$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: y/xTNv3k+g4HyxyqDYif32Up/aiou8zKgASh55+aX0Q= Subject key identifier: 22:FB:61:D1:BF:EF:47:27:7D:88:C2:22:99:2E:0D:5C:F2:1D:C1:0F Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 012E Signing time: Mon 02 Jun 2025 15:36:10 +0000 Manifest this update: Mon 02 Jun 2025 15:36:09 +0000 Manifest next update: Mon 09 Jun 2025 15:36:09 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: WUQwh8Dja9rnG0axVvIPVqIoYfyepEJcUemYh8Pw2cY=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: 4RQI+EFj/mJJo3iDsYdl0ustKcpifsqTMWOHIgjxyFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Jun 2 15:36:09 2025 GMT Not After : Jun 9 15:36:09 2025 GMT Subject: CN=683dc4e9-52c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:40:1c:b0:5c:6f:28:80:19:d3:25:58:ac:f2: fe:13:f7:ac:6c:b3:ab:d3:73:7d:7e:cb:cd:73:7a: f3:68:35:4d:b6:59:0c:aa:0a:39:85:7f:09:84:8a: 39:80:23:78:51:98:da:c9:0e:71:22:1c:cf:b5:88: 6a:2f:d7:59:3f:7d:44:3b:5b:5b:b3:bb:c8:f8:0f: 60:e0:9c:ee:da:72:16:38:bd:6c:4b:56:b7:f8:2b: 20:4a:32:26:78:99:ad:9d:c7:16:e2:45:eb:66:0d: 4f:9b:80:2a:f7:ee:5d:6d:aa:bb:0f:e2:4b:1f:c6: 0e:d9:93:11:47:32:cc:76:9d:0c:13:30:3d:47:34: 60:f9:d4:31:db:26:3e:6a:ed:c8:42:2f:97:9f:bc: 00:c8:3a:4e:5b:d7:c7:db:3f:4e:91:fa:1a:16:9f: 46:07:e9:e1:7a:79:27:45:21:9f:92:ca:ee:54:af: 1f:0a:86:4f:4d:fd:59:2c:f1:c9:16:3e:60:37:e9: 86:79:8e:87:cd:2d:55:cb:2d:e5:1b:1b:36:cf:1c: 5f:3e:f3:f6:35:1b:8b:52:14:f0:6f:4a:1c:7e:d7: e0:f5:3f:70:e0:46:d4:9c:e0:5b:0a:b8:59:6c:1b: 54:e7:58:c4:c7:19:c6:b1:fa:36:83:d4:5a:d5:27: 17:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FB:61:D1:BF:EF:47:27:7D:88:C2:22:99:2E:0D:5C:F2:1D:C1:0F X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d4:30:34:8c:1c:36:78:09:5e:35:5e:14:f9:d6:6e:14:46: 93:bb:88:8e:0c:81:d4:58:e7:40:cb:8a:7a:34:e3:3c:40:83: 88:c9:62:3c:65:e1:2e:c3:24:a6:3f:87:9d:bf:64:b3:5c:26: 94:e7:71:2a:f7:3d:45:f6:3b:8a:77:de:77:35:de:59:20:8f: 06:f5:88:d3:fa:aa:f0:56:0a:4f:dd:da:ff:ac:8b:1e:92:3c: a4:ba:64:6c:97:ff:11:f3:c6:70:be:10:dc:06:d8:38:4e:df: 37:23:dc:19:a2:b5:f8:1c:15:dc:2a:fb:35:43:12:49:27:0f: 66:5e:b0:e7:f2:3e:a0:f5:34:ba:10:1b:1a:8a:b9:4a:25:58: f6:ed:c5:5d:98:c6:dc:71:60:f8:ed:c4:9c:cd:12:6f:4f:7a: d8:bb:d5:c3:90:5a:76:96:d0:45:c5:98:21:91:8d:16:de:43: 9a:bc:ea:80:5e:e0:1a:ee:be:ea:e5:7f:07:50:a6:d2:d6:24: 76:86:77:2e:24:90:b3:42:d6:04:33:18:cc:82:fa:fe:67:83: 92:82:b5:e0:e0:d8:55:b5:43:93:27:c2:67:c4:ac:39:1e:5d: fc:83:44:ce:7a:e5:68:b0:43:fd:51:01:14:17:88:fe:85:e5: ee:71:39:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUwNjAyMTUzNjA5WhcNMjUwNjA5MTUzNjA5WjAYMRYwFAYD VQQDEw02ODNkYzRlOS01MmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kAcsFxvKIAZ0yVYrPL+E/esbLOr03N9fsvNc3rzaDVNtlkMqgo5hX8JhIo5 gCN4UZjayQ5xIhzPtYhqL9dZP31EO1tbs7vI+A9g4Jzu2nIWOL1sS1a3+CsgSjIm eJmtnccW4kXrZg1Pm4Aq9+5dbaq7D+JLH8YO2ZMRRzLMdp0MEzA9RzRg+dQx2yY+ au3IQi+Xn7wAyDpOW9fH2z9OkfoaFp9GB+nhenknRSGfksruVK8fCoZPTf1ZLPHJ Fj5gN+mGeY6HzS1Vyy3lGxs2zxxfPvP2NRuLUhTwb0ocftfg9T9w4EbUnOBbCrhZ bBtU51jExxnGsfo2g9Ra1ScXHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCL7YdG/ 70cnfYjCIpkuDVzyHcEPMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP1DA0jBw2eAleNV4U+dZuFEaTu4iODIHUWOdAy4p6NOM8QIOIyWI8 ZeEuwySmP4edv2SzXCaU53Eq9z1F9juKd953Nd5ZII8G9YjT+qrwVgpP3dr/rIse kjykumRsl/8R88ZwvhDcBtg4Tt83I9wZorX4HBXcKvs1QxJJJw9mXrDn8j6g9TS6 EBsairlKJVj27cVdmMbccWD47cSczRJvT3rYu9XDkFp2ltBFxZghkY0W3kOavOqA XuAa7r7q5X8HUKbS1iR2hncuJJCzQtYEMxjMgvr+Z4OSgrXg4NhVtUOTJ8JnxKw5 Hl38g0TOeuVosEP9UQEUF4j+heXucTlK -----END CERTIFICATE-----Generated at Mon Jun 2 22:11:39 2025 by rpki-client