$ rpki-client -vvf rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft File: B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft (raw, json) Hash identifier: /7ZsojAeEXa9lZSoI3hSOr0BjgLfhnckGNqHAahnrts= Subject key identifier: C0:D6:24:56:02:DB:82:40:68:63:67:EC:6B:52:E0:C3:D9:52:2A:6A Authority key identifier: 07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C Certificate issuer: /CN=A9166C39/serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Certificate serial: 08C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft Manifest number: 08B0 Signing time: Wed 04 Jun 2025 20:28:57 +0000 Manifest this update: Wed 04 Jun 2025 20:28:56 +0000 Manifest next update: Wed 11 Jun 2025 20:28:56 +0000 Files and hashes: 1: B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl (hash: aduWsvbfXoL2czAVCEARuDcqR/uK+g3cTLayFRA2qto=) 2: E02718B0FB7E11EFA25DF775C4F9AE02.roa (hash: Rbebv7a/3bjYuOYYlHIXr662xadEzX5etaY1VAtT19Q=) 3: DF8D07E8FB7E11EFA25DF775C4F9AE02.roa (hash: unM5ewA/QOJvINE5uAU/tFjaV4piAYCJJAvmIWLeMb8=) 4: 16079DB83C1D11EBA532C076C4F9AE02.roa (hash: 2TPeWUxi8y2dJKsuFTVthNuMYrZypRCJy1Y/CFzYdHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 20:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2248 (0x8c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166C39, serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Validity Not Before: Jun 4 20:28:56 2025 GMT Not After : Jun 11 20:28:56 2025 GMT Subject: CN=6840ac89-573a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:13:87:7f:b4:1b:fa:a8:1b:cb:3f:d3:88:77: e7:13:cd:e3:b4:84:01:a4:d7:cb:f6:42:91:53:19: 63:2a:8f:4f:3a:38:10:67:c4:52:08:f9:2c:a3:d7: c3:01:81:20:0d:d4:d1:71:60:c1:07:37:dd:a7:2e: ae:4d:78:c4:d4:35:b0:d1:c9:17:28:3c:01:3c:fd: 52:a4:91:28:3c:67:23:ad:de:41:ff:87:10:d1:78: 7e:69:bf:73:5c:92:7a:e5:84:a1:f1:f9:0f:be:c9: 52:cf:bf:87:99:06:65:20:b4:1d:74:e2:3a:1c:dd: fe:5f:fc:c0:8a:f6:d1:8b:89:c3:22:d5:a3:a5:25: 1c:7e:2a:52:b6:cc:83:8f:54:39:d0:88:d8:9a:5a: 4b:0f:fe:34:f8:1e:22:0c:d6:c6:ed:e6:7b:53:8f: 96:ec:c2:2d:f6:2f:cc:7c:a7:d3:6d:07:bc:c8:db: b7:3b:d7:47:38:67:84:17:27:47:ce:d3:07:e0:86: 6f:dd:21:56:b9:f9:d1:2f:63:4d:36:17:0a:30:3b: a8:6a:d4:91:88:fa:99:e0:e4:c8:e8:ea:64:ab:7c: 15:6f:ea:12:af:91:d4:b8:e7:4d:40:99:02:11:3d: d7:5f:17:52:d7:17:3f:3a:2e:8a:0d:b7:fa:df:c1: 7a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D6:24:56:02:DB:82:40:68:63:67:EC:6B:52:E0:C3:D9:52:2A:6A X509v3 Authority Key