$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: y8TjBefx/b0bvP251xf2O3hfct0z4L+vWxzhcJ5lRUw= Subject key identifier: D6:33:C2:DD:E8:72:E4:9A:E1:6E:AE:F6:BD:8E:01:62:17:35:07:A0 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: 97 Signing time: Fri 13 Jun 2025 05:19:19 +0000 Manifest this update: Fri 13 Jun 2025 05:19:19 +0000 Manifest next update: Fri 20 Jun 2025 05:19:19 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: IxcKlAYJBQZgpH1QSF16CtbOHEsvmG6fCrVrjIgtlVA=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Jun 13 05:19:19 2025 GMT Not After : Jun 20 05:19:19 2025 GMT Subject: CN=684bb4d7-e59a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7d:4f:fd:3f:6d:65:3b:69:6b:56:ed:e0:49: 7d:d3:0c:ee:49:4f:f5:99:33:3c:a6:eb:24:8e:cc: a2:13:3b:22:5f:db:bf:72:61:9d:80:e5:9b:5b:a4: 8d:94:77:11:7d:89:df:75:48:3f:c9:67:19:42:5c: a2:26:8b:ed:67:8c:b3:7e:f3:1d:1f:0e:41:93:b0: 6a:23:d7:07:87:a8:2e:43:76:d1:cd:fb:ef:4d:12: 0b:c8:4c:4f:6d:6e:29:f6:01:59:2e:1f:d4:9a:86: c4:01:86:1d:58:85:e1:2b:50:fa:ee:69:2e:cb:ce: 48:8b:ac:1d:90:f6:51:94:ee:24:02:f9:5d:55:f7: af:87:20:54:6d:d0:6e:9d:01:0c:b9:43:5b:35:4d: 35:55:76:a6:85:68:6f:ae:e6:13:8b:4f:11:3a:40: 23:07:b2:5c:46:4f:00:5b:15:1f:b8:f4:74:6b:ba: 9d:67:ad:7e:83:69:2c:2a:0a:cf:29:4d:6a:dd:55: 34:27:8b:ee:07:9f:c3:76:e6:9f:30:77:32:1d:2a: 43:60:87:0d:8e:e6:9e:5d:e8:0f:cc:cf:af:9d:21: df:57:d6:f9:f9:5e:95:09:ff:75:ca:c2:5b:ad:07: 73:99:b3:7b:f0:27:83:63:30:4a:ca:ce:e5:2f:ce: dd:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:33:C2:DD:E8:72:E4:9A:E1:6E:AE:F6:BD:8E:01:62:17:35:07:A0 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d5:4e:ef:f8:50:63:f2:9e:43:00:f7:9f:50:b3:b9:3d:75: 7d:7d:40:4e:cd:a3:7d:ed:5e:49:a6:6b:43:c3:77:ba:14:8c: bc:44:d7:50:c9:80:8b:3f:fd:15:3c:0d:b4:55:15:6f:f1:b1: f1:2c:be:4e:71:5c:e7:76:0a:40:42:c5:5b:b2:e6:4b:95:49: 70:12:ad:9e:e8:f4:f4:5b:33:00:bc:53:d2:9e:93:b3:d1:70: e9:b5:bb:3c:5f:7c:20:41:f4:6b:ee:9f:89:99:bd:5d:51:74: 83:9d:24:2a:63:46:79:d3:c1:de:f5:04:b1:38:6a:81:ad:b9: bb:5b:95:d3:96:8b:60:7f:ed:30:4f:f7:0b:24:d9:3b:36:44: 6c:c8:10:ea:c2:10:29:9a:e9:77:c2:c0:44:52:f2:1c:f3:f9: 9e:8c:f6:2c:4b:94:54:8e:0c:f1:87:b3:dc:8b:20:1f:68:fe: 83:6a:1c:e1:14:da:c9:51:c3:5d:7a:f9:ad:fb:19:42:38:2f: cf:f2:af:74:60:0f:38:27:dc:bd:ce:93:a9:66:b6:a8:38:1b: 7c:61:78:3b:4e:83:55:0b:a0:2e:c4:26:45:eb:df:ad:d6:b7: 4f:2a:94:c2:99:67:9a:b3:06:e2:45:6e:3d:08:b0:b2:8d:78: df:26:52:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUwNjEzMDUxOTE5WhcNMjUwNjIwMDUxOTE5WjAYMRYwFAYD VQQDEw02ODRiYjRkNy1lNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA131P/T9tZTtpa1bt4El90wzuSU/1mTM8puskjsyiEzsiX9u/cmGdgOWbW6SN lHcRfYnfdUg/yWcZQlyiJovtZ4yzfvMdHw5Bk7BqI9cHh6guQ3bRzfvvTRILyExP bW4p9gFZLh/UmobEAYYdWIXhK1D67mkuy85Ii6wdkPZRlO4kAvldVfevhyBUbdBu nQEMuUNbNU01VXamhWhvruYTi08ROkAjB7JcRk8AWxUfuPR0a7qdZ61+g2ksKgrP KU1q3VU0J4vuB5/DduafMHcyHSpDYIcNjuaeXegPzM+vnSHfV9b5+V6VCf91ysJb rQdzmbN78CeDYzBKys7lL87dWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYzwt3o cuSa4W6u9r2OAWIXNQegMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn1U7v+FBj8p5DAPefULO5PXV9fUBOzaN97V5JpmtDw3e6FIy8RNdQ yYCLP/0VPA20VRVv8bHxLL5OcVzndgpAQsVbsuZLlUlwEq2e6PT0WzMAvFPSnpOz 0XDptbs8X3wgQfRr7p+Jmb1dUXSDnSQqY0Z508He9QSxOGqBrbm7W5XTlotgf+0w T/cLJNk7NkRsyBDqwhApmul3wsBEUvIc8/mejPYsS5RUjgzxh7PciyAfaP6Dahzh FNrJUcNdevmt+xlCOC/P8q90YA84J9y9zpOpZraoOBt8YXg7ToNVC6AuxCZF69+t 1rdPKpTCmWeaswbiRW49CLCyjXjfJlJ/ -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:40 2025 by rpki-client