$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft File: mRs2LGa5oYApqN1CgVXZfHbgEgk.mft (raw, json) Hash identifier: +gxZDcpxFY1EmPOHi+riD5R5Wg7ns7mPK3QVXUXEIkI= Subject key identifier: D5:3D:D9:22:99:4B:C6:51:37:E3:D5:24:09:9E:EE:40:BD:DC:8F:C0 Authority key identifier: 99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 Certificate issuer: /CN=A9178D2A/serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft Manifest number: 0522 Signing time: Fri 06 Jun 2025 23:37:06 +0000 Manifest this update: Fri 06 Jun 2025 23:37:06 +0000 Manifest next update: Fri 13 Jun 2025 23:37:06 +0000 Files and hashes: 1: mRs2LGa5oYApqN1CgVXZfHbgEgk.crl (hash: y9lI/p0lQ0NubHYCTDs7YkYXW/ZfV8QwOHSx+BYu/us=) 2: DB9C041801B311ECBA0E715CC4F9AE02.roa (hash: POPDOMnD2vV8xWQMiufmv3X0702RYs86sixhHrnG1/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 23:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D2A, serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Validity Not Before: Jun 6 23:37:06 2025 GMT Not After : Jun 13 23:37:06 2025 GMT Subject: CN=68437ba2-923a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:01:51:43:03:2d:8d:4a:1a:9c:fd:11:a6:12: 6f:53:ad:57:6d:8b:30:b3:9b:09:e1:34:d2:67:8d: 03:e8:5f:c1:c6:35:1c:db:26:f3:a4:27:45:de:77: 56:9c:7c:e5:9b:3e:eb:07:cf:88:ba:36:82:f1:9e: 5d:1e:a4:df:d0:bd:11:51:b1:85:20:ca:d1:14:7b: 3d:c3:16:be:9b:70:ce:9e:99:1d:01:c6:c7:47:ba: ee:ad:3b:bf:30:f8:c7:6f:18:ad:96:96:5e:f8:64: b2:72:0b:e3:cd:76:81:5f:07:ae:d6:a5:0a:98:19: fb:1d:6c:ac:a9:9d:d2:38:14:67:1a:54:8e:3e:28: d0:eb:0a:07:bc:4a:d5:d5:03:4b:f4:54:f0:ba:3e: 19:d1:96:dc:17:f2:68:9a:98:85:99:01:a2:46:34: c8:32:59:bb:68:33:b1:41:3c:e8:2a:40:bc:74:5a: e8:06:7a:c1:91:c8:a2:95:e8:dc:3b:ba:be:19:50: a7:88:bb:32:0d:c7:8b:cd:ba:9c:61:8c:8a:2e:f3: 2d:25:b2:d7:9a:4d:a0:0d:e4:64:95:82:9f:78:c4: 05:b9:57:7c:10:2b:47:b0:d1:af:f9:c3:b8:a7:32: 50:37:f4:2e:ab:11:c0:dc:4b:a2:e0:ed:37:cd:4c: f5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3D:D9:22:99:4B:C6:51:37:E3:D5:24:09:9E:EE:40:BD:DC:8F:C0 X509v3 Authority Key Identifier: keyid:99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:c3:c3:80:75:7b:a1:55:85:ff:62:8f:8f:e5:3e:3f:84:e5: 83:e3:be:6a:ed:07:b3:d3:a0:89:9b:8c:9c:8e:bc:5d:07:18: f2:5e:65:25:f3:3d:18:df:90:47:dc:49:07:69:77:35:bf:87: 4a:ef:2f:55:f2:44:3f:b8:47:fc:c0:d5:9a:29:56:a4:9c:0b: 77:f9:05:cb:ef:bf:81:9f:7c:6c:79:d4:c2:c4:41:1c:59:2f: 2c:94:f4:12:e8:4b:0a:34:e1:22:73:21:05:b3:79:ee:44:eb: 66:fe:bc:6f:24:3f:8a:5d:3b:b1:0e:31:b2:b7:e3:6a:40:fa: 44:40:31:08:71:c2:e6:d5:bd:b3:ad:59:6b:d6:ca:c4:99:8e: a3:b5:05:ca:10:c7:10:c1:35:58:19:72:24:34:f1:51:80:1e: 62:22:d5:b0:f1:1e:64:ef:8c:ed:c4:6c:56:22:35:a4:03:41: 24:b5:08:5a:6d:9b:bd:89:92:42:48:69:f3:ff:9f:73:bc:ad: f4:f3:d2:de:9b:45:e3:1d:3e:bc:57:6e:c2:2e:31:08:51:bf: 0f:f5:57:be:e5:0a:4b:38:8c:b5:b4:ca:1c:9f:26:7a:83:60: 8d:06:85:c3:c2:1c:d9:8f:78:a0:39:e2:cf:58:9e:10:9e:a4: 83:36:dd:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMkExMTAvBgNVBAUTKDk5MUIzNjJDNjZCOUExODAyOUE4REQ0MjgxNTVEOTdD NzZFMDEyMDkwHhcNMjUwNjA2MjMzNzA2WhcNMjUwNjEzMjMzNzA2WjAYMRYwFAYD VQQDEw02ODQzN2JhMi05MjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAFRQwMtjUoanP0RphJvU61XbYsws5sJ4TTSZ40D6F/BxjUc2ybzpCdF3ndW nHzlmz7rB8+IujaC8Z5dHqTf0L0RUbGFIMrRFHs9wxa+m3DOnpkdAcbHR7rurTu/ MPjHbxitlpZe+GSycgvjzXaBXweu1qUKmBn7HWysqZ3SOBRnGlSOPijQ6woHvErV 1QNL9FTwuj4Z0ZbcF/JompiFmQGiRjTIMlm7aDOxQTzoKkC8dFroBnrBkciilejc O7q+GVCniLsyDceLzbqcYYyKLvMtJbLXmk2gDeRklYKfeMQFuVd8ECtHsNGv+cO4 pzJQN/QuqxHA3Eui4O03zUz1DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNU92SKZ S8ZRN+PVJAme7kC93I/AMB8GA1UdIwQYMBaAFJkbNixmuaGAKajdQoFV2Xx24BIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQyQS8yRDJGODI2NjAx QjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9ZQXBxTjFDZ1ZYWmZIYmdF Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21SczJMR2E1b1lBcHFOMUNnVlhaZkhiZ0Vnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQyQS8yRDJGODI2NjAxQjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9Z QXBxTjFDZ1ZYWmZIYmdFZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqw8OAdXuhVYX/Yo+P5T4/hOWD475q7Qez06CJm4ycjrxdBxjyXmUl 8z0Y35BH3EkHaXc1v4dK7y9V8kQ/uEf8wNWaKVaknAt3+QXL77+Bn3xsedTCxEEc WS8slPQS6EsKNOEicyEFs3nuROtm/rxvJD+KXTuxDjGyt+NqQPpEQDEIccLm1b2z rVlr1srEmY6jtQXKEMcQwTVYGXIkNPFRgB5iItWw8R5k74ztxGxWIjWkA0EktQha bZu9iZJCSGnz/59zvK3089Lem0XjHT68V27CLjEIUb8P9Ve+5QpLOIy1tMocnyZ6 g2CNBoXDwhzZj3igOeLPWJ4QnqSDNt2Y -----END CERTIFICATE-----Generated at Sun Jun 8 19:59:22 2025 by rpki-client