$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: hsxm9rK5ZXYmkaXP8r8S/mR6hFXnKbpK88PgXH0fipk= Subject key identifier: 54:8C:59:F0:58:DD:D9:A0:C8:9A:1F:B1:87:76:0C:D9:2E:AB:D7:2A Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 01A9 Signing time: Sun 15 Jun 2025 02:30:51 +0000 Manifest this update: Sun 15 Jun 2025 02:30:51 +0000 Manifest next update: Sun 22 Jun 2025 02:30:51 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: 4/oVcD5yPEm46Ci/qGlAvSwE+SL4uJUPU8mqMxDykSI=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Jun 15 02:30:51 2025 GMT Not After : Jun 22 02:30:51 2025 GMT Subject: CN=684e305b-95b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:79:3f:a2:4e:0d:e6:41:bd:33:f1:a7:60:eb: c0:9f:b6:51:73:01:fa:9b:34:e3:75:69:d5:a8:c7: 8e:38:07:03:be:14:8f:ba:fc:66:5a:01:53:4e:cb: c7:04:f3:d7:50:b9:9a:97:8c:0b:d2:14:43:f2:65: 97:fc:12:75:3f:a9:ea:cd:2c:a7:91:9c:19:8b:e6: 27:03:42:99:10:97:04:71:4b:20:fd:0a:9b:06:56: db:78:63:9e:24:89:c8:47:98:1e:78:9a:cf:bd:2e: 08:25:cd:b3:69:67:b1:ba:03:09:f3:65:d1:4c:b2: 99:60:6b:27:ed:e1:36:4f:9f:9b:6b:88:24:f0:c1: 81:6a:6b:98:c0:34:ae:1e:3e:7d:f5:24:d3:fd:21: be:59:c3:cb:74:38:69:3e:b7:4b:d0:d4:9b:a5:74: eb:5f:38:51:6d:87:ac:d6:87:30:48:9e:cf:48:f4: a6:7e:7a:2a:e5:2a:46:f2:27:97:c3:c5:4c:ee:44: 3e:98:fa:7b:0f:aa:91:7a:7d:ff:2f:a5:e7:20:71: a2:b6:3a:cd:5c:e5:ec:e1:eb:87:0d:2e:bd:06:26: 55:f7:f0:23:3d:e7:f4:d2:30:a7:0a:b9:88:84:ec: 48:88:de:50:07:44:84:16:85:78:c9:9c:87:98:02: c4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:8C:59:F0:58:DD:D9:A0:C8:9A:1F:B1:87:76:0C:D9:2E:AB:D7:2A X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:13:b2:28:45:26:40:5e:89:7f:a5:d4:b2:e2:ac:6b:46:1c: f6:a4:a8:4b:4b:6b:5f:c4:33:2b:24:39:28:b1:c7:ba:ba:9b: 4d:76:e8:36:99:ce:45:c3:73:f5:74:15:ed:7b:68:c8:fc:5a: 53:10:70:83:75:d5:cf:29:75:4a:35:44:0b:31:2b:21:06:8f: a6:b3:1e:41:93:3d:19:1c:3d:e3:9d:7e:bb:e0:4c:1f:a6:ed: 2b:45:68:bc:ac:39:9b:8a:e7:86:c7:ee:b0:c6:dc:f0:18:17: 7c:4e:b8:69:fd:96:27:d5:3b:e3:20:ef:33:ed:49:a5:58:cd: 70:3b:fd:c0:71:40:18:a1:27:92:5b:b8:b9:13:24:4e:c8:19: b0:be:36:10:75:32:3d:f9:f6:51:ca:7b:7c:7e:45:2c:73:79: f7:fd:6c:15:bb:07:e2:dc:c9:4c:6a:fd:83:40:10:2a:37:4d: 1b:48:0b:2e:c3:1f:56:ea:b6:5d:56:c1:1c:7d:d2:10:04:dc: e2:96:7a:39:b9:b3:34:53:da:b0:db:fd:79:e9:60:37:dd:e7: 35:32:92:67:03:3b:f4:1e:ce:e1:e1:b1:a6:e3:d8:57:8c:f7: 0c:15:f9:8e:1a:0c:df:72:57:d7:e1:b5:33:5d:3e:cb:8e:dd: aa:65:62:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUwNjE1MDIzMDUxWhcNMjUwNjIyMDIzMDUxWjAYMRYwFAYD VQQDEw02ODRlMzA1Yi05NWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Hk/ok4N5kG9M/GnYOvAn7ZRcwH6mzTjdWnVqMeOOAcDvhSPuvxmWgFTTsvH BPPXULmal4wL0hRD8mWX/BJ1P6nqzSynkZwZi+YnA0KZEJcEcUsg/QqbBlbbeGOe JInIR5geeJrPvS4IJc2zaWexugMJ82XRTLKZYGsn7eE2T5+ba4gk8MGBamuYwDSu Hj599STT/SG+WcPLdDhpPrdL0NSbpXTrXzhRbYes1ocwSJ7PSPSmfnoq5SpG8ieX w8VM7kQ+mPp7D6qRen3/L6XnIHGitjrNXOXs4euHDS69BiZV9/AjPef00jCnCrmI hOxIiN5QB0SEFoV4yZyHmALEtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSMWfBY 3dmgyJofsYd2DNkuq9cqMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuE7IoRSZAXol/pdSy4qxrRhz2pKhLS2tfxDMrJDkosce6uptNdug2 mc5Fw3P1dBXte2jI/FpTEHCDddXPKXVKNUQLMSshBo+msx5Bkz0ZHD3jnX674Ewf pu0rRWi8rDmbiueGx+6wxtzwGBd8Trhp/ZYn1TvjIO8z7UmlWM1wO/3AcUAYoSeS W7i5EyROyBmwvjYQdTI9+fZRynt8fkUsc3n3/WwVuwfi3MlMav2DQBAqN00bSAsu wx9W6rZdVsEcfdIQBNzilno5ubM0U9qw2/156WA33ec1MpJnAzv0Hs7h4bGm49hX jPcMFfmOGgzfclfX4bUzXT7Ljt2qZWJK -----END CERTIFICATE-----Generated at Sun Jun 15 10:18:27 2025 by rpki-client