$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: YgQDqP6VQOjm3AUijnCtlb//PzjdTs9ZkQm2DhT2p/w= Subject key identifier: 3A:BB:08:E7:D4:91:DC:78:51:5A:EB:99:2E:07:49:53:48:F3:D5:41 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01C4 Signing time: Thu 21 Aug 2025 03:08:56 +0000 Manifest this update: Thu 21 Aug 2025 03:08:55 +0000 Manifest next update: Thu 28 Aug 2025 03:08:55 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: Mutupid0+LIkBP9IkA4iNcIzeJefR6Jy+TxTxQXNoQg=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:08:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Aug 21 03:08:55 2025 GMT Not After : Aug 28 03:08:55 2025 GMT Subject: CN=68a68dc7-0f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:55:1a:4e:27:db:fd:f7:c1:2c:00:e7:32:19: 20:f8:8a:b1:85:39:0b:a9:1e:69:af:ba:ed:22:9f: 82:23:d3:a0:1c:c5:27:de:da:6a:b5:52:67:96:b0: 0d:40:23:28:0e:5a:18:91:18:bb:df:7e:60:ea:e1: 8f:c7:d5:a8:0e:10:a2:18:cb:c2:4f:11:f5:e3:f8: a5:64:8c:b9:36:83:fc:91:8f:ea:a0:a8:fa:f3:57: 9a:45:42:16:f7:22:74:5d:12:db:77:92:e4:e9:7d: 9e:86:4e:43:ac:74:87:91:41:78:25:49:0f:ae:fe: 28:23:68:a8:81:41:05:04:4a:cd:d3:24:1c:2e:3b: 13:9e:31:3e:df:ca:ba:4a:5e:06:06:81:86:d5:72: f5:07:fe:b8:d2:37:0b:6b:a6:d5:9a:d7:d7:66:de: 19:2d:8b:07:b0:15:ff:3e:bf:ca:9b:bf:b3:fd:d6: aa:6b:99:81:7e:0a:b1:a3:9a:08:30:e6:c9:7d:41: 74:b3:b8:48:b4:18:25:a9:bc:c1:d0:35:b5:cc:4b: 88:cb:a1:42:df:af:b0:0e:35:4d:0e:c6:31:9a:e9: 49:c0:08:78:1c:4f:a0:dd:7e:d2:2f:04:c4:3e:5d: 90:a7:81:bd:ea:1d:22:cc:d4:c2:92:70:12:b9:a6: c1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:BB:08:E7:D4:91:DC:78:51:5A:EB:99:2E:07:49:53:48:F3:D5:41 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:a2:02:20:c3:75:ff:4f:f6:12:39:01:7f:29:35:bc:6d:1b: ae:a2:c9:e6:30:80:f9:98:32:a1:5a:e6:d9:db:72:44:8a:6d: e1:b8:7d:26:f5:d1:11:fa:ba:50:23:07:40:da:54:a2:57:42: 04:df:44:05:13:40:92:4c:f3:07:74:87:29:dd:6c:08:a1:f4: 85:ed:8d:2f:8c:96:8e:87:44:93:d5:73:49:7d:6e:b8:c1:d4: e8:a4:6c:53:02:a5:99:e8:5a:5c:9c:86:6b:5f:69:05:10:1e: fa:c1:a8:7f:b4:3a:59:f2:69:98:1c:da:51:17:de:e3:cf:6a: 53:69:4a:7c:a9:05:48:4e:4b:9f:26:40:9d:d5:a2:60:ab:7e: 30:11:89:0e:dc:74:4c:d5:76:96:d7:18:73:3f:07:ae:06:ce: 69:06:51:22:00:3c:df:64:55:71:39:7d:75:44:bb:1a:f6:04: 81:3a:50:fe:72:8d:26:79:41:7e:69:fd:1c:b6:52:42:14:60: 1d:2c:d1:7f:85:98:85:33:b5:f3:e3:da:7c:b9:f7:83:e0:e1: 6a:a1:8d:13:78:28:cf:da:88:cc:92:ae:c8:52:43:6c:aa:98: bb:d5:78:24:59:7e:88:3d:05:98:46:fe:e9:ff:0b:60:e8:8d: a3:f5:56:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUwODIxMDMwODU1WhcNMjUwODI4MDMwODU1WjAYMRYwFAYD VQQDEw02OGE2OGRjNy0wZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylUaTifb/ffBLADnMhkg+IqxhTkLqR5pr7rtIp+CI9OgHMUn3tpqtVJnlrAN QCMoDloYkRi7335g6uGPx9WoDhCiGMvCTxH14/ilZIy5NoP8kY/qoKj681eaRUIW 9yJ0XRLbd5Lk6X2ehk5DrHSHkUF4JUkPrv4oI2iogUEFBErN0yQcLjsTnjE+38q6 Sl4GBoGG1XL1B/640jcLa6bVmtfXZt4ZLYsHsBX/Pr/Km7+z/daqa5mBfgqxo5oI MObJfUF0s7hItBglqbzB0DW1zEuIy6FC36+wDjVNDsYxmulJwAh4HE+g3X7SLwTE Pl2Qp4G96h0izNTCknASuabBpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDq7COfU kdx4UVrrmS4HSVNI89VBMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKogIgw3X/T/YSOQF/KTW8bRuuosnmMID5mDKhWubZ23JEim3huH0m 9dER+rpQIwdA2lSiV0IE30QFE0CSTPMHdIcp3WwIofSF7Y0vjJaOh0ST1XNJfW64 wdTopGxTAqWZ6FpcnIZrX2kFEB76wah/tDpZ8mmYHNpRF97jz2pTaUp8qQVITkuf JkCd1aJgq34wEYkO3HRM1XaW1xhzPweuBs5pBlEiADzfZFVxOX11RLsa9gSBOlD+ co0meUF+af0ctlJCFGAdLNF/hZiFM7Xz49p8ufeD4OFqoY0TeCjP2ojMkq7IUkNs qpi71XgkWX6IPQWYRv7p/wtg6I2j9Vao -----END CERTIFICATE-----Generated at Fri Aug 22 16:31:38 2025 by rpki-client