$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: Cxsu42kuZsh/Tu2peaXskX4ZOzoZJJkWxMhjiEDn48s= Subject key identifier: 64:0B:A5:0D:51:92:03:47:74:C8:19:C5:C6:DA:81:0C:97:2D:68:D8 Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 0507 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 0501 Signing time: Thu 03 Jul 2025 00:00:30 +0000 Manifest this update: Thu 03 Jul 2025 00:00:30 +0000 Manifest next update: Thu 10 Jul 2025 00:00:30 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: YkRPnur3fD0cFl0PZk//ui0GejaHWxO+MUtqv7dhs7U=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: 9is5aeB2FzFVh9EnamHZGKMz2wLecoiTResPsgf3D2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: Jul 3 00:00:30 2025 GMT Not After : Jul 10 00:00:30 2025 GMT Subject: CN=6865c81e-fc26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:47:04:89:24:72:1a:c5:e9:33:e3:e4:1f:80: d2:f5:d5:63:0d:24:7c:37:2a:a2:e8:93:44:7f:06: ae:8a:12:39:2e:0c:38:4f:2e:79:5c:6d:5e:7c:f1: 29:4c:cf:95:3a:ab:97:84:01:a8:fb:6e:e1:a6:1a: 8a:23:6e:32:ce:f7:1e:3c:fb:bf:d4:82:d3:58:b5: 05:52:2f:06:a0:dc:0d:df:7f:63:01:e3:66:d8:53: 29:13:83:73:5a:5d:31:80:52:75:67:e8:3e:20:34: 27:5c:d7:36:3e:82:2d:4a:31:80:de:61:e2:f3:3d: 6e:53:57:02:3b:cf:2d:c0:7f:91:88:17:94:d2:7b: 1c:0c:42:19:5a:8b:0d:f7:9b:31:bc:26:a2:a7:5f: e8:56:b4:1e:fb:9f:69:3c:6b:d7:34:ca:95:5c:4a: aa:40:22:30:4e:66:f9:32:dc:ac:ba:24:57:bd:6e: 9e:3e:ab:7d:f6:26:e9:69:c2:31:d5:fd:5c:a3:c2: 6b:eb:f3:b1:30:6b:8f:e3:c3:66:de:fc:6b:1e:4d: 91:d3:e2:0a:9b:e3:4b:9b:f8:7c:21:7a:16:6b:cc: c3:83:8c:1c:93:e3:26:b6:b9:0a:48:f4:80:dd:0b: 8e:c4:e4:c8:ce:8b:e4:78:39:b1:ab:12:2c:6f:dc: 9a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0B:A5:0D:51:92:03:47:74:C8:19:C5:C6:DA:81:0C:97:2D:68:D8 X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:72:84:49:25:09:06:3c:18:a8:e7:16:65:ce:0a:54:11:c1: 68:2b:31:f2:7f:57:19:78:be:c3:27:6f:3d:d4:8e:12:28:1a: 30:a2:22:b2:9f:70:58:0d:65:d0:56:f2:ec:ba:26:fd:05:a9: 25:dc:66:a4:ca:2d:61:3b:74:26:1e:7e:36:2e:0c:3d:96:65: 8b:ef:8a:0a:ab:e7:22:e9:dd:f2:49:4f:4b:34:7a:88:79:5f: 68:f7:64:9f:36:3a:6b:dd:89:b9:02:7d:67:49:bd:4c:4b:31: 92:43:53:7a:a2:34:e6:bd:20:e3:a9:60:58:32:73:00:29:c3: 98:a6:fe:63:e9:ee:06:c2:7d:8d:cf:df:89:e9:ca:ec:ee:61: 30:df:4e:c3:2c:69:01:c4:fd:84:04:92:36:f5:ff:a9:e4:98: b2:90:81:44:4a:49:58:fe:e2:20:9e:0f:32:a8:53:e4:85:40: dd:4e:8a:f7:ab:9a:0b:a4:4d:08:b1:45:0f:c1:e8:b3:fe:98: 48:b9:f2:d3:16:e2:7f:7d:1f:af:92:7c:16:0f:c4:98:3a:db: 3a:78:bc:9f:af:31:af:23:2b:3f:38:f3:f3:ce:f8:f3:86:de: e3:7a:ef:2d:1f:7d:e5:6f:41:8a:19:3b:62:5f:00:9e:cf:33: b7:d3:de:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjUwNzAzMDAwMDMwWhcNMjUwNzEwMDAwMDMwWjAYMRYwFAYD VQQDEw02ODY1YzgxZS1mYzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0cEiSRyGsXpM+PkH4DS9dVjDSR8Nyqi6JNEfwauihI5Lgw4Ty55XG1efPEp TM+VOquXhAGo+27hphqKI24yzvcePPu/1ILTWLUFUi8GoNwN339jAeNm2FMpE4Nz Wl0xgFJ1Z+g+IDQnXNc2PoItSjGA3mHi8z1uU1cCO88twH+RiBeU0nscDEIZWosN 95sxvCaip1/oVrQe+59pPGvXNMqVXEqqQCIwTmb5MtysuiRXvW6ePqt99ibpacIx 1f1co8Jr6/OxMGuP48Nm3vxrHk2R0+IKm+NLm/h8IXoWa8zDg4wck+MmtrkKSPSA 3QuOxOTIzovkeDmxqxIsb9yaswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQLpQ1R kgNHdMgZxcbagQyXLWjYMB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHcoRJJQkGPBio5xZlzgpUEcFoKzHyf1cZeL7DJ2891I4SKBowoiKy n3BYDWXQVvLsuib9Bakl3Gakyi1hO3QmHn42Lgw9lmWL74oKq+ci6d3ySU9LNHqI eV9o92SfNjpr3Ym5An1nSb1MSzGSQ1N6ojTmvSDjqWBYMnMAKcOYpv5j6e4Gwn2N z9+J6crs7mEw307DLGkBxP2EBJI29f+p5JiykIFESklY/uIgng8yqFPkhUDdTor3 q5oLpE0IsUUPweiz/phIufLTFuJ/fR+vknwWD8SYOts6eLyfrzGvIys/OPPzzvjz ht7jeu8tH33lb0GKGTtiXwCezzO3094N -----END CERTIFICATE-----Generated at Thu Jul 3 11:54:21 2025 by rpki-client