$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: zbPmlubH45/16b3DhHajz3O13AnUyWgGuYqSY/b+a4g= Subject key identifier: 34:AD:F2:EC:2A:E7:13:CD:EA:0E:23:58:60:D2:FC:A7:CA:5C:E6:21 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 01BC Signing time: Thu 03 Jul 2025 03:11:44 +0000 Manifest this update: Thu 03 Jul 2025 03:11:43 +0000 Manifest next update: Thu 10 Jul 2025 03:11:43 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: uCdumRcdyPF+W0BrASQSx7plAF7VRhasxfHw3jV3KPY=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: MC0BNQ8WSdb9k6lw5PW7hJBMQ3Zo5Nq5ihUjlKmX1lo=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: RACB3YknB3cdpFyJZW5lQ48vMsl9eTtZug3dtaWvByM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Jul 3 03:11:43 2025 GMT Not After : Jul 10 03:11:43 2025 GMT Subject: CN=6865f4ef-c174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:ce:05:61:2d:62:41:dc:9d:3f:de:25:42: cf:5b:cf:92:13:21:72:fa:d2:75:d7:09:5b:2b:2f: 12:f5:43:f3:0c:98:8d:9a:d4:0b:53:d7:53:b2:1e: b5:72:96:54:ae:be:5b:b9:d6:9a:06:a9:a7:a5:ea: 40:4a:e5:ff:0e:57:cb:51:93:08:e0:97:84:e8:35: 33:1e:4a:2f:ae:32:56:a8:54:a1:39:c2:0f:2c:85: 66:ef:b4:9b:4f:c6:f9:db:1e:f4:49:88:ea:dc:67: 3e:1f:5f:54:e8:25:d5:fd:e1:2f:8b:38:39:54:5e: 3b:d4:b0:32:59:04:d8:43:c3:05:e1:9b:25:92:e8: 38:50:64:dd:dd:65:64:4f:c2:a9:73:4e:d6:c0:1a: dc:21:7b:d5:be:44:fc:05:f7:f7:07:35:e7:d4:f9: 94:6c:e3:97:37:41:8d:37:76:c1:0b:91:bc:ef:3e: fb:cb:20:68:1d:13:fd:6f:19:eb:c9:64:c7:a1:0b: 40:d1:bd:c1:d9:7d:2c:55:cc:82:ff:7e:6e:46:d6: cc:d9:ef:9f:80:cf:16:5a:c5:60:f0:95:c7:49:b7: 19:75:f8:d1:29:09:4c:e9:e8:6a:85:da:4a:7c:1c: 91:7d:d5:34:46:de:52:29:d2:d7:15:9b:a1:c7:78: 2a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:AD:F2:EC:2A:E7:13:CD:EA:0E:23:58:60:D2:FC:A7:CA:5C:E6:21 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:45:5a:67:56:6b:ff:4c:73:73:0d:b9:be:47:73:38:59:28: bc:76:6e:91:08:f0:54:0d:ac:38:a7:e8:73:e7:81:d7:7a:b8: 72:38:a7:9e:b5:ef:d1:9b:b7:af:ec:9f:1b:12:d2:6c:7d:1e: 57:b5:1b:fa:ca:88:81:62:ba:17:2a:27:bd:29:cf:6d:91:62: be:f2:a8:44:de:b0:da:2b:83:ff:a7:a4:c3:29:8e:42:06:1f: c7:79:1f:1f:6e:cf:44:ea:d1:ae:9b:95:27:fd:0c:0b:d9:78: ef:30:dd:9d:ab:7c:f7:ea:14:42:69:a2:1a:3e:28:b6:46:bc: a8:89:d9:29:16:21:04:d2:0d:9a:28:31:56:a7:17:6a:55:6d: c8:25:09:fe:b2:60:53:f5:96:67:7d:1c:10:38:4a:f5:a4:30: a8:7c:1e:6c:99:15:dd:f0:94:0f:18:94:04:6a:80:b9:f6:e4: 16:ba:38:fc:c5:dd:d4:a4:4c:c9:79:56:64:0e:a7:a2:4f:ef: c4:c8:24:e0:2b:ee:45:58:28:10:8a:9a:70:e5:e4:a4:ef:f9: 63:02:d2:e6:79:1c:d1:87:d7:a3:af:f4:96:14:67:b0:ee:fb: d8:ab:9f:6c:b9:67:57:3a:d0:c6:ec:69:58:59:8d:23:1f:5a: 9b:86:be:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjUwNzAzMDMxMTQzWhcNMjUwNzEwMDMxMTQzWjAYMRYwFAYD VQQDEw02ODY1ZjRlZi1jMTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWrOBWEtYkHcnT/eJULPW8+SEyFy+tJ11wlbKy8S9UPzDJiNmtQLU9dTsh61 cpZUrr5budaaBqmnpepASuX/DlfLUZMI4JeE6DUzHkovrjJWqFShOcIPLIVm77Sb T8b52x70SYjq3Gc+H19U6CXV/eEvizg5VF471LAyWQTYQ8MF4Zslkug4UGTd3WVk T8Kpc07WwBrcIXvVvkT8Bff3BzXn1PmUbOOXN0GNN3bBC5G87z77yyBoHRP9bxnr yWTHoQtA0b3B2X0sVcyC/35uRtbM2e+fgM8WWsVg8JXHSbcZdfjRKQlM6ehqhdpK fByRfdU0Rt5SKdLXFZuhx3gqMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSt8uwq 5xPN6g4jWGDS/KfKXOYhMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6RVpnVmv/THNzDbm+R3M4WSi8dm6RCPBUDaw4p+hz54HXerhyOKee te/Rm7ev7J8bEtJsfR5XtRv6yoiBYroXKie9Kc9tkWK+8qhE3rDaK4P/p6TDKY5C Bh/HeR8fbs9E6tGum5Un/QwL2XjvMN2dq3z36hRCaaIaPii2RryoidkpFiEE0g2a KDFWpxdqVW3IJQn+smBT9ZZnfRwQOEr1pDCofB5smRXd8JQPGJQEaoC59uQWujj8 xd3UpEzJeVZkDqeiT+/EyCTgK+5FWCgQippw5eSk7/ljAtLmeRzRh9ejr/SWFGew 7vvYq59suWdXOtDG7GlYWY0jH1qbhr4E -----END CERTIFICATE-----Generated at Thu Jul 3 22:55:23 2025 by rpki-client