$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: gYAZc/UgGG3DzrTzep/L1DFfYwtPnh/iEIWax8j4ZpM= Subject key identifier: 33:4E:FC:A5:9E:A7:D8:BD:F8:80:7F:8F:9B:B6:73:91:65:6F:AD:1C Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 019F Signing time: Mon 09 Jun 2025 02:33:11 +0000 Manifest this update: Mon 09 Jun 2025 02:33:11 +0000 Manifest next update: Mon 16 Jun 2025 02:33:11 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: 0Rh8UGdI3VT2Fj4/9mesBG9kdlrhfNDpWaX0X2AGFH4=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 02:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Jun 9 02:33:11 2025 GMT Not After : Jun 16 02:33:11 2025 GMT Subject: CN=684647e7-3d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3e:5f:3f:4a:90:22:a8:b7:6c:70:6e:83:4b: 07:4d:3a:39:9c:73:53:1d:56:6d:46:da:43:05:e9: 07:81:2e:ff:6c:45:2b:4c:a0:27:5d:43:52:4e:cf: f0:14:8d:a7:4f:da:63:67:05:d2:1a:0f:98:9b:a3: 30:29:65:4b:cf:12:ef:23:02:4b:71:05:58:b0:73: 28:a6:84:54:e2:32:74:2e:2f:83:15:aa:50:18:25: ec:d1:ba:86:eb:b1:a9:4f:af:43:62:dc:b8:58:2b: d5:81:7d:59:e3:b7:61:a8:33:07:c2:a1:f1:00:6e: ad:2b:f1:7b:a5:05:92:04:c9:df:73:17:41:68:c6: c7:bb:88:b0:de:44:3d:c3:0d:1b:c3:88:fd:5e:8c: dd:fd:21:1a:f7:71:07:51:a3:cd:8e:7c:42:a9:92: da:87:42:5a:4f:be:9f:3b:58:15:59:6d:88:01:e9: 53:20:04:a3:87:a2:e2:dc:52:7d:36:dc:24:96:d3: 0f:21:d6:88:43:b1:4f:2a:b0:3f:62:ca:19:02:b6: cc:9c:c2:e6:59:df:40:41:50:70:e2:52:ea:c2:f5: ee:4d:89:f5:32:ca:94:a9:10:ae:ca:f4:9d:dc:e2: b1:d8:6b:ce:39:41:84:e3:1e:67:10:4c:b2:08:fc: 9c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:4E:FC:A5:9E:A7:D8:BD:F8:80:7F:8F:9B:B6:73:91:65:6F:AD:1C X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:4c:1e:b4:7a:96:b0:9c:1f:47:20:88:f8:61:fb:5d:22:35: d8:af:1c:f1:86:97:39:66:3b:b1:c3:1a:61:84:f0:7e:0d:e0: c4:58:ad:ed:1f:07:b7:9a:c8:c4:57:75:21:b9:60:88:1e:05: 4e:df:09:26:18:48:20:55:5b:5a:07:2d:06:2d:32:a6:ad:57: 19:4a:f6:9b:2c:f1:e6:27:5e:aa:41:db:5a:cb:97:d4:0c:14: ad:3b:b0:e1:29:63:c8:8f:ce:ed:e1:db:b7:96:77:b7:05:89: 20:20:94:c0:c6:51:a4:5f:09:b8:f5:e1:ce:ac:0c:20:d6:c6: 06:e0:b9:c8:ca:ac:b3:c1:08:88:d4:fe:7b:97:47:cb:5d:00: 6d:d5:cf:10:e5:6c:e6:d2:2e:58:56:16:0a:08:c2:dd:13:33: 07:bb:1b:c0:88:64:b1:8c:2a:18:dc:03:95:a1:19:79:aa:c4: 6b:4c:37:37:23:62:89:05:32:ea:27:35:c4:51:8b:62:50:6b: 87:67:91:d5:c6:8d:d0:30:ab:ce:cc:6f:58:15:6a:33:09:89: 09:13:fc:fc:e5:14:91:11:e4:d6:48:59:f3:64:8a:7f:79:66: 57:16:1a:80:17:0b:91:a7:a3:5f:79:7e:96:9a:56:e3:f2:78: 32:1b:98:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUwNjA5MDIzMzExWhcNMjUwNjE2MDIzMzExWjAYMRYwFAYD VQQDEw02ODQ2NDdlNy0zZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnz5fP0qQIqi3bHBug0sHTTo5nHNTHVZtRtpDBekHgS7/bEUrTKAnXUNSTs/w FI2nT9pjZwXSGg+Ym6MwKWVLzxLvIwJLcQVYsHMopoRU4jJ0Li+DFapQGCXs0bqG 67GpT69DYty4WCvVgX1Z47dhqDMHwqHxAG6tK/F7pQWSBMnfcxdBaMbHu4iw3kQ9 ww0bw4j9Xozd/SEa93EHUaPNjnxCqZLah0JaT76fO1gVWW2IAelTIASjh6Li3FJ9 NtwkltMPIdaIQ7FPKrA/YsoZArbMnMLmWd9AQVBw4lLqwvXuTYn1MsqUqRCuyvSd 3OKx2GvOOUGE4x5nEEyyCPyczwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNO/KWe p9i9+IB/j5u2c5Flb60cMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUTB60epawnB9HIIj4YftdIjXYrxzxhpc5ZjuxwxphhPB+DeDEWK3t Hwe3msjEV3UhuWCIHgVO3wkmGEggVVtaBy0GLTKmrVcZSvabLPHmJ16qQdtay5fU DBStO7DhKWPIj87t4du3lne3BYkgIJTAxlGkXwm49eHOrAwg1sYG4LnIyqyzwQiI 1P57l0fLXQBt1c8Q5Wzm0i5YVhYKCMLdEzMHuxvAiGSxjCoY3AOVoRl5qsRrTDc3 I2KJBTLqJzXEUYtiUGuHZ5HVxo3QMKvOzG9YFWozCYkJE/z85RSREeTWSFnzZIp/ eWZXFhqAFwuRp6NfeX6Wmlbj8ngyG5h1 -----END CERTIFICATE-----Generated at Tue Jun 10 08:26:19 2025 by rpki-client