$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft File: s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json) Hash identifier: uuvJrfXi4KuXwEhYq8Joqbu8oefHmuzAYNDzHgx05pw= Subject key identifier: D7:E5:96:47:DE:3B:5C:5F:44:74:C3:82:52:AD:B1:5D:D3:C0:FE:39 Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D Certificate issuer: /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Certificate serial: 14CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft Manifest number: 14C5 Signing time: Sun 08 Jun 2025 16:45:36 +0000 Manifest this update: Sun 08 Jun 2025 16:45:35 +0000 Manifest next update: Sun 15 Jun 2025 16:45:35 +0000 Files and hashes: 1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: pJysMKTzLTbl96KA4IpZz9BoXj+nEn+oz+gajtThFRo=) 2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: Kpm1VRvUmk2GXeAxfKW1BgX1xl9xSgMJHiJXTqUoDIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 16:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5326 (0x14ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Validity Not Before: Jun 8 16:45:35 2025 GMT Not After : Jun 15 16:45:35 2025 GMT Subject: CN=6845be2f-c990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d2:47:6d:bd:a1:22:50:27:a8:63:27:82:64: 25:2c:e6:fe:8a:be:11:49:40:5f:f4:36:c9:a5:23: 3f:e7:e0:c8:f1:cc:b2:62:b2:49:29:f4:cf:3a:9d: 87:8f:84:bb:c0:4f:e7:c9:73:b9:7e:54:1c:e4:9c: c9:a8:ba:3b:49:3c:cb:91:50:28:31:24:07:a1:d0: c2:c3:6f:59:38:d3:12:a0:b6:ef:74:61:ab:fb:84: de:18:49:b4:fa:ec:68:5a:7b:67:14:d2:0d:a9:0f: 73:fe:fe:8f:83:28:c8:80:a1:53:c2:dc:84:ca:43: 59:94:76:b2:37:43:5f:ea:c8:fa:ed:d6:62:3a:52: 63:f0:85:be:2d:f8:b3:a3:fe:eb:98:22:05:e0:35: 85:63:6e:59:5a:0c:b3:06:32:f2:c3:80:0d:50:42: 3a:f9:f9:6d:bc:2d:54:5c:e4:9f:91:50:ac:e0:bb: 35:d3:35:30:de:e7:06:bb:df:f7:88:72:07:ca:7e: ad:15:df:fc:aa:cc:76:61:19:52:fc:c4:88:da:0f: e8:ec:69:27:9e:f7:59:23:c2:59:4b:35:37:bc:0c: 44:fe:11:39:81:e7:5b:0a:9d:45:96:10:06:55:67: 0c:d9:44:f1:fc:6c:69:67:db:e8:16:5b:07:66:47: a3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E5:96:47:DE:3B:5C:5F:44:74:C3:82:52:AD:B1:5D:D3:C0:FE:39 X509v3 Authority Key Identifier: keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:cf:cd:b8:58:3e:59:e2:7f:89:46:fe:69:23:57:8b:50:46: 2a:b9:9c:8b:b1:6e:26:1b:8b:96:21:6e:59:74:a5:45:32:07: c0:bd:93:7d:7c:3b:fb:ca:e3:c6:e5:47:90:03:cf:d0:97:88: 45:0d:e1:75:18:f3:74:b8:38:c4:a0:87:62:15:3c:19:57:62: 6d:fb:88:84:24:f2:d0:00:50:ff:ca:d5:02:95:71:f3:77:5f: 7e:f5:ce:e8:75:25:45:a5:bb:d9:22:e7:9f:74:26:c7:c4:43: 6a:06:81:0d:19:2a:7a:1a:6e:3a:80:cd:a1:51:21:84:b9:99: 33:e1:b9:a1:14:0b:46:e9:01:29:66:20:7a:f7:d6:ea:0f:e8: 78:60:35:ee:5d:5b:f7:a3:ba:6d:2e:6d:9a:a9:35:65:55:cf: ad:80:67:61:ec:9a:26:9c:01:bb:fd:87:f7:97:41:b6:b2:c5: 12:98:6f:a3:38:28:7f:1d:f0:9f:ad:cf:fb:81:b2:bc:44:42: 8a:d2:10:dc:eb:72:09:2c:5c:a8:35:02:e3:73:fc:02:35:41: d4:6b:23:d5:f5:d3:40:6a:ff:25:77:fc:1f:b6:ae:e4:12:93: f4:c2:46:6d:97:61:f0:9a:8a:49:20:57:37:52:0e:b8:af:19: db:ac:8b:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCOTExMTAvBgNVBAUTKEIzNUE3MkU1NkYwOTAyQzdFMUI4RDgxMkM1RDgzNjU0 MTFEREEzMUQwHhcNMjUwNjA4MTY0NTM1WhcNMjUwNjE1MTY0NTM1WjAYMRYwFAYD VQQDEw02ODQ1YmUyZi1jOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNJHbb2hIlAnqGMngmQlLOb+ir4RSUBf9DbJpSM/5+DI8cyyYrJJKfTPOp2H j4S7wE/nyXO5flQc5JzJqLo7STzLkVAoMSQHodDCw29ZONMSoLbvdGGr+4TeGEm0 +uxoWntnFNINqQ9z/v6PgyjIgKFTwtyEykNZlHayN0Nf6sj67dZiOlJj8IW+Lfiz o/7rmCIF4DWFY25ZWgyzBjLyw4ANUEI6+fltvC1UXOSfkVCs4Ls10zUw3ucGu9/3 iHIHyn6tFd/8qsx2YRlS/MSI2g/o7GknnvdZI8JZSzU3vAxE/hE5gedbCp1FlhAG VWcM2UTx/GxpZ9voFlsHZkejBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfllkfe O1xfRHTDglKtsV3TwP45MB8GA1UdIwQYMBaAFLNacuVvCQLH4bjYEsXYNlQR3aMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI5MS83NjMwNEE3ODVB OTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFzZmh1TmdTeGRnMlZCSGRv eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MxcHk1VzhKQXNmaHVOZ1N4ZGcyVkJIZG94MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI5MS83NjMwNEE3ODVBOTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFz Zmh1TmdTeGRnMlZCSGRveDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDz824WD5Z4n+JRv5pI1eLUEYquZyLsW4mG4uWIW5ZdKVFMgfAvZN9 fDv7yuPG5UeQA8/Ql4hFDeF1GPN0uDjEoIdiFTwZV2Jt+4iEJPLQAFD/ytUClXHz d19+9c7odSVFpbvZIuefdCbHxENqBoENGSp6Gm46gM2hUSGEuZkz4bmhFAtG6QEp ZiB699bqD+h4YDXuXVv3o7ptLm2aqTVlVc+tgGdh7JomnAG7/Yf3l0G2ssUSmG+j OCh/HfCfrc/7gbK8REKK0hDc63IJLFyoNQLjc/wCNUHUayPV9dNAav8ld/wftq7k EpP0wkZtl2HwmopJIFc3Ug64rxnbrItV -----END CERTIFICATE-----Generated at Mon Jun 9 06:16:26 2025 by rpki-client