$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: 2Ptbuyy9hgB5IrG3tjBN5cfcAy94E23GBiGwuH11o30= Subject key identifier: B8:F1:CC:E9:50:E2:47:E8:F6:E2:49:9E:15:38:34:7E:61:DE:82:C7 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 18D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 18C8 Signing time: Sat 14 Jun 2025 16:25:50 +0000 Manifest this update: Sat 14 Jun 2025 16:25:49 +0000 Manifest next update: Sat 21 Jun 2025 16:25:49 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: RypjiL2jSp1b9K61KLKcVv+aW0I96VYUhcyVmbylYyQ=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: i+oJi6jpDEgYGCAfWO68s9CmpJ8yXleP5d3NPE288zQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6361 (0x18d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Jun 14 16:25:49 2025 GMT Not After : Jun 21 16:25:49 2025 GMT Subject: CN=684da28e-4110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e0:c0:bc:1e:26:96:b1:51:b9:0e:f3:81:2f: 2c:1a:5a:61:f5:c5:5d:3e:43:8f:2a:09:9e:e7:57: 9d:ec:f5:36:e6:9e:c6:a4:af:fa:1a:08:bd:ee:9c: 45:37:6a:b7:87:95:f7:09:f0:83:b0:a5:7e:b9:de: 2e:4a:b8:58:4c:ac:30:6e:fa:23:5c:73:d8:0c:0d: 8d:1a:b1:6c:2e:09:aa:be:c8:b1:b9:fb:a0:a7:4f: 7d:8e:5c:60:d4:21:8e:9c:c2:6f:8d:60:e2:7e:c0: 89:84:3d:cf:a2:ab:be:b5:1a:03:b6:61:ce:4c:5f: 3d:74:8e:ca:9c:1a:de:ee:fd:93:4c:92:07:62:8c: d9:a2:47:a7:aa:a6:f1:39:13:42:f4:3c:83:0e:85: b1:5a:43:e5:89:b6:8a:3e:1d:c5:57:52:da:51:be: 11:15:da:d8:31:f0:01:be:55:3f:c6:84:68:8e:e6: 25:a1:19:f1:fe:69:cd:6b:76:15:9a:ba:87:83:d2: ab:44:2c:7f:82:4b:f3:4a:f0:85:a2:e2:63:aa:73: a2:e3:70:ca:9a:15:6c:28:d0:af:cb:d9:73:68:e1: 21:a3:fa:0f:bb:a6:ee:a0:fe:ca:e8:ed:42:d5:16: eb:22:5e:5f:85:45:74:e8:a9:a0:10:9d:ff:ad:ce: ec:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F1:CC:E9:50:E2:47:E8:F6:E2:49:9E:15:38:34:7E:61:DE:82:C7 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b0:60:07:88:c5:ff:9a:dc:07:94:24:f1:7d:e3:70:ac:c9: 64:8c:e4:45:c5:a8:f1:b8:58:01:9e:84:4f:7f:a1:41:e5:f5: 0f:5a:d3:a3:43:3d:5c:b3:31:36:01:a6:f8:ef:4b:6e:99:a6: cf:5c:ee:b4:c0:74:a2:be:a7:fa:8b:6d:61:a1:f8:28:11:66: 35:a5:a4:8b:e3:85:ee:9d:b7:ac:e4:46:c1:ce:c7:86:4f:2d: af:b7:ff:7c:8f:ac:28:6c:80:8f:28:2b:61:12:9c:28:87:fb: 26:81:18:f7:92:ff:89:bf:f3:1a:a8:02:37:c5:3c:68:4b:1f: 4c:cf:55:e7:e0:f4:d2:57:d9:1a:1c:23:66:c6:dc:2c:e7:87: 94:e7:45:4a:15:d2:de:a8:71:59:02:f8:a9:fa:72:05:e9:3a: ed:2e:6b:22:18:0c:3e:0b:3a:0f:76:41:ff:a1:0a:90:4d:47: 1d:05:90:b2:77:f0:69:53:25:80:c4:98:9d:dd:c0:bc:6c:8d: 61:ed:09:4b:53:80:33:ab:8c:4d:af:f7:e7:9a:41:19:97:1b: af:df:e8:52:2e:b7:e9:f9:48:d4:03:c8:4a:2f:bd:2d:22:de: 16:e5:54:e3:f0:e0:35:a7:f0:d1:89:62:3d:aa:69:cc:84:ed: 93:61:25:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUwNjE0MTYyNTQ5WhcNMjUwNjIxMTYyNTQ5WjAYMRYwFAYD VQQDEw02ODRkYTI4ZS00MTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ODAvB4mlrFRuQ7zgS8sGlph9cVdPkOPKgme51ed7PU25p7GpK/6Ggi97pxF N2q3h5X3CfCDsKV+ud4uSrhYTKwwbvojXHPYDA2NGrFsLgmqvsixufugp099jlxg 1CGOnMJvjWDifsCJhD3Poqu+tRoDtmHOTF89dI7KnBre7v2TTJIHYozZokenqqbx ORNC9DyDDoWxWkPlibaKPh3FV1LaUb4RFdrYMfABvlU/xoRojuYloRnx/mnNa3YV mrqHg9KrRCx/gkvzSvCFouJjqnOi43DKmhVsKNCvy9lzaOEho/oPu6buoP7K6O1C 1RbrIl5fhUV06KmgEJ3/rc7s5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjxzOlQ 4kfo9uJJnhU4NH5h3oLHMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHsGAHiMX/mtwHlCTxfeNwrMlkjORFxajxuFgBnoRPf6FB5fUPWtOj Qz1cszE2Aab470tumabPXO60wHSivqf6i21hofgoEWY1paSL44Xunbes5EbBzseG Ty2vt/98j6wobICPKCthEpwoh/smgRj3kv+Jv/MaqAI3xTxoSx9Mz1Xn4PTSV9ka HCNmxtws54eU50VKFdLeqHFZAvip+nIF6TrtLmsiGAw+CzoPdkH/oQqQTUcdBZCy d/BpUyWAxJid3cC8bI1h7QlLU4Azq4xNr/fnmkEZlxuv3+hSLrfp+UjUA8hKL70t It4W5VTj8OA1p/DRiWI9qmnMhO2TYSUX -----END CERTIFICATE-----Generated at Sun Jun 15 09:58:32 2025 by rpki-client