$ rpki-client -vvf rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft File: cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft (raw, json) Hash identifier: FjRdbIg38hdJWNsvoN29kfwwJvO+lP3mJkI3hLk7dww= Subject key identifier: 34:63:8D:DC:90:B0:CC:B1:7B:F4:B4:37:DF:8A:EC:8A:1B:C2:7A:2B Authority key identifier: 72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 Certificate issuer: /CN=A9169411/serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft Manifest number: 026A Signing time: Fri 13 Jun 2025 01:17:40 +0000 Manifest this update: Fri 13 Jun 2025 01:17:39 +0000 Manifest next update: Fri 20 Jun 2025 01:17:39 +0000 Files and hashes: 1: cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl (hash: rk0ClXAJ67uFUZHzsXV1+GMlQfEK4Y0ltzGj01y6FRI=) 2: DD976958C2A611EFBB1B9264C4F9AE02.roa (hash: afDoQTBXFlKBM9yUFVyCep64AS8jLGn8fXLF8BGp1Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:17:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169411, serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Validity Not Before: Jun 13 01:17:39 2025 GMT Not After : Jun 20 01:17:39 2025 GMT Subject: CN=684b7c34-a8ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:be:ed:00:0f:7e:d2:8d:c5:bd:46:06:9e:af: f5:e5:ed:26:da:4e:64:48:ec:b5:f6:ae:ca:ff:4f: 07:1c:82:39:40:a2:e5:b5:78:8f:67:3b:4f:cc:e0: 0c:97:08:66:a8:54:35:54:e1:92:89:50:d1:41:87: 56:b4:bd:d7:a2:4d:b1:aa:8b:61:2e:f5:62:67:fb: 1c:5e:d8:1a:ca:c5:04:6f:cd:00:10:7c:45:76:34: 22:b6:b2:a3:6e:70:05:7a:b5:f4:d0:f6:8e:da:b7: c2:78:2a:e3:36:1b:25:bd:0f:a3:ac:69:18:31:8b: d8:42:19:bd:5b:f2:5c:8a:2e:9d:13:7a:dc:8c:a2: c3:cd:94:1d:10:3d:e7:be:7f:a9:11:32:d2:22:1b: df:44:31:25:91:84:41:c3:ab:b5:d7:22:f8:ea:5d: f0:c8:88:38:da:66:a9:29:29:81:2d:81:c1:b9:94: b5:51:b4:f1:33:bb:ad:1a:c1:1b:04:3f:06:e0:91: ed:60:24:7c:7f:c5:09:b5:ba:3d:64:ab:e2:38:63: 27:37:28:cc:a5:48:23:95:e6:64:5a:1e:52:45:e0: b5:a8:48:9e:82:68:69:aa:e2:d9:56:91:e8:e3:fe: 08:10:84:51:8e:23:4e:d1:14:06:1e:ed:22:a5:5e: 92:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:63:8D:DC:90:B0:CC:B1:7B:F4:B4:37:DF:8A:EC:8A:1B:C2:7A:2B X509v3 Authority Key Identifier: keyid:72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:39:01:36:ff:97:e9:58:ea:3a:63:08:80:19:3b:27:8e:b7: b3:a9:8b:1c:7c:95:8c:b2:02:cd:4f:a8:ab:5f:5c:41:50:75: cc:22:57:22:2d:b5:7d:a5:19:6a:e6:c0:cd:83:85:9b:97:dc: 6a:49:cb:77:ae:55:99:86:99:97:d4:86:12:e7:79:5a:30:ad: 01:a2:6d:81:8a:e5:b4:8a:b0:70:f9:3b:29:71:cb:20:11:fe: a8:29:8b:e7:c1:6b:e1:0d:03:1a:15:26:35:fd:64:1c:93:b1: 41:1d:0b:79:59:b4:84:5d:3d:42:4c:ad:1c:9b:3e:e7:f3:52: 5e:28:41:d4:dc:a8:c7:8a:37:8e:5a:d0:7e:6e:de:f7:b6:cf: d2:a8:38:b8:6a:0f:f2:b1:53:37:7d:27:da:63:40:96:bb:4a: eb:74:aa:1c:65:cc:6f:b9:2f:d3:4d:e7:1f:a1:e7:33:35:ff: 43:bc:85:5e:bd:f5:ee:71:67:67:3c:b8:fa:50:58:52:68:c9: 03:f8:61:ed:c8:bf:c8:70:c6:87:67:3c:af:2b:6a:f8:82:59: 65:42:30:97:3f:ed:5d:d9:05:90:5c:bd:e0:ab:91:25:c7:2e: 20:90:c4:29:a4:d2:9e:95:82:8d:97:21:d0:0b:80:fe:41:96: 8c:af:6e:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0MTExMTAvBgNVBAUTKDcyMDM4QTg4QTYxRDI1QzRGNDA2NTAyNUZDMjZCOENF M0I4QTdBMDIwHhcNMjUwNjEzMDExNzM5WhcNMjUwNjIwMDExNzM5WjAYMRYwFAYD VQQDEw02ODRiN2MzNC1hOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3r7tAA9+0o3FvUYGnq/15e0m2k5kSOy19q7K/08HHII5QKLltXiPZztPzOAM lwhmqFQ1VOGSiVDRQYdWtL3Xok2xqothLvViZ/scXtgaysUEb80AEHxFdjQitrKj bnAFerX00PaO2rfCeCrjNhslvQ+jrGkYMYvYQhm9W/Jcii6dE3rcjKLDzZQdED3n vn+pETLSIhvfRDElkYRBw6u11yL46l3wyIg42mapKSmBLYHBuZS1UbTxM7utGsEb BD8G4JHtYCR8f8UJtbo9ZKviOGMnNyjMpUgjleZkWh5SReC1qEiegmhpquLZVpHo 4/4IEIRRjiNO0RQGHu0ipV6SAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRjjdyQ sMyxe/S0N9+K7IobwnorMB8GA1UdIwQYMBaAFHIDioimHSXE9AZQJfwmuM47inoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQxMS85MTg1M0EwNjE4 QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpjVDBCbEFsX0NhNHpqdUtl Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NnT0tpS1lkSmNUMEJsQWxfQ2E0emp1S2VnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQxMS85MTg1M0EwNjE4QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpj VDBCbEFsX0NhNHpqdUtlZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBOQE2/5fpWOo6YwiAGTsnjrezqYscfJWMsgLNT6irX1xBUHXMIlci LbV9pRlq5sDNg4Wbl9xqSct3rlWZhpmX1IYS53laMK0Bom2BiuW0irBw+Tspccsg Ef6oKYvnwWvhDQMaFSY1/WQck7FBHQt5WbSEXT1CTK0cmz7n81JeKEHU3KjHijeO WtB+bt73ts/SqDi4ag/ysVM3fSfaY0CWu0rrdKocZcxvuS/TTecfoeczNf9DvIVe vfXucWdnPLj6UFhSaMkD+GHtyL/IcMaHZzyvK2r4glllQjCXP+1d2QWQXL3gq5El xy4gkMQppNKelYKNlyHQC4D+QZaMr24E -----END CERTIFICATE-----Generated at Sat Jun 14 17:45:39 2025 by rpki-client