$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json) Hash identifier: zLmcYxEHylIhKVsTQ2j447oc9bRyg17hIfdSnRp8t/A= Subject key identifier: DC:B9:71:26:16:AB:89:1F:EB:20:8E:24:2E:B8:E3:E0:3B:E6:C4:90 Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft Manifest number: 09 Signing time: Thu 05 Jun 2025 07:32:24 +0000 Manifest this update: Thu 05 Jun 2025 07:32:23 +0000 Manifest next update: Thu 12 Jun 2025 07:32:23 +0000 Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: W7XaGbs9mnvapbUCMMfUyMPYjKYYgQbFXnqm51qmz0U=) 2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: iXRkCvMuEb2mCCQ3WPeQVPDrtMuYggiC5UewvS7CFYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Validity Not Before: Jun 5 07:32:23 2025 GMT Not After : Jun 12 07:32:23 2025 GMT Subject: CN=68414807-f812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:40:72:bf:9c:82:e5:9c:d5:4a:a4:63:bf:b4: 63:af:6b:f5:c6:f7:3b:2f:e1:16:ec:08:84:19:25: db:43:a6:eb:28:c3:33:40:fc:46:fa:51:d4:a1:77: 24:a5:4a:fd:48:ec:75:e2:3a:8d:96:44:91:54:e4: c7:94:6d:bb:23:e1:66:08:f7:fb:b4:53:0b:d1:93: b6:38:66:33:dd:ef:f1:ab:d1:be:ab:66:65:cb:04: 6f:75:1b:58:f3:59:a9:3d:93:f0:98:d4:5c:57:56: ce:b2:7e:26:82:26:41:98:ae:9f:6c:93:a0:be:88: 11:67:7d:de:6e:2e:21:a8:c1:e7:45:4b:ca:dd:85: bb:26:b3:de:24:46:9f:fe:c7:97:f1:f7:9f:fd:25: 04:8c:2f:19:b5:77:16:e4:de:52:87:19:eb:6a:9d: 27:a0:95:38:bb:b8:d7:78:f9:ba:3b:f1:30:12:bd: d5:53:2b:18:6e:02:fd:43:59:1e:c4:44:a9:15:3f: ab:ad:9f:ee:b0:77:31:0a:a9:84:ec:8d:31:35:45: 8c:df:d9:25:b5:81:f8:d8:fc:98:15:0d:60:47:23: ce:52:84:fa:00:c9:c2:d3:43:9a:88:1f:08:3d:38: 26:c7:bd:de:ab:1b:ff:cc:04:e4:39:1c:80:ae:44: ec:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:B9:71:26:16:AB:89:1F:EB:20:8E:24:2E:B8:E3:E0:3B:E6:C4:90 X509v3 Authority Key Identifier: keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c7:15:29:9c:5a:a3:9f:1a:1b:af:8e:6e:8a:82:39:9a:30: da:2f:95:50:4b:fd:76:07:7e:05:f3:f5:e7:22:07:e2:e9:5e: e3:1c:58:bb:a4:6a:ef:79:95:3e:24:be:2e:77:f4:6b:08:23: e0:31:41:b7:1a:45:bb:bc:6a:b6:c2:bb:56:18:1b:1a:c0:c4: aa:3f:08:95:72:75:0c:03:96:81:22:e2:8f:9f:6d:8b:79:c7: 6e:8c:72:d6:2d:3b:bd:31:01:04:02:08:b5:d2:3f:9f:3f:61: 56:86:0c:a9:c3:48:8c:80:d0:a9:23:38:d5:fb:06:7b:75:f4: b9:b7:d9:3f:7f:32:d0:67:e2:be:d6:ab:4c:af:15:77:1a:ef: 4a:4e:e6:07:7c:d4:02:df:ec:3a:79:18:4d:69:e2:2b:fb:a7: d6:6e:95:f7:41:cd:b7:33:c1:6d:b3:c7:90:6d:26:8b:69:0f: da:95:5f:82:d9:f1:f6:6c:6b:e2:b9:b2:6b:a0:5c:8d:6b:00: fb:a6:50:44:9a:22:1f:e9:fc:46:cc:62:a5:cc:99:2d:4d:92: d7:86:ce:a7:97:59:2a:86:bf:bd:1f:e4:8c:e7:a6:1d:9d:06: 8b:89:53:5a:36:ea:3a:cd:0f:ef:65:d7:ce:ae:6e:22:81:93: 33:23:9f:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDJDQTExMC8GA1UEBRMoNkY5MUM3NkE0Rjc0NjY0MTAwREQ4REVCRDE3ODUxNDJF MTM3ODAyRDAeFw0yNTA2MDUwNzMyMjNaFw0yNTA2MTIwNzMyMjNaMBgxFjAUBgNV BAMTDTY4NDE0ODA3LWY4MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaQHK/nILlnNVKpGO/tGOva/XG9zsv4RbsCIQZJdtDpusowzNA/Eb6UdShdySl Sv1I7HXiOo2WRJFU5MeUbbsj4WYI9/u0UwvRk7Y4ZjPd7/Gr0b6rZmXLBG91G1jz Wak9k/CY1FxXVs6yfiaCJkGYrp9sk6C+iBFnfd5uLiGowedFS8rdhbsms94kRp/+ x5fx95/9JQSMLxm1dxbk3lKHGetqnSeglTi7uNd4+bo78TASvdVTKxhuAv1DWR7E RKkVP6utn+6wdzEKqYTsjTE1RYzf2SW1gfjY/JgVDWBHI85ShPoAycLTQ5qIHwg9 OCbHvd6rG//MBOQ5HICuROzbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3LlxJhar iR/rII4kLrjj4DvmxJAwHwYDVR0jBBgwFoAUb5HHak90ZkEA3Y3r0XhRQuE3gC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMkNBLzA5Rjc0RUY2MzU0 NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtFQTNZM3IwWGhSUXVFM2dD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjVISGFrOTBaa0VBM1kzcjBYaFJRdUUzZ0MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE MkNBLzA5Rjc0RUY2MzU0NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtF QTNZM3IwWGhSUXVFM2dDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAzHFSmcWqOfGhuvjm6KgjmaMNovlVBL/XYHfgXz9eciB+LpXuMcWLuk au95lT4kvi539GsII+AxQbcaRbu8arbCu1YYGxrAxKo/CJVydQwDloEi4o+fbYt5 x26MctYtO70xAQQCCLXSP58/YVaGDKnDSIyA0KkjONX7Bnt19Lm32T9/MtBn4r7W q0yvFXca70pO5gd81ALf7Dp5GE1p4iv7p9ZulfdBzbczwW2zx5BtJotpD9qVX4LZ 8fZsa+K5smugXI1rAPumUESaIh/p/EbMYqXMmS1NkteGzqeXWSqGv70f5Iznph2d BouJU1o26jrND+9l186ubiKBkzMjn+Q= -----END CERTIFICATE-----Generated at Thu Jun 5 20:11:22 2025 by rpki-client