$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: wnD+8S+IT6gaZhbPekYYjNv/jt69iPr92brqtm464AA= Subject key identifier: CC:32:7C:AA:25:32:D7:49:61:F8:41:A1:F0:62:EA:8A:61:A7:E6:01 Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: 33 Signing time: Sat 31 May 2025 07:12:27 +0000 Manifest this update: Sat 31 May 2025 07:12:27 +0000 Manifest next update: Sat 07 Jun 2025 07:12:27 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: sK1mbf3OmnxnJKJvnlW/nmhYFzf7gy0Rm+77caw56/Q=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: May 31 07:12:27 2025 GMT Not After : Jun 7 07:12:27 2025 GMT Subject: CN=683aabdb-c242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:73:2e:a9:45:9a:ba:d6:59:38:5b:66:f8:e8: e6:22:c3:c5:c9:7b:b7:01:ce:fc:6e:2f:d4:6d:a6: 7c:9d:d9:a1:48:4c:34:7d:73:6f:28:e6:2a:7c:cf: 24:5d:66:b7:62:f0:6f:7e:ff:4a:cb:93:d8:e8:2e: d4:b7:4f:fb:c2:5e:c4:56:e9:e9:2f:36:59:a8:40: fe:c2:12:26:b9:df:97:f2:b2:58:61:9a:de:03:d3: 29:87:0c:c2:b0:57:9a:2b:9e:04:64:27:31:77:f8: 56:03:ec:fe:58:97:c5:0e:bf:04:90:f3:98:6a:be: e3:45:2e:4e:d0:35:c2:a4:df:a2:20:1e:3e:47:23: e4:57:3c:13:a2:45:8d:bf:70:55:a5:e1:5e:fe:69: 02:7e:19:bd:6a:b2:96:c3:af:89:a5:59:74:cb:0a: 7a:9b:55:6b:15:6e:26:c2:ce:dc:a8:83:4f:2f:87: 0d:e3:a3:fe:33:ca:0d:5d:32:a1:cc:e9:12:81:7c: 66:d6:45:9a:e0:28:f0:af:78:bc:f8:1d:fd:c4:a8: 0a:16:14:b8:e5:40:30:cf:fe:7a:0f:01:cf:ba:00: 83:ab:5b:ec:13:97:f2:52:d1:74:2c:68:c0:a8:55: a6:07:98:1d:4e:6d:0d:56:68:a2:bf:3e:ef:ca:9b: f9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:32:7C:AA:25:32:D7:49:61:F8:41:A1:F0:62:EA:8A:61:A7:E6:01 X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:d0:eb:e2:97:6c:51:f7:2d:88:b8:d2:93:88:72:4d:72:09: 0d:79:54:86:b6:0c:d8:0b:c6:11:27:73:b3:62:0c:aa:ec:24: 15:eb:6b:30:70:30:f1:2b:a7:a9:ba:4a:29:b0:8e:ee:3c:27: 28:60:1a:cc:72:f4:98:3a:9e:36:65:f5:86:9c:7e:55:73:92: a8:4c:39:8a:8d:61:39:d2:b8:1f:44:90:1a:99:eb:5e:b6:c4: dd:6b:9f:63:07:7a:68:33:28:24:98:37:f3:c4:26:98:89:09: b5:90:68:ee:2c:1f:7b:b9:af:75:54:aa:79:b6:a8:f7:12:12: 74:a9:a5:35:ce:f5:16:16:e6:21:08:67:d0:7c:66:c0:11:52: b0:d8:e4:ae:14:b2:70:7f:58:8e:df:43:f7:bb:4d:f7:1b:24: 33:e0:5a:58:c4:b1:73:70:16:7c:6f:77:7b:2c:4e:1c:5c:9e: 96:40:ba:f2:0a:89:94:07:07:cd:5e:76:13:28:fc:45:33:11: 76:e3:e2:7d:5c:42:05:80:de:c5:87:0a:bc:8c:de:13:e2:a6: ef:ef:a5:c2:1f:0c:49:6a:e4:36:74:a3:f3:26:93:7c:ba:38: 72:a4:51:ad:e0:79:ce:52:13:12:5e:44:59:49:9b:f7:44:78: 07:c7:19:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTQ3NzExMC8GA1UEBRMoNzI0MUU4RjAzOEI5RjI1MkZCNjFDQTQxQjZBNEZDMTY3 Qjc3NTUyNjAeFw0yNTA1MzEwNzEyMjdaFw0yNTA2MDcwNzEyMjdaMBgxFjAUBgNV BAMTDTY4M2FhYmRiLWMyNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCicy6pRZq61lk4W2b46OYiw8XJe7cBzvxuL9Rtpnyd2aFITDR9c28o5ip8zyRd Zrdi8G9+/0rLk9joLtS3T/vCXsRW6ekvNlmoQP7CEia535fyslhhmt4D0ymHDMKw V5orngRkJzF3+FYD7P5Yl8UOvwSQ85hqvuNFLk7QNcKk36IgHj5HI+RXPBOiRY2/ cFWl4V7+aQJ+Gb1qspbDr4mlWXTLCnqbVWsVbibCztyog08vhw3jo/4zyg1dMqHM 6RKBfGbWRZrgKPCveLz4Hf3EqAoWFLjlQDDP/noPAc+6AIOrW+wTl/JS0XQsaMCo VaYHmB1ObQ1WaKK/Pu/Km/lRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzDJ8qiUy 10lh+EGh8GLqimGn5gEwHwYDVR0jBBgwFoAUckHo8Di58lL7YcpBtqT8Fnt3VSYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNDc3LzZCNzAzNUY4RjNG QzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2tIbzhEaTU4bEw3WWNwQnRxVDhGbnQzVlNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NDc3LzZCNzAzNUY4RjNGQzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxM N1ljcEJ0cVQ4Rm50M1ZTWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABbQ6+KXbFH3LYi40pOIck1yCQ15VIa2DNgLxhEnc7NiDKrsJBXrazBw MPErp6m6Simwju48JyhgGsxy9Jg6njZl9YacflVzkqhMOYqNYTnSuB9EkBqZ6162 xN1rn2MHemgzKCSYN/PEJpiJCbWQaO4sH3u5r3VUqnm2qPcSEnSppTXO9RYW5iEI Z9B8ZsARUrDY5K4UsnB/WI7fQ/e7TfcbJDPgWljEsXNwFnxvd3ssThxcnpZAuvIK iZQHB81edhMo/EUzEXbj4n1cQgWA3sWHCryM3hPipu/vpcIfDElq5DZ0o/Mmk3y6 OHKkUa3gec5SExJeRFlJm/dEeAfHGec= -----END CERTIFICATE-----Generated at Sat May 31 17:10:21 2025 by rpki-client