$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: 3wOvegBJsyUFuaWAelkRlPbuU4oLa0MM6HS8sDZGees= Subject key identifier: 7A:CC:B2:D6:13:11:8B:B0:C5:C1:D0:BE:77:F2:50:B2:E1:37:51:EE Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0191 Signing time: Thu 15 May 2025 03:01:01 +0000 Manifest this update: Thu 15 May 2025 03:01:00 +0000 Manifest next update: Thu 22 May 2025 03:01:00 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: AhkVXf4v6X6uojLgkSIxhA4p2pD6qljEFS+VtUDpdOs=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: fF5qhzlNsRoevz2xwRiMiJlwy42Apo4uSvGZ/c3+DCY=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: nDg9tGieY+hhukTrtCHIrGu5m7tkEFWVmvQM/81QKSI=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: yrSI/VPF/gmdws9LHJgb8tXVegj+jybX3Fb+sP5IwCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: May 15 03:01:00 2025 GMT Not After : May 22 03:01:00 2025 GMT Subject: CN=682558ed-9059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:e9:5b:ea:c8:61:75:29:01:83:0f:5c:34: ea:c5:a1:ba:0d:9b:dc:71:41:ac:9e:f4:aa:44:28: 02:f4:2c:e7:8f:29:09:95:6f:f9:0a:b7:00:97:14: bb:74:1a:d7:57:37:cb:6f:b7:67:89:c2:a6:ac:13: e3:de:46:cd:04:0e:3f:19:00:7b:33:28:e1:5e:29: b7:26:3b:74:a4:98:7a:a1:ac:9b:15:dd:e0:ec:02: 4a:22:9d:44:09:c9:b9:9e:3c:a2:22:1b:9e:f9:7d: 57:45:c1:3f:28:61:dc:d8:58:e7:0c:6b:a8:48:ce: d0:1d:8e:ce:a6:f2:b0:e1:4a:9d:b5:ad:04:70:75: 94:97:cf:61:54:2d:36:ad:24:23:90:b6:24:4a:ae: 09:24:e2:b4:ff:6f:fd:53:97:60:94:73:05:2e:f2: df:b6:58:6b:7d:7f:b9:de:31:98:25:18:23:08:94: 82:1f:15:77:27:bd:cf:97:d5:85:c2:98:d9:a9:20: 69:39:f1:ab:17:e2:9e:5e:ea:2a:74:fd:c9:19:07: dd:19:33:73:ef:26:7c:fd:05:ee:b3:09:3c:8e:35: 4f:b0:2b:82:02:e4:ab:c0:fa:48:a2:52:ed:d6:d5: dd:39:82:9d:35:03:92:f1:56:e2:82:ca:e1:e8:e1: fe:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:CC:B2:D6:13:11:8B:B0:C5:C1:D0:BE:77:F2:50:B2:E1:37:51:EE X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ce:1a:0c:12:55:d1:a2:43:e6:b1:c1:a0:14:ca:47:e7:e2: 65:45:10:d4:b0:c7:d8:c6:62:6c:63:ec:3c:45:94:ca:01:9c: cb:77:ed:d4:9a:a0:a3:9d:c7:0f:bd:ea:e6:3f:79:20:8f:95: 17:27:68:01:1d:bb:82:8c:0b:9a:fc:12:ab:59:2b:dc:f2:d1: 0a:0f:4d:24:f6:d9:15:15:b8:9b:93:02:0e:74:59:de:39:32: fe:89:db:8f:00:f8:a2:7b:ac:5f:60:b5:20:7b:52:17:11:bf: 5d:cb:bd:6d:18:37:a3:35:2a:97:6e:ac:91:b3:1f:a3:e4:27: 99:2f:26:59:af:71:d5:12:2d:f2:c9:c1:6f:86:6f:d8:4b:39: 26:e2:0a:65:51:03:8b:94:46:1b:87:f2:0e:04:60:e7:3f:43: 56:bd:d4:04:d5:5d:7f:e0:0b:74:95:22:27:bf:96:93:a2:95: 72:ad:42:1c:ba:0b:d1:79:77:8f:98:8e:24:28:b5:e7:0a:64: 10:a9:90:f0:66:0b:aa:09:86:ae:9a:fc:bf:a4:b2:8a:b8:04: e8:71:d4:fa:ca:56:79:76:39:ed:7e:fb:dd:8b:a1:e4:a9:43: d0:83:95:60:ca:96:99:ab:cd:c4:5c:28:a8:2e:96:17:e7:78: 81:9f:e8:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUwNTE1MDMwMTAwWhcNMjUwNTIyMDMwMTAwWjAYMRYwFAYD VQQDEw02ODI1NThlZC05MDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeDpW+rIYXUpAYMPXDTqxaG6DZvccUGsnvSqRCgC9CznjykJlW/5CrcAlxS7 dBrXVzfLb7dnicKmrBPj3kbNBA4/GQB7MyjhXim3Jjt0pJh6oaybFd3g7AJKIp1E Ccm5njyiIhue+X1XRcE/KGHc2FjnDGuoSM7QHY7OpvKw4Uqdta0EcHWUl89hVC02 rSQjkLYkSq4JJOK0/2/9U5dglHMFLvLftlhrfX+53jGYJRgjCJSCHxV3J73Pl9WF wpjZqSBpOfGrF+KeXuoqdP3JGQfdGTNz7yZ8/QXuswk8jjVPsCuCAuSrwPpIolLt 1tXdOYKdNQOS8Vbigsrh6OH+IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrMstYT EYuwxcHQvnfyULLhN1HuMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpzhoMElXRokPmscGgFMpH5+JlRRDUsMfYxmJsY+w8RZTKAZzLd+3U mqCjnccPvermP3kgj5UXJ2gBHbuCjAua/BKrWSvc8tEKD00k9tkVFbibkwIOdFne OTL+iduPAPiie6xfYLUge1IXEb9dy71tGDejNSqXbqyRsx+j5CeZLyZZr3HVEi3y ycFvhm/YSzkm4gplUQOLlEYbh/IOBGDnP0NWvdQE1V1/4At0lSInv5aTopVyrUIc ugvReXePmI4kKLXnCmQQqZDwZguqCYaumvy/pLKKuATocdT6ylZ5djntfvvdi6Hk qUPQg5VgypaZq83EXCioLpYX53iBn+gv -----END CERTIFICATE-----Generated at Thu May 15 12:15:28 2025 by rpki-client