$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: +d45AgzPlp+O2z/AY9LG3oxvo23Wcy6hZcye+Y5ZvUY= Subject key identifier: 05:4F:C6:40:D1:FE:53:C4:4F:49:3D:5D:05:78:1B:AB:8F:85:98:05 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0AFF Signing time: Mon 16 Jun 2025 19:13:03 +0000 Manifest this update: Mon 16 Jun 2025 19:13:03 +0000 Manifest next update: Mon 23 Jun 2025 19:13:03 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: 33zlNTtVowFcDYYfmQS9A+Gh4btURIpimAk0N3lM93Q=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 19:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2822 (0xb06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Jun 16 19:13:03 2025 GMT Not After : Jun 23 19:13:03 2025 GMT Subject: CN=68506cbf-1107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:13:b8:f7:3c:e1:d6:78:95:8e:9d:c6:c3:7c: 56:fa:c7:8d:54:92:4b:03:9c:0a:32:d1:16:a2:b2: ad:ea:04:0b:0f:b2:f0:ab:d0:96:6a:86:01:19:0b: f9:77:7d:a6:c8:0c:49:58:c9:2e:cc:ba:5c:c9:7d: 99:98:6a:30:27:00:85:cf:70:5f:42:b2:4c:e7:f6: 14:7a:db:3a:ff:19:b7:b3:3a:0c:e8:12:68:fc:b2: 7e:79:80:df:93:05:fb:09:2a:09:5f:35:49:74:16: cf:94:b1:94:5a:f3:61:c6:99:db:e7:ad:18:ec:ef: 1a:7e:b0:73:f6:bd:b4:3f:f4:3d:2b:87:44:b6:67: 8b:8f:ad:22:af:8a:8d:4a:0d:74:23:3d:13:8f:93: a7:d9:5e:1a:a6:20:a2:b0:0e:f1:d3:54:6e:94:e3: 96:9b:4f:e9:79:a7:9a:91:6b:d5:aa:63:bf:5e:bb: 33:78:2c:d8:27:17:b1:e7:16:bd:13:0d:8f:a8:88: fb:ad:df:64:e9:42:2b:3e:29:72:1b:cf:de:d9:4a: 42:85:3a:80:88:f7:8a:8a:92:0d:e7:92:7b:4e:1e: 92:9d:0b:15:b6:04:ab:00:c7:f9:c9:ba:ac:4b:2d: fe:7e:a8:77:bb:85:2e:fe:60:ec:ed:41:1f:99:84: f9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4F:C6:40:D1:FE:53:C4:4F:49:3D:5D:05:78:1B:AB:8F:85:98:05 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:90:af:b9:65:4e:4d:23:43:ac:cf:54:e1:d5:31:b4:98:34: 34:40:78:26:64:1e:c7:85:da:2b:3d:ae:e2:12:49:da:7b:d6: 6f:66:0f:63:5a:59:fb:87:5c:4f:8d:de:b0:0e:9b:eb:9f:31: 53:bb:cb:25:3b:6f:17:7b:25:b3:3b:4f:ea:c4:48:17:7f:d0: b2:d1:2f:86:98:20:2c:bb:43:e6:e6:95:4f:0b:60:17:b9:f4: 37:de:e5:52:d5:d3:6a:27:fa:57:bd:56:84:7a:28:5e:fd:14: b1:16:e3:f8:13:70:db:98:42:c1:71:5f:33:48:80:b1:c2:24: d6:1c:e9:53:52:11:66:15:6f:64:50:d8:83:0f:e9:f5:6d:74: de:1c:66:f2:34:90:d6:c6:08:a6:1d:95:92:9b:18:0f:72:06: 1b:26:da:33:a0:7b:ef:e2:1f:b3:8d:ff:a3:cf:80:49:6b:eb: f0:65:15:1f:c8:9c:82:10:d4:f7:db:04:ad:a4:16:0a:d9:ab: 79:c4:a8:29:4b:20:75:40:1f:6e:7e:8d:62:b4:32:54:d4:e2: f2:7e:02:e0:e7:a1:29:8b:42:05:8b:09:b3:f3:36:1b:f6:8b: ba:5c:be:db:67:22:07:b4:95:07:72:a4:87:5c:6b:2e:7d:85: 93:ed:cc:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwNjE2MTkxMzAzWhcNMjUwNjIzMTkxMzAzWjAYMRYwFAYD VQQDEw02ODUwNmNiZi0xMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BO49zzh1niVjp3Gw3xW+seNVJJLA5wKMtEWorKt6gQLD7Lwq9CWaoYBGQv5 d32myAxJWMkuzLpcyX2ZmGowJwCFz3BfQrJM5/YUets6/xm3szoM6BJo/LJ+eYDf kwX7CSoJXzVJdBbPlLGUWvNhxpnb560Y7O8afrBz9r20P/Q9K4dEtmeLj60ir4qN Sg10Iz0Tj5On2V4apiCisA7x01RulOOWm0/peaeakWvVqmO/XrszeCzYJxex5xa9 Ew2PqIj7rd9k6UIrPilyG8/e2UpChTqAiPeKipIN55J7Th6SnQsVtgSrAMf5ybqs Sy3+fqh3u4Uu/mDs7UEfmYT50QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVPxkDR /lPET0k9XQV4G6uPhZgFMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNkK+5ZU5NI0Osz1Th1TG0mDQ0QHgmZB7HhdorPa7iEknae9ZvZg9j Wln7h1xPjd6wDpvrnzFTu8slO28XeyWzO0/qxEgXf9Cy0S+GmCAsu0Pm5pVPC2AX ufQ33uVS1dNqJ/pXvVaEeihe/RSxFuP4E3DbmELBcV8zSICxwiTWHOlTUhFmFW9k UNiDD+n1bXTeHGbyNJDWxgimHZWSmxgPcgYbJtozoHvv4h+zjf+jz4BJa+vwZRUf yJyCENT32wStpBYK2at5xKgpSyB1QB9ufo1itDJU1OLyfgLg56Epi0IFiwmz8zYb 9ou6XL7bZyIHtJUHcqSHXGsufYWT7cxX -----END CERTIFICATE-----Generated at Tue Jun 17 06:26:22 2025 by rpki-client