$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: aRPeNToQAeM1DFCjuti8GHG4qOSdJ/odJ8264Ktagp4= Subject key identifier: FC:70:2D:DC:C8:C4:72:2C:2A:D5:A7:66:DF:3A:87:D3:D3:A2:FE:2F Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0CAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0C9E Signing time: Thu 12 Jun 2025 18:01:27 +0000 Manifest this update: Thu 12 Jun 2025 18:01:26 +0000 Manifest next update: Thu 19 Jun 2025 18:01:26 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: kjvVVN636QNwCr0ynZNrSfYot1Db2PUdpJqxmGpLkI8=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Jun 12 18:01:26 2025 GMT Not After : Jun 19 18:01:26 2025 GMT Subject: CN=684b15f7-2ad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:70:94:87:a8:0e:dc:58:a4:91:ce:d7:1d:1a: 6b:b2:ac:8f:99:15:87:8c:8c:d6:b3:02:22:9f:22: e5:66:2f:29:fd:3b:bf:f2:bf:07:7f:b6:b4:6a:33: 0f:27:ba:77:01:4b:d4:fc:1e:97:6e:dd:01:ef:8e: 69:d9:96:f8:ad:df:c7:b2:10:44:9a:16:30:03:56: f6:91:75:27:1a:8f:dd:d1:b0:91:e5:56:c4:f8:39: e6:36:f3:e7:53:2d:24:e2:c8:9a:1b:f1:e4:6e:fe: 90:83:42:a6:72:e1:6b:3d:14:ec:88:ac:46:2c:c9: b7:45:80:42:d9:34:a6:4a:a0:cf:b4:88:27:1b:69: 95:f3:af:5d:7a:8b:48:cf:2a:3c:8b:b9:b9:8b:d5: 15:78:63:40:2f:a1:db:ac:40:ef:c6:fb:2a:25:ad: f8:4e:75:c8:2e:e0:87:b4:04:af:23:41:8b:69:37: 87:4e:73:08:e1:f8:23:10:05:9d:43:39:9f:83:a4: d0:d4:8d:31:c4:ff:cd:53:8d:9f:06:d7:de:db:74: 2c:b6:49:8a:4b:89:aa:4d:2e:59:54:02:2e:a3:87: 60:5b:e7:73:76:a2:0a:56:0b:f9:13:52:02:7a:61: e4:bf:2b:38:87:1f:4a:28:25:5f:98:30:ea:81:23: 01:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:70:2D:DC:C8:C4:72:2C:2A:D5:A7:66:DF:3A:87:D3:D3:A2:FE:2F X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:e4:e5:ff:1a:71:3b:43:fe:55:cb:be:e0:55:b2:7e:e1:12: 98:d3:07:ae:54:7e:18:1b:fa:20:ce:17:6a:e0:5f:13:9e:ea: 36:fc:4b:15:7c:47:43:02:44:16:7e:14:4e:e3:80:2c:9e:63: 23:87:ed:34:21:94:22:7c:aa:3f:aa:f0:95:b4:1e:ff:8b:e7: 28:3d:b7:20:8d:8a:9e:c3:fe:6c:af:af:9c:76:01:09:07:eb: 23:e0:e5:c4:0e:7d:fd:2d:9e:aa:1c:74:a4:f7:dc:c5:26:3e: 45:59:0a:f0:76:e2:c8:80:f6:2c:99:f8:2d:ad:68:80:36:dd: a3:d4:37:5e:1d:c1:75:e2:41:c9:62:a4:ce:76:ff:84:0f:32: 52:0d:32:64:39:f3:3b:b3:76:23:44:ee:9e:a6:40:b0:24:8a: dc:c0:2b:3d:42:a7:3c:e7:bf:4c:b2:56:d1:f5:11:29:55:58: 06:28:7c:08:f1:ef:a9:ca:fa:81:f1:dc:22:74:72:e7:2e:2b: a5:4f:d6:66:ff:45:b3:44:48:c6:50:95:bd:98:33:f9:44:11: 35:b7:d6:3e:9c:c8:f0:73:ad:e2:78:4c:c7:27:db:3d:eb:6a: d4:e4:e0:0f:0c:61:e6:69:39:d7:b6:7a:a4:68:d5:ef:e9:d5: b2:dc:70:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUwNjEyMTgwMTI2WhcNMjUwNjE5MTgwMTI2WjAYMRYwFAYD VQQDEw02ODRiMTVmNy0yYWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73CUh6gO3Fikkc7XHRprsqyPmRWHjIzWswIinyLlZi8p/Tu/8r8Hf7a0ajMP J7p3AUvU/B6Xbt0B745p2Zb4rd/HshBEmhYwA1b2kXUnGo/d0bCR5VbE+DnmNvPn Uy0k4siaG/Hkbv6Qg0KmcuFrPRTsiKxGLMm3RYBC2TSmSqDPtIgnG2mV869deotI zyo8i7m5i9UVeGNAL6HbrEDvxvsqJa34TnXILuCHtASvI0GLaTeHTnMI4fgjEAWd Qzmfg6TQ1I0xxP/NU42fBtfe23QstkmKS4mqTS5ZVAIuo4dgW+dzdqIKVgv5E1IC emHkvys4hx9KKCVfmDDqgSMB8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxwLdzI xHIsKtWnZt86h9PTov4vMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA5OX/GnE7Q/5Vy77gVbJ+4RKY0weuVH4YG/ogzhdq4F8Tnuo2/EsV fEdDAkQWfhRO44AsnmMjh+00IZQifKo/qvCVtB7/i+coPbcgjYqew/5sr6+cdgEJ B+sj4OXEDn39LZ6qHHSk99zFJj5FWQrwduLIgPYsmfgtrWiANt2j1DdeHcF14kHJ YqTOdv+EDzJSDTJkOfM7s3YjRO6epkCwJIrcwCs9Qqc8579MslbR9REpVVgGKHwI 8e+pyvqB8dwidHLnLiulT9Zm/0WzREjGUJW9mDP5RBE1t9Y+nMjwc63ieEzHJ9s9 62rU5OAPDGHmaTnXtnqkaNXv6dWy3HAg -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:17 2025 by rpki-client