$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: yTnX6tAUzoguECHtzUXifNUbQDVTmccj0NNZnSE1YFw= Subject key identifier: 11:F9:3F:E5:63:19:F7:FD:14:03:B1:93:0B:EA:F7:52:AB:CC:51:1D Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 0172 Signing time: Fri 13 Jun 2025 02:27:43 +0000 Manifest this update: Fri 13 Jun 2025 02:27:42 +0000 Manifest next update: Fri 20 Jun 2025 02:27:42 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: mC4nHEwKIeJ68ACCu8cv8iBGZc5u9MA4XYnN5urAwn0=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Jun 13 02:27:42 2025 GMT Not After : Jun 20 02:27:42 2025 GMT Subject: CN=684b8c9e-9dbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f5:ac:ac:eb:22:ba:a1:4b:c1:3e:c3:21:16: b1:64:3f:72:6b:2b:4e:c4:e1:7b:fe:23:08:f4:ab: 30:62:95:33:30:9f:10:57:b5:9b:ff:1a:88:7c:a9: 00:ae:c8:e1:80:a2:92:df:48:9b:74:e2:18:c1:6a: 0c:aa:26:ab:2e:b1:d6:cb:7d:aa:e6:27:81:b4:c2: ce:e9:d2:e9:97:95:5a:99:91:fd:d2:78:18:1a:35: f2:a0:28:29:32:81:ba:3a:bf:f6:ae:83:c8:3b:d7: a9:af:d2:ff:70:e5:af:c1:f0:45:45:4a:12:54:2e: c7:55:6e:1e:95:96:8d:e4:3b:d1:d4:bc:dd:8f:69: dd:72:d5:26:40:53:80:4a:48:04:8d:d7:31:e3:2d: df:09:2c:58:98:55:44:cf:39:38:7f:b9:be:b0:b2: bd:7e:49:26:7f:72:e5:66:89:b1:2a:2a:5f:83:03: 3f:d3:e1:35:11:66:00:2b:65:92:c7:24:c9:2e:8e: ed:d4:ad:2d:94:e9:3e:d3:25:93:d3:10:41:e3:99: c7:36:97:44:19:83:11:fd:75:bb:07:f9:69:d2:08: 29:45:9d:4f:1e:75:9d:38:02:cb:fd:18:58:87:ba: fb:a2:ea:2d:3f:c0:f9:57:63:af:d7:55:7f:6e:aa: a7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F9:3F:E5:63:19:F7:FD:14:03:B1:93:0B:EA:F7:52:AB:CC:51:1D X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:4a:46:bb:96:05:22:b0:82:d6:36:36:cc:ca:45:61:81:76: 3e:94:1e:00:40:c4:d0:f8:a4:a1:a0:5d:b5:2f:fb:4d:8c:51: f4:92:d3:4b:ac:4f:97:bd:25:99:9d:0b:06:5f:26:4a:47:0c: 1e:8b:5f:3c:c3:66:0b:2d:96:ca:69:b4:d1:8f:ee:29:05:f3: 14:0b:c6:49:22:e6:44:53:16:9e:fc:71:61:aa:57:fc:95:1a: 30:aa:16:20:a2:a6:39:af:dc:6d:69:27:23:73:d4:b2:81:78: 10:70:76:6a:c0:cb:79:09:73:ff:dd:ba:0c:30:36:4b:53:bd: 06:6c:29:aa:a4:f6:2e:04:eb:05:ae:8f:25:9d:76:e0:29:ec: 86:f9:e2:56:4e:88:f0:a9:b9:2d:48:8a:85:2c:8e:31:2b:52: a1:a2:6c:d3:83:b2:84:a7:58:88:37:cf:6b:36:4a:e7:4d:f6: d6:e9:f8:a9:8b:7a:ba:16:dd:1d:81:97:df:6d:06:d8:d0:be: 81:e8:b2:5a:55:a9:ed:e4:65:b0:9c:e8:c2:f6:07:c3:c1:78: e6:50:21:3d:f4:a3:e1:44:4a:ce:6a:ab:19:5f:9d:8b:29:c1: 76:eb:54:0e:08:b7:73:bc:6b:8c:d3:f9:a9:f5:9a:fe:9b:e0: b5:85:29:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUwNjEzMDIyNzQyWhcNMjUwNjIwMDIyNzQyWjAYMRYwFAYD VQQDEw02ODRiOGM5ZS05ZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfWsrOsiuqFLwT7DIRaxZD9yaytOxOF7/iMI9KswYpUzMJ8QV7Wb/xqIfKkA rsjhgKKS30ibdOIYwWoMqiarLrHWy32q5ieBtMLO6dLpl5VamZH90ngYGjXyoCgp MoG6Or/2roPIO9epr9L/cOWvwfBFRUoSVC7HVW4elZaN5DvR1Lzdj2ndctUmQFOA SkgEjdcx4y3fCSxYmFVEzzk4f7m+sLK9fkkmf3LlZomxKipfgwM/0+E1EWYAK2WS xyTJLo7t1K0tlOk+0yWT0xBB45nHNpdEGYMR/XW7B/lp0ggpRZ1PHnWdOALL/RhY h7r7ouotP8D5V2Ov11V/bqqniQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBH5P+Vj Gff9FAOxkwvq91KrzFEdMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFSka7lgUisILWNjbMykVhgXY+lB4AQMTQ+KShoF21L/tNjFH0ktNL rE+XvSWZnQsGXyZKRwwei188w2YLLZbKabTRj+4pBfMUC8ZJIuZEUxae/HFhqlf8 lRowqhYgoqY5r9xtaScjc9SygXgQcHZqwMt5CXP/3boMMDZLU70GbCmqpPYuBOsF ro8lnXbgKeyG+eJWTojwqbktSIqFLI4xK1KhomzTg7KEp1iIN89rNkrnTfbW6fip i3q6Ft0dgZffbQbY0L6B6LJaVant5GWwnOjC9gfDwXjmUCE99KPhRErOaqsZX52L KcF261QOCLdzvGuM0/mp9Zr+m+C1hSlu -----END CERTIFICATE-----Generated at Sun Jun 15 00:57:38 2025 by rpki-client