$ rpki-client -vvf rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft File: A4zy4oB33yytpFdW-12ZpuJA_Qk.mft (raw, json) Hash identifier: Wu6nYoIosvllIg9uMDYj5hwNN3k5P4EyWjpj20YHP4w= Subject key identifier: F9:A5:87:05:C3:FD:E9:0C:39:A2:EA:5E:A9:F1:63:7F:16:5A:6F:8C Authority key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 Certificate issuer: /CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Certificate serial: 3496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft Manifest number: 348C Signing time: Fri 06 Jun 2025 15:12:13 +0000 Manifest this update: Fri 06 Jun 2025 15:12:12 +0000 Manifest next update: Fri 13 Jun 2025 15:12:12 +0000 Files and hashes: 1: A4zy4oB33yytpFdW-12ZpuJA_Qk.crl (hash: iJPao7AzOolFvOk6NZp55+KpsaVAb4nOIQF79CI7MHs=) 2: 55A4C5C004AA11E8935B7021C4F9AE02.roa (hash: Hux71er2Qs5CKXElMxsIIOBK+KutGucMBDid93LFsCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112CEC, serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Validity Not Before: Jun 6 15:12:12 2025 GMT Not After : Jun 13 15:12:12 2025 GMT Subject: CN=6843054d-ba7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:13:5b:bc:2b:f1:b1:ce:9a:9d:7f:dd:eb:d4: 32:ef:2e:f5:51:4f:a5:9a:28:d5:6a:1e:99:19:aa: 23:04:83:6b:55:ee:31:a7:75:86:a0:42:80:7b:de: f3:7e:b9:fd:31:da:20:58:25:08:7d:e8:37:84:fc: 35:4f:19:24:64:30:4d:96:13:11:c4:db:69:f4:50: 0e:c2:b8:c6:71:dc:51:0e:df:32:8c:4b:3f:ff:7b: ab:83:a3:1e:f6:5c:cc:dd:bd:39:b3:96:33:91:63: ed:06:0f:4e:a7:f2:9e:56:3e:d2:68:eb:c7:0a:9b: cf:ae:10:4d:da:6f:cc:a3:95:6a:d4:ec:4f:5f:ec: 71:65:87:94:ee:df:bd:3d:d9:bd:6a:4b:a0:cc:49: c1:38:73:05:b6:bd:82:a4:65:64:da:91:bd:cc:a6: f8:21:89:2c:24:ed:18:5a:8c:4f:7d:ac:bd:86:26: f6:d0:b7:75:1c:2e:ab:30:4f:d0:a8:77:8c:bd:70: 20:5e:2d:56:47:bc:46:e4:56:90:2f:d4:6b:d3:c3: 5b:a6:e9:7d:b4:36:58:89:0b:fc:a6:e0:76:d4:75: e9:df:19:ff:91:28:6f:53:36:01:29:8f:ca:dd:b8: 07:4d:7a:9e:63:9d:51:bd:5c:6c:10:c1:8b:59:af: 5e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:A5:87:05:C3:FD:E9:0C:39:A2:EA:5E:A9:F1:63:7F:16:5A:6F:8C X509v3 Authority Key Identifier: keyid:03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:ea:6f:0d:c8:3c:6b:07:e8:5d:a5:92:f8:08:03:a0:51:a3: 86:12:9b:c6:a4:07:33:c0:98:b1:c6:2b:25:aa:9a:ad:76:c0: 81:c2:8c:1c:2b:e6:fb:18:50:a3:1b:7e:a1:30:94:36:86:8f: 7e:3a:3a:55:7b:2d:de:4c:a4:65:18:20:78:57:30:ea:d6:ce: 8f:f1:35:0e:ea:f2:c0:b8:dd:cf:53:5a:36:6e:0b:b9:7c:bc: 5a:23:b7:f5:60:11:a7:02:e8:9c:7d:9a:fe:bd:8a:65:7f:84: 93:6a:2e:10:97:75:2b:6c:2a:d1:4b:38:4e:68:7d:ec:0a:70: da:69:b6:0d:ef:41:d1:6a:c4:27:d8:a6:db:f8:b1:df:0a:9f: 57:2f:38:a1:92:46:24:de:6f:e1:aa:f2:dd:50:7c:b2:bd:dc: 89:6e:de:f9:6f:16:fd:b6:69:1d:fb:08:72:ca:24:36:ff:b1: b7:7d:ec:07:b1:68:98:df:09:ca:e0:75:2a:0c:b8:36:e6:cf: 48:08:5d:73:f3:d5:bc:50:32:50:b0:e3:06:ad:cd:48:ab:6d: 49:b3:3f:48:98:ae:9b:70:12:08:4e:99:0b:8d:cd:b2:fc:d0: 56:86:11:d6:e1:56:df:5b:c3:41:c2:c0:dc:c8:b7:7a:69:b3: be:a7:4a:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJDRUMxMTAvBgNVBAUTKDAzOENGMkUyODA3N0RGMkNBREE0NTc1NkZCNUQ5OUE2 RTI0MEZEMDkwHhcNMjUwNjA2MTUxMjEyWhcNMjUwNjEzMTUxMjEyWjAYMRYwFAYD VQQDEw02ODQzMDU0ZC1iYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hNbvCvxsc6anX/d69Qy7y71UU+lmijVah6ZGaojBINrVe4xp3WGoEKAe97z frn9MdogWCUIfeg3hPw1TxkkZDBNlhMRxNtp9FAOwrjGcdxRDt8yjEs//3urg6Me 9lzM3b05s5YzkWPtBg9Op/KeVj7SaOvHCpvPrhBN2m/Mo5Vq1OxPX+xxZYeU7t+9 Pdm9akugzEnBOHMFtr2CpGVk2pG9zKb4IYksJO0YWoxPfay9hib20Ld1HC6rME/Q qHeMvXAgXi1WR7xG5FaQL9Rr08Nbpul9tDZYiQv8puB21HXp3xn/kShvUzYBKY/K 3bgHTXqeY51RvVxsEMGLWa9evwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmlhwXD /ekMOaLqXqnxY38WWm+MMB8GA1UdIwQYMBaAFAOM8uKAd98sraRXVvtdmabiQP0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkNFQy9COEIwQzc4ODFE QTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5eXRwRmRXLTEyWnB1SkFf UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0enk0b0IzM3l5dHBGZFctMTJacHVKQV9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkNFQy9COEIwQzc4ODFEQTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5 eXRwRmRXLTEyWnB1SkFfUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB6m8NyDxrB+hdpZL4CAOgUaOGEpvGpAczwJixxislqpqtdsCBwowc K+b7GFCjG36hMJQ2ho9+OjpVey3eTKRlGCB4VzDq1s6P8TUO6vLAuN3PU1o2bgu5 fLxaI7f1YBGnAuicfZr+vYplf4STai4Ql3UrbCrRSzhOaH3sCnDaabYN70HRasQn 2Kbb+LHfCp9XLzihkkYk3m/hqvLdUHyyvdyJbt75bxb9tmkd+whyyiQ2/7G3fewH sWiY3wnK4HUqDLg25s9ICF1z89W8UDJQsOMGrc1Iq21Jsz9ImK6bcBIITpkLjc2y /NBWhhHW4VbfW8NBwsDcyLd6abO+p0pp -----END CERTIFICATE-----Generated at Sat Jun 7 06:24:28 2025 by rpki-client