$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: RDGgw212yoTBPbCmnZ1NSQY3g5RdzHzObxAtEJ95MGk= Subject key identifier: 30:99:2D:2C:BF:4B:EE:BA:96:DE:95:AE:69:84:FE:14:AC:43:AF:52 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01AB Signing time: Thu 03 Jul 2025 03:24:36 +0000 Manifest this update: Thu 03 Jul 2025 03:24:35 +0000 Manifest next update: Thu 10 Jul 2025 03:24:35 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: EkmYQMxEG/kIl6dHR4algjk5DMB71o/r0wyDz5TCMSc=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Jul 3 03:24:35 2025 GMT Not After : Jul 10 03:24:35 2025 GMT Subject: CN=6865f7f4-160e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d8:48:5f:f8:fc:0e:90:7b:23:14:aa:7a:ba: 82:3a:57:40:5f:be:b6:c3:4c:8f:31:f8:cf:e4:fe: d2:f9:0c:19:d0:cb:31:ed:be:94:38:b4:04:6a:ea: b9:01:5c:37:66:3e:e1:0b:00:0c:b4:44:94:a3:2c: 7c:36:61:74:30:a2:cb:66:f4:c9:76:b6:d3:6e:70: fa:f3:9f:2c:da:85:71:10:67:46:71:ef:45:2e:78: 42:71:8f:58:14:01:f7:df:43:44:ac:d3:bc:4b:1f: 97:6c:88:7b:d3:4b:d9:a7:52:70:82:c0:8a:eb:82: c4:d1:1b:7a:5e:ca:03:8a:91:60:3a:51:dc:bd:ee: 4a:a8:cc:ef:f4:cd:d8:3e:c9:25:85:a9:c2:6a:6a: a9:8f:7a:d6:d9:d5:b7:3e:19:3d:24:06:cf:df:8b: aa:3f:59:40:d5:7e:ae:13:6f:9c:d1:86:ab:0d:a2: 66:ef:bd:73:37:8e:4e:2c:99:34:31:20:f6:5e:e7: 0c:d9:7e:78:4c:7c:d7:4a:98:b3:d5:ec:6a:1c:38: b4:bb:62:27:1d:fb:12:0c:74:d8:0f:b7:36:2c:6e: b2:a6:80:6b:0c:68:87:4d:67:bf:08:27:a7:7a:0b: e1:38:b4:19:d5:f1:3d:7f:ef:6e:24:5d:fb:b4:c9: 9c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:99:2D:2C:BF:4B:EE:BA:96:DE:95:AE:69:84:FE:14:AC:43:AF:52 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:6b:de:f7:01:5e:e3:00:5f:79:02:0c:fa:30:dd:33:a7:e0: a6:3e:39:ea:e7:9b:a9:57:9d:79:8c:2f:cc:8f:23:d9:41:ee: 4a:57:d4:5a:cb:9e:7d:d8:13:4a:56:df:5c:9b:5f:e3:e7:bf: 97:60:ac:c4:66:ed:41:62:3f:e6:9e:32:c9:73:91:16:d0:61: 8e:fc:c5:e3:67:c5:f6:74:aa:18:2b:56:15:92:59:86:80:0b: 7f:8a:e5:8f:bc:1f:79:54:0a:e3:42:33:8c:b4:09:e1:f2:3d: 77:44:28:c9:62:a0:85:37:1e:42:1f:71:df:a0:cb:b9:2f:f0: c3:5b:05:12:08:a2:ac:40:0e:a7:4e:dd:1c:16:b7:d7:17:71: b8:c2:8d:bd:db:0d:db:a9:2d:1c:14:ad:d4:ab:ba:da:ec:a1: 64:3c:eb:e2:01:e1:4d:f1:06:c3:a9:9a:42:8c:bd:ef:fa:5f: a5:39:cc:4d:58:e3:95:e3:dd:59:ce:fb:79:f8:5f:32:e8:58: 67:bc:23:77:ec:66:7f:cb:a7:ee:12:45:41:26:42:b2:27:35: 6c:1b:a7:f6:52:4f:95:de:5c:05:10:81:55:06:2c:eb:0d:c0: c1:09:ee:51:4c:a5:76:7c:66:47:43:a7:bb:38:2e:19:ed:8f: 57:8b:a2:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUwNzAzMDMyNDM1WhcNMjUwNzEwMDMyNDM1WjAYMRYwFAYD VQQDEw02ODY1ZjdmNC0xNjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNhIX/j8DpB7IxSqerqCOldAX762w0yPMfjP5P7S+QwZ0Msx7b6UOLQEauq5 AVw3Zj7hCwAMtESUoyx8NmF0MKLLZvTJdrbTbnD6858s2oVxEGdGce9FLnhCcY9Y FAH330NErNO8Sx+XbIh700vZp1JwgsCK64LE0Rt6XsoDipFgOlHcve5KqMzv9M3Y PsklhanCamqpj3rW2dW3Phk9JAbP34uqP1lA1X6uE2+c0YarDaJm771zN45OLJk0 MSD2XucM2X54THzXSpiz1exqHDi0u2InHfsSDHTYD7c2LG6ypoBrDGiHTWe/CCen egvhOLQZ1fE9f+9uJF37tMmcYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCZLSy/ S+66lt6VrmmE/hSsQ69SMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxa973AV7jAF95Agz6MN0zp+CmPjnq55upV515jC/MjyPZQe5KV9Ra y5592BNKVt9cm1/j57+XYKzEZu1BYj/mnjLJc5EW0GGO/MXjZ8X2dKoYK1YVklmG gAt/iuWPvB95VArjQjOMtAnh8j13RCjJYqCFNx5CH3HfoMu5L/DDWwUSCKKsQA6n Tt0cFrfXF3G4wo292w3bqS0cFK3Uq7ra7KFkPOviAeFN8QbDqZpCjL3v+l+lOcxN WOOV491Zzvt5+F8y6FhnvCN37GZ/y6fuEkVBJkKyJzVsG6f2Uk+V3lwFEIFVBizr DcDBCe5RTKV2fGZHQ6e7OC4Z7Y9Xi6IE -----END CERTIFICATE-----Generated at Fri Jul 4 08:01:16 2025 by rpki-client