$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: MW7wmu+D8SGskDC0+0yaoOAh1GRdwoIUXkmdWPJR9DM= Subject key identifier: 9D:C1:79:71:57:4F:98:0B:BD:D1:24:BF:EC:4D:0A:1D:5A:5A:4F:87 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 18E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 18D2 Signing time: Fri 04 Jul 2025 16:43:28 +0000 Manifest this update: Fri 04 Jul 2025 16:43:27 +0000 Manifest next update: Fri 11 Jul 2025 16:43:27 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: pYWSdtJDfd2HTBbKRTUuyAujSIiM05iGxYSF729lGYw=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: i+oJi6jpDEgYGCAfWO68s9CmpJ8yXleP5d3NPE288zQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6371 (0x18e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Jul 4 16:43:27 2025 GMT Not After : Jul 11 16:43:27 2025 GMT Subject: CN=686804af-d350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:4e:ab:1e:53:ad:39:7e:ec:46:9e:61:f1: 41:f5:48:a8:42:7f:f2:ca:e6:ae:c6:34:da:9b:4b: 00:c0:8c:7e:e8:fb:d1:ce:a4:cf:d9:42:f3:60:08: f2:78:e7:68:24:02:be:8b:32:f1:d1:e1:c4:68:5d: f8:40:ee:94:4c:27:b6:90:10:55:62:bd:84:78:8e: 43:32:f7:db:61:f7:62:de:78:04:30:cc:a1:11:01: a6:f5:ad:39:ab:7d:2a:27:9c:a6:da:b8:97:cf:4d: da:ce:4b:b4:a5:da:c3:42:d2:08:07:43:cf:fc:4e: 6d:21:c2:f0:f4:cb:63:c9:26:a2:c6:57:a1:e2:71: ac:50:8b:14:0f:7e:32:36:08:29:14:a0:eb:7a:ee: a7:2a:10:f4:f5:e7:86:73:2b:85:17:2a:2a:a6:ec: e5:38:31:3f:c1:2e:ba:e4:d4:03:ae:fc:23:a5:19: e3:0d:56:e3:d6:0d:d2:cb:eb:c2:39:41:f9:97:37: 56:84:ab:d7:07:31:d3:3f:e6:07:2a:3c:f6:22:60: 84:50:bd:4b:54:15:bf:e1:83:c0:23:e8:45:a0:a8: 9e:d9:1e:ff:ab:aa:a7:34:9c:d4:c8:40:6c:49:08: 54:06:87:30:ac:bb:43:fd:52:b7:6b:b6:cf:b3:6c: 9c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C1:79:71:57:4F:98:0B:BD:D1:24:BF:EC:4D:0A:1D:5A:5A:4F:87 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c4:9d:90:cc:ff:4d:54:b8:01:12:15:45:0e:1d:ec:fd:62: d0:51:e5:1a:1f:5d:a8:4b:6e:d5:5a:97:6b:80:1f:d6:b4:66: a4:43:67:b9:7f:bd:f7:0d:15:17:62:11:f8:80:0e:92:c7:6c: d2:e7:9d:b3:ab:5b:3e:4b:ba:07:2b:18:01:5f:f4:b8:a3:79: 52:73:2c:7b:b1:b5:b0:1f:b8:15:e8:60:02:dd:3b:23:3c:14: b0:97:ed:82:26:60:a2:74:d2:9f:ad:1a:dc:4c:ed:37:30:ec: 6e:1f:cc:b7:d5:b0:f6:c1:76:a6:96:23:6a:61:e4:2a:39:67: cf:d0:a0:dc:54:b3:ef:a3:0c:d3:09:30:76:57:05:c0:73:17: b6:09:15:75:e5:43:85:e4:98:12:46:17:52:9f:13:1b:72:36: 17:73:b0:cb:89:b1:27:81:00:42:37:22:2c:56:5e:8f:a7:45: 99:8f:56:56:fc:fe:88:78:85:98:48:5c:49:4e:af:15:6b:8f: de:31:af:69:37:2d:24:f7:d4:b8:9b:c4:aa:33:71:67:13:5e: a3:21:9b:4e:38:3a:eb:6d:4e:47:49:99:3b:1b:d8:1f:c9:0c: 81:5f:23:37:af:80:d2:ee:4a:c5:6d:5c:14:c0:b0:3c:6e:c2: 59:8a:77:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUwNzA0MTY0MzI3WhcNMjUwNzExMTY0MzI3WjAYMRYwFAYD VQQDEw02ODY4MDRhZi1kMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWhOqx5TrTl+7EaeYfFB9UioQn/yyuauxjTam0sAwIx+6PvRzqTP2ULzYAjy eOdoJAK+izLx0eHEaF34QO6UTCe2kBBVYr2EeI5DMvfbYfdi3ngEMMyhEQGm9a05 q30qJ5ym2riXz03azku0pdrDQtIIB0PP/E5tIcLw9MtjySaixleh4nGsUIsUD34y NggpFKDreu6nKhD09eeGcyuFFyoqpuzlODE/wS665NQDrvwjpRnjDVbj1g3Sy+vC OUH5lzdWhKvXBzHTP+YHKjz2ImCEUL1LVBW/4YPAI+hFoKie2R7/q6qnNJzUyEBs SQhUBocwrLtD/VK3a7bPs2ycCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3BeXFX T5gLvdEkv+xNCh1aWk+HMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYxJ2QzP9NVLgBEhVFDh3s/WLQUeUaH12oS27VWpdrgB/WtGakQ2e5 f733DRUXYhH4gA6Sx2zS552zq1s+S7oHKxgBX/S4o3lScyx7sbWwH7gV6GAC3Tsj PBSwl+2CJmCidNKfrRrcTO03MOxuH8y31bD2wXamliNqYeQqOWfP0KDcVLPvowzT CTB2VwXAcxe2CRV15UOF5JgSRhdSnxMbcjYXc7DLibEngQBCNyIsVl6Pp0WZj1ZW /P6IeIWYSFxJTq8Va4/eMa9pNy0k99S4m8SqM3FnE16jIZtOODrrbU5HSZk7G9gf yQyBXyM3r4DS7krFbVwUwLA8bsJZinen -----END CERTIFICATE-----Generated at Sat Jul 5 02:09:44 2025 by rpki-client