$ rpki-client -vvf rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft File: 6BH2N9bdhj5cdPMuKbziePqyWPc.mft (raw, json) Hash identifier: 8HqXOGijoDESlm8PT1hphG8+1CWOVgBeui3S9j/nudQ= Subject key identifier: 64:FD:DC:58:6A:AD:E8:E5:9E:11:CA:61:91:DA:9D:8B:75:89:1F:38 Authority key identifier: E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 Certificate issuer: /CN=A912B751/serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Certificate serial: 02B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft Manifest number: 02B1 Signing time: Wed 25 Jun 2025 01:14:27 +0000 Manifest this update: Wed 25 Jun 2025 01:14:27 +0000 Manifest next update: Wed 02 Jul 2025 01:14:27 +0000 Files and hashes: 1: 6BH2N9bdhj5cdPMuKbziePqyWPc.crl (hash: LVjn+mm1HXhhwYO1QXipEduSVW/Odpakm6IkLPekBGQ=) 2: 96BC85E8145711EF8ED9C174C4F9AE02.roa (hash: r9L4CmzavsqqBK92JPFfdFnoYkrBESFuwdtJEjg40XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 01:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B751, serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Validity Not Before: Jun 25 01:14:27 2025 GMT Not After : Jul 2 01:14:27 2025 GMT Subject: CN=685b4d73-f692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1d:33:d1:e4:91:83:ea:1c:c6:54:80:d0:7d: a6:bd:ec:85:3c:59:1c:ee:0b:d9:72:cd:3d:02:20: fa:2c:3d:7f:e1:5a:ab:62:a2:c5:0d:f1:e1:bc:4b: c4:c5:10:c6:29:06:cf:53:8c:8a:16:0a:07:b3:8f: aa:59:01:49:29:1d:55:25:d5:0c:34:4d:28:ae:ca: 26:f6:21:4a:e9:27:2e:aa:f1:d2:0f:ff:ba:97:c6: f9:cd:e1:7c:4e:03:17:c9:2f:3f:ca:85:a9:2f:d1: 7b:61:af:40:52:89:4d:a8:8f:aa:b9:55:0d:41:7b: 8e:85:3a:fc:4c:4f:5b:94:7b:b3:bc:a6:a5:ef:87: 21:48:54:c7:cf:b2:ae:01:45:7a:96:e4:49:c9:d2: 52:a6:ac:62:93:b9:93:87:6b:a3:72:00:20:6d:82: 61:5f:6f:d0:96:7a:8c:ca:42:b3:65:a3:2c:f2:b7: 52:e2:ec:95:3d:88:ab:30:6c:c2:70:ae:71:0d:da: 65:96:60:5f:4a:e0:ec:92:f5:41:60:82:b3:28:42: 4f:b2:88:67:ec:de:a7:56:97:be:71:56:6b:29:eb: d2:b5:79:c2:c1:d1:94:0b:8b:cd:54:bd:de:22:20: 19:48:3f:30:a9:90:4a:d8:98:8d:5f:08:dc:0f:0c: 29:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:FD:DC:58:6A:AD:E8:E5:9E:11:CA:61:91:DA:9D:8B:75:89:1F:38 X509v3 Authority Key Identifier: keyid:E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:87:ec:4c:54:21:df:c4:95:22:58:88:80:6e:4e:df:76:d5: ba:12:3d:c4:1a:e2:72:9c:3f:f8:ea:83:05:1c:3b:ca:68:7c: a6:8c:f0:47:32:b0:25:78:8a:f8:7e:2a:42:7e:c1:15:cd:61: 43:57:09:ef:f2:48:de:82:31:dd:33:66:79:05:30:63:53:a3: f3:ad:5a:2b:d5:86:c7:cd:16:59:5d:73:28:4a:0c:eb:f2:94: 17:82:6c:41:98:ec:c9:16:ef:f2:ae:b9:b1:e1:ac:de:d5:40: b2:b2:a8:4e:f9:86:83:bc:f9:6b:86:43:29:69:86:66:e1:f7: e3:a1:21:0d:9e:5d:c4:51:e6:7e:56:3c:12:48:7b:cb:d8:c3: 8e:4c:4a:be:d5:57:cf:55:44:38:5c:81:fd:21:7e:f5:64:8a: 8f:7b:13:09:c5:35:b0:6d:fe:4e:fc:d5:38:91:15:2e:1e:7f: 6f:e0:38:85:4d:66:10:e0:59:48:42:bf:ce:3b:e6:9e:7e:aa: e1:61:0e:aa:68:e3:4d:fb:1d:56:3d:72:1b:ad:32:f2:87:9b: 84:db:40:a6:cc:7c:48:bb:5b:42:79:a8:8d:a4:13:db:2d:05: fc:6d:b4:88:12:16:4a:64:f3:57:2a:9a:49:53:15:ac:9c:ee: 87:54:89:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NTExMTAvBgNVBAUTKEU4MTFGNjM3RDZERDg2M0U1Qzc0RjMyRTI5QkNFMjc4 RkFCMjU4RjcwHhcNMjUwNjI1MDExNDI3WhcNMjUwNzAyMDExNDI3WjAYMRYwFAYD VQQDEw02ODViNGQ3My1mNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3R0z0eSRg+ocxlSA0H2mveyFPFkc7gvZcs09AiD6LD1/4VqrYqLFDfHhvEvE xRDGKQbPU4yKFgoHs4+qWQFJKR1VJdUMNE0orsom9iFK6ScuqvHSD/+6l8b5zeF8 TgMXyS8/yoWpL9F7Ya9AUolNqI+quVUNQXuOhTr8TE9blHuzvKal74chSFTHz7Ku AUV6luRJydJSpqxik7mTh2ujcgAgbYJhX2/QlnqMykKzZaMs8rdS4uyVPYirMGzC cK5xDdpllmBfSuDskvVBYIKzKEJPsohn7N6nVpe+cVZrKevStXnCwdGUC4vNVL3e IiAZSD8wqZBK2JiNXwjcDwwpHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGT93Fhq rejlnhHKYZHanYt1iR84MB8GA1UdIwQYMBaAFOgR9jfW3YY+XHTzLim84nj6slj3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1MS83MkQ3RDhCNEZE RDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhqNWNkUE11S2J6aWVQcXlX UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZCSDJOOWJkaGo1Y2RQTXVLYnppZVBxeVdQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjc1MS83MkQ3RDhCNEZERDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhq NWNkUE11S2J6aWVQcXlXUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQh+xMVCHfxJUiWIiAbk7fdtW6Ej3EGuJynD/46oMFHDvKaHymjPBH MrAleIr4fipCfsEVzWFDVwnv8kjegjHdM2Z5BTBjU6PzrVor1YbHzRZZXXMoSgzr 8pQXgmxBmOzJFu/yrrmx4aze1UCysqhO+YaDvPlrhkMpaYZm4ffjoSENnl3EUeZ+ VjwSSHvL2MOOTEq+1VfPVUQ4XIH9IX71ZIqPexMJxTWwbf5O/NU4kRUuHn9v4DiF TWYQ4FlIQr/OO+aefqrhYQ6qaONN+x1WPXIbrTLyh5uE20CmzHxIu1tCeaiNpBPb LQX8bbSIEhZKZPNXKppJUxWsnO6HVIkE -----END CERTIFICATE-----Generated at Wed Jun 25 07:54:25 2025 by rpki-client