$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: xQTzM5NRHOjuhhCDbvkc+wTx9qKynXIwbIiK/Cl3UR4= Subject key identifier: A1:1E:95:9E:72:1E:17:E6:B0:4A:BC:57:FF:E2:CB:1B:54:03:8F:C0 Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: 9C Signing time: Sun 01 Jun 2025 01:06:45 +0000 Manifest this update: Sun 01 Jun 2025 01:06:45 +0000 Manifest next update: Sun 08 Jun 2025 01:06:45 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: PU4LNhw7ej0WQBhPkTYgU6cWffkPIRxB8HNnEypsZxg=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: kCmrnMtq0oO23W6srUkZmhxFZ7143rIIMei/dep36jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Jun 1 01:06:45 2025 GMT Not After : Jun 8 01:06:45 2025 GMT Subject: CN=683ba7a5-fed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:02:41:bf:68:14:70:51:4b:9e:ac:fb:a7:9a: a2:09:12:51:48:d4:dd:76:59:4d:4d:95:93:d7:74: cf:e9:0d:b4:5a:04:67:8f:8b:66:3f:c8:66:99:46: 49:92:f2:d0:31:8b:44:54:6b:6b:a5:01:2e:4d:c2: d3:b2:6c:64:8a:36:d7:83:71:15:98:eb:cf:3d:07: b3:a2:91:22:94:58:31:6e:32:e9:26:8f:28:3c:b6: 6b:af:fa:79:05:a0:76:6b:1c:d0:6b:9f:2c:d0:d0: 7d:e4:f9:63:30:69:62:5d:0e:19:28:1c:ed:47:3c: a2:83:82:d2:cd:71:84:50:28:39:6e:6a:d3:94:63: 34:40:c1:1b:ed:e8:09:a7:b9:d8:b3:46:84:22:b9: e8:0a:ee:43:1b:da:c3:15:a8:5c:76:aa:52:12:ae: 82:d2:14:fa:a2:ac:ed:0f:22:80:05:96:fe:b7:e6: 04:ff:1a:29:12:74:6a:3a:c5:41:4b:c5:20:66:1f: 8e:63:ec:d1:25:bf:64:91:fc:d6:a7:31:8d:a0:83: d0:15:27:6c:06:3d:05:57:9c:aa:c3:11:99:93:72: 5e:35:a7:d4:2a:64:98:d2:18:da:81:a6:15:fb:f5: 1a:1a:60:fb:95:b7:99:53:e4:21:2f:f4:b6:c9:fb: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1E:95:9E:72:1E:17:E6:B0:4A:BC:57:FF:E2:CB:1B:54:03:8F:C0 X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:d2:fb:4a:b4:9b:2f:b9:52:80:18:0a:90:16:29:53:e1:41: a2:83:ba:28:73:ce:66:8d:98:06:19:fa:f4:95:6b:68:fb:6c: 7b:19:9d:2f:9a:83:4c:9c:02:13:41:61:b2:44:61:41:25:ba: 64:b8:b0:00:bc:fa:f9:7e:9e:b2:f8:b3:57:c8:4d:13:9d:e6: 3b:30:f3:b2:b6:95:17:a5:7f:4d:a4:44:bd:5a:b6:7d:62:a3: 20:4d:b0:36:4d:81:f3:0f:0e:d3:61:22:67:21:d7:c5:ec:c6: c2:a3:fb:c6:27:b1:ab:9a:bf:75:76:de:a3:41:0e:bd:f5:e7: a2:1e:98:5a:1e:c1:01:4e:c9:0a:31:9b:c1:46:a5:bd:0d:66: 4c:72:cb:63:4a:a1:e0:28:3e:0c:46:a2:17:62:71:b2:03:d1: 39:a1:2a:91:ae:d9:b9:1b:8c:ec:d4:ca:f4:1a:f8:32:c2:ce: 61:51:94:ea:d6:44:6a:70:39:b4:2a:64:61:77:2a:db:20:f9: 9e:21:2a:54:aa:20:c6:83:8e:99:9e:7a:e9:10:2c:5f:9c:04: 56:42:c5:ab:8d:b5:3b:1b:67:d4:8e:c1:49:f6:37:19:e2:b0: e6:f6:c7:87:03:4f:c0:88:4e:05:b0:31:fd:07:ac:38:c4:d1: b4:fc:a2:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjUwNjAxMDEwNjQ1WhcNMjUwNjA4MDEwNjQ1WjAYMRYwFAYD VQQDEw02ODNiYTdhNS1mZWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAJBv2gUcFFLnqz7p5qiCRJRSNTddllNTZWT13TP6Q20WgRnj4tmP8hmmUZJ kvLQMYtEVGtrpQEuTcLTsmxkijbXg3EVmOvPPQezopEilFgxbjLpJo8oPLZrr/p5 BaB2axzQa58s0NB95PljMGliXQ4ZKBztRzyig4LSzXGEUCg5bmrTlGM0QMEb7egJ p7nYs0aEIrnoCu5DG9rDFahcdqpSEq6C0hT6oqztDyKABZb+t+YE/xopEnRqOsVB S8UgZh+OY+zRJb9kkfzWpzGNoIPQFSdsBj0FV5yqwxGZk3JeNafUKmSY0hjagaYV +/UaGmD7lbeZU+QhL/S2yfts0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEelZ5y HhfmsEq8V//iyxtUA4/AMB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp0vtKtJsvuVKAGAqQFilT4UGig7ooc85mjZgGGfr0lWto+2x7GZ0v moNMnAITQWGyRGFBJbpkuLAAvPr5fp6y+LNXyE0TneY7MPOytpUXpX9NpES9WrZ9 YqMgTbA2TYHzDw7TYSJnIdfF7MbCo/vGJ7Grmr91dt6jQQ699eeiHphaHsEBTskK MZvBRqW9DWZMcstjSqHgKD4MRqIXYnGyA9E5oSqRrtm5G4zs1Mr0Gvgyws5hUZTq 1kRqcDm0KmRhdyrbIPmeISpUqiDGg46ZnnrpECxfnARWQsWrjbU7G2fUjsFJ9jcZ 4rDm9seHA0/AiE4FsDH9B6w4xNG0/KKw -----END CERTIFICATE-----Generated at Mon Jun 2 19:16:46 2025 by rpki-client