$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: 8yGaFfQ4b6Vi1TQO1zUnboVDYI4imZbZuYO5bT7BRBg= Subject key identifier: FC:48:04:41:B4:19:4E:58:11:99:EE:98:4E:84:18:B4:85:30:98:FF Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0ECD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0EB9 Signing time: Sat 14 Jun 2025 17:36:14 +0000 Manifest this update: Sat 14 Jun 2025 17:36:14 +0000 Manifest next update: Sat 21 Jun 2025 17:36:14 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: 1RoKaiMxinQJV77XH0HrNKztH4UrqvW2tpiy6JRRzE4=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: 6QYV9FQpqrhneDa4DXvOdtP1INWlFJdLfJWnJ4N05bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3789 (0xecd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Jun 14 17:36:14 2025 GMT Not After : Jun 21 17:36:14 2025 GMT Subject: CN=684db30e-01ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:c9:4c:5a:63:2f:c8:42:87:d9:1f:3a:64:c7: 0a:88:f9:ad:17:c7:33:c7:92:cc:cb:0f:49:82:dd: 76:18:3f:fa:b4:0e:6d:55:df:b5:ea:58:0f:c8:db: c5:3e:db:ee:ba:28:12:f2:ef:54:60:79:78:96:7e: a0:06:9f:00:0d:26:9c:15:0b:88:ee:24:1c:23:cf: 73:11:90:eb:84:5a:dc:03:68:cb:b5:23:94:f5:85: 73:27:16:ee:4f:ba:93:d1:40:9c:63:ff:c5:d3:f8: 03:80:9f:2a:a6:c9:16:86:49:30:ee:68:6a:6e:08: 92:b1:63:85:74:43:30:12:89:d2:3a:62:03:28:16: e9:87:d1:e6:43:32:12:b6:02:47:2d:0c:5f:8b:b5: 80:71:81:7d:44:86:ea:a6:2a:ee:73:29:e4:d6:b6: 0e:88:55:73:8d:6c:96:4b:fd:6a:94:9f:60:33:20: 61:a3:ac:1c:b9:55:ae:79:f2:84:a0:31:e7:02:1a: 40:7d:11:a4:6b:36:3a:42:6a:6c:6f:56:77:99:ed: 57:68:62:26:72:5b:37:e8:57:91:0a:08:1a:22:f3: bd:dd:5d:58:39:48:1e:27:8b:7b:55:67:d5:42:89: 51:40:2e:47:73:32:7b:40:0c:95:9b:af:05:34:c0: 66:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:48:04:41:B4:19:4E:58:11:99:EE:98:4E:84:18:B4:85:30:98:FF X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:2d:3f:2a:6d:a4:0f:30:dc:84:d8:65:db:7d:de:54:e7:a8: 58:19:2c:64:dc:71:50:19:d0:3b:52:1a:d5:7c:30:dc:91:a2: 78:6f:3d:15:fb:66:d4:67:a9:c6:13:c1:f1:56:34:bf:57:fd: 40:35:78:58:05:05:ce:d5:62:51:54:b4:c8:d1:fc:83:2b:f2: 2a:74:3d:fc:c0:91:c5:3d:29:61:d6:1f:dd:09:5b:78:38:70: 2e:d2:66:8e:c3:c7:e7:5a:12:ad:ea:81:3f:fc:f4:d9:f1:c2: 86:42:99:d6:ce:75:31:7e:2e:23:6d:5f:5b:62:97:88:b0:e8: ea:a5:96:d8:c6:ff:f7:8c:ac:32:93:6e:e0:a2:2c:ac:cf:23: 0a:40:96:8b:78:24:8e:f0:6d:00:a5:cd:ff:ea:9e:bc:70:7e: 53:e7:e2:7a:5f:60:28:3a:1d:80:f2:c0:fc:61:1b:77:10:d4: 99:b7:33:23:8c:36:06:4c:d1:1c:5c:e9:10:29:7a:7c:63:f3: bf:79:51:a3:94:ff:b5:a2:7d:7a:3f:28:cf:9d:25:c1:8a:a5: d5:bd:84:b9:56:6c:43:e5:33:d4:2e:f1:35:37:72:22:a7:05: f3:fa:e3:1c:49:46:97:da:22:04:6b:ef:dd:5a:74:aa:e9:c7: 56:11:28:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwNjE0MTczNjE0WhcNMjUwNjIxMTczNjE0WjAYMRYwFAYD VQQDEw02ODRkYjMwZS0wMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8slMWmMvyEKH2R86ZMcKiPmtF8czx5LMyw9Jgt12GD/6tA5tVd+16lgPyNvF PtvuuigS8u9UYHl4ln6gBp8ADSacFQuI7iQcI89zEZDrhFrcA2jLtSOU9YVzJxbu T7qT0UCcY//F0/gDgJ8qpskWhkkw7mhqbgiSsWOFdEMwEonSOmIDKBbph9HmQzIS tgJHLQxfi7WAcYF9RIbqpirucynk1rYOiFVzjWyWS/1qlJ9gMyBho6wcuVWuefKE oDHnAhpAfRGkazY6Qmpsb1Z3me1XaGImcls36FeRCggaIvO93V1YOUgeJ4t7VWfV QolRQC5HczJ7QAyVm68FNMBmgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxIBEG0 GU5YEZnumE6EGLSFMJj/MB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBLT8qbaQPMNyE2GXbfd5U56hYGSxk3HFQGdA7UhrVfDDckaJ4bz0V +2bUZ6nGE8HxVjS/V/1ANXhYBQXO1WJRVLTI0fyDK/IqdD38wJHFPSlh1h/dCVt4 OHAu0maOw8fnWhKt6oE//PTZ8cKGQpnWznUxfi4jbV9bYpeIsOjqpZbYxv/3jKwy k27goiyszyMKQJaLeCSO8G0Apc3/6p68cH5T5+J6X2AoOh2A8sD8YRt3ENSZtzMj jDYGTNEcXOkQKXp8Y/O/eVGjlP+1on16PyjPnSXBiqXVvYS5VmxD5TPULvE1N3Ii pwXz+uMcSUaX2iIEa+/dWnSq6cdWESiN -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:08 2025 by rpki-client