$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft File: 9HpCypKdg34XkyvKB9ZfgiyWRMs.mft (raw, json) Hash identifier: 1r1jWhVrt6Jwy/mi58Mb/6VDUrRM1D76Biqndh+2Nvs= Subject key identifier: FD:02:97:EA:20:34:86:E4:F2:22:01:04:48:92:6F:2F:A0:87:D8:90 Authority key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB Certificate issuer: /CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft Manifest number: 0104 Signing time: Wed 11 Jun 2025 03:32:01 +0000 Manifest this update: Wed 11 Jun 2025 03:32:01 +0000 Manifest next update: Wed 18 Jun 2025 03:32:01 +0000 Files and hashes: 1: 9HpCypKdg34XkyvKB9ZfgiyWRMs.crl (hash: gxDgyIpA2hYNKMh/NeUv7+vP1weVdl9WZqVGIGGvwdI=) 2: 79A50468BCA911EE8F42E684C4F9AE02.roa (hash: WCxfAGIVMH/a++ZJ4jx3iPBs/9NLSjs9q4Xkq6Czo34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 03:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C, serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Validity Not Before: Jun 11 03:32:01 2025 GMT Not After : Jun 18 03:32:01 2025 GMT Subject: CN=6848f8b1-bf97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:7a:0e:5d:f5:09:76:45:c9:f5:fb:bf:5d: f0:37:49:84:d0:84:77:56:99:fb:9b:0e:a3:ef:38: b4:45:04:db:bf:0d:eb:f1:08:e8:a8:79:56:eb:da: fa:88:c7:64:81:fd:ca:b6:bf:e2:d7:e8:b1:a6:87: ce:aa:99:e3:51:3a:33:0e:54:90:34:5d:3e:96:a8: 7e:6f:ab:0c:ff:45:17:5c:15:d5:4b:44:93:fe:39: f9:ef:64:86:94:4e:cd:75:46:19:b5:14:b1:cb:a9: 5f:63:c2:0c:bb:57:59:26:d0:21:55:f4:b7:cb:4f: 2a:15:fe:91:1d:66:08:ce:e6:7d:33:1f:32:52:eb: 01:9e:1e:d4:28:4b:97:d7:a7:27:3f:ce:2d:d9:50: 18:5e:89:2a:05:e2:69:5f:fc:d3:43:d4:38:5d:63: 6d:65:6e:0c:31:e2:45:a2:b3:3b:56:56:42:cb:46: b0:88:d2:76:4b:76:be:f5:56:c5:83:a5:a5:83:20: 8f:ce:c7:75:5c:14:4d:7e:83:db:13:8f:3e:9e:6a: 1f:61:ad:af:86:b4:34:12:b0:e3:f3:70:51:a4:9f: ff:b1:97:4a:ee:27:c8:a6:a2:40:c3:d1:d1:15:b9: 94:3a:4a:ba:1e:ba:e1:fe:88:f8:d0:63:23:1f:be: 68:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:02:97:EA:20:34:86:E4:F2:22:01:04:48:92:6F:2F:A0:87:D8:90 X509v3 Authority Key Identifier: keyid:F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:94:f8:a7:2f:8f:9e:c6:a1:a6:fd:77:54:9c:c8:8a:d1:77: d5:46:b5:a4:64:77:86:1a:ac:d0:7f:d5:85:b8:a3:ff:f8:93: 45:57:9a:fd:67:46:9f:90:97:4a:f4:66:c2:9a:cf:37:c6:9f: 76:c0:98:e0:c8:a4:c6:88:19:fd:2d:2f:9a:19:19:80:7f:b9: 46:5f:42:07:3a:1f:28:a8:86:34:e8:02:22:c4:26:9e:4a:b1: 0d:89:e7:01:89:75:70:22:99:fe:44:f0:45:5b:7e:cd:15:3e: b5:b6:04:36:c2:1f:5a:b1:6a:9e:dd:65:f3:77:84:fa:bc:85: 0a:f6:5f:18:3f:a9:4a:ac:fb:79:8c:20:0b:e4:1b:31:e1:4a: 09:7f:6f:e7:8b:b8:33:5e:7b:cb:2f:86:07:80:2b:28:0c:ac: b9:e9:b1:e4:65:3c:2b:ad:ef:d3:80:38:72:61:3e:90:62:fb: de:9b:81:45:43:a1:bb:3e:55:c8:8b:b9:db:1f:7d:47:8c:39: 83:2f:1a:40:dc:3d:43:d5:b1:9e:e1:4d:3a:f7:82:0b:17:7e: d7:a1:02:85:b5:e3:c2:23:ca:d0:0b:7e:c9:c6:53:ec:c2:34: 36:0d:29:7b:48:59:1b:d3:05:02:40:d5:ae:ff:f8:db:40:15: 3e:23:f4:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEY0N0E0MkNBOTI5RDgzN0UxNzkzMkJDQTA3RDY1Rjgy MkM5NjQ0Q0IwHhcNMjUwNjExMDMzMjAxWhcNMjUwNjE4MDMzMjAxWjAYMRYwFAYD VQQDEw02ODQ4ZjhiMS1iZjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJh6Dl31CXZFyfX7v13wN0mE0IR3Vpn7mw6j7zi0RQTbvw3r8QjoqHlW69r6 iMdkgf3Ktr/i1+ixpofOqpnjUTozDlSQNF0+lqh+b6sM/0UXXBXVS0ST/jn572SG lE7NdUYZtRSxy6lfY8IMu1dZJtAhVfS3y08qFf6RHWYIzuZ9Mx8yUusBnh7UKEuX 16cnP84t2VAYXokqBeJpX/zTQ9Q4XWNtZW4MMeJForM7VlZCy0awiNJ2S3a+9VbF g6WlgyCPzsd1XBRNfoPbE48+nmofYa2vhrQ0ErDj83BRpJ//sZdK7ifIpqJAw9HR FbmUOkq6Hrrh/oj40GMjH75oKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0Cl+og NIbk8iIBBEiSby+gh9iQMB8GA1UdIwQYMBaAFPR6QsqSnYN+F5MrygfWX4IslkTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy83MTE0ODQzRUJD MzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGczNFhreXZLQjlaZmdpeVdS TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlIcEN5cEtkZzM0WGt5dktCOVpmZ2l5V1JNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUE5Qy83MTE0ODQzRUJDMzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGcz NFhreXZLQjlaZmdpeVdSTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBolPinL4+exqGm/XdUnMiK0XfVRrWkZHeGGqzQf9WFuKP/+JNFV5r9 Z0afkJdK9GbCms83xp92wJjgyKTGiBn9LS+aGRmAf7lGX0IHOh8oqIY06AIixCae SrENiecBiXVwIpn+RPBFW37NFT61tgQ2wh9asWqe3WXzd4T6vIUK9l8YP6lKrPt5 jCAL5Bsx4UoJf2/ni7gzXnvLL4YHgCsoDKy56bHkZTwrre/TgDhyYT6QYvvem4FF Q6G7PlXIi7nbH31HjDmDLxpA3D1D1bGe4U0694ILF37XoQKFtePCI8rQC37JxlPs wjQ2DSl7SFkb0wUCQNWu//jbQBU+I/Sw -----END CERTIFICATE-----Generated at Thu Jun 12 16:48:42 2025 by rpki-client