$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: jrLGDnOeNaRjozu3CoU0MvRX7nll7Li1DUHjr5k05v0= Subject key identifier: 46:52:99:F8:CA:D2:96:CB:22:3D:45:ED:79:8D:DF:68:CA:AE:5C:ED Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 03 Signing time: Thu 03 Jul 2025 08:28:56 +0000 Manifest this update: Thu 03 Jul 2025 08:28:56 +0000 Manifest next update: Thu 10 Jul 2025 08:28:56 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: n3xEs0RogoBsknd+cXVIFcayB5INKY34w17CwlRFASE=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Jul 3 08:28:56 2025 GMT Not After : Jul 10 08:28:56 2025 GMT Subject: CN=68663f48-e684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d9:ee:12:17:0d:8e:00:64:f8:af:5a:e0:21: 4f:4c:42:5a:87:38:c8:14:bd:ec:09:f6:ee:43:ed: 8f:d8:bb:cf:0c:7f:33:aa:28:13:c4:da:b5:fc:8b: 89:fd:b1:9b:d9:a1:4a:c3:dd:ad:37:b6:ce:3a:cf: a5:24:4a:cf:71:ac:cf:14:cd:38:76:37:50:9e:d5: ec:58:6c:5f:0f:cd:1f:69:dd:4f:dc:33:4c:a4:e0: 36:e6:a4:f0:4c:8d:ec:3f:ee:87:0e:1e:b6:be:c0: 8a:8f:31:23:29:7f:df:55:a0:d1:03:7b:52:37:fe: e9:a5:3b:82:ac:a1:67:64:bd:9f:a2:32:83:45:9c: 54:c1:d4:dc:78:02:e8:58:49:16:39:26:3b:83:5f: c0:f3:c6:69:82:00:87:d8:a5:33:9b:f1:3c:cd:ff: e9:a7:e5:df:86:86:b2:23:14:11:a6:48:51:d2:33: 5a:87:25:2c:e9:ea:3b:0d:4b:e4:78:40:b5:d9:58: 4e:5e:56:48:be:a0:9c:ed:0b:ce:07:0d:b1:99:44: 98:68:6d:f8:5b:08:8c:4e:b3:60:c0:30:a3:ae:d9: 3b:79:2a:2a:13:3d:dc:bd:27:10:dd:aa:df:0e:fe: cc:f3:4c:64:03:96:d5:6c:4f:af:ea:2a:13:b5:e4: fd:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:52:99:F8:CA:D2:96:CB:22:3D:45:ED:79:8D:DF:68:CA:AE:5C:ED X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:67:cd:b0:8f:8e:68:56:0f:95:55:77:1b:bb:c2:52:52:c5: 2e:c5:3d:10:4d:42:d7:b3:d7:d2:ed:92:8b:ad:6e:c4:74:4d: 10:bc:0c:b1:5e:ac:e2:a2:5f:d0:b5:f5:c2:ad:00:cb:58:e9: 74:17:fa:e3:31:b2:b4:5a:db:76:95:59:bc:73:01:fd:96:52: 77:2b:1f:02:bf:c7:b6:15:6f:9e:ed:97:96:eb:e2:91:05:96: b5:9e:c8:73:15:c4:a8:c5:81:41:d1:bd:41:bc:01:2a:86:7a: 5a:b4:ea:7d:29:2d:e9:17:38:38:5f:48:92:40:1d:ba:16:4d: 32:43:68:bd:bb:0a:ee:77:aa:8f:d2:82:17:cc:a1:cb:1c:54: 99:89:d0:ba:fc:b0:35:5d:07:78:8c:03:3c:03:03:d8:07:3b: 9f:ce:6d:16:6a:0e:e2:09:77:37:dc:d1:79:a2:a1:58:45:04: dd:2f:d2:b2:5b:39:9e:c2:47:85:bb:d9:10:a9:1b:a9:68:7c: f9:37:0e:68:44:c2:cd:f6:d7:bf:08:72:28:3a:8e:4b:c7:26: f4:46:9f:2c:11:bd:2b:b8:0d:4b:15:62:0f:1d:9b:e9:7c:c2: 0b:c4:47:4c:b4:83:ba:92:93:f7:9a:ea:48:a8:ae:1d:83:ca: 49:64:d9:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTA3MDMwODI4NTZaFw0yNTA3MTAwODI4NTZaMBgxFjAUBgNV BAMTDTY4NjYzZjQ4LWU2ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr2e4SFw2OAGT4r1rgIU9MQlqHOMgUvewJ9u5D7Y/Yu88MfzOqKBPE2rX8i4n9 sZvZoUrD3a03ts46z6UkSs9xrM8UzTh2N1Ce1exYbF8PzR9p3U/cM0yk4DbmpPBM jew/7ocOHra+wIqPMSMpf99VoNEDe1I3/umlO4KsoWdkvZ+iMoNFnFTB1Nx4AuhY SRY5JjuDX8DzxmmCAIfYpTOb8TzN/+mn5d+GhrIjFBGmSFHSM1qHJSzp6jsNS+R4 QLXZWE5eVki+oJztC84HDbGZRJhobfhbCIxOs2DAMKOu2Tt5KioTPdy9JxDdqt8O /szzTGQDltVsT6/qKhO15P1vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURlKZ+MrS lssiPUXteY3faMquXO0wHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHZnzbCPjmhWD5VVdxu7wlJSxS7FPRBNQtez19LtkoutbsR0TRC8DLFe rOKiX9C19cKtAMtY6XQX+uMxsrRa23aVWbxzAf2WUncrHwK/x7YVb57tl5br4pEF lrWeyHMVxKjFgUHRvUG8ASqGelq06n0pLekXODhfSJJAHboWTTJDaL27Cu53qo/S ghfMocscVJmJ0Lr8sDVdB3iMAzwDA9gHO5/ObRZqDuIJdzfc0XmioVhFBN0v0rJb OZ7CR4W72RCpG6lofPk3DmhEws32178Icig6jkvHJvRGnywRvSu4DUsVYg8dm+l8 wgvER0y0g7qSk/ea6kiorh2Dyklk2Xk= -----END CERTIFICATE-----Generated at Thu Jul 3 23:14:28 2025 by rpki-client