$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: jm3m5MIR/Kf+C0psLpW6OonziPw8cjc0KtJP1vV+Qf0= Subject key identifier: B4:CD:35:1A:65:79:D3:F0:DD:3F:AA:58:2E:33:F0:AD:63:BE:CE:99 Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: 3A Signing time: Fri 13 Jun 2025 06:27:48 +0000 Manifest this update: Fri 13 Jun 2025 06:27:48 +0000 Manifest next update: Fri 20 Jun 2025 06:27:48 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: BZidXT23aEmSYfphbYaQHnAHWqwuoU4ys2jS2xdsmwQ=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: Jun 13 06:27:48 2025 GMT Not After : Jun 20 06:27:48 2025 GMT Subject: CN=684bc4e4-7851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:24:56:69:d2:8f:ad:2f:85:ca:74:0e:08:ed: c0:5a:05:31:63:77:ea:d1:96:6c:1f:69:6a:77:77: 3a:d5:8f:5e:a4:8e:34:cb:45:b2:72:50:42:28:85: dc:49:75:e3:34:4b:f6:d7:5e:79:62:da:ad:44:b2: fb:f7:9b:be:e2:76:f7:f2:5e:41:a0:4f:b7:45:74: dc:8b:f3:f8:84:25:ae:26:11:b0:20:80:58:2e:f2: 23:13:4a:cc:f5:2e:57:54:52:d4:fb:75:9c:e4:c2: a6:b9:24:86:63:c5:e2:ba:69:bc:46:dc:93:e6:24: 24:7d:81:87:69:91:00:c4:49:8c:17:b0:c0:19:c6: 63:c4:f1:a0:ea:35:57:a2:fa:0e:c4:b1:92:f3:8d: 4c:86:92:f3:42:b0:82:78:cc:ad:24:87:26:3a:62: 64:fd:26:8e:20:53:6c:51:41:20:68:5b:74:a9:24: 1c:a1:ab:1b:5f:7a:ec:1d:cf:85:f3:42:bc:9e:03: 3e:a5:73:a7:14:13:12:5f:bd:aa:40:68:21:2d:62: 6d:86:eb:40:a4:24:07:b6:82:ef:a6:99:68:a5:eb: 45:d6:6f:9f:35:1c:fa:de:45:e9:24:45:c6:38:be: fd:e2:6b:2a:5c:ad:f4:1b:3b:0e:1c:e6:9c:06:25: 77:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:CD:35:1A:65:79:D3:F0:DD:3F:AA:58:2E:33:F0:AD:63:BE:CE:99 X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e6:f9:64:17:bf:58:ab:59:39:e1:1a:b6:5d:81:53:32:14: 6f:02:60:68:3d:fd:e4:ce:be:55:40:7c:be:07:60:e2:2d:7f: d1:c2:ae:5b:ea:35:29:c9:a6:ec:e6:71:7e:9e:b7:f7:e0:c4: a6:af:4c:90:75:a5:62:90:56:09:e0:3e:0c:59:ab:3f:9a:b7: f4:ae:2e:65:73:df:37:97:9e:95:36:31:0a:c5:be:38:59:d6: 33:66:1e:fa:b0:46:b9:dd:72:47:60:d4:2a:62:7d:40:4e:04: 5e:1f:6b:1a:98:76:0b:68:84:65:f7:71:5e:0d:f4:f3:b9:95: 50:84:b4:7c:b7:39:e2:f7:a6:7e:de:01:83:6b:9e:8b:08:62: 6a:48:c3:28:78:c0:a2:58:b7:01:66:9a:ca:36:88:20:19:c8: 8f:65:37:71:00:cc:1d:c6:bf:ec:d4:03:54:f2:b4:f8:7d:e1: 07:23:73:60:c8:df:e0:25:61:d1:dd:1f:c2:a1:fa:e3:7e:d5: 46:cd:f2:41:ce:15:c4:85:f7:b4:d1:f4:db:0a:c3:d4:97:2f: 4e:72:52:26:39:10:9c:03:f0:2a:6e:a3:05:4b:0d:3d:23:e7: 95:68:dc:4f:6e:e5:d4:85:11:90:a7:f6:6f:d5:18:4f:9d:a6: 1c:da:18:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTQ3NzExMC8GA1UEBRMoNzI0MUU4RjAzOEI5RjI1MkZCNjFDQTQxQjZBNEZDMTY3 Qjc3NTUyNjAeFw0yNTA2MTMwNjI3NDhaFw0yNTA2MjAwNjI3NDhaMBgxFjAUBgNV BAMTDTY4NGJjNGU0LTc4NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5JFZp0o+tL4XKdA4I7cBaBTFjd+rRlmwfaWp3dzrVj16kjjTLRbJyUEIohdxJ deM0S/bXXnli2q1Esvv3m77idvfyXkGgT7dFdNyL8/iEJa4mEbAggFgu8iMTSsz1 LldUUtT7dZzkwqa5JIZjxeK6abxG3JPmJCR9gYdpkQDESYwXsMAZxmPE8aDqNVei +g7EsZLzjUyGkvNCsIJ4zK0khyY6YmT9Jo4gU2xRQSBoW3SpJByhqxtfeuwdz4Xz QryeAz6lc6cUExJfvapAaCEtYm2G60CkJAe2gu+mmWil60XWb581HPreRekkRcY4 vv3iaypcrfQbOw4c5pwGJXfvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtM01GmV5 0/DdP6pYLjPwrWO+zpkwHwYDVR0jBBgwFoAUckHo8Di58lL7YcpBtqT8Fnt3VSYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNDc3LzZCNzAzNUY4RjNG QzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2tIbzhEaTU4bEw3WWNwQnRxVDhGbnQzVlNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NDc3LzZCNzAzNUY4RjNGQzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxM N1ljcEJ0cVQ4Rm50M1ZTWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIrm+WQXv1irWTnhGrZdgVMyFG8CYGg9/eTOvlVAfL4HYOItf9HCrlvq NSnJpuzmcX6et/fgxKavTJB1pWKQVgngPgxZqz+at/SuLmVz3zeXnpU2MQrFvjhZ 1jNmHvqwRrndckdg1CpifUBOBF4faxqYdgtohGX3cV4N9PO5lVCEtHy3OeL3pn7e AYNrnosIYmpIwyh4wKJYtwFmmso2iCAZyI9lN3EAzB3Gv+zUA1TytPh94Qcjc2DI 3+AlYdHdH8Kh+uN+1UbN8kHOFcSF97TR9NsKw9SXL05yUiY5EJwD8CpuowVLDT0j 55Vo3E9u5dSFEZCn9m/VGE+dphzaGOg= -----END CERTIFICATE-----Generated at Sat Jun 14 19:15:12 2025 by rpki-client