$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: M4S2n6rYCOy9Rhho3a8aLJ8eeMIho5RcDYUHAVYnVYo= Subject key identifier: 59:70:BB:14:DB:44:C4:6A:96:30:57:83:5E:BB:B2:91:21:84:90:41 Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0C70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0C58 Signing time: Fri 06 Jun 2025 18:31:11 +0000 Manifest this update: Fri 06 Jun 2025 18:31:10 +0000 Manifest next update: Fri 13 Jun 2025 18:31:10 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: PLFWA/XIZ2wTBRn2yQW1hPV0xktP/UQKAOy1o8I9Yg0=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: 0lS33+x/wV4ZjG4+C7tNWHgwZ9mB92JRzfsTSGemT24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 18:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Jun 6 18:31:10 2025 GMT Not After : Jun 13 18:31:10 2025 GMT Subject: CN=684333ef-c72a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7d:76:c4:c9:9f:a2:d2:fb:c1:cd:a1:a8:a0: ac:1d:fb:83:ff:bb:2c:73:6c:42:6a:b0:cb:dd:a7: 58:38:79:5b:cf:de:15:1f:89:b4:94:d9:4e:1f:01: a5:c2:8a:c7:ff:40:5b:89:a0:36:1e:5f:66:22:a8: 83:9d:1e:ec:8d:95:6f:2c:07:84:f3:77:12:cc:8a: b2:03:78:98:0d:5a:8b:ab:0c:86:d9:60:85:df:3d: 3d:5c:14:10:ca:4c:f1:8c:f5:d7:21:8f:b8:23:d2: 5c:0b:29:ec:b3:5c:ac:15:81:6e:f1:48:c2:fc:d2: ba:b4:c4:ef:3c:39:b4:0a:a0:5b:81:fc:8e:ad:16: d8:dc:fe:a7:a7:20:4d:80:df:10:c1:b3:fc:4c:9e: 97:48:86:4b:82:7c:3d:49:fc:86:e7:a4:e2:d5:df: 81:79:0f:e5:17:40:d1:78:1e:02:7d:a3:0b:34:ea: f9:f5:44:51:26:aa:38:f1:14:a3:90:32:41:a1:bf: a2:d8:64:9b:f8:ce:73:c7:3d:67:66:dd:c6:c4:a8: 13:20:d4:2d:c0:a9:68:c2:9b:ec:02:58:be:37:f7: 0e:71:2b:7d:fa:8d:95:0f:07:a3:82:65:49:53:cf: ed:f7:cf:59:7e:f2:89:82:bd:80:08:3f:a3:21:cd: 16:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:70:BB:14:DB:44:C4:6A:96:30:57:83:5E:BB:B2:91:21:84:90:41 X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:b0:a0:57:9f:fd:7b:a5:15:e7:cb:ec:20:62:91:a5:4c:03: fb:41:47:49:86:af:92:4b:27:57:0e:7b:22:27:98:ba:22:8f: fe:6e:d7:e8:9b:ed:d9:e6:e9:92:79:ff:4c:6a:17:84:2a:c8: d0:ec:9f:3a:65:2d:7b:aa:31:fe:f7:f6:33:6a:cf:17:7c:c8: ef:41:cb:3b:31:3f:98:1f:3c:cc:dc:b1:07:10:91:ac:e6:73: 7c:99:05:24:2b:7e:33:b0:3b:95:fd:d0:06:2e:50:33:b3:80: 08:c8:df:b6:3a:5f:0b:c0:6c:f8:73:a8:86:3d:50:40:e1:26: fe:a2:f1:c8:49:d2:5b:a0:ae:bd:53:0a:31:eb:72:ae:27:d2: f1:c9:23:a1:fc:0f:73:a2:3c:da:dc:72:d1:9c:6c:b2:c9:58: 82:7b:3d:3f:d9:84:90:57:44:7c:f3:89:59:8c:8e:b8:4a:8a: 2c:f3:ea:3c:3d:f9:e3:d4:e9:d7:34:2c:56:56:bd:ed:07:25: d6:25:84:33:d3:8d:e1:3d:72:ec:0d:db:7c:35:fe:8d:f2:7a: 20:17:a9:27:dd:3d:ac:09:e5:29:75:56:26:8f:4f:17:76:eb: 68:d3:82:81:4c:db:1a:2a:e0:dd:ca:e3:ed:b6:3e:5a:22:18: 30:d6:2c:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUwNjA2MTgzMTEwWhcNMjUwNjEzMTgzMTEwWjAYMRYwFAYD VQQDEw02ODQzMzNlZi1jNzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsn12xMmfotL7wc2hqKCsHfuD/7ssc2xCarDL3adYOHlbz94VH4m0lNlOHwGl worH/0BbiaA2Hl9mIqiDnR7sjZVvLAeE83cSzIqyA3iYDVqLqwyG2WCF3z09XBQQ ykzxjPXXIY+4I9JcCynss1ysFYFu8UjC/NK6tMTvPDm0CqBbgfyOrRbY3P6npyBN gN8QwbP8TJ6XSIZLgnw9SfyG56Ti1d+BeQ/lF0DReB4CfaMLNOr59URRJqo48RSj kDJBob+i2GSb+M5zxz1nZt3GxKgTINQtwKlowpvsAli+N/cOcSt9+o2VDwejgmVJ U8/t989ZfvKJgr2ACD+jIc0WqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlwuxTb RMRqljBXg167spEhhJBBMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrsKBXn/17pRXny+wgYpGlTAP7QUdJhq+SSydXDnsiJ5i6Io/+btfo m+3Z5umSef9MaheEKsjQ7J86ZS17qjH+9/Yzas8XfMjvQcs7MT+YHzzM3LEHEJGs 5nN8mQUkK34zsDuV/dAGLlAzs4AIyN+2Ol8LwGz4c6iGPVBA4Sb+ovHISdJboK69 Uwox63KuJ9LxySOh/A9zojza3HLRnGyyyViCez0/2YSQV0R884lZjI64Soos8+o8 Pfnj1OnXNCxWVr3tByXWJYQz043hPXLsDdt8Nf6N8nogF6kn3T2sCeUpdVYmj08X duto04KBTNsaKuDdyuPttj5aIhgw1iyw -----END CERTIFICATE-----Generated at Sat Jun 7 15:56:12 2025 by rpki-client