$ rpki-client -vvf rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft File: ck2EEAslmZMZA4aasFIgd2yLrEI.mft (raw, json) Hash identifier: 68mmJ/p6zI2Ojvz/9b+/SYP41fmTFkGPnoVNL2654Ys= Subject key identifier: 47:70:E7:D2:D8:78:81:A4:2F:91:19:D8:23:39:11:2D:12:91:CA:42 Authority key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 Certificate issuer: /CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft Manifest number: 0195 Signing time: Thu 03 Jul 2025 03:30:46 +0000 Manifest this update: Thu 03 Jul 2025 03:30:46 +0000 Manifest next update: Thu 10 Jul 2025 03:30:46 +0000 Files and hashes: 1: ck2EEAslmZMZA4aasFIgd2yLrEI.crl (hash: yzlZcPpPhlUtPUwRRzgQamdrzD2VJQb3D7SJg2f+4zI=) 2: AF01BB42EE4B11EDA0FDF350C4F9AE02.roa (hash: XG0ognbrHuDFVvw75BGHMdtpiHu/beUvd7TsChbHkCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A39E, serialNumber=724D84100B2599931903869AB05220776C8BAC42 Validity Not Before: Jul 3 03:30:46 2025 GMT Not After : Jul 10 03:30:46 2025 GMT Subject: CN=6865f966-1e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3a:f5:f4:31:2d:16:ce:bf:c7:0e:c7:aa:94: 78:c3:04:4f:47:d3:1a:c5:e6:a7:01:be:dd:68:d6: 70:d4:a2:77:64:88:5b:d8:d2:b4:7c:b5:56:a1:84: 77:78:ff:b2:f5:ca:ad:ff:d7:66:ff:7e:cc:bf:7a: d2:f6:d9:e6:60:9a:56:0c:ba:22:2a:2b:f1:9b:3e: 18:e3:08:65:ca:fa:f5:ba:fc:3a:34:a6:a5:2a:de: 18:6e:ab:a6:c0:c8:4b:95:4f:9b:e7:68:2e:75:9e: f1:c1:7f:5b:3c:70:49:69:0b:d0:06:0a:71:80:12: 20:f9:f4:10:6c:a5:63:3d:86:f6:87:41:47:d2:80: 0b:e4:55:86:a1:62:76:82:f4:e9:9d:8a:8d:84:3b: 5a:0a:f0:75:d2:17:0c:df:62:c3:87:c9:93:de:e6: 2e:fa:34:71:1b:35:68:6a:ed:34:2f:fa:13:e3:9f: 44:7b:2e:7a:36:a5:b8:67:bc:39:e6:20:76:33:70: b3:15:cb:4f:77:d6:fd:02:fb:6c:fe:e1:0c:74:0f: 28:0d:a3:05:ad:db:86:03:e9:5e:19:42:37:07:45: 29:86:a7:7d:71:01:67:03:82:4d:e7:95:17:07:7a: 16:a4:cb:4b:b8:41:45:29:e2:55:33:28:e7:1f:27: 99:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:70:E7:D2:D8:78:81:A4:2F:91:19:D8:23:39:11:2D:12:91:CA:42 X509v3 Authority Key Identifier: keyid:72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:4e:b1:6b:c4:c7:7d:3d:db:f2:9e:93:38:12:e1:79:ba:3c: 10:d7:83:05:d8:8c:ad:3a:bb:4f:b5:34:a9:f3:16:f1:d0:97: 75:c7:97:6a:cb:de:81:d6:07:d1:30:9c:ee:6a:65:61:32:0a: 1a:09:90:38:9f:3b:72:d1:a2:89:f6:c5:03:04:00:70:28:95: f2:7e:46:6f:dd:f4:fe:f9:84:42:a6:86:82:cc:f2:a5:ab:be: 6b:af:c9:63:10:58:39:42:74:eb:d2:46:74:78:f2:fa:19:ec: 82:2b:b2:d9:4c:74:82:38:d3:74:c1:af:84:e5:ea:73:fd:36: b6:49:73:7e:e7:c4:12:c9:61:ca:05:50:e0:7e:c7:b3:5a:71: 78:fe:c8:9f:bb:c9:e9:73:c5:b4:10:a6:49:34:d5:f2:ba:8c: 97:b7:d0:37:52:3f:38:64:9f:7e:34:37:08:9a:1d:03:6f:b9: f1:f1:d5:29:4d:b2:96:fa:09:fc:02:7e:0e:9c:5c:46:9a:3d: 05:8a:76:5d:2c:0a:cd:fb:69:f3:a0:aa:ed:4a:bb:92:30:c6: ca:25:95:c0:d4:70:2a:8a:41:e2:82:fb:14:49:df:9c:58:14: 1c:67:02:50:82:f2:04:f3:09:c2:87:ea:5e:be:c5:f8:09:2b: 14:6a:7a:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzOUUxMTAvBgNVBAUTKDcyNEQ4NDEwMEIyNTk5OTMxOTAzODY5QUIwNTIyMDc3 NkM4QkFDNDIwHhcNMjUwNzAzMDMzMDQ2WhcNMjUwNzEwMDMzMDQ2WjAYMRYwFAYD VQQDEw02ODY1Zjk2Ni0xZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Tr19DEtFs6/xw7HqpR4wwRPR9MaxeanAb7daNZw1KJ3ZIhb2NK0fLVWoYR3 eP+y9cqt/9dm/37Mv3rS9tnmYJpWDLoiKivxmz4Y4whlyvr1uvw6NKalKt4Ybqum wMhLlU+b52gudZ7xwX9bPHBJaQvQBgpxgBIg+fQQbKVjPYb2h0FH0oAL5FWGoWJ2 gvTpnYqNhDtaCvB10hcM32LDh8mT3uYu+jRxGzVoau00L/oT459Eey56NqW4Z7w5 5iB2M3CzFctPd9b9Avts/uEMdA8oDaMFrduGA+leGUI3B0Uphqd9cQFnA4JN55UX B3oWpMtLuEFFKeJVMyjnHyeZtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdw59LY eIGkL5EZ2CM5ES0SkcpCMB8GA1UdIwQYMBaAFHJNhBALJZmTGQOGmrBSIHdsi6xC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTM5RS9ENjQ0ODFGOEVF NDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1aTVpBNGFhc0ZJZ2QyeUxy RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrMkVFQXNsbVpNWkE0YWFzRklnZDJ5THJFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTM5RS9ENjQ0ODFGOEVFNDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1a TVpBNGFhc0ZJZ2QyeUxyRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0TrFrxMd9PdvynpM4EuF5ujwQ14MF2IytOrtPtTSp8xbx0Jd1x5dq y96B1gfRMJzuamVhMgoaCZA4nzty0aKJ9sUDBABwKJXyfkZv3fT++YRCpoaCzPKl q75rr8ljEFg5QnTr0kZ0ePL6GeyCK7LZTHSCONN0wa+E5epz/Ta2SXN+58QSyWHK BVDgfsezWnF4/sifu8npc8W0EKZJNNXyuoyXt9A3Uj84ZJ9+NDcImh0Db7nx8dUp TbKW+gn8An4OnFxGmj0FinZdLArN+2nzoKrtSruSMMbKJZXA1HAqikHigvsUSd+c WBQcZwJQgvIE8wnCh+pevsX4CSsUanq+ -----END CERTIFICATE-----Generated at Fri Jul 4 07:43:45 2025 by rpki-client