$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: kU1P8RuBYDh+SgZ3fhiD6Z9kHBN4Nci7YTT+e9DvBkU= Subject key identifier: 61:7C:45:0C:75:9C:81:2D:24:F5:97:8A:80:60:CD:71:2A:B2:F7:72 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 18EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 18D9 Signing time: Fri 18 Jul 2025 16:35:15 +0000 Manifest this update: Fri 18 Jul 2025 16:35:15 +0000 Manifest next update: Fri 25 Jul 2025 16:35:14 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: 4SY84sVHCI8BIibb7gIW68rVJc6DLecavgu7X8m/paU=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: i+oJi6jpDEgYGCAfWO68s9CmpJ8yXleP5d3NPE288zQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6378 (0x18ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Jul 18 16:35:15 2025 GMT Not After : Jul 25 16:35:14 2025 GMT Subject: CN=687a77c3-a64c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:59:f3:69:41:00:40:af:6c:48:da:58:8a:e8: 71:0d:12:c8:5f:2a:b1:79:b9:ab:06:7f:52:c9:2b: a7:a7:10:05:6b:f8:19:dd:24:38:bc:1b:21:5b:a7: ec:22:41:5e:5d:1f:fc:f6:2e:6b:45:97:c1:45:36: 95:62:66:5c:c8:db:3e:56:91:e2:f0:32:39:39:f6: 0b:96:69:d7:bb:60:b0:59:e3:fd:1e:77:d7:35:2a: d4:b9:b4:67:05:2b:03:64:a7:7c:22:d7:e1:10:92: 3e:27:5c:c1:11:9d:24:7d:f3:6a:e1:5b:8a:96:35: 74:60:a3:78:06:69:56:c9:73:b3:37:21:f4:66:ae: 23:48:12:2e:c8:e3:c2:fa:47:b7:e0:e7:74:a3:38: f1:64:f2:38:9b:e4:e9:34:14:df:07:72:a8:fe:ce: 58:de:d2:bb:d9:46:6a:1b:a6:6b:20:e3:18:22:9d: 16:df:d4:50:17:a1:05:6d:6b:08:18:9b:49:94:49: 98:4e:90:ef:f4:61:ef:be:0e:12:11:81:1f:d1:4e: d8:35:eb:27:50:88:4c:38:8a:49:a7:03:e6:79:82: 4d:1b:b7:30:b5:d6:96:3b:f6:12:4a:91:ad:72:cc: a7:5c:02:f8:76:5d:6e:81:d5:25:99:3a:76:f4:18: 60:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:7C:45:0C:75:9C:81:2D:24:F5:97:8A:80:60:CD:71:2A:B2:F7:72 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:81:72:ec:fc:54:c3:29:3d:68:3c:cb:db:75:1e:67:34:4e: ab:a1:76:f0:0b:64:81:c1:52:92:b7:0b:2b:f3:51:76:c3:ff: 67:d2:9f:cf:54:04:e3:06:0c:99:85:09:08:d5:94:4f:f4:d6: 0a:4d:15:53:36:08:bb:71:47:d7:88:36:87:c2:3f:77:f8:0c: d6:cb:ad:a2:d2:2e:4d:88:94:a9:ee:23:71:2c:99:17:c3:b2: 14:62:68:92:a5:64:c2:e3:38:bd:03:ae:f8:12:7d:14:3f:6e: 28:3d:17:8d:33:a5:f8:d1:d7:4f:1c:7f:05:44:88:07:15:b5: 02:f7:68:9b:89:43:1b:dd:e1:21:0f:03:4b:b2:f6:8f:a8:fc: 1b:01:f1:a6:42:f6:10:7d:17:e8:46:f0:e0:00:c8:de:d6:fc: 1e:96:60:c8:1b:eb:d6:23:18:f3:8b:95:e0:53:82:23:1d:88: ed:44:82:3a:21:62:78:42:3d:e9:5c:63:66:0e:56:0a:e0:22: d3:b3:db:c7:af:71:9a:37:b5:bf:77:00:5b:66:53:e1:65:bf: 30:92:f8:74:76:74:64:52:53:95:32:9a:14:c8:7f:19:a9:35: e7:c4:6c:d0:6d:07:12:09:cb:e6:fd:fd:77:a3:14:c3:11:97: d1:4e:f2:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUwNzE4MTYzNTE1WhcNMjUwNzI1MTYzNTE0WjAYMRYwFAYD VQQDEw02ODdhNzdjMy1hNjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA81nzaUEAQK9sSNpYiuhxDRLIXyqxebmrBn9SySunpxAFa/gZ3SQ4vBshW6fs IkFeXR/89i5rRZfBRTaVYmZcyNs+VpHi8DI5OfYLlmnXu2CwWeP9HnfXNSrUubRn BSsDZKd8ItfhEJI+J1zBEZ0kffNq4VuKljV0YKN4BmlWyXOzNyH0Zq4jSBIuyOPC +ke34Od0ozjxZPI4m+TpNBTfB3Ko/s5Y3tK72UZqG6ZrIOMYIp0W39RQF6EFbWsI GJtJlEmYTpDv9GHvvg4SEYEf0U7YNesnUIhMOIpJpwPmeYJNG7cwtdaWO/YSSpGt csynXAL4dl1ugdUlmTp29BhgJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGF8RQx1 nIEtJPWXioBgzXEqsvdyMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2gXLs/FTDKT1oPMvbdR5nNE6roXbwC2SBwVKStwsr81F2w/9n0p/P VATjBgyZhQkI1ZRP9NYKTRVTNgi7cUfXiDaHwj93+AzWy62i0i5NiJSp7iNxLJkX w7IUYmiSpWTC4zi9A674En0UP24oPReNM6X40ddPHH8FRIgHFbUC92ibiUMb3eEh DwNLsvaPqPwbAfGmQvYQfRfoRvDgAMje1vwelmDIG+vWIxjzi5XgU4IjHYjtRII6 IWJ4Qj3pXGNmDlYK4CLTs9vHr3GaN7W/dwBbZlPhZb8wkvh0dnRkUlOVMpoUyH8Z qTXnxGzQbQcSCcvm/f13oxTDEZfRTvK1 -----END CERTIFICATE-----Generated at Sun Jul 20 07:49:37 2025 by rpki-client