Identifier: keyid:07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:46:75:16:2d:79:c8:c5:a0:bc:eb:42:f6:69:bd:f2:4c:fe: 34:dc:ff:50:14:5c:ed:5a:b8:ae:db:e8:50:53:22:3c:4f:5d: 8b:83:a7:02:34:8e:34:81:c5:3b:b0:a3:ae:0a:cd:03:6e:45: 05:95:ff:8e:f8:b0:3d:be:ff:bc:09:26:db:ec:be:d5:a6:20: 9d:d1:b2:d9:3e:2f:cd:f9:a3:9b:bc:1f:94:ad:6b:f2:4f:6b: d1:30:51:0b:d3:48:86:c9:6b:20:b6:72:a0:56:d9:f5:32:ad: 57:48:23:b8:78:1d:9d:d7:d2:42:9f:15:9f:05:b3:11:92:f0: 06:72:b2:51:8e:6b:58:99:7e:28:1a:d8:0c:e2:e2:49:8c:4a: d2:ee:e9:52:77:fe:2f:5a:86:eb:5c:3b:87:b2:25:ca:09:e5: e1:72:79:1a:e7:ea:4c:1f:15:3b:51:18:e1:7d:5c:e6:27:aa: 25:e9:0e:d4:21:a4:45:83:b7:4b:17:a0:14:7f:85:35:dc:d3: 07:c7:69:10:20:48:62:d3:0b:f3:22:0d:79:50:3f:ad:5c:e5: f0:22:62:89:dc:04:e8:fa:b7:be:52:64:d4:be:ff:3a:f5:88: 7a:66:74:92:0d:20:03:8c:9e:5f:ed:8d:ce:b8:3d:6a:00:2e: 7b:1f:59:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZDMzkxMTAvBgNVBAUTKDA3RTA1MUI0MUVEODJFM0Y1M0JGNTlBQTg0REQ5QUNB MjBDRkI1NEMwHhcNMjUwNjA0MjAyODU2WhcNMjUwNjExMjAyODU2WjAYMRYwFAYD VQQDEw02ODQwYWM4OS01NzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlROHf7Qb+qgbyz/TiHfnE83jtIQBpNfL9kKRUxljKo9POjgQZ8RSCPkso9fD AYEgDdTRcWDBBzfdpy6uTXjE1DWw0ckXKDwBPP1SpJEoPGcjrd5B/4cQ0Xh+ab9z XJJ65YSh8fkPvslSz7+HmQZlILQddOI6HN3+X/zAivbRi4nDItWjpSUcfipStsyD j1Q50IjYmlpLD/40+B4iDNbG7eZ7U4+W7MIt9i/MfKfTbQe8yNu3O9dHOGeEFydH ztMH4IZv3SFWufnRL2NNNhcKMDuoatSRiPqZ4OTI6Opkq3wVb+oSr5HUuOdNQJkC ET3XXxdS1xc/Oi6KDbf638F6cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDWJFYC 24JAaGNn7GtS4MPZUipqMB8GA1UdIwQYMBaAFAfgUbQe2C4/U79ZqoTdmsogz7VM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkMzOS8yN0VFQ0ZEMEJC OTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxqOVR2MW1xaE4yYXlpRFB0 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItQlJ0QjdZTGo5VHYxbXFoTjJheWlEUHRVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkMzOS8yN0VFQ0ZEMEJCOTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxq OVR2MW1xaE4yYXlpRFB0VXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxRnUWLXnIxaC860L2ab3yTP403P9QFFztWriu2+hQUyI8T12Lg6cC NI40gcU7sKOuCs0DbkUFlf+O+LA9vv+8CSbb7L7VpiCd0bLZPi/N+aObvB+UrWvy T2vRMFEL00iGyWsgtnKgVtn1Mq1XSCO4eB2d19JCnxWfBbMRkvAGcrJRjmtYmX4o GtgM4uJJjErS7ulSd/4vWobrXDuHsiXKCeXhcnka5+pMHxU7URjhfVzmJ6ol6Q7U IaRFg7dLF6AUf4U13NMHx2kQIEhi0wvzIg15UD+tXOXwImKJ3ATo+re+UmTUvv86 9Yh6ZnSSDSADjJ5f7Y3OuD1qAC57H1mP -----END CERTIFICATE-----Generated at Thu Jun 5 19:56:41 2025 by rpki-client