$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: uGcYj7MSgvnOc26IOe6DZT0NbY1yLRcgki58T8MZ+Do= Subject key identifier: 13:1D:6F:61:8B:8D:E1:85:56:22:2F:9B:BF:A9:F0:1C:A4:E8:FD:3F Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: A1 Signing time: Thu 03 Jul 2025 06:28:00 +0000 Manifest this update: Thu 03 Jul 2025 06:27:59 +0000 Manifest next update: Thu 10 Jul 2025 06:27:59 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: F9TtTN5Tu9549BF+a8a4gySffDMyCfsLbAJFoINaSKQ=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Jul 3 06:27:59 2025 GMT Not After : Jul 10 06:27:59 2025 GMT Subject: CN=686622f0-0597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:73:e4:81:d4:f1:49:3f:fb:28:aa:fb:13:30: 48:16:e4:f2:64:18:35:e3:d4:f3:a1:a3:f6:5f:38: de:0f:45:4b:6e:a4:d7:9c:cd:ef:62:62:31:7a:cc: fe:f3:6c:ae:a4:14:9d:da:dc:b6:f3:60:22:8f:00: 8d:ef:2f:d3:1f:b3:5f:52:83:88:81:ab:76:6c:6b: fa:de:24:88:f9:b7:2d:4f:e1:1c:21:cb:82:5a:7e: 61:ac:e8:a3:8f:6e:6b:d1:6d:9a:30:19:36:22:c9: ac:03:24:b5:cd:fc:24:3a:52:9f:e6:8a:a0:66:90: c0:b2:a1:71:13:fa:bb:1d:79:b4:35:ef:c5:5a:44: 93:ee:66:2a:c5:82:ee:ba:82:29:91:90:7e:49:79: 03:cf:e1:ff:97:e2:91:d5:92:83:e9:82:7b:ea:f2: c4:73:a0:dd:a9:2c:18:93:84:f4:04:3d:d7:66:16: 20:9a:39:20:ed:af:f5:74:ec:11:e5:31:0d:c0:5c: ea:76:08:a5:5a:8f:a6:53:74:e5:e1:0e:89:bd:ec: e3:17:98:97:4d:b1:15:5b:20:af:19:19:47:75:13: 0d:b8:4c:a1:18:98:89:9f:08:dd:af:a5:d5:c5:80: ff:f5:9a:19:a5:4f:e7:ba:2e:f3:b2:10:c4:eb:da: c4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1D:6F:61:8B:8D:E1:85:56:22:2F:9B:BF:A9:F0:1C:A4:E8:FD:3F X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ac:06:91:25:aa:9e:08:3c:42:9d:02:10:05:8d:b0:9b:01: 9c:7e:d5:74:93:8c:10:48:f2:00:6e:81:5a:7b:67:2d:2f:05: 68:eb:f7:47:ab:e6:e7:0a:a4:c0:49:6a:7e:e2:64:0a:cd:cd: f7:59:17:82:0a:5f:7e:f7:06:16:ac:ab:fa:78:74:fe:79:55: de:ca:5a:06:b2:c8:36:4a:c6:c4:3e:e5:d4:ff:74:13:e9:7d: 65:ef:b9:65:20:95:91:8c:cf:23:ee:64:80:c3:77:b7:42:e2: 79:9c:ee:3e:17:d8:5b:b0:15:ba:87:ec:45:b4:16:cf:e4:4f: dd:01:96:b9:c9:9c:3f:07:30:cc:77:0f:10:b3:b2:1d:65:ce: 99:ce:2e:ac:cb:3f:47:26:64:21:46:77:85:41:5a:c1:74:cb: 62:fb:f6:08:f5:3a:e8:e4:d9:6b:45:72:5f:51:24:c3:9e:f9: d5:16:05:55:cf:54:0f:5f:c3:78:0d:3b:77:06:00:34:c0:f0: 8c:0e:9e:8a:8d:d7:f0:c2:fe:3a:88:82:ad:40:ff:f1:8e:4f: a6:08:64:11:30:38:f2:9f:98:9f:ff:79:29:00:85:7e:13:38: 82:19:d1:d0:17:e1:0b:dc:b0:6d:47:4d:b1:b6:54:f8:8f:0d: 7d:6c:e1:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUwNzAzMDYyNzU5WhcNMjUwNzEwMDYyNzU5WjAYMRYwFAYD VQQDEw02ODY2MjJmMC0wNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHPkgdTxST/7KKr7EzBIFuTyZBg149TzoaP2XzjeD0VLbqTXnM3vYmIxesz+ 82yupBSd2ty282AijwCN7y/TH7NfUoOIgat2bGv63iSI+bctT+EcIcuCWn5hrOij j25r0W2aMBk2IsmsAyS1zfwkOlKf5oqgZpDAsqFxE/q7HXm0Ne/FWkST7mYqxYLu uoIpkZB+SXkDz+H/l+KR1ZKD6YJ76vLEc6DdqSwYk4T0BD3XZhYgmjkg7a/1dOwR 5TENwFzqdgilWo+mU3Tl4Q6JvezjF5iXTbEVWyCvGRlHdRMNuEyhGJiJnwjdr6XV xYD/9ZoZpU/nui7zshDE69rE1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMdb2GL jeGFViIvm7+p8Byk6P0/MB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDrAaRJaqeCDxCnQIQBY2wmwGcftV0k4wQSPIAboFae2ctLwVo6/dH q+bnCqTASWp+4mQKzc33WReCCl9+9wYWrKv6eHT+eVXeyloGssg2SsbEPuXU/3QT 6X1l77llIJWRjM8j7mSAw3e3QuJ5nO4+F9hbsBW6h+xFtBbP5E/dAZa5yZw/BzDM dw8Qs7IdZc6Zzi6syz9HJmQhRneFQVrBdMti+/YI9Tro5NlrRXJfUSTDnvnVFgVV z1QPX8N4DTt3BgA0wPCMDp6Kjdfwwv46iIKtQP/xjk+mCGQRMDjyn5if/3kpAIV+ EziCGdHQF+EL3LBtR02xtlT4jw19bOF7 -----END CERTIFICATE-----Generated at Thu Jul 3 21:55:13 2025 by rpki-client