$ rpki-client -vvf rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft File: xVGHsAsaczdfhFaIX2oQfuHZNc8.mft (raw, json) Hash identifier: nBglMV6UKrMencJef4c+F52gJMYSKUyvgAGgdGN/QAY= Subject key identifier: 58:DE:40:79:6B:E9:F0:04:AF:ED:DF:CD:97:8A:71:B1:4D:35:DF:61 Authority key identifier: C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF Certificate issuer: /CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft Manifest number: E9 Signing time: Fri 13 Jun 2025 04:24:30 +0000 Manifest this update: Fri 13 Jun 2025 04:24:30 +0000 Manifest next update: Fri 20 Jun 2025 04:24:30 +0000 Files and hashes: 1: xVGHsAsaczdfhFaIX2oQfuHZNc8.crl (hash: uehbPG9zSbBW2F9auAykcD/BFpmaJXUuN2OuLdxc6uQ=) 2: C9FDEC12E82411EE81065223C4F9AE02.roa (hash: w8SNcu2W86NVWJqOd27to5fWU6al9qmk5VnBP7mMOjs=) 3: EF1E7F70E82411EE9005BA2DC4F9AE02.roa (hash: q12pisfHJtoL9XkqG0on+CXyPl8Ax23nksmjhCAQXBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:24:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173B29, serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Validity Not Before: Jun 13 04:24:30 2025 GMT Not After : Jun 20 04:24:30 2025 GMT Subject: CN=684ba7fe-27aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a8:e9:0c:be:8f:7a:9d:cb:40:b9:e9:55:e7: 4c:9a:bc:7e:49:23:a8:a5:11:98:f3:23:76:a5:97: 0c:d4:5e:8f:ca:b0:0a:49:9d:4b:61:90:d3:78:83: 94:db:c6:56:7e:d9:f9:33:f1:a4:1b:38:45:bd:dc: c4:44:1d:d6:80:00:0c:50:10:fb:7e:fa:1f:ed:8f: 45:66:61:26:e7:e1:8d:69:1e:82:0d:79:ce:c0:0e: 5e:91:e7:eb:64:bd:d5:05:45:d4:68:f9:9c:59:a3: 2b:53:87:88:17:8f:31:ed:b5:5f:8b:e9:f0:48:74: 3f:97:df:68:51:93:5c:3e:c4:78:4d:8a:c5:4b:a9: f2:b7:39:9e:bb:95:92:0c:2a:a2:e4:a1:ad:ba:11: 71:e3:2b:47:4d:c3:a8:0e:c2:b2:90:62:33:83:71: 49:3f:39:c1:4f:f8:78:7a:fc:2d:e5:6a:7b:c8:01: 37:c2:51:3d:6e:c7:43:e3:26:e6:2b:1f:b2:69:99: fe:f1:6f:c6:93:03:d6:5f:d5:03:91:76:7a:2d:a7: d9:c4:bc:0f:b8:86:fb:f8:bf:4e:63:69:13:c5:f7: d4:e7:19:24:0b:34:6a:e7:ed:7d:99:ab:27:39:5b: ab:23:55:84:d0:72:91:b5:0c:a7:5c:28:64:b8:b5: 2b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:DE:40:79:6B:E9:F0:04:AF:ED:DF:CD:97:8A:71:B1:4D:35:DF:61 X509v3 Authority Key Identifier: keyid:C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:b8:db:a1:fd:c3:07:e6:45:1d:c5:8f:1a:0c:33:ce:8f:ac: 14:37:12:83:74:8b:50:3a:6b:13:a8:dc:e8:b9:75:1b:e0:b1: 24:a5:ae:98:17:32:c3:eb:2d:16:ea:c5:e1:23:8b:49:46:2d: d9:99:ab:4b:c1:a1:59:ef:30:15:5c:f0:7c:af:3b:28:81:d1: 4a:c5:aa:4b:26:c9:98:da:f8:b9:a5:11:54:6b:80:af:93:71: e6:13:e7:9b:ad:1c:c8:78:35:30:15:31:81:24:9f:eb:45:50: c0:fb:ce:0d:bf:b6:67:d1:3c:74:a1:7b:a5:86:0a:42:02:76: 70:3a:ea:c0:c5:f2:41:0d:12:7d:38:7f:18:b7:d3:f5:63:ec: 7c:8f:96:cf:a8:f0:87:e6:ab:6e:8c:a9:04:40:f1:fe:b6:6d: 47:13:32:68:72:71:83:c7:2a:ec:42:56:75:d3:72:6e:57:9c: 27:90:9d:0a:ae:94:78:1b:d1:61:b5:94:ff:16:37:23:29:59: b8:d4:0a:df:73:dc:2a:04:e1:4f:9f:63:18:8d:da:7a:4b:10: b5:05:35:0f:ba:c5:85:27:03:f6:14:54:41:fe:8e:3f:ca:fb: 44:22:75:43:e2:59:2c:81:0f:e4:44:a7:f5:ea:1c:16:6f:ff: 44:2e:82:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCMjkxMTAvBgNVBAUTKEM1NTE4N0IwMEIxQTczMzc1Rjg0NTY4ODVGNkExMDdF RTFEOTM1Q0YwHhcNMjUwNjEzMDQyNDMwWhcNMjUwNjIwMDQyNDMwWjAYMRYwFAYD VQQDEw02ODRiYTdmZS0yN2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6jpDL6Pep3LQLnpVedMmrx+SSOopRGY8yN2pZcM1F6PyrAKSZ1LYZDTeIOU 28ZWftn5M/GkGzhFvdzERB3WgAAMUBD7fvof7Y9FZmEm5+GNaR6CDXnOwA5ekefr ZL3VBUXUaPmcWaMrU4eIF48x7bVfi+nwSHQ/l99oUZNcPsR4TYrFS6nytzmeu5WS DCqi5KGtuhFx4ytHTcOoDsKykGIzg3FJPznBT/h4evwt5Wp7yAE3wlE9bsdD4ybm Kx+yaZn+8W/GkwPWX9UDkXZ6LafZxLwPuIb7+L9OY2kTxffU5xkkCzRq5+19masn OVurI1WE0HKRtQynXChkuLUrDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFjeQHlr 6fAEr+3fzZeKcbFNNd9hMB8GA1UdIwQYMBaAFMVRh7ALGnM3X4RWiF9qEH7h2TXP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0IyOS82MTdFOTQ0OEU4 MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6ZGZoRmFJWDJvUWZ1SFpO YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWR0hzQXNhY3pkZmhGYUlYMm9RZnVIWk5jOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0IyOS82MTdFOTQ0OEU4MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6 ZGZoRmFJWDJvUWZ1SFpOYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyuNuh/cMH5kUdxY8aDDPOj6wUNxKDdItQOmsTqNzouXUb4LEkpa6Y FzLD6y0W6sXhI4tJRi3ZmatLwaFZ7zAVXPB8rzsogdFKxapLJsmY2vi5pRFUa4Cv k3HmE+ebrRzIeDUwFTGBJJ/rRVDA+84Nv7Zn0Tx0oXulhgpCAnZwOurAxfJBDRJ9 OH8Yt9P1Y+x8j5bPqPCH5qtujKkEQPH+tm1HEzJocnGDxyrsQlZ103JuV5wnkJ0K rpR4G9FhtZT/FjcjKVm41Arfc9wqBOFPn2MYjdp6SxC1BTUPusWFJwP2FFRB/o4/ yvtEInVD4lksgQ/kRKf16hwWb/9ELoKS -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:58 2025 by rpki-client