$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: ZYZnH/wueJWDM1Y49D/hbrVyfrUEf2wHQmc5YQ0bsKM= Subject key identifier: 32:B1:44:8B:4F:62:5D:CE:63:54:60:B1:51:BB:FB:1C:09:19:09:5B Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0CA9 Signing time: Fri 04 Jul 2025 18:28:30 +0000 Manifest this update: Fri 04 Jul 2025 18:28:30 +0000 Manifest next update: Fri 11 Jul 2025 18:28:30 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: NVFKm0Nv4yj1i4v6mYmEd7NMUlcPyLQswGa8csdXWQY=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Jul 4 18:28:30 2025 GMT Not After : Jul 11 18:28:30 2025 GMT Subject: CN=68681d4e-8214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6c:87:32:af:0a:af:5b:b0:57:21:81:cc:79: 1e:8e:7f:96:fc:bc:29:ec:8a:0d:be:f4:93:18:72: f2:d0:a6:1d:02:85:87:0e:a9:49:af:7a:cd:90:0c: b0:e3:42:9e:2d:63:8d:11:4c:73:68:37:54:68:12: fd:f5:79:24:b3:f1:f8:05:ab:76:35:34:0b:ea:6d: 71:88:ea:c8:40:fe:e9:a7:ca:3a:8f:34:73:dd:d8: 42:47:fa:82:89:d2:03:d0:8f:16:62:17:3f:45:2b: 44:da:db:e3:6b:0a:c8:95:92:b5:90:5c:97:84:4d: dd:6d:b3:3a:1a:96:c6:8e:fb:16:44:b7:19:eb:1f: b8:c3:9c:1f:d1:b7:00:cf:6d:f2:ee:0f:89:85:08: a7:37:39:c6:22:20:0b:c9:de:70:ea:7f:81:62:72: fa:31:8e:b3:c5:4b:a2:4e:92:bc:d7:f1:bc:3c:2a: ab:79:94:90:33:cb:eb:50:5f:d4:7b:11:9f:a5:33: 0a:1c:0e:fd:83:45:d4:3f:68:4e:45:31:09:8f:46: 78:5c:53:c1:6a:ca:f1:42:94:44:1f:b8:71:23:ea: c9:5f:02:c4:db:d1:ba:48:28:68:7e:ae:1c:61:6e: c3:da:a1:d1:81:ae:89:4f:9b:4f:be:9b:08:98:79: e4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B1:44:8B:4F:62:5D:CE:63:54:60:B1:51:BB:FB:1C:09:19:09:5B X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:f2:13:84:1d:09:44:1f:4c:36:7a:11:57:d7:8d:a9:df:fb: f6:1a:09:74:bd:ad:8b:34:aa:19:c3:13:62:87:5e:f6:ca:ad: 9f:59:b4:32:ca:98:da:b8:d2:76:3c:e4:95:f6:03:75:d5:f4: dd:7e:19:a3:95:c5:c5:64:9d:69:f8:bf:23:f2:3e:da:cb:4d: 5e:46:b1:35:a3:0b:cc:31:12:39:5b:11:f5:39:53:7f:03:67: 0a:07:44:ec:66:1d:b5:55:73:a8:42:32:ff:4c:a1:d0:7e:f2: 86:48:2b:a6:1a:50:c4:ea:38:0d:fb:f1:94:ba:e9:1e:26:55: 30:51:59:fe:9d:b8:93:5b:ab:fc:27:d6:f8:de:4e:22:6f:86: 35:4a:18:e2:5e:0c:ea:b9:88:50:eb:38:49:19:e5:72:c1:b3: fe:3c:6c:8f:bc:f4:57:42:1e:46:6e:41:91:ee:a1:17:19:4e: e9:8c:66:cb:34:b9:19:08:9f:e4:d3:f1:a4:60:0f:9c:d7:1f: 37:74:df:0e:9e:3d:df:e4:b9:66:4d:66:99:44:5d:2b:6b:08: 23:ac:aa:4e:db:59:24:62:84:0f:31:de:00:fb:ab:85:d7:5e: 4a:41:ce:2b:4a:9b:9c:38:02:f0:72:b8:a8:f4:1d:77:a9:06: 47:f0:35:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUwNzA0MTgyODMwWhcNMjUwNzExMTgyODMwWjAYMRYwFAYD VQQDEw02ODY4MWQ0ZS04MjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2yHMq8Kr1uwVyGBzHkejn+W/Lwp7IoNvvSTGHLy0KYdAoWHDqlJr3rNkAyw 40KeLWONEUxzaDdUaBL99Xkks/H4Bat2NTQL6m1xiOrIQP7pp8o6jzRz3dhCR/qC idID0I8WYhc/RStE2tvjawrIlZK1kFyXhE3dbbM6GpbGjvsWRLcZ6x+4w5wf0bcA z23y7g+JhQinNznGIiALyd5w6n+BYnL6MY6zxUuiTpK81/G8PCqreZSQM8vrUF/U exGfpTMKHA79g0XUP2hORTEJj0Z4XFPBasrxQpREH7hxI+rJXwLE29G6SChofq4c YW7D2qHRga6JT5tPvpsImHnkfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKxRItP Yl3OY1RgsVG7+xwJGQlbMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO8hOEHQlEH0w2ehFX142p3/v2Ggl0va2LNKoZwxNih172yq2fWbQy ypjauNJ2POSV9gN11fTdfhmjlcXFZJ1p+L8j8j7ay01eRrE1owvMMRI5WxH1OVN/ A2cKB0TsZh21VXOoQjL/TKHQfvKGSCumGlDE6jgN+/GUuukeJlUwUVn+nbiTW6v8 J9b43k4ib4Y1ShjiXgzquYhQ6zhJGeVywbP+PGyPvPRXQh5GbkGR7qEXGU7pjGbL NLkZCJ/k0/GkYA+c1x83dN8Onj3f5LlmTWaZRF0rawgjrKpO21kkYoQPMd4A+6uF 115KQc4rSpucOALwcrio9B13qQZH8DVi -----END CERTIFICATE-----Generated at Fri Jul 4 23:14:29 2025 by rpki-client