$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: s5eGuXcbC3sAVFdXYfkQih97Dla54aIEoesnWzlujCU= Subject key identifier: 6B:7B:A2:3F:8E:30:B1:A9:2B:A9:3B:02:C9:8F:71:C6:3C:69:9A:89 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 01B1 Signing time: Tue 01 Jul 2025 03:34:44 +0000 Manifest this update: Tue 01 Jul 2025 03:34:44 +0000 Manifest next update: Tue 08 Jul 2025 03:34:44 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: 7Dks0DAAKGLlasgduFLgMNVDMBp1Dn/ek4/Vk0LLz4k=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Jul 1 03:34:44 2025 GMT Not After : Jul 8 03:34:44 2025 GMT Subject: CN=68635754-e324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e4:e5:00:a1:53:06:d8:9a:d0:23:a2:45:69: d9:be:ea:e1:14:47:28:24:f8:7e:f9:31:94:f3:c9: be:27:b0:3e:3a:79:11:dd:1e:c7:98:ce:5f:91:13: 81:14:2e:85:f3:bf:d8:97:60:b3:51:f7:ee:b8:12: 66:ac:51:b3:f2:33:cb:39:93:c3:e4:57:96:f8:64: 58:07:f5:b6:03:8f:51:42:8a:d4:f7:5a:2c:a1:8a: b9:b3:9f:86:8a:c1:ba:27:61:82:6f:70:1d:5a:21: f0:60:b0:0d:c1:b8:21:b5:30:dc:c0:db:70:11:44: 7d:74:b1:c3:31:81:a5:0e:81:fa:13:14:60:d8:70: 36:91:12:fa:c5:e9:3e:e5:34:4a:50:2f:cb:d5:0e: 41:ae:3f:e7:f0:55:38:84:0e:42:73:4e:de:3d:cb: f7:b4:0a:41:a5:09:40:25:c4:23:3b:c0:19:a9:ab: f8:6d:93:0a:ca:1e:21:b7:43:45:59:76:b4:26:63: 4d:2c:6a:65:9b:cb:47:70:a4:94:60:2d:55:83:e3: 3d:82:68:a0:c4:8b:5b:7e:03:87:0d:32:be:27:ce: 10:dd:1f:f0:5e:2e:81:22:49:53:c2:f9:08:2b:d6: 15:96:d9:ce:88:5e:12:c0:0a:52:66:37:f9:65:50: 9a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7B:A2:3F:8E:30:B1:A9:2B:A9:3B:02:C9:8F:71:C6:3C:69:9A:89 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:fb:7d:36:d4:ac:0c:7d:c7:53:f3:03:ba:52:ff:c0:3d:86: 38:78:35:18:7a:3a:dc:96:54:17:71:2d:53:95:db:22:be:b2: 0b:d1:05:9a:c0:f2:13:4c:47:ea:60:e8:2b:a1:39:52:87:d4: 62:16:a4:5d:9e:c0:b8:24:47:52:11:05:dc:eb:b4:7b:07:6b: d9:f6:f1:77:46:86:90:05:8b:35:88:54:4b:98:07:62:1d:99: 62:b5:5a:29:82:44:61:cf:4b:e6:9e:74:0d:e8:59:ad:02:f5: 81:81:2b:55:b9:80:c4:8e:22:df:90:d4:91:78:6e:4a:55:22: b5:36:6d:65:1d:f3:17:9e:62:8c:16:83:16:f1:bd:6c:01:d5: 3b:ad:0b:25:f4:a5:ad:cc:06:84:42:6d:5e:3b:25:58:4c:40: 3a:14:94:a1:bc:69:15:de:35:96:b5:69:1c:11:8a:22:01:03: 7f:b3:30:94:24:09:5c:6f:5a:61:75:ec:64:8a:0f:11:4c:e1: 4b:d8:a4:2f:50:3b:7a:92:84:68:52:5c:95:b2:59:9c:54:d3: c4:40:16:28:09:a9:a8:da:7b:14:fa:78:f6:fe:ad:f4:65:4c: f8:ec:59:51:e7:27:ea:07:34:3b:bc:da:9d:10:1c:87:b2:45: e4:c0:49:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUwNzAxMDMzNDQ0WhcNMjUwNzA4MDMzNDQ0WjAYMRYwFAYD VQQDEw02ODYzNTc1NC1lMzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uTlAKFTBtia0COiRWnZvurhFEcoJPh++TGU88m+J7A+OnkR3R7HmM5fkROB FC6F87/Yl2CzUffuuBJmrFGz8jPLOZPD5FeW+GRYB/W2A49RQorU91osoYq5s5+G isG6J2GCb3AdWiHwYLANwbghtTDcwNtwEUR9dLHDMYGlDoH6ExRg2HA2kRL6xek+ 5TRKUC/L1Q5Brj/n8FU4hA5Cc07ePcv3tApBpQlAJcQjO8AZqav4bZMKyh4ht0NF WXa0JmNNLGplm8tHcKSUYC1Vg+M9gmigxItbfgOHDTK+J84Q3R/wXi6BIklTwvkI K9YVltnOiF4SwApSZjf5ZVCaEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGt7oj+O MLGpK6k7AsmPccY8aZqJMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/+3021KwMfcdT8wO6Uv/APYY4eDUYejrcllQXcS1TldsivrIL0QWa wPITTEfqYOgroTlSh9RiFqRdnsC4JEdSEQXc67R7B2vZ9vF3RoaQBYs1iFRLmAdi HZlitVopgkRhz0vmnnQN6FmtAvWBgStVuYDEjiLfkNSReG5KVSK1Nm1lHfMXnmKM FoMW8b1sAdU7rQsl9KWtzAaEQm1eOyVYTEA6FJShvGkV3jWWtWkcEYoiAQN/szCU JAlcb1phdexkig8RTOFL2KQvUDt6koRoUlyVslmcVNPEQBYoCamo2nsU+nj2/q30 ZUz47FlR5yfqBzQ7vNqdEByHskXkwEmP -----END CERTIFICATE-----Generated at Thu Jul 3 03:03:45 2025 by rpki-client