$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: hBV3r6SJOVOe2ULDBlmKdTYdrAtmFEEAhp3cOHbOEzE= Subject key identifier: FC:9A:36:20:BC:52:60:A6:76:72:D2:E2:35:34:5C:8E:7E:F5:42:38 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 05 Signing time: Mon 07 Jul 2025 08:34:44 +0000 Manifest this update: Mon 07 Jul 2025 08:34:44 +0000 Manifest next update: Mon 14 Jul 2025 08:34:43 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: XWmf+yHdNRt/5V6JjKNQy6ghgcYWulqhJ+LoOomRjdg=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Jul 2025 08:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Jul 7 08:34:44 2025 GMT Not After : Jul 14 08:34:43 2025 GMT Subject: CN=686b86a4-ae65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ba:8f:38:fc:6f:51:91:c7:2b:91:b2:84:58: 05:16:ba:60:18:af:83:11:94:e4:d6:40:e6:dd:32: c6:b7:88:0f:83:74:7d:7a:36:0b:69:e8:65:f4:8b: c4:0b:f4:65:b4:bd:33:91:49:81:05:59:85:e0:3b: 99:7d:42:8e:22:6c:fb:ec:17:6c:e2:5c:30:e2:0d: 1c:ba:78:16:33:70:5b:67:32:fe:34:d7:63:04:d6: 79:9d:5d:c4:1d:4b:b6:ac:33:fa:92:20:5f:65:a5: c6:e1:10:96:47:85:8e:4f:c7:07:8b:5c:b6:60:96: f5:3d:24:58:1c:ed:20:9c:73:63:51:19:96:9f:14: c5:63:a0:20:dd:2a:56:41:4c:0b:f0:23:d8:f0:53: 3b:ca:0c:e5:ba:df:95:d2:c4:7c:67:d4:71:3b:8e: d8:06:ea:ba:38:ef:2b:0c:89:40:1a:bd:39:bb:44: 16:45:68:36:f8:c4:c6:a5:ff:72:04:e2:36:73:2f: f9:c3:f8:61:da:87:cb:a2:bd:c8:fa:f8:94:21:1d: ae:45:b9:8a:2c:24:e3:bb:95:bc:46:d2:6e:ed:73: 10:c7:17:72:c4:da:71:dc:03:58:a6:73:7d:89:41: e1:bf:84:0d:94:31:16:27:4d:2b:a0:cf:8e:16:20: 74:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:9A:36:20:BC:52:60:A6:76:72:D2:E2:35:34:5C:8E:7E:F5:42:38 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a8:58:6d:45:db:68:ea:19:ec:ef:db:9a:27:9b:14:d7:9b: c7:af:54:8c:11:53:8b:9a:6b:68:11:71:4d:b8:10:c2:b9:95: e4:27:ea:b2:f1:4d:6e:d2:29:31:95:1f:7b:e7:fe:54:90:d7: ca:97:b6:ca:e2:01:17:d5:1e:bd:2f:66:6d:d6:99:9a:9c:c0: 0f:61:72:86:90:66:8c:8e:13:48:7b:32:15:1a:20:6f:6b:49: 85:66:83:06:53:47:1f:c1:2e:ed:cf:b4:ec:f7:4f:02:34:37: fd:13:4f:eb:e3:f2:da:04:6a:54:45:62:83:28:4f:0e:01:61: ee:c3:57:7c:14:c3:8b:a8:82:ad:20:27:ff:d4:2e:4d:6e:bc: ba:0e:17:ed:b7:c0:9d:65:54:41:9f:9f:2f:73:0d:97:fa:85: d1:97:6b:00:44:93:18:ac:5c:fa:bf:dd:2f:45:0a:07:9b:d5: c9:21:f7:c4:6f:2c:c3:43:23:85:01:aa:a3:1a:53:c3:e7:7f: 9b:24:60:98:a7:a5:22:72:73:ce:83:3d:5b:0e:43:22:98:d9: a4:74:cf:f7:d5:cf:19:88:a5:61:c5:1a:87:41:8a:aa:98:f9: ee:5e:db:f9:3e:5c:35:ad:f4:d2:cb:0c:3c:85:6d:21:11:6d: 90:79:8c:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTA3MDcwODM0NDRaFw0yNTA3MTQwODM0NDNaMBgxFjAUBgNV BAMTDTY4NmI4NmE0LWFlNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+uo84/G9RkccrkbKEWAUWumAYr4MRlOTWQObdMsa3iA+DdH16Ngtp6GX0i8QL 9GW0vTORSYEFWYXgO5l9Qo4ibPvsF2ziXDDiDRy6eBYzcFtnMv4012ME1nmdXcQd S7asM/qSIF9lpcbhEJZHhY5PxweLXLZglvU9JFgc7SCcc2NRGZafFMVjoCDdKlZB TAvwI9jwUzvKDOW635XSxHxn1HE7jtgG6ro47ysMiUAavTm7RBZFaDb4xMal/3IE 4jZzL/nD+GHah8uivcj6+JQhHa5FuYosJOO7lbxG0m7tcxDHF3LE2nHcA1imc32J QeG/hA2UMRYnTSugz44WIHTfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/Jo2ILxS YKZ2ctLiNTRcjn71QjgwHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGGoWG1F22jqGezv25onmxTXm8evVIwRU4uaa2gRcU24EMK5leQn6rLx TW7SKTGVH3vn/lSQ18qXtsriARfVHr0vZm3WmZqcwA9hcoaQZoyOE0h7MhUaIG9r SYVmgwZTRx/BLu3PtOz3TwI0N/0TT+vj8toEalRFYoMoTw4BYe7DV3wUw4uogq0g J//ULk1uvLoOF+23wJ1lVEGfny9zDZf6hdGXawBEkxisXPq/3S9FCgeb1ckh98Rv LMNDI4UBqqMaU8Pnf5skYJinpSJyc86DPVsOQyKY2aR0z/fVzxmIpWHFGodBiqqY +e5e2/k+XDWt9NLLDDyFbSERbZB5jAA= -----END CERTIFICATE-----Generated at Tue Jul 8 03:13:35 2025 by rpki-client