$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: JlTRZ5cWuYHlm44J8dcWH66/u3cLU5wJcAlJbM97QDs= Subject key identifier: 2D:4C:7D:1C:DC:E0:2E:DC:5D:61:E3:0E:5E:3C:E2:5F:00:1A:32:2E Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 0112 Signing time: Tue 17 Jun 2025 03:56:28 +0000 Manifest this update: Tue 17 Jun 2025 03:56:27 +0000 Manifest next update: Tue 24 Jun 2025 03:56:27 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: G7TY98/WDcnBAElywMo3LyH5fIf7NNGrmC5kFfZxcEs=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Jun 17 03:56:27 2025 GMT Not After : Jun 24 03:56:27 2025 GMT Subject: CN=6850e76c-03ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e6:62:c2:22:4f:00:04:4f:00:da:d4:44:db: bd:e0:29:30:c1:45:fb:1a:1f:b7:45:fe:a4:54:0f: 3f:e3:bf:d3:37:2c:f2:00:0e:8f:45:b4:5d:0e:4e: 27:18:a1:08:03:c5:48:50:d1:e0:33:97:e1:dc:8f: 72:fa:54:84:76:67:61:92:cf:f7:a1:bb:49:64:89: f0:02:68:22:52:6f:ce:be:3a:a3:c4:25:4b:5c:4f: cd:ee:91:c2:d1:ad:ed:b8:2a:56:eb:6a:17:6a:5e: 16:87:71:aa:01:6d:88:e1:24:f0:4f:ef:ea:67:7f: d9:ff:f3:c3:62:ac:b8:52:1a:22:28:b4:cb:8f:af: d3:fe:c0:3d:ff:da:8d:cd:f2:86:b5:c0:4f:5e:1b: ea:dc:89:d6:9b:67:1c:79:2a:01:2e:fe:87:d6:f1: 25:6c:c3:e4:f2:98:71:6a:4a:61:96:16:70:f3:11: f3:ce:57:72:7e:02:c3:f4:1e:db:99:b0:d8:32:d0: 5a:54:bd:c1:4a:06:d2:4c:9e:a2:cf:f5:df:45:67: 89:b1:a1:72:45:4a:52:94:88:ad:65:4b:85:b1:68: 31:9f:0d:03:45:96:46:82:52:eb:d6:ee:45:02:97: 71:1a:3c:0f:f4:7f:0b:76:43:42:d0:3d:03:6b:ca: 83:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4C:7D:1C:DC:E0:2E:DC:5D:61:E3:0E:5E:3C:E2:5F:00:1A:32:2E X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:49:a0:83:1b:42:cb:72:b1:cb:34:2d:79:6b:12:dc:57:11: 1f:69:34:07:ae:77:7c:36:4b:d8:35:35:cc:72:81:70:ff:49: 0b:8c:36:c7:3f:40:6c:96:a0:2a:ff:be:bf:1f:ef:86:e8:e7: 80:db:a6:22:94:9e:87:99:dc:6d:21:55:1a:52:4c:11:27:8c: 7e:22:82:d1:70:f1:94:27:65:72:b0:78:09:3a:7d:3b:ca:53: ea:8c:53:28:9e:e1:44:0c:d7:53:7d:2a:71:3e:0f:65:ea:e1: 67:c6:ff:c8:80:b3:ad:95:3b:46:f8:96:eb:ff:5c:0c:02:c8: 81:39:80:dc:b9:0f:50:ee:25:07:fc:cc:35:8e:7e:a8:93:9f: a8:8d:aa:4e:98:7f:b9:53:79:81:25:a4:53:e4:81:d9:50:fb: 7b:b6:e6:c7:4a:21:82:34:99:df:fa:f2:68:db:15:41:99:f0: 38:12:57:47:38:2d:76:2f:e2:db:fb:b2:1b:14:6d:00:89:e4: ef:10:1c:b5:e2:25:6d:14:03:b6:8f:83:a3:b5:17:00:6e:cc: 47:8c:81:e5:05:70:5d:75:f0:9b:0c:2c:94:3f:41:0d:db:d9: a0:f4:31:2b:a4:90:e5:ce:99:2d:16:14:05:43:71:52:e2:b3: 87:73:cc:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUwNjE3MDM1NjI3WhcNMjUwNjI0MDM1NjI3WjAYMRYwFAYD VQQDEw02ODUwZTc2Yy0wM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+ZiwiJPAARPANrURNu94CkwwUX7Gh+3Rf6kVA8/47/TNyzyAA6PRbRdDk4n GKEIA8VIUNHgM5fh3I9y+lSEdmdhks/3obtJZInwAmgiUm/OvjqjxCVLXE/N7pHC 0a3tuCpW62oXal4Wh3GqAW2I4STwT+/qZ3/Z//PDYqy4UhoiKLTLj6/T/sA9/9qN zfKGtcBPXhvq3InWm2cceSoBLv6H1vElbMPk8phxakphlhZw8xHzzldyfgLD9B7b mbDYMtBaVL3BSgbSTJ6iz/XfRWeJsaFyRUpSlIitZUuFsWgxnw0DRZZGglLr1u5F ApdxGjwP9H8LdkNC0D0Da8qDUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1MfRzc 4C7cXWHjDl484l8AGjIuMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaSaCDG0LLcrHLNC15axLcVxEfaTQHrnd8NkvYNTXMcoFw/0kLjDbH P0BslqAq/76/H++G6OeA26YilJ6HmdxtIVUaUkwRJ4x+IoLRcPGUJ2VysHgJOn07 ylPqjFMonuFEDNdTfSpxPg9l6uFnxv/IgLOtlTtG+Jbr/1wMAsiBOYDcuQ9Q7iUH /Mw1jn6ok5+ojapOmH+5U3mBJaRT5IHZUPt7tubHSiGCNJnf+vJo2xVBmfA4EldH OC12L+Lb+7IbFG0AieTvEBy14iVtFAO2j4OjtRcAbsxHjIHlBXBddfCbDCyUP0EN 29mg9DErpJDlzpktFhQFQ3FS4rOHc8wS -----END CERTIFICATE-----Generated at Wed Jun 18 05:17:55 2025 by rpki-client