$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: 2KYUB/S79EjvPNNEZy6PWVC2AVImM4vfnMw8M717SqY= Subject key identifier: F5:00:F5:89:17:43:2D:16:93:AB:2F:59:20:BC:4F:C2:5D:E3:4B:D0 Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 0933 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 0917 Signing time: Fri 30 May 2025 20:36:07 +0000 Manifest this update: Fri 30 May 2025 20:36:07 +0000 Manifest next update: Fri 06 Jun 2025 20:36:07 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: DSssNdasOjuNHV7DgDOhoQO1s+F+/qWtJw2BKLWvA/4=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: LGFMxkvmdVELBOkg0tqQjRMiBrTGNLnJnZeQEwD+enQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2355 (0x933) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9, serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: May 30 20:36:07 2025 GMT Not After : Jun 6 20:36:07 2025 GMT Subject: CN=683a16b7-f462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b0:a3:01:ee:fc:88:e5:5a:57:7c:96:a8:51: 29:1e:b2:fe:a7:46:33:5e:c9:2e:82:09:2d:64:3c: 53:35:cd:e9:63:dc:c6:5a:8a:d5:d3:ec:e9:c5:a5: 87:eb:ef:0f:42:23:e6:b3:a6:68:49:8d:e4:95:04: a7:de:11:ca:d2:26:cf:03:58:37:48:85:fe:e4:af: cd:6e:0c:4d:31:da:d4:a6:37:c2:5d:44:66:21:2c: 9b:77:9a:d1:75:7f:11:ac:75:30:b7:cb:af:95:70: ec:2b:e4:fc:dd:e3:3f:70:f8:7b:fb:1f:b2:41:a1: 7e:18:d7:d7:26:1c:49:46:6a:cb:de:37:92:7e:7b: 93:3b:f0:fd:c3:7f:2c:b9:da:4a:d1:1b:03:07:c1: 68:07:25:ba:b9:6a:8e:9a:bb:f9:22:7e:1a:0a:8a: c1:f9:89:eb:55:b0:f7:a8:27:59:0a:05:32:40:02: c2:fb:9c:d6:3f:8d:12:c9:05:68:cf:b7:6a:c7:fd: 3b:1f:b2:a8:38:46:40:a6:58:5a:28:4d:d4:24:ff: 61:fa:15:77:ea:88:4e:cd:3f:5e:59:30:94:dd:c7: e2:aa:51:e8:fc:35:d2:2d:8f:30:35:8f:ab:e0:18: 5b:c8:17:ff:e6:5f:4b:1a:c4:0f:e6:62:39:35:82: ce:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:00:F5:89:17:43:2D:16:93:AB:2F:59:20:BC:4F:C2:5D:E3:4B:D0 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:ba:b6:71:93:42:d8:ad:40:98:0c:81:ea:a5:b9:0a:cf:8a: 2a:77:04:31:42:59:43:3d:20:74:0b:7c:74:43:35:b0:e6:75: a1:7d:86:9a:ec:78:cb:c5:eb:57:c4:b6:f7:ff:42:60:d2:c7: d7:4f:3d:2b:aa:de:d7:d8:c3:49:54:0a:dc:45:7f:51:b6:99: dc:b0:44:9b:5b:c6:62:2c:ae:6e:59:06:82:46:4d:14:ac:b3: 21:56:20:9f:05:9a:63:04:f7:fa:d5:2b:ec:a5:76:58:2e:09: b8:7e:df:6e:9f:a1:21:38:96:48:16:2e:c5:be:86:99:1d:54: b2:d5:c5:1f:d5:87:9e:38:25:5a:cf:4f:82:35:c5:52:d5:7f: 0b:21:f7:e4:ed:c2:1d:ff:f0:1c:28:79:22:3e:10:2e:27:1f: 52:dc:d1:f1:6b:7b:10:29:3a:a3:8a:16:44:e2:8a:7c:cf:e6: 3e:36:da:bc:79:77:7b:f2:b4:ec:40:e5:7b:9c:d8:14:4b:09: 25:b9:9b:ee:f0:f8:f1:85:2d:bb:3f:69:22:35:5e:9c:66:cc: 45:d3:ea:d9:82:c1:27:5b:05:5f:33:79:57:45:2f:91:f8:db: a9:6d:bc:e2:b5:68:db:e3:b0:cb:8b:15:8d:de:26:51:36:89: 7b:ae:14:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjUwNTMwMjAzNjA3WhcNMjUwNjA2MjAzNjA3WjAYMRYwFAYD VQQDEw02ODNhMTZiNy1mNDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7CjAe78iOVaV3yWqFEpHrL+p0YzXskuggktZDxTNc3pY9zGWorV0+zpxaWH 6+8PQiPms6ZoSY3klQSn3hHK0ibPA1g3SIX+5K/NbgxNMdrUpjfCXURmISybd5rR dX8RrHUwt8uvlXDsK+T83eM/cPh7+x+yQaF+GNfXJhxJRmrL3jeSfnuTO/D9w38s udpK0RsDB8FoByW6uWqOmrv5In4aCorB+YnrVbD3qCdZCgUyQALC+5zWP40SyQVo z7dqx/07H7KoOEZAplhaKE3UJP9h+hV36ohOzT9eWTCU3cfiqlHo/DXSLY8wNY+r 4BhbyBf/5l9LGsQP5mI5NYLOjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUA9YkX Qy0Wk6svWSC8T8Jd40vQMB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCurZxk0LYrUCYDIHqpbkKz4oqdwQxQllDPSB0C3x0QzWw5nWhfYaa 7HjLxetXxLb3/0Jg0sfXTz0rqt7X2MNJVArcRX9RtpncsESbW8ZiLK5uWQaCRk0U rLMhViCfBZpjBPf61SvspXZYLgm4ft9un6EhOJZIFi7FvoaZHVSy1cUf1YeeOCVa z0+CNcVS1X8LIffk7cId//AcKHkiPhAuJx9S3NHxa3sQKTqjihZE4op8z+Y+Ntq8 eXd78rTsQOV7nNgUSwkluZvu8PjxhS27P2kiNV6cZsxF0+rZgsEnWwVfM3lXRS+R +NupbbzitWjb47DLixWN3iZRNol7rhQD -----END CERTIFICATE-----Generated at Sat May 31 16:26:58 2025 by rpki-client