$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: TVjOo8fE1fmWB40USba4Ybxhoa8yQ7Oc5IhTVAvK+5I= Subject key identifier: 83:E8:37:BD:88:AB:10:95:E4:A7:E8:9C:8B:4A:13:66:86:22:7A:64 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 04B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 04B3 Signing time: Thu 12 Jun 2025 23:30:14 +0000 Manifest this update: Thu 12 Jun 2025 23:30:13 +0000 Manifest next update: Thu 19 Jun 2025 23:30:13 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: dPuHTs8nYjLR4KoRxcQU147hHWggarrjS+bJn8x1Oj8=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:30:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: Jun 12 23:30:13 2025 GMT Not After : Jun 19 23:30:13 2025 GMT Subject: CN=684b6306-2d7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1e:0d:82:fb:92:60:16:87:9f:88:8f:fc:a7: f7:94:7c:ca:db:c4:9c:22:d4:e2:ae:cd:aa:94:16: e2:08:c3:a1:c7:27:87:ed:a4:a0:02:41:b7:a5:70: cd:b4:d8:32:3c:aa:a7:b1:b2:9e:9a:e1:ef:a3:6b: 2f:4f:b1:a4:18:3a:f9:52:8a:67:34:98:53:e9:52: 95:31:b0:c1:ac:d8:84:c0:9e:84:7f:01:a2:c7:ca: d1:a6:8f:8a:1a:90:87:ac:12:f1:67:49:5f:20:6f: 76:bc:ea:ac:63:85:34:30:6c:71:25:5f:df:59:d8: f6:d1:46:9f:ba:17:3e:10:7f:1e:0e:6c:9d:55:a2: 73:0e:48:46:2b:d6:ee:3d:ec:09:dc:3e:96:f8:9a: ec:dd:2e:42:ef:c8:72:40:40:e3:af:29:2b:61:8c: a4:79:69:aa:23:c3:ec:29:10:94:a3:e5:1b:a9:80: e4:67:c7:61:fd:7f:e1:1b:09:7d:78:a8:20:cf:e0: 67:c1:e4:d4:81:27:91:0b:8f:c1:e0:38:36:7f:ff: 05:10:4a:bc:ff:73:a0:1b:de:58:0d:b9:a1:1e:26: 09:15:fe:a1:23:59:9a:29:5e:e2:7d:ba:bd:d6:3d: 47:69:34:b9:ae:ac:32:2c:ac:fb:01:ca:bc:24:62: 2d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E8:37:BD:88:AB:10:95:E4:A7:E8:9C:8B:4A:13:66:86:22:7A:64 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:81:c0:5d:e1:33:a0:6b:65:27:be:07:1a:3c:8e:3c:a1:00: 8a:4e:86:03:a8:89:e5:87:a4:90:c7:b5:47:dc:6a:62:9f:2c: 36:5a:e9:f3:a3:b3:5c:1a:86:f1:9f:e7:95:6a:ed:38:6a:d9: c5:ce:62:22:73:65:c5:35:a1:8b:dd:f7:ed:32:83:cb:0c:47: 46:53:5d:0f:d6:5b:f5:1c:0d:8e:f1:4b:86:92:84:7c:e1:21: 67:5b:48:37:b0:62:3b:69:ab:95:ab:6c:97:8b:89:a2:e0:5a: c6:7f:8c:a8:fd:5b:6b:aa:12:df:17:97:c3:8f:62:56:4a:02: 83:93:5a:7f:c4:64:1c:54:f7:11:07:14:40:12:93:b3:49:0a: 88:55:cc:c9:a2:2f:74:42:28:de:b5:a5:53:3f:c4:ad:15:bf: 67:5f:0f:85:b5:f1:28:e5:ff:03:8b:d0:03:b3:63:7c:99:5c: 53:c7:a3:be:a1:96:f4:f0:68:55:b0:2d:81:7a:b5:ed:45:54: 18:3c:b3:c4:94:fe:a6:95:21:33:a8:c2:c0:17:f8:3b:f0:18: 78:7b:e5:81:9f:e3:e0:e5:83:00:20:ed:c0:13:7e:c5:9a:c5: 1c:25:77:61:f4:f5:c9:8e:de:8c:e3:8c:9c:d6:f1:b0:68:fb: 68:df:77:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUwNjEyMjMzMDEzWhcNMjUwNjE5MjMzMDEzWjAYMRYwFAYD VQQDEw02ODRiNjMwNi0yZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3h4NgvuSYBaHn4iP/Kf3lHzK28ScItTirs2qlBbiCMOhxyeH7aSgAkG3pXDN tNgyPKqnsbKemuHvo2svT7GkGDr5UopnNJhT6VKVMbDBrNiEwJ6EfwGix8rRpo+K GpCHrBLxZ0lfIG92vOqsY4U0MGxxJV/fWdj20Uafuhc+EH8eDmydVaJzDkhGK9bu PewJ3D6W+Jrs3S5C78hyQEDjrykrYYykeWmqI8PsKRCUo+UbqYDkZ8dh/X/hGwl9 eKggz+BnweTUgSeRC4/B4Dg2f/8FEEq8/3OgG95YDbmhHiYJFf6hI1maKV7ifbq9 1j1HaTS5rqwyLKz7Acq8JGItpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPoN72I qxCV5KfonItKE2aGInpkMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBgcBd4TOga2UnvgcaPI48oQCKToYDqInlh6SQx7VH3Gpinyw2Wunz o7NcGobxn+eVau04atnFzmIic2XFNaGL3fftMoPLDEdGU10P1lv1HA2O8UuGkoR8 4SFnW0g3sGI7aauVq2yXi4mi4FrGf4yo/VtrqhLfF5fDj2JWSgKDk1p/xGQcVPcR BxRAEpOzSQqIVczJoi90QijetaVTP8StFb9nXw+FtfEo5f8Di9ADs2N8mVxTx6O+ oZb08GhVsC2BerXtRVQYPLPElP6mlSEzqMLAF/g78Bh4e+WBn+Pg5YMAIO3AE37F msUcJXdh9PXJjt6M44yc1vGwaPto33dR -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:01 2025 by rpki-client