$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: oz6qQvY2zb7vxwYW5PfDo7CV0ZfK//QKCfAiP8MdXsk= Subject key identifier: A4:F8:CD:8D:F4:56:F5:FF:2C:5B:95:3B:20:2C:00:27:39:3B:67:88 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01BF Signing time: Mon 11 Aug 2025 03:13:08 +0000 Manifest this update: Mon 11 Aug 2025 03:13:08 +0000 Manifest next update: Mon 18 Aug 2025 03:13:08 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: XEebh7RAF3va+VZJXE3rx12nHDg6Mcv08jT869AkYOU=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Aug 11 03:13:08 2025 GMT Not After : Aug 18 03:13:08 2025 GMT Subject: CN=68995fc4-1885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:18:e4:8a:40:d3:5e:7b:f1:3a:2e:d0:39:fa: 31:1d:ce:ca:73:d0:9a:7f:d9:d6:7c:59:f8:32:7c: c6:b7:21:c3:f3:81:c9:01:e5:33:f5:c1:aa:3f:e8: 5e:a5:50:03:d8:70:cc:37:2a:7b:09:ef:31:5d:3c: e0:8d:58:3f:84:bf:59:7b:9e:1f:ab:db:fe:9b:1b: 7f:3a:e1:64:8b:55:2b:73:6d:d5:53:cc:6c:1c:3c: 4e:81:61:0d:ed:90:d4:18:65:29:74:19:0e:e6:1f: 68:1b:50:14:61:5e:c4:ab:2a:b0:05:b1:a6:df:86: 12:48:70:66:12:75:cf:72:9e:44:b0:4f:8d:27:65: d6:1d:ec:be:2e:ab:4f:82:32:11:8e:0e:a2:77:ed: 55:f7:0e:dc:1c:3d:f5:85:50:a3:27:31:e4:62:1c: 57:42:9c:28:52:09:f0:14:0c:77:bb:3d:19:0d:c7: c4:7f:b1:27:3d:81:e6:85:6d:c2:d3:e4:b7:ea:e1: d5:7f:93:a3:b9:5a:e1:d4:55:5a:5f:b8:66:55:be: ea:49:ce:1f:6e:39:44:fb:06:53:c1:f0:37:0c:f5: 97:c2:15:f4:c1:d2:a7:39:69:e7:8f:50:aa:7b:61: 95:ac:6a:61:0b:68:4e:10:e0:97:1b:13:91:25:71: 26:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F8:CD:8D:F4:56:F5:FF:2C:5B:95:3B:20:2C:00:27:39:3B:67:88 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:85:f2:34:08:58:d4:b3:da:66:cd:f4:66:85:ff:b7:78:e9: 6d:5d:ba:3c:be:c9:42:32:8e:e8:d6:92:30:df:40:6e:71:4c: 54:a8:b2:b9:b4:13:d8:19:d4:31:05:bc:f2:c8:e1:60:fa:41: 8d:7e:e6:9a:0b:17:b7:b4:91:1b:0b:70:07:b2:87:db:c0:42: cd:15:ff:d1:a3:83:7e:3f:37:91:7d:b2:2c:79:4b:43:32:04: 34:cd:cc:a8:9f:f8:57:c3:46:8c:bb:79:0d:1f:67:a6:3e:3c: 81:49:fd:af:aa:f7:92:10:fc:c3:61:f2:31:8c:14:55:49:92: 4f:55:29:88:fa:cf:3a:63:37:e3:a0:7f:5f:3a:a9:b6:53:fa: f7:e5:78:47:b5:72:d4:cd:b0:cc:90:70:07:86:30:4c:ca:2e: 5c:df:44:b8:f6:d9:01:10:eb:3c:2b:c5:40:7a:28:a7:b3:4b: 29:cd:39:e3:13:3f:fb:22:74:e1:0b:e3:75:5b:4a:d1:5a:41: a7:88:b6:80:f0:ea:b7:a3:a3:7d:7a:6e:16:47:6d:8d:5d:ed: d3:92:7e:7d:33:fe:e5:f6:79:e1:c1:3b:ce:d2:3b:a3:bb:8a: 90:41:ce:66:b6:56:6c:7b:c6:58:12:ce:c2:ba:18:1f:36:39: ed:c8:2a:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUwODExMDMxMzA4WhcNMjUwODE4MDMxMzA4WjAYMRYwFAYD VQQDEw02ODk5NWZjNC0xODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphjkikDTXnvxOi7QOfoxHc7Kc9Caf9nWfFn4MnzGtyHD84HJAeUz9cGqP+he pVAD2HDMNyp7Ce8xXTzgjVg/hL9Ze54fq9v+mxt/OuFki1Urc23VU8xsHDxOgWEN 7ZDUGGUpdBkO5h9oG1AUYV7EqyqwBbGm34YSSHBmEnXPcp5EsE+NJ2XWHey+LqtP gjIRjg6id+1V9w7cHD31hVCjJzHkYhxXQpwoUgnwFAx3uz0ZDcfEf7EnPYHmhW3C 0+S36uHVf5OjuVrh1FVaX7hmVb7qSc4fbjlE+wZTwfA3DPWXwhX0wdKnOWnnj1Cq e2GVrGphC2hOEOCXGxORJXEm3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKT4zY30 VvX/LFuVOyAsACc5O2eIMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbhfI0CFjUs9pmzfRmhf+3eOltXbo8vslCMo7o1pIw30BucUxUqLK5 tBPYGdQxBbzyyOFg+kGNfuaaCxe3tJEbC3AHsofbwELNFf/Ro4N+PzeRfbIseUtD MgQ0zcyon/hXw0aMu3kNH2emPjyBSf2vqveSEPzDYfIxjBRVSZJPVSmI+s86Yzfj oH9fOqm2U/r35XhHtXLUzbDMkHAHhjBMyi5c30S49tkBEOs8K8VAeiins0spzTnj Ez/7InThC+N1W0rRWkGniLaA8Oq3o6N9em4WR22NXe3Tkn59M/7l9nnhwTvO0juj u4qQQc5mtlZse8ZYEs7CuhgfNjntyCqZ -----END CERTIFICATE-----Generated at Tue Aug 12 13:48:43 2025 by rpki-client