$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: Ct0UktsyfJdS7BKFMP8Cx8Mdv+OV9vm84SwG1PsJ18A= Subject key identifier: 6F:11:8F:D8:49:C0:C1:E5:36:00:25:64:FF:25:DD:81:99:56:1B:A8 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0171 Signing time: Fri 13 Jun 2025 02:46:42 +0000 Manifest this update: Fri 13 Jun 2025 02:46:41 +0000 Manifest next update: Fri 20 Jun 2025 02:46:41 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: p7q/KSkuQAvKufT5tYttOgF0JrwpzoKfM1nCt8lAvDs=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: LEuGWO/AHJLUDwLeABLdjtuQr5+JNGq1678nn2RoAyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Jun 13 02:46:41 2025 GMT Not After : Jun 20 02:46:41 2025 GMT Subject: CN=684b9112-b107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:da:69:9d:0d:a6:ee:a0:04:63:4c:4b:47: 80:53:9c:53:7d:58:d6:c6:62:45:f0:68:f9:d2:35: 1e:92:94:e2:ae:1c:c1:6c:d5:66:dd:06:19:4e:e3: 14:6f:e4:0e:39:5c:4b:5c:9e:9e:69:5f:7c:57:27: 1f:b9:58:4d:b0:00:6e:38:1e:df:ba:66:60:0f:01: 83:2b:ba:cc:50:8e:85:72:cc:44:54:b7:76:a9:83: 1a:5e:53:35:c0:40:67:77:48:e1:6c:86:7b:d3:11: e7:bf:69:79:98:91:bc:60:7c:4c:35:60:4a:61:77: 0d:78:d6:96:dc:72:44:d7:16:98:1e:a2:c9:4e:43: 68:9b:f2:e0:13:2c:94:7f:1f:0a:2c:a0:57:1f:0c: 05:27:bb:b0:61:08:7d:67:6c:f3:cd:12:26:ea:64: f0:71:98:57:0a:95:05:76:43:7f:77:a5:af:ce:ae: 68:b1:de:07:50:6a:08:6e:58:8c:91:9e:25:3e:0f: fe:0c:d5:38:b3:f2:15:ab:37:b3:a7:f5:84:6e:6b: 02:66:e9:f8:3b:ca:26:2f:91:c1:60:fa:76:89:5c: b4:51:87:ef:e7:99:25:08:4a:0d:7a:84:78:e0:c5: ed:f6:e7:fe:3d:13:da:d1:f1:90:56:7e:bb:f2:84: a3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:11:8F:D8:49:C0:C1:E5:36:00:25:64:FF:25:DD:81:99:56:1B:A8 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:14:b3:33:89:77:24:f6:49:ea:cb:20:47:b8:0f:05:ab:43: 13:27:4a:b6:0d:da:30:43:21:96:10:31:6f:d4:66:d0:5f:b0: e8:14:c5:b4:f6:31:be:e7:21:d9:af:e2:4e:6d:b8:70:9d:bb: 5a:89:0f:bd:bb:7c:16:e9:91:2b:2a:6d:27:e8:94:cb:cf:2e: cb:87:9b:ae:24:35:ae:a1:83:72:d8:0f:93:a5:0b:e4:38:45: 25:74:92:be:be:f8:1c:e3:bc:9c:e5:96:51:02:1d:c5:ae:2b: 8b:1a:8f:d8:d9:d1:d0:ce:95:ee:0d:ae:71:b2:3a:b5:b8:ec: 72:38:e9:8a:22:c0:f2:33:69:62:02:af:b3:ba:a8:81:c6:d6: 1d:1b:98:46:66:59:c4:84:1d:44:31:57:6e:05:72:ef:ce:90: 0c:d9:9a:ef:c9:61:4c:5d:16:59:c7:f2:d5:03:21:fe:43:61: 4e:46:b0:ba:67:f1:9f:3a:2e:2d:63:25:40:00:0f:1e:b9:70: 48:f7:a5:6a:df:9e:05:9f:78:d6:e9:ac:c3:be:77:c9:df:04: 21:e6:c7:ac:c5:39:9f:c4:4f:c9:4d:0e:1a:38:ae:8e:98:73: 29:b1:69:f2:5c:5e:d6:d1:0c:22:b5:34:90:8c:b4:b5:7d:78: 38:2a:cc:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwNjEzMDI0NjQxWhcNMjUwNjIwMDI0NjQxWjAYMRYwFAYD VQQDEw02ODRiOTExMi1iMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2jaaZ0Npu6gBGNMS0eAU5xTfVjWxmJF8Gj50jUekpTirhzBbNVm3QYZTuMU b+QOOVxLXJ6eaV98VycfuVhNsABuOB7fumZgDwGDK7rMUI6FcsxEVLd2qYMaXlM1 wEBnd0jhbIZ70xHnv2l5mJG8YHxMNWBKYXcNeNaW3HJE1xaYHqLJTkNom/LgEyyU fx8KLKBXHwwFJ7uwYQh9Z2zzzRIm6mTwcZhXCpUFdkN/d6Wvzq5osd4HUGoIbliM kZ4lPg/+DNU4s/IVqzezp/WEbmsCZun4O8omL5HBYPp2iVy0UYfv55klCEoNeoR4 4MXt9uf+PRPa0fGQVn678oSj6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8Rj9hJ wMHlNgAlZP8l3YGZVhuoMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPFLMziXck9knqyyBHuA8Fq0MTJ0q2DdowQyGWEDFv1GbQX7DoFMW0 9jG+5yHZr+JObbhwnbtaiQ+9u3wW6ZErKm0n6JTLzy7Lh5uuJDWuoYNy2A+TpQvk OEUldJK+vvgc47yc5ZZRAh3FriuLGo/Y2dHQzpXuDa5xsjq1uOxyOOmKIsDyM2li Aq+zuqiBxtYdG5hGZlnEhB1EMVduBXLvzpAM2ZrvyWFMXRZZx/LVAyH+Q2FORrC6 Z/GfOi4tYyVAAA8euXBI96Vq354Fn3jW6azDvnfJ3wQh5sesxTmfxE/JTQ4aOK6O mHMpsWnyXF7W0QwitTSQjLS1fXg4Ksxa -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:04 2025 by rpki-client