$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: OuBosuODrxpugd/cMLJVpE9nevps6bcSyLjtkU1L+Mk= Subject key identifier: 8B:9C:25:89:61:AB:AE:D2:4A:9D:40:F2:CC:4D:E2:EB:33:51:EC:EF Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 18FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 18EB Signing time: Fri 22 Aug 2025 16:33:40 +0000 Manifest this update: Fri 22 Aug 2025 16:33:39 +0000 Manifest next update: Fri 29 Aug 2025 16:33:39 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: 2rrcygW+EzIgZDn5RYO1rttwovyWAqz9iHKGxfu9718=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: i+oJi6jpDEgYGCAfWO68s9CmpJ8yXleP5d3NPE288zQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6396 (0x18fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Aug 22 16:33:39 2025 GMT Not After : Aug 29 16:33:39 2025 GMT Subject: CN=68a89be4-f58e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:04:68:d9:f1:60:1a:91:d1:11:9f:9a:9b:dd: bc:dd:2d:42:ae:0c:42:c7:e1:2c:07:cb:43:20:bf: 28:ac:8a:61:c9:ca:7b:bd:de:43:98:b0:fa:bc:3a: 15:4a:77:63:39:4b:df:07:fe:64:eb:8d:06:8b:87: c3:bc:2f:9b:16:08:15:47:52:a7:cf:44:26:96:f7: e7:ed:23:bc:ba:1a:60:9c:10:eb:fa:56:1f:73:1f: c0:49:46:a9:f6:11:d3:e7:d5:d9:a5:db:e7:0c:9a: f6:04:e7:ee:6a:da:74:5d:bd:bb:d4:27:62:17:38: b6:ec:41:a3:d0:8b:68:88:bb:a0:13:44:61:2e:81: 7a:b1:47:5e:36:1f:b9:b4:63:1f:29:d2:80:64:97: d1:78:d6:73:60:53:c7:91:60:a6:3b:5e:63:30:d6: 21:0d:ca:25:e5:7a:cf:bd:c5:94:79:2c:bb:2a:9b: 99:6e:79:05:05:46:1e:2b:b5:df:d8:d0:e5:5d:89: 3e:57:eb:a6:65:83:3b:54:54:f4:28:5a:8d:1a:9b: 07:2e:09:6b:df:95:f6:10:43:29:75:23:33:30:7f: e9:2a:9b:6a:22:cb:ae:bd:81:c2:c2:d7:65:05:79: 44:54:6f:61:8b:02:e6:d0:50:a3:68:e7:94:6e:2d: c0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:9C:25:89:61:AB:AE:D2:4A:9D:40:F2:CC:4D:E2:EB:33:51:EC:EF X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:81:b4:d8:3e:9e:a9:76:af:dd:cd:22:ee:fb:bc:bf:19:ac: 1b:7f:64:15:5a:c3:64:1a:b4:ff:22:ea:d7:cc:7f:01:a7:1e: 69:89:20:e8:be:4f:92:89:10:b9:41:5d:3b:aa:cc:56:51:33: f3:02:36:d6:f2:c6:e3:1a:db:8c:f4:c3:42:3e:d3:9f:2c:6a: 48:ab:e9:76:39:9f:ac:7b:9c:c1:d1:0a:82:38:0c:79:d3:9f: 8f:e8:9d:f5:ca:88:1d:a0:21:c3:0c:f6:21:06:69:76:7b:38: f1:dd:e0:83:03:fa:09:9e:f0:76:08:5b:aa:ad:91:49:9a:6e: ad:b1:14:e2:26:b4:e9:18:af:ae:96:22:0c:2d:ea:c4:ef:d1: 9b:14:91:e5:64:14:c0:ad:f8:d7:e9:83:c5:e9:7b:74:be:a1: 34:6e:c2:de:16:96:b1:28:ff:98:58:78:74:2b:5d:a1:b0:4c: c5:41:00:73:86:3c:2d:81:88:e9:a1:73:1f:c0:38:79:37:a5: 0b:05:c0:6c:8b:db:57:2b:7d:23:0f:fb:8a:6e:15:04:8e:6a: be:d9:d4:1c:5f:fb:04:9e:7b:ca:35:c4:43:f5:91:60:53:11: 7e:14:ab:f8:91:8d:ac:9b:e4:f6:b8:b0:fc:a0:e8:f2:87:f6: ba:82:b0:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUwODIyMTYzMzM5WhcNMjUwODI5MTYzMzM5WjAYMRYwFAYD VQQDEw02OGE4OWJlNC1mNThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQRo2fFgGpHREZ+am9283S1CrgxCx+EsB8tDIL8orIphycp7vd5DmLD6vDoV SndjOUvfB/5k640Gi4fDvC+bFggVR1Knz0Qmlvfn7SO8uhpgnBDr+lYfcx/ASUap 9hHT59XZpdvnDJr2BOfuatp0Xb271CdiFzi27EGj0ItoiLugE0RhLoF6sUdeNh+5 tGMfKdKAZJfReNZzYFPHkWCmO15jMNYhDcol5XrPvcWUeSy7KpuZbnkFBUYeK7Xf 2NDlXYk+V+umZYM7VFT0KFqNGpsHLglr35X2EEMpdSMzMH/pKptqIsuuvYHCwtdl BXlEVG9hiwLm0FCjaOeUbi3AyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIucJYlh q67SSp1A8sxN4uszUezvMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4gbTYPp6pdq/dzSLu+7y/Gawbf2QVWsNkGrT/IurXzH8Bpx5piSDo vk+SiRC5QV07qsxWUTPzAjbW8sbjGtuM9MNCPtOfLGpIq+l2OZ+se5zB0QqCOAx5 05+P6J31yogdoCHDDPYhBml2ezjx3eCDA/oJnvB2CFuqrZFJmm6tsRTiJrTpGK+u liIMLerE79GbFJHlZBTArfjX6YPF6Xt0vqE0bsLeFpaxKP+YWHh0K12hsEzFQQBz hjwtgYjpoXMfwDh5N6ULBcBsi9tXK30jD/uKbhUEjmq+2dQcX/sEnnvKNcRD9ZFg UxF+FKv4kY2sm+T2uLD8oOjyh/a6grDW -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:58 2025 by rpki-client