$ rpki-client -vvf rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft File: f99iGPoBXQoAdKhEJFGAaij53fU.mft (raw, json) Hash identifier: nyhHwwWRsUgvlsvoBvNVK6rrmcdNAypY+Y4jNZCd9jI= Subject key identifier: E2:9F:3F:40:FA:3E:D5:5C:F4:88:0F:89:C4:1F:2A:A1:1D:5A:8D:31 Authority key identifier: 7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 Certificate issuer: /CN=A9173060/serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Certificate serial: 07AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft Manifest number: 07A5 Signing time: Fri 30 May 2025 21:29:16 +0000 Manifest this update: Fri 30 May 2025 21:29:15 +0000 Manifest next update: Fri 06 Jun 2025 21:29:15 +0000 Files and hashes: 1: f99iGPoBXQoAdKhEJFGAaij53fU.crl (hash: zqW0oQt1iBGmSvaea3RSDkdc4s2NZDI9U3x+P31ZnDc=) 2: 7FAEDE3A03B411EBBB548A5EC4F9AE02.roa (hash: zYkuWCX1X2lloXdYhvISAPhidi7ivs3H5XjhpAN4fng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173060, serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Validity Not Before: May 30 21:29:15 2025 GMT Not After : Jun 6 21:29:15 2025 GMT Subject: CN=683a232b-e43a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0f:31:19:94:0b:d8:9d:92:ad:2e:02:6f:5b: 50:48:ca:d2:1f:f4:fd:17:b2:db:6d:01:e2:fe:1a: 6b:69:0b:17:bc:38:ff:1e:50:53:4f:73:c6:4c:74: 38:0a:dd:f0:c1:d5:8f:f1:9d:f9:44:73:05:f5:79: cf:97:9f:e8:1a:3f:5c:5d:69:d0:b1:c1:82:23:4d: 24:f3:4e:f5:b4:de:10:ce:f3:75:3e:1c:37:5c:d4: f7:ce:86:c8:d3:4a:57:ca:b9:f0:42:09:d4:c8:12: 5e:71:f6:ac:72:f7:0b:47:c2:23:82:f9:99:f5:a3: 84:05:dd:2b:5e:6c:94:bd:a3:54:a2:6c:6c:58:eb: 75:47:e2:c8:ff:43:5d:36:37:92:59:87:18:e6:73: cd:2f:fd:f9:e9:bd:15:7b:6e:07:07:54:18:3d:b6: 06:38:6c:15:a0:26:bc:e4:3f:ed:bc:12:72:3d:ce: db:bc:c9:16:6e:1a:a2:d7:9b:b4:ed:d8:7a:37:c8: d3:10:33:f4:8a:4f:85:40:ad:64:f7:40:86:de:4c: e7:86:3c:49:04:83:f9:2d:3f:c8:4c:ca:c3:a5:3e: 3a:1f:0b:39:58:3f:08:1c:32:d2:35:45:15:9b:57: 7b:06:9c:e0:91:c8:69:fd:58:58:92:93:41:70:f3: 14:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9F:3F:40:FA:3E:D5:5C:F4:88:0F:89:C4:1F:2A:A1:1D:5A:8D:31 X509v3 Authority Key Identifier: keyid:7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:d9:3d:63:47:62:bc:cb:af:e2:7d:d0:0c:41:fc:f6:f7:f7: 32:c3:ac:c3:0d:20:33:0d:d5:c5:13:64:1c:7d:02:b4:34:fb: 1d:97:33:4b:43:76:90:5c:13:48:02:59:13:43:00:5b:53:11: ca:c1:fc:9f:d9:b6:83:53:9c:6d:15:c6:11:b5:4d:81:0d:1c: 86:1c:71:0b:02:b7:9e:3a:e9:72:df:46:1c:40:0c:34:ce:8d: 29:e8:2a:42:48:c5:f1:d4:b0:39:94:1b:3f:d8:71:5f:7f:12: 55:93:c9:d5:57:5f:6d:5f:f2:eb:e0:db:9c:3d:43:7b:cd:cc: 88:29:f3:f5:3e:2c:61:90:76:89:07:61:89:75:0c:36:f8:40: 36:02:0a:ad:09:bd:8f:4f:7d:37:3e:e4:02:5d:c8:30:52:5f: a1:a9:b1:94:2a:f7:a8:44:89:74:9b:ce:85:6a:45:b2:ef:46: 52:ed:1c:61:70:88:15:4c:43:77:7f:b6:52:17:0d:0f:a6:9f: 6e:34:30:8c:7a:0d:66:50:42:cb:c4:e9:15:22:b8:1f:a5:9d: c0:50:dd:cc:da:a2:8f:bc:6c:9f:a6:2d:60:17:41:5c:3a:6b: ee:2a:40:94:86:4d:a6:1c:ea:6e:97:a4:67:25:05:cb:38:ad: b7:64:aa:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMwNjAxMTAvBgNVBAUTKDdGREY2MjE4RkEwMTVEMEEwMDc0QTg0NDI0NTE4MDZB MjhGOURERjUwHhcNMjUwNTMwMjEyOTE1WhcNMjUwNjA2MjEyOTE1WjAYMRYwFAYD VQQDEw02ODNhMjMyYi1lNDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQ8xGZQL2J2SrS4Cb1tQSMrSH/T9F7LbbQHi/hpraQsXvDj/HlBTT3PGTHQ4 Ct3wwdWP8Z35RHMF9XnPl5/oGj9cXWnQscGCI00k8071tN4QzvN1Phw3XNT3zobI 00pXyrnwQgnUyBJecfascvcLR8IjgvmZ9aOEBd0rXmyUvaNUomxsWOt1R+LI/0Nd NjeSWYcY5nPNL/356b0Ve24HB1QYPbYGOGwVoCa85D/tvBJyPc7bvMkWbhqi15u0 7dh6N8jTEDP0ik+FQK1k90CG3kznhjxJBIP5LT/ITMrDpT46Hws5WD8IHDLSNUUV m1d7Bpzgkchp/VhYkpNBcPMU2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKfP0D6 PtVc9IgPicQfKqEdWo0xMB8GA1UdIwQYMBaAFH/fYhj6AV0KAHSoRCRRgGoo+d31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzA2MC9BNzI1ODZCMDAz QjExMUVCODQzQTc3NTZDNEY5QUUwMi9mOTlpR1BvQlhRb0FkS2hFSkZHQWFpajUz ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y5OWlHUG9CWFFvQWRLaEVKRkdBYWlqNTNmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzA2MC9BNzI1ODZCMDAzQjExMUVCODQzQTc3NTZDNEY5QUUwMi9mOTlpR1BvQlhR b0FkS2hFSkZHQWFpajUzZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw2T1jR2K8y6/ifdAMQfz29/cyw6zDDSAzDdXFE2QcfQK0NPsdlzNL Q3aQXBNIAlkTQwBbUxHKwfyf2baDU5xtFcYRtU2BDRyGHHELAreeOuly30YcQAw0 zo0p6CpCSMXx1LA5lBs/2HFffxJVk8nVV19tX/Lr4NucPUN7zcyIKfP1PixhkHaJ B2GJdQw2+EA2AgqtCb2PT303PuQCXcgwUl+hqbGUKveoRIl0m86FakWy70ZS7Rxh cIgVTEN3f7ZSFw0Ppp9uNDCMeg1mUELLxOkVIrgfpZ3AUN3M2qKPvGyfpi1gF0Fc OmvuKkCUhk2mHOpul6RnJQXLOK23ZKpt -----END CERTIFICATE-----Generated at Sat May 31 15:43:38 2025 by rpki-client