$ rpki-client -vvf rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft File: MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft (raw, json) Hash identifier: ib+TwthLCYHpEvG2Su3GW13HEW9jb+INwG18kYxxi3s= Subject key identifier: 76:5B:AD:27:89:94:AA:16:E3:F6:BA:16:79:BF:91:47:7A:BA:72:9A Authority key identifier: 32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 Certificate issuer: /CN=A9180127/serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft Manifest number: 0141 Signing time: Sat 07 Jun 2025 03:55:33 +0000 Manifest this update: Sat 07 Jun 2025 03:55:32 +0000 Manifest next update: Sat 14 Jun 2025 03:55:32 +0000 Files and hashes: 1: MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl (hash: yVOrEFeyLH6FQ0ituJg+1ik5hXTWne3mtHYEu2G+uEs=) 2: 80A66D902A6411F09ACA5C61C4F9AE02.roa (hash: VkiCTpbHNMdBRPiF1oBiRg7dOTIy/YEbnzSkLjMcvbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180127, serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Validity Not Before: Jun 7 03:55:32 2025 GMT Not After : Jun 14 03:55:32 2025 GMT Subject: CN=6843b834-2c0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0a:49:c4:13:cb:f3:20:28:c7:80:1a:75:e8: b9:da:89:be:f4:80:22:49:81:1c:c8:b1:82:a6:6a: 38:bd:38:e3:d8:75:ba:bd:fe:40:84:74:0b:91:dd: 08:79:d7:2c:bd:25:44:10:f7:a3:d4:b0:50:15:f2: 4f:76:41:ad:ef:7b:aa:45:81:24:04:58:e7:8b:81: ca:ad:46:2d:08:f0:83:dc:2b:d0:30:ef:b1:55:80: 5b:0d:5e:2b:1b:01:0e:e6:f2:87:87:03:50:51:03: 91:fc:af:f2:80:36:33:90:ff:c5:ed:91:fa:b2:5c: 6c:56:ab:25:31:dd:67:81:8f:4c:46:58:ff:65:d4: 70:6e:97:8d:fb:40:93:99:a1:df:b4:ba:b4:1d:a7: 32:66:25:f4:b0:f7:6b:f3:0c:31:ce:ed:72:1b:fd: 25:e7:78:67:77:b3:96:b8:99:d7:4b:c6:ca:46:49: de:16:53:7b:08:36:a9:92:2d:2d:ea:f0:f3:82:b7: 83:04:f5:da:45:7a:aa:53:24:c4:dc:41:45:70:9d: 10:60:04:bf:ef:75:59:cd:fa:3d:83:ae:d0:17:38: 80:ae:72:0e:5e:0c:d7:70:86:ac:34:de:ee:ff:77: 8c:ef:cd:46:b6:97:4e:08:b6:b7:3a:fa:b2:6c:97: 25:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:5B:AD:27:89:94:AA:16:E3:F6:BA:16:79:BF:91:47:7A:BA:72:9A X509v3 Authority Key Identifier: keyid:32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b4:f4:aa:a2:18:b0:6b:0f:f1:0d:b4:9e:07:9d:1c:31:b2: ad:e9:5a:b8:64:19:d1:d7:4f:65:51:69:ef:cd:d5:af:f1:21: 8f:29:4a:49:fc:f8:7d:e9:d8:5e:02:eb:6a:90:46:95:e6:8c: 57:27:d8:89:6b:81:18:63:63:02:8d:65:7a:ed:0d:e1:c3:50: 1e:91:e2:cd:b6:0e:db:c1:84:40:69:f9:58:13:ff:a2:20:a8: 80:56:c1:d0:7e:26:d5:1d:bc:6c:21:20:4a:8e:07:ab:fe:21: d9:2b:e1:3e:92:ce:ec:97:c3:bf:d6:96:b9:ab:1a:8b:3f:4a: e9:a9:8d:51:87:6e:89:03:b0:65:75:4b:ef:7c:a8:21:09:43: 7b:94:d6:91:6f:0a:85:74:be:d6:0b:27:13:e7:fa:61:31:f8: 2f:5e:67:08:cb:46:85:23:57:c0:46:98:20:2a:52:f1:57:38: a0:0a:a6:c6:7e:ce:ad:77:f4:60:b1:be:db:7f:f7:2e:c9:73: 24:f3:2a:82:f7:46:53:f2:fd:92:83:80:c6:cb:de:82:d2:ef: 9a:d5:a1:65:cc:60:c7:99:7a:b1:a4:86:b2:a7:2b:29:41:48: 88:b2:26:16:e0:9e:72:da:d7:62:5a:09:40:23:12:9e:eb:ca: 00:6b:5d:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxMjcxMTAvBgNVBAUTKDMyMTVDNTUxNkFGQjU0RDhFNjEyRDFFQzNENTE4MkQz MjFFNTMxNzEwHhcNMjUwNjA3MDM1NTMyWhcNMjUwNjE0MDM1NTMyWjAYMRYwFAYD VQQDEw02ODQzYjgzNC0yYzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywpJxBPL8yAox4Aadei52om+9IAiSYEcyLGCpmo4vTjj2HW6vf5AhHQLkd0I edcsvSVEEPej1LBQFfJPdkGt73uqRYEkBFjni4HKrUYtCPCD3CvQMO+xVYBbDV4r GwEO5vKHhwNQUQOR/K/ygDYzkP/F7ZH6slxsVqslMd1ngY9MRlj/ZdRwbpeN+0CT maHftLq0HacyZiX0sPdr8wwxzu1yG/0l53hnd7OWuJnXS8bKRkneFlN7CDapki0t 6vDzgreDBPXaRXqqUyTE3EFFcJ0QYAS/73VZzfo9g67QFziArnIOXgzXcIasNN7u /3eM781GtpdOCLa3OvqybJclwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZbrSeJ lKoW4/a6Fnm/kUd6unKaMB8GA1UdIwQYMBaAFDIVxVFq+1TY5hLR7D1RgtMh5TFx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDEyNy8xNkFGMUQyMDVC N0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZOam1FdEhzUFZHQzB5SGxN WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oWEZVV3I3Vk5qbUV0SHNQVkdDMHlIbE1YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDEyNy8xNkFGMUQyMDVCN0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZO am1FdEhzUFZHQzB5SGxNWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArtPSqohiwaw/xDbSeB50cMbKt6Vq4ZBnR109lUWnvzdWv8SGPKUpJ /Ph96dheAutqkEaV5oxXJ9iJa4EYY2MCjWV67Q3hw1AekeLNtg7bwYRAaflYE/+i IKiAVsHQfibVHbxsISBKjger/iHZK+E+ks7sl8O/1pa5qxqLP0rpqY1Rh26JA7Bl dUvvfKghCUN7lNaRbwqFdL7WCycT5/phMfgvXmcIy0aFI1fARpggKlLxVzigCqbG fs6td/Rgsb7bf/cuyXMk8yqC90ZT8v2Sg4DGy96C0u+a1aFlzGDHmXqxpIaypysp QUiIsiYW4J5y2tdiWglAIxKe68oAa10K -----END CERTIFICATE-----Generated at Sat Jun 7 17:58:36 2025 by rpki-client