$ rpki-client -vvf rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft File: 909zX9xaW5M28yTDLLpVjrvSjZc.mft (raw, json) Hash identifier: 1KrCe+1yyA9uePAiTRnNM1Vwe0cA2cUnt2YR/MqKXmY= Subject key identifier: C1:9E:D3:03:BD:3F:FE:89:1A:CF:B4:AD:2B:6C:15:7D:70:BC:BF:13 Authority key identifier: F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 Certificate issuer: /CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Certificate serial: 1285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft Manifest number: 1285 Signing time: Mon 30 Jun 2025 17:17:21 +0000 Manifest this update: Mon 30 Jun 2025 17:17:21 +0000 Manifest next update: Mon 07 Jul 2025 17:17:21 +0000 Files and hashes: 1: 909zX9xaW5M28yTDLLpVjrvSjZc.crl (hash: KqlBHXUXI+QOJGgmNb1hbYN7SmOLcCgc3aMosJwVKCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 17:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4741 (0x1285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915123C, serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Validity Not Before: Jun 30 17:17:21 2025 GMT Not After : Jul 7 17:17:21 2025 GMT Subject: CN=6862c6a1-5d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:13:31:43:b6:1e:ef:62:48:13:1c:cc:c5:79: 96:44:6a:e3:a7:c1:e2:19:c9:ff:09:e5:2a:9e:0b: 9a:be:8d:df:1f:4b:e8:2c:e3:a6:57:1f:1b:dd:8b: c6:e2:fa:74:6d:26:20:5c:00:84:a1:c0:eb:68:e8: c6:ef:59:64:ac:97:51:6c:5e:56:ff:ed:e5:53:a4: 10:31:ab:5f:73:f5:77:5a:25:e9:0a:46:4e:bc:2c: 97:06:79:39:43:41:dc:a7:87:73:cd:a6:ac:81:1b: 82:c2:10:be:9a:30:91:44:bb:b6:c1:97:b1:5f:46: 44:77:77:4c:98:e4:f2:78:df:82:55:a0:c3:92:07: 3e:d3:e3:0e:40:4f:9f:dc:7d:f8:36:2b:97:a8:00: 57:c5:af:8d:1f:37:76:ee:e9:ea:e9:64:66:83:67: 7c:f4:4d:1f:2a:f2:78:c1:d5:9e:d6:7f:e7:cc:a9: 4c:36:2d:ec:f0:23:44:43:89:26:5e:06:2d:f1:17: 47:a4:2b:f4:fe:74:35:d6:cf:1c:58:67:79:46:bc: 49:b8:7c:ab:95:ee:8e:dd:11:46:90:f3:e9:35:09: 30:d7:af:d2:20:fd:99:8a:db:33:18:c5:6b:f9:33: f7:22:a5:34:2e:55:0c:7e:9e:2f:0f:99:46:d6:c8: 35:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9E:D3:03:BD:3F:FE:89:1A:CF:B4:AD:2B:6C:15:7D:70:BC:BF:13 X509v3 Authority Key Identifier: keyid:F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:1d:52:f7:e0:cb:cf:b3:17:c5:b2:5d:18:13:dd:c2:81:4c: 01:7b:f8:50:5e:47:97:a2:89:40:b6:51:67:f3:12:b8:3a:ef: 1b:79:66:5f:8a:30:48:ba:b0:37:59:36:b9:44:a9:2b:54:ce: 56:92:bc:82:02:04:22:04:5a:6f:88:55:a6:bc:62:3d:34:aa: f4:75:96:6d:2a:06:17:6a:bb:6f:f1:71:2c:ca:1b:a5:3f:87: 32:30:be:ff:5c:96:9f:68:5d:8c:64:8b:de:cf:57:53:9a:62: 48:25:5e:23:16:e0:26:a7:67:02:be:9e:c2:25:53:28:65:29: 5b:33:06:f9:9a:a4:f5:d5:a6:d0:9d:1b:fb:46:ea:56:80:e8: 46:00:d2:73:a4:e2:27:e7:95:0f:aa:9c:1a:44:8d:ab:02:24: 4c:ff:85:af:63:0b:46:85:23:1d:a6:b9:21:cc:d0:aa:24:1a: 08:93:8c:69:6e:73:ba:7b:41:43:fe:ca:20:fc:79:6f:e6:45: 07:e8:82:76:70:08:49:f0:81:b4:5c:e0:7a:79:36:32:20:43: cc:29:dd:74:c1:60:79:c5:ad:7b:d9:3a:78:2b:12:20:1d:22: d0:a3:b6:6b:7e:b5:18:72:e8:cb:5e:4d:e3:05:a8:bd:33:b8: f8:76:48:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyM0MxMTAvBgNVBAUTKEY3NEY3MzVGREM1QTVCOTMzNkYzMjRDMzJDQkE1NThF QkJEMjhEOTcwHhcNMjUwNjMwMTcxNzIxWhcNMjUwNzA3MTcxNzIxWjAYMRYwFAYD VQQDEw02ODYyYzZhMS01ZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BMxQ7Ye72JIExzMxXmWRGrjp8HiGcn/CeUqnguavo3fH0voLOOmVx8b3YvG 4vp0bSYgXACEocDraOjG71lkrJdRbF5W/+3lU6QQMatfc/V3WiXpCkZOvCyXBnk5 Q0Hcp4dzzaasgRuCwhC+mjCRRLu2wZexX0ZEd3dMmOTyeN+CVaDDkgc+0+MOQE+f 3H34NiuXqABXxa+NHzd27unq6WRmg2d89E0fKvJ4wdWe1n/nzKlMNi3s8CNEQ4km XgYt8RdHpCv0/nQ11s8cWGd5RrxJuHyrle6O3RFGkPPpNQkw16/SIP2ZitszGMVr +TP3IqU0LlUMfp4vD5lG1sg1dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGe0wO9 P/6JGs+0rStsFX1wvL8TMB8GA1UdIwQYMBaAFPdPc1/cWluTNvMkwyy6VY670o2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTIzQy82OEY1M0YzMkNC M0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1TTI4eVRETExwVmpydlNq WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkwOXpYOXhhVzVNMjh5VERMTHBWanJ2U2paYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTIzQy82OEY1M0YzMkNCM0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1 TTI4eVRETExwVmpydlNqWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAHVL34MvPsxfFsl0YE93CgUwBe/hQXkeXoolAtlFn8xK4Ou8beWZf ijBIurA3WTa5RKkrVM5WkryCAgQiBFpviFWmvGI9NKr0dZZtKgYXartv8XEsyhul P4cyML7/XJafaF2MZIvez1dTmmJIJV4jFuAmp2cCvp7CJVMoZSlbMwb5mqT11abQ nRv7RupWgOhGANJzpOIn55UPqpwaRI2rAiRM/4WvYwtGhSMdprkhzNCqJBoIk4xp bnO6e0FD/sog/Hlv5kUH6IJ2cAhJ8IG0XOB6eTYyIEPMKd10wWB5xa172Tp4KxIg HSLQo7ZrfrUYcujLXk3jBai9M7j4dkhk -----END CERTIFICATE-----Generated at Wed Jul 2 05:06:27 2025 by rpki-client