:80:3E:70:12:D9:00:C5:3C:CE:88:3B:8C:5F:3A X509v3 Authority Key Identifier: keyid:C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:12:10:29:9e:98:0c:a4:e8:30:bf:8c:6f:08:21:c6:02:e1: f5:f8:f8:de:d1:78:51:d1:56:90:67:19:f9:92:23:bf:33:9b: 88:d4:68:bb:30:24:19:3c:8d:6f:d6:f1:b5:6a:0e:90:92:80: ff:f3:f5:ca:9e:83:ae:0e:18:61:06:ed:3f:d5:be:da:fa:1c: 0b:8e:6f:04:3b:f0:f2:a1:a8:54:a4:03:95:02:c5:55:ba:2e: b7:5a:fa:ba:b7:85:03:08:67:b8:fa:95:d9:cf:65:a0:5b:58: 9a:32:36:49:b0:08:c8:ce:6a:b0:f4:72:01:e1:af:c8:f8:d2: 44:01:a0:09:d4:ad:96:a8:9e:90:20:aa:e0:93:4c:3d:43:43: 34:b0:31:b3:58:1b:c8:94:f0:0a:4a:f7:53:bc:03:ba:de:76: 13:f8:82:c2:e7:f4:47:e8:64:12:90:02:57:bb:53:a7:56:6e: a8:51:ab:ff:8f:75:b8:67:f1:5e:43:7f:52:95:17:19:4d:69: 52:f4:12:da:f6:6c:ef:23:99:fc:c3:c8:9b:e2:4e:08:a3:a8: bb:36:67:18:8a:e7:6d:e4:17:c2:7b:fc:1a:34:16:7b:74:c8: 1e:2a:9f:de:87:61:b6:57:b8:d5:3b:02:95:56:d4:3d:ce:64: 41:5c:ba:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFEMzYxMTAvBgNVBAUTKEMwQUVGNjI1QUY5RDUwNEFFODQ3RjY5MjNEQTg5MTA2 OUM5MDAzRjQwHhcNMjUwNjA3MDIzNzU2WhcNMjUwNjE0MDIzNzU2WjAYMRYwFAYD VQQDEw02ODQzYTYwNC05MzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBcCnGtKhaZqTvHTWQD5XrtFUabzpEMlFuEZ87oTVwAtuxNfnF99pb5yQIO6 IoNuuNVVoCuW4GUDLIQMq+7QRrlvfq4ESki7fAj7mp/V5USXrQAE8aILzyeAwOYy X3mVJtGcePEBiKliAB6WRJOMxx4DjLgL7onaLq3TtyTX4W0klVtl2lxjJhUk1UXf bfygobfw3jBO9PVy4EuoWIRsOlisnpQhlR6dxyv5d/S6tjY1F1/NO2JPr3AAZb0u YSnDpqWUfawaw61/fukIKzTEc+rmuKkoWxsAq7RoWGtEHQZ6uiPhlGJ9gq0/XF51 jRfFs6dJQzxbKc1S0+KlqjMBOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFManT+Ex pYA+cBLZAMU8zog7jF86MB8GA1UdIwQYMBaAFMCu9iWvnVBK6Ef2kj2okQackAP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUQzNi9GQzEzQTNFNDkx QUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVFcm9SX2FTUGFpUkJweVFB X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzJKYS1kVUVyb1JfYVNQYWlSQnB5UUFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUQzNi9GQzEzQTNFNDkxQUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVF cm9SX2FTUGFpUkJweVFBX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoEhApnpgMpOgwv4xvCCHGAuH1+Pje0XhR0VaQZxn5kiO/M5uI1Gi7 MCQZPI1v1vG1ag6QkoD/8/XKnoOuDhhhBu0/1b7a+hwLjm8EO/DyoahUpAOVAsVV ui63Wvq6t4UDCGe4+pXZz2WgW1iaMjZJsAjIzmqw9HIB4a/I+NJEAaAJ1K2WqJ6Q IKrgk0w9Q0M0sDGzWBvIlPAKSvdTvAO63nYT+ILC5/RH6GQSkAJXu1OnVm6oUav/ j3W4Z/FeQ39SlRcZTWlS9BLa9mzvI5n8w8ib4k4Io6i7NmcYiudt5BfCe/waNBZ7 dMgeKp/eh2G2V7jVOwKVVtQ9zmRBXLra -----END CERTIFICATE-----Generated at Sun Jun 8 15:38:55 2025 by rpki-client