$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: 8ofzaRPKjneHPgNeO7vGMWuSxcVPaAlXyJAYKQxhh58= Subject key identifier: FC:83:73:CF:0E:E3:27:84:5F:D0:C2:6D:5B:36:EC:8D:63:DB:42:A3 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B06 Signing time: Mon 30 Jun 2025 19:29:09 +0000 Manifest this update: Mon 30 Jun 2025 19:29:08 +0000 Manifest next update: Mon 07 Jul 2025 19:29:08 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: 6nZt0U8yDLQlU4jSKc2Sg4vIyiVxmC3juVDJ3+QvFhI=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:29:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2829 (0xb0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Jun 30 19:29:08 2025 GMT Not After : Jul 7 19:29:08 2025 GMT Subject: CN=6862e584-53d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b3:59:ac:04:f9:f3:21:fe:2f:7e:1f:83:ac: 3d:2f:32:a2:02:b0:c0:da:8e:c0:ac:3b:fb:c3:1e: 71:a3:31:e9:80:a0:a6:7f:cb:dc:e2:da:60:43:83: 30:58:6f:a6:3c:7d:fc:df:97:17:55:f3:2c:2a:81: 26:44:56:62:06:0c:0f:46:dc:1b:86:b0:75:a2:ab: f1:b6:e5:b0:7b:68:44:e9:9a:53:39:7f:33:95:63: 1d:bd:9f:9a:eb:f7:f6:01:88:97:96:ae:92:b9:3b: 41:53:f3:2e:6e:6f:55:11:a8:3f:bf:70:38:44:28: 73:3e:16:0b:38:8b:40:dc:99:46:89:12:d6:1e:33: 63:c8:a7:b7:bf:9c:6a:fc:70:96:12:99:d0:79:74: 4c:e4:e8:e5:b2:33:ca:fa:2c:41:58:19:46:7e:ff: b8:c6:94:26:e8:cd:38:47:ad:88:66:b0:8a:e6:31: 59:e4:da:d6:a9:88:a5:d7:73:26:13:33:ca:db:d5: a4:e1:28:5d:11:7b:5d:ce:8a:35:8d:19:6d:30:d6: 8f:e4:04:83:5f:be:ef:1b:80:fc:c3:d9:fa:75:7f: ba:fa:46:43:e9:e0:0c:3d:df:53:8c:2a:41:12:42: 80:25:fc:8f:4e:be:86:36:82:06:5a:d9:49:07:a2: fa:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:83:73:CF:0E:E3:27:84:5F:D0:C2:6D:5B:36:EC:8D:63:DB:42:A3 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:d2:32:70:40:75:b0:a0:9a:dd:59:ed:ec:3e:24:88:9e:5c: c5:08:4d:a7:68:89:6e:08:3c:1b:bd:8d:0c:47:05:8a:5b:d8: 50:e4:b6:64:7e:92:88:73:2f:11:6b:48:2f:e4:18:72:6b:82: 31:a8:f7:4d:5c:5a:d5:5e:1e:ee:58:63:22:00:47:40:4f:b0: bb:4b:61:ad:9b:26:04:ca:de:59:35:af:1f:2e:2b:d6:7a:a5: f0:ee:fe:a9:40:4f:fa:da:c7:e3:27:df:38:98:fb:50:ce:dd: 33:d8:bc:a7:e1:d8:db:5e:e1:df:91:cb:3a:5d:18:41:79:d1: a9:3d:b7:23:82:11:74:88:ea:af:09:87:38:50:1a:ee:4c:d5: 74:61:77:c0:85:b7:7e:0b:03:36:66:ae:aa:bc:16:9a:e9:7c: b4:fc:37:11:2f:ed:a6:19:87:e2:6e:81:15:6b:ef:7c:55:7e: f7:40:47:3a:c9:bd:5f:ad:03:af:f9:b6:3a:43:6c:02:14:12: 06:03:c5:7f:a9:87:d4:d5:ff:9c:ee:71:49:73:61:29:4f:03: 4a:e3:6f:cf:bd:4c:e0:b5:a6:c8:7a:65:b2:df:0f:e7:a8:db: 47:b3:37:75:29:65:8e:a3:6e:1f:2f:60:c4:61:0c:41:74:63: d6:b6:41:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwNjMwMTkyOTA4WhcNMjUwNzA3MTkyOTA4WjAYMRYwFAYD VQQDEw02ODYyZTU4NC01M2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LNZrAT58yH+L34fg6w9LzKiArDA2o7ArDv7wx5xozHpgKCmf8vc4tpgQ4Mw WG+mPH3835cXVfMsKoEmRFZiBgwPRtwbhrB1oqvxtuWwe2hE6ZpTOX8zlWMdvZ+a 6/f2AYiXlq6SuTtBU/Mubm9VEag/v3A4RChzPhYLOItA3JlGiRLWHjNjyKe3v5xq /HCWEpnQeXRM5OjlsjPK+ixBWBlGfv+4xpQm6M04R62IZrCK5jFZ5NrWqYil13Mm EzPK29Wk4ShdEXtdzoo1jRltMNaP5ASDX77vG4D8w9n6dX+6+kZD6eAMPd9TjCpB EkKAJfyPTr6GNoIGWtlJB6L6dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyDc88O 4yeEX9DCbVs27I1j20KjMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA40jJwQHWwoJrdWe3sPiSInlzFCE2naIluCDwbvY0MRwWKW9hQ5LZk fpKIcy8Ra0gv5Bhya4IxqPdNXFrVXh7uWGMiAEdAT7C7S2GtmyYEyt5ZNa8fLivW eqXw7v6pQE/62sfjJ984mPtQzt0z2Lyn4djbXuHfkcs6XRhBedGpPbcjghF0iOqv CYc4UBruTNV0YXfAhbd+CwM2Zq6qvBaa6Xy0/DcRL+2mGYfiboEVa+98VX73QEc6 yb1frQOv+bY6Q2wCFBIGA8V/qYfU1f+c7nFJc2EpTwNK42/PvUzgtabIemWy3w/n qNtHszd1KWWOo24fL2DEYQxBdGPWtkF2 -----END CERTIFICATE-----Generated at Wed Jul 2 11:47:10 2025 by rpki-client