$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft File: 9HpCypKdg34XkyvKB9ZfgiyWRMs.mft (raw, json) Hash identifier: qXkNX6PAoko/N7OCYxlFKXcCWLr6PKY0cN3WyeeBaa0= Subject key identifier: 3C:2C:3E:9F:11:5D:D7:9F:2D:3A:CF:49:93:DC:EF:6D:23:6D:1F:F9 Authority key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB Certificate issuer: /CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft Manifest number: 0105 Signing time: Fri 13 Jun 2025 03:04:45 +0000 Manifest this update: Fri 13 Jun 2025 03:04:44 +0000 Manifest next update: Fri 20 Jun 2025 03:04:44 +0000 Files and hashes: 1: 9HpCypKdg34XkyvKB9ZfgiyWRMs.crl (hash: r6a8SovUNYFRsah29PdNLY2sOfwTzx3pgc1HRywixN8=) 2: 79A50468BCA911EE8F42E684C4F9AE02.roa (hash: WCxfAGIVMH/a++ZJ4jx3iPBs/9NLSjs9q4Xkq6Czo34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C, serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Validity Not Before: Jun 13 03:04:44 2025 GMT Not After : Jun 20 03:04:44 2025 GMT Subject: CN=684b954c-730f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:70:33:22:02:b5:b6:40:5f:25:ca:e5:16:a0: d5:4c:f6:b8:ca:8e:b7:19:87:d6:ac:cf:f2:87:05: 17:b6:b9:6c:cf:c2:7b:db:38:57:e5:c4:35:3c:82: 97:6e:07:41:03:29:21:03:74:c0:1a:c5:75:f3:72: bf:a5:47:fd:01:e7:87:76:ca:14:15:eb:91:a0:08: 00:40:4a:5b:79:6b:c5:81:9b:de:2a:78:57:33:b0: b3:18:c4:64:8b:e8:7b:e3:57:6a:72:72:8f:ab:4a: 81:37:25:70:10:18:56:91:f7:2a:9d:f0:8f:09:e8: 1b:19:67:25:87:0a:c1:90:42:9b:98:bf:39:e4:5a: ef:ae:b4:e4:3b:7b:2e:b3:c2:9b:be:49:f7:a8:15: cf:57:70:9a:08:fb:be:22:31:38:bc:04:fa:06:35: 97:c6:ad:e4:79:50:43:d2:11:ec:28:ac:53:e4:0b: 06:35:ef:ec:13:63:62:2e:4a:fb:28:07:ba:34:aa: 28:4d:32:d9:10:20:b5:a7:38:83:bb:7b:ab:fc:88: eb:b2:c5:0a:7d:3f:b9:0b:1a:fb:1b:f6:1a:03:fb: e9:8a:0a:1b:06:a5:fe:3f:81:f1:53:8f:be:b3:80: ca:0e:f7:ee:78:1b:3d:57:1b:af:c5:be:c4:8c:a0: fd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:2C:3E:9F:11:5D:D7:9F:2D:3A:CF:49:93:DC:EF:6D:23:6D:1F:F9 X509v3 Authority Key Identifier: keyid:F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b7:5d:36:48:93:a5:49:04:3c:0e:be:eb:45:6c:6e:1a:a9: 6c:1c:c0:32:3d:72:77:9d:d7:c7:b0:7a:0a:30:ed:b3:a5:ae: 42:e3:e0:80:20:40:4a:ec:d9:fc:32:98:4d:91:f1:11:8c:a4: 65:4e:0d:2a:18:9f:92:19:a0:96:c1:9b:a4:19:61:32:cc:ce: c2:df:ab:02:fa:00:1c:30:2f:7e:e7:b3:4b:79:0e:e5:1a:9e: ba:1c:b9:67:1c:1f:d2:c6:09:c3:e0:ff:ac:7b:cb:90:07:93: d6:4d:b4:9c:19:bc:07:43:bc:f8:34:4c:6e:a1:ff:7b:66:00: b8:69:15:8a:65:c8:dd:af:22:ed:d5:67:ef:3e:86:88:91:01: 12:97:87:df:ed:7a:e7:85:0e:a5:e0:90:80:59:c5:57:0e:29: a7:c5:c3:3b:d1:be:05:a7:53:b8:ed:51:e8:84:1a:20:b7:d6: ce:76:a5:be:b1:3b:0f:a1:dc:c5:1b:12:ae:2a:a5:e6:b2:a1: 18:0c:b9:b8:5e:42:89:f7:dc:ea:33:93:d6:4f:91:b2:27:c6: 8b:fa:5e:4b:93:67:51:1a:e7:df:8f:e2:5f:6c:78:1c:92:5f: e5:67:6f:28:18:d3:18:e6:c3:d4:18:c7:c2:90:df:4e:b7:6a: e5:b1:ae:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEY0N0E0MkNBOTI5RDgzN0UxNzkzMkJDQTA3RDY1Rjgy MkM5NjQ0Q0IwHhcNMjUwNjEzMDMwNDQ0WhcNMjUwNjIwMDMwNDQ0WjAYMRYwFAYD VQQDEw02ODRiOTU0Yy03MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXAzIgK1tkBfJcrlFqDVTPa4yo63GYfWrM/yhwUXtrlsz8J72zhX5cQ1PIKX bgdBAykhA3TAGsV183K/pUf9AeeHdsoUFeuRoAgAQEpbeWvFgZveKnhXM7CzGMRk i+h741dqcnKPq0qBNyVwEBhWkfcqnfCPCegbGWclhwrBkEKbmL855FrvrrTkO3su s8Kbvkn3qBXPV3CaCPu+IjE4vAT6BjWXxq3keVBD0hHsKKxT5AsGNe/sE2NiLkr7 KAe6NKooTTLZECC1pziDu3ur/IjrssUKfT+5Cxr7G/YaA/vpigobBqX+P4HxU4++ s4DKDvfueBs9Vxuvxb7EjKD9YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwsPp8R XdefLTrPSZPc720jbR/5MB8GA1UdIwQYMBaAFPR6QsqSnYN+F5MrygfWX4IslkTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy83MTE0ODQzRUJD MzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGczNFhreXZLQjlaZmdpeVdS TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlIcEN5cEtkZzM0WGt5dktCOVpmZ2l5V1JNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUE5Qy83MTE0ODQzRUJDMzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGcz NFhreXZLQjlaZmdpeVdSTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdt102SJOlSQQ8Dr7rRWxuGqlsHMAyPXJ3ndfHsHoKMO2zpa5C4+CA IEBK7Nn8MphNkfERjKRlTg0qGJ+SGaCWwZukGWEyzM7C36sC+gAcMC9+57NLeQ7l Gp66HLlnHB/SxgnD4P+se8uQB5PWTbScGbwHQ7z4NExuof97ZgC4aRWKZcjdryLt 1WfvPoaIkQESl4ff7XrnhQ6l4JCAWcVXDimnxcM70b4Fp1O47VHohBogt9bOdqW+ sTsPodzFGxKuKqXmsqEYDLm4XkKJ99zqM5PWT5GyJ8aL+l5Lk2dRGuffj+JfbHgc kl/lZ28oGNMY5sPUGMfCkN9Ot2rlsa64 -----END CERTIFICATE-----Generated at Fri Jun 13 08:34:28 2025 by rpki-client