$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: bNxutRK4a98Fl0ZgepHG8OAnEmupICz5E3VRsvjdUmk= Subject key identifier: F3:CC:52:EE:9D:36:56:24:BA:48:0B:63:BC:D7:C4:09:7E:1D:90:44 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0503 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 04FF Signing time: Thu 12 Jun 2025 23:15:28 +0000 Manifest this update: Thu 12 Jun 2025 23:15:28 +0000 Manifest next update: Thu 19 Jun 2025 23:15:28 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: DS0GK944qF+APEyzIEjFkx6EdVH2D3oYLMTrBuguR5w=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1283 (0x503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Jun 12 23:15:28 2025 GMT Not After : Jun 19 23:15:28 2025 GMT Subject: CN=684b5f90-9398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4a:3d:01:c2:11:1e:53:a0:d1:f8:ad:41:1b: d9:fb:99:7c:3a:7d:39:97:46:f5:18:ef:b4:0e:28: ee:c5:99:d7:77:a1:2a:1b:68:04:e3:c8:5e:61:d4: 47:74:8c:cc:ac:bb:ce:f5:21:cc:60:a5:73:96:aa: a8:ad:87:7a:2e:a7:a5:01:8b:d1:1f:d3:01:75:5e: 25:f5:eb:0b:7d:17:23:08:74:87:23:a3:d9:49:c0: 02:4b:64:25:04:81:1c:6d:b0:70:3d:28:c0:fa:5c: 80:78:31:94:f5:e8:8b:a4:38:6c:ef:98:52:08:e2: 88:00:4e:c8:94:d0:16:7c:d4:80:68:ca:1b:95:e2: 59:50:87:d8:84:31:c9:a3:b9:f9:9f:96:15:b1:e6: 0b:9c:0f:28:32:d7:75:a8:d8:3f:72:cd:81:b1:72: 6b:ef:52:4e:81:0a:4c:ec:4a:79:ee:95:a8:d6:c2: 0d:f5:49:f8:e7:6b:73:db:48:89:31:c9:e4:8a:bd: 11:4d:d3:f8:2d:63:55:41:38:f8:7c:b5:6a:73:98: 96:d9:c6:58:c7:a1:c0:5e:93:f3:97:d4:e1:3a:35: 87:4c:aa:71:0c:36:a2:26:d2:27:d6:3d:d7:e9:35: 34:7c:8e:4e:a3:3a:c1:91:8c:f4:42:b6:25:d0:72: 4a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CC:52:EE:9D:36:56:24:BA:48:0B:63:BC:D7:C4:09:7E:1D:90:44 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:74:d4:ae:a9:47:0f:b9:fb:a5:7c:74:c3:32:ed:f0:fc:3c: 30:67:90:af:4f:df:ee:19:9b:ed:65:07:77:1a:9f:51:b0:21: 46:87:31:44:44:8e:ec:97:5d:b0:f9:1b:9e:41:18:68:04:42: d6:a2:66:92:5d:29:d7:13:b3:9e:5c:df:e6:d3:df:94:0b:ad: 64:0d:b2:c3:49:5a:db:7a:07:03:38:ce:d1:21:e9:6a:df:0f: ef:09:58:6b:47:c4:0a:f3:77:4d:9b:de:dc:db:64:15:6a:4b: 96:cd:1b:a3:3b:36:aa:a3:a8:e6:ef:10:de:fe:01:0c:dc:86: 99:81:59:46:a8:4f:8e:d1:24:2b:d8:99:fb:62:16:4f:e8:06: 3d:58:09:c6:ec:87:ca:b5:c9:00:f9:be:5b:2f:fa:b2:18:11: 73:66:e6:87:07:e0:66:90:9a:91:96:0e:ae:7e:b3:fc:f2:04: 45:9d:90:ed:9c:e2:0d:7e:27:4b:37:78:33:4b:59:4d:e4:5e: 24:7c:bd:93:b9:66:e9:5f:bf:01:28:e2:72:5d:59:b4:94:52: 11:79:0c:3b:d5:cc:bb:cc:ee:9f:f9:af:61:7d:7e:39:89:19: 7c:30:42:f3:61:94:5e:7a:19:a3:bc:61:b8:21:36:38:6c:c7: 82:0f:d9:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwNjEyMjMxNTI4WhcNMjUwNjE5MjMxNTI4WjAYMRYwFAYD VQQDEw02ODRiNWY5MC05Mzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArko9AcIRHlOg0fitQRvZ+5l8On05l0b1GO+0DijuxZnXd6EqG2gE48heYdRH dIzMrLvO9SHMYKVzlqqorYd6LqelAYvRH9MBdV4l9esLfRcjCHSHI6PZScACS2Ql BIEcbbBwPSjA+lyAeDGU9eiLpDhs75hSCOKIAE7IlNAWfNSAaMobleJZUIfYhDHJ o7n5n5YVseYLnA8oMtd1qNg/cs2BsXJr71JOgQpM7Ep57pWo1sIN9Un452tz20iJ Mcnkir0RTdP4LWNVQTj4fLVqc5iW2cZYx6HAXpPzl9ThOjWHTKpxDDaiJtIn1j3X 6TU0fI5OozrBkYz0QrYl0HJK1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPMUu6d NlYkukgLY7zXxAl+HZBEMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVdNSuqUcPufulfHTDMu3w/DwwZ5CvT9/uGZvtZQd3Gp9RsCFGhzFE RI7sl12w+RueQRhoBELWomaSXSnXE7OeXN/m09+UC61kDbLDSVrbegcDOM7RIelq 3w/vCVhrR8QK83dNm97c22QVakuWzRujOzaqo6jm7xDe/gEM3IaZgVlGqE+O0SQr 2Jn7YhZP6AY9WAnG7IfKtckA+b5bL/qyGBFzZuaHB+BmkJqRlg6ufrP88gRFnZDt nOINfidLN3gzS1lN5F4kfL2TuWbpX78BKOJyXVm0lFIReQw71cy7zO6f+a9hfX45 iRl8MELzYZReehmjvGG4ITY4bMeCD9lc -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:17 2025 by rpki-client