$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: iJyCdvm9Q+Go0NKDTFwPfvX4Gr6bu0KC5o6EuLCLUb4= Subject key identifier: B5:7B:74:9A:93:83:9A:17:43:C6:01:95:23:33:A9:90:92:2B:A2:DB Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 04F6 Signing time: Tue 10 Jun 2025 23:37:57 +0000 Manifest this update: Tue 10 Jun 2025 23:37:56 +0000 Manifest next update: Tue 17 Jun 2025 23:37:56 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: mSEdcVVXpU7Tfg/Eza9XErRnJQjBDwJ0q4y0N4e37J4=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: 9is5aeB2FzFVh9EnamHZGKMz2wLecoiTResPsgf3D2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 23:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: Jun 10 23:37:56 2025 GMT Not After : Jun 17 23:37:56 2025 GMT Subject: CN=6848c1d5-cb04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a9:16:b4:01:b1:e6:7c:6e:0b:22:1d:54:82: b2:c2:06:f9:8b:6d:a0:4a:e4:d7:d0:b8:ae:1b:14: 64:b1:97:ca:43:da:66:5f:b6:c4:7a:ab:33:25:24: 38:7b:de:fa:57:7d:f8:8d:b0:b9:22:b4:90:9d:4e: 7c:2e:68:e0:06:cb:ce:78:49:f2:8d:3b:00:c5:05: b4:6e:1e:95:2d:53:4f:e1:f1:03:27:7a:bb:ef:35: 44:2b:70:2c:be:2f:96:e4:3d:2e:97:c2:a3:65:0d: a2:45:a2:1f:57:e8:3a:e7:f6:12:f6:57:f9:b3:0e: 33:ea:a3:b3:70:8f:1c:72:4e:9f:19:45:9d:fa:b2: 54:ae:d5:e1:61:30:87:94:79:3c:3d:5a:7a:12:37: 6f:84:ae:1b:17:c2:f5:4d:80:58:42:33:61:7f:81: 16:40:8d:2b:86:cd:92:8f:09:fe:79:42:bf:f7:84: 6c:11:b6:a5:e5:49:2b:e5:52:8d:98:0b:1c:c4:15: 57:94:b8:0d:bb:8c:89:5d:68:c0:a0:d9:93:d3:02: 4f:05:30:59:9a:53:8b:6c:43:ed:ff:22:42:cf:da: d3:ef:a7:0a:14:d9:54:19:cd:a9:da:c2:70:ca:39: 10:89:2d:85:64:c9:2e:71:00:7e:59:9c:5b:33:ed: 92:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:7B:74:9A:93:83:9A:17:43:C6:01:95:23:33:A9:90:92:2B:A2:DB X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:26:23:19:f5:73:00:11:2c:b4:34:e1:58:4c:4c:0c:d8:bb: c7:89:20:00:60:17:1f:d5:1c:42:f3:9b:2f:8f:e6:40:aa:07: 68:70:0a:bf:cb:35:64:96:2d:b8:5a:30:57:d1:df:b2:dd:96: 8b:93:21:9b:87:7b:2f:c6:6a:5a:5a:20:31:df:d7:24:48:af: 8e:32:7d:77:64:6b:b7:87:47:56:be:ce:52:5f:9e:d9:c2:14: 9f:85:37:a7:4f:49:6c:67:2f:93:2c:2a:54:e9:f7:0c:e8:02: b3:d2:ed:85:f7:ed:b4:8e:71:69:bc:7b:81:b8:b6:be:da:4e: 16:39:32:87:e5:8a:52:da:06:de:05:47:86:59:4d:27:71:f0: 36:7d:17:d3:f2:c0:75:3b:ba:66:d1:f6:89:fa:37:65:60:76: 33:dd:0a:9c:33:87:83:36:a3:27:e1:00:97:be:13:97:7e:ed: a2:b9:a5:03:b8:b4:9f:f8:ce:f8:72:c6:08:a1:75:f0:ee:f4: 90:1a:b7:97:63:95:bf:f4:90:ef:68:b7:54:c0:8f:b3:17:a5: b6:b3:9a:e2:00:34:3a:58:38:b0:a9:40:63:08:b9:fb:ab:94: 6b:5e:0b:c4:ff:2f:b4:af:6e:80:90:2d:39:2c:52:c5:65:d2: 02:1b:e2:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjUwNjEwMjMzNzU2WhcNMjUwNjE3MjMzNzU2WjAYMRYwFAYD VQQDEw02ODQ4YzFkNS1jYjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzakWtAGx5nxuCyIdVIKywgb5i22gSuTX0LiuGxRksZfKQ9pmX7bEeqszJSQ4 e976V334jbC5IrSQnU58LmjgBsvOeEnyjTsAxQW0bh6VLVNP4fEDJ3q77zVEK3As vi+W5D0ul8KjZQ2iRaIfV+g65/YS9lf5sw4z6qOzcI8cck6fGUWd+rJUrtXhYTCH lHk8PVp6EjdvhK4bF8L1TYBYQjNhf4EWQI0rhs2Sjwn+eUK/94RsEbal5Ukr5VKN mAscxBVXlLgNu4yJXWjAoNmT0wJPBTBZmlOLbEPt/yJCz9rT76cKFNlUGc2p2sJw yjkQiS2FZMkucQB+WZxbM+2SBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLV7dJqT g5oXQ8YBlSMzqZCSK6LbMB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7JiMZ9XMAESy0NOFYTEwM2LvHiSAAYBcf1RxC85svj+ZAqgdocAq/ yzVkli24WjBX0d+y3ZaLkyGbh3svxmpaWiAx39ckSK+OMn13ZGu3h0dWvs5SX57Z whSfhTenT0lsZy+TLCpU6fcM6AKz0u2F9+20jnFpvHuBuLa+2k4WOTKH5YpS2gbe BUeGWU0ncfA2fRfT8sB1O7pm0faJ+jdlYHYz3QqcM4eDNqMn4QCXvhOXfu2iuaUD uLSf+M74csYIoXXw7vSQGreXY5W/9JDvaLdUwI+zF6W2s5riADQ6WDiwqUBjCLn7 q5RrXgvE/y+0r26AkC05LFLFZdICG+JW -----END CERTIFICATE-----Generated at Thu Jun 12 19:26:47 2025 by rpki-client