$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: KbfLFdl4xEhNdtHI+gDSI4CyrTcVFrbMM+2fA0B0y/Q= Subject key identifier: EB:01:8F:21:84:98:03:73:C9:29:B7:9C:96:8D:B9:5F:7C:D7:2C:54 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01A1 Signing time: Fri 13 Jun 2025 02:27:20 +0000 Manifest this update: Fri 13 Jun 2025 02:27:20 +0000 Manifest next update: Fri 20 Jun 2025 02:27:20 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: h4zc3VSTGufy/VeJFRaOzpDp0jmpaPQnq87wSfDqTNQ=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Jun 13 02:27:20 2025 GMT Not After : Jun 20 02:27:20 2025 GMT Subject: CN=684b8c88-8d41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:df:91:6b:20:52:b7:3c:aa:d7:5b:96:31:5f: 79:0e:5b:9f:ee:e7:59:fc:77:9e:03:e2:91:a1:0f: b3:9f:8d:a5:cf:eb:a2:70:01:93:92:af:48:d0:1f: 98:d6:2d:88:a7:14:78:74:e1:19:0a:5e:f2:4b:14: 26:8b:1e:f8:e2:07:c4:e3:45:8b:5c:58:13:22:c0: 1d:3c:36:58:29:cf:37:d7:83:d9:05:54:c1:68:ca: 82:1b:ec:18:20:c3:f9:6f:f0:a4:c8:b7:f6:de:63: 2c:16:e6:57:bc:c0:b5:e9:33:60:7d:58:5c:68:77: 48:14:6a:89:55:5f:8c:a5:a9:63:60:51:76:6f:1e: 34:e8:47:8e:dd:cd:88:66:91:ee:68:9f:49:f4:69: c9:69:09:65:80:6b:a8:5d:ed:56:55:92:47:d7:b7: cd:99:1b:e8:d7:9e:bd:8d:95:58:37:ae:52:8d:fe: 61:e6:fd:50:46:2a:17:93:2d:4c:b8:58:e6:66:0d: 00:3d:6f:a2:ab:b2:a4:3b:4f:fa:b6:93:bd:8d:ff: 44:31:1c:db:b5:7b:4e:c1:30:30:2a:02:73:a2:65: 7b:c3:05:5d:e7:60:06:58:20:cb:0a:58:e7:b0:63: e6:c9:87:79:5a:bd:d5:b4:b1:ed:ba:12:19:85:f3: 05:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:01:8F:21:84:98:03:73:C9:29:B7:9C:96:8D:B9:5F:7C:D7:2C:54 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:41:e5:3a:56:c5:6b:3e:6b:75:58:3b:05:26:05:75:c3:89: 00:a0:7f:2b:2c:63:20:52:6d:d1:f6:d7:1c:88:95:b7:fd:b1: 34:a2:f6:3d:ea:59:12:15:43:79:96:01:f2:c4:e2:4e:05:2a: c2:94:b0:21:f0:9b:f3:74:6a:a6:33:a6:b6:54:64:32:d4:51: 97:15:0f:a6:ee:4e:90:fe:ee:8b:05:0d:9f:cb:57:40:25:b8: b5:b3:4e:ab:79:84:48:c1:12:e7:63:b4:3e:1a:ce:57:be:0d: ed:04:8b:e2:21:a4:80:10:e3:5d:62:53:17:26:25:d0:43:65: 41:97:66:45:cf:81:0d:2c:8a:3b:b6:5a:54:c3:f4:1f:df:db: 4e:c4:fa:00:cd:f8:e4:5b:87:b6:16:aa:d5:49:df:be:6c:5f: 70:9a:79:d8:28:fd:24:63:cd:75:75:9c:09:2e:e9:d9:85:03: 27:0b:e5:a5:e0:4e:d4:08:1d:f1:95:08:c2:d3:6d:5f:a5:1d: 1f:6f:73:d4:0a:e8:57:d8:63:83:86:d8:d3:15:ac:90:33:4f: 83:8d:5f:fa:0e:ed:e1:64:22:2b:9f:8a:ec:dd:54:06:31:80: fd:97:0d:2b:e8:29:42:98:ee:e8:b2:f8:36:5d:49:c4:92:85: e0:1a:5d:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUwNjEzMDIyNzIwWhcNMjUwNjIwMDIyNzIwWjAYMRYwFAYD VQQDEw02ODRiOGM4OC04ZDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd+RayBStzyq11uWMV95Dluf7udZ/HeeA+KRoQ+zn42lz+uicAGTkq9I0B+Y 1i2IpxR4dOEZCl7ySxQmix744gfE40WLXFgTIsAdPDZYKc8314PZBVTBaMqCG+wY IMP5b/CkyLf23mMsFuZXvMC16TNgfVhcaHdIFGqJVV+MpaljYFF2bx406EeO3c2I ZpHuaJ9J9GnJaQllgGuoXe1WVZJH17fNmRvo1569jZVYN65Sjf5h5v1QRioXky1M uFjmZg0APW+iq7KkO0/6tpO9jf9EMRzbtXtOwTAwKgJzomV7wwVd52AGWCDLCljn sGPmyYd5Wr3VtLHtuhIZhfMFxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsBjyGE mANzySm3nJaNuV981yxUMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQQeU6VsVrPmt1WDsFJgV1w4kAoH8rLGMgUm3R9tcciJW3/bE0ovY9 6lkSFUN5lgHyxOJOBSrClLAh8JvzdGqmM6a2VGQy1FGXFQ+m7k6Q/u6LBQ2fy1dA Jbi1s06reYRIwRLnY7Q+Gs5Xvg3tBIviIaSAEONdYlMXJiXQQ2VBl2ZFz4ENLIo7 tlpUw/Qf39tOxPoAzfjkW4e2FqrVSd++bF9wmnnYKP0kY811dZwJLunZhQMnC+Wl 4E7UCB3xlQjC021fpR0fb3PUCuhX2GODhtjTFayQM0+DjV/6Du3hZCIrn4rs3VQG MYD9lw0r6ClCmO7osvg2XUnEkoXgGl2a -----END CERTIFICATE-----Generated at Sat Jun 14 15:02:08 2025 by rpki-client