$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: 15NPKqcSf7H2Sg3RA+RzDDWCmDSeyP4A/AmkqytdUXc= Subject key identifier: 17:CC:1B:FA:47:61:AC:14:F8:B2:4C:E3:88:FE:2B:24:16:26:67:72 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 18F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 18E4 Signing time: Fri 08 Aug 2025 16:37:23 +0000 Manifest this update: Fri 08 Aug 2025 16:37:23 +0000 Manifest next update: Fri 15 Aug 2025 16:37:23 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: 65+P7ia+uBYHLNs8079YgWzjPWR6UU4coYiaLDDs0ww=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: i+oJi6jpDEgYGCAfWO68s9CmpJ8yXleP5d3NPE288zQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6389 (0x18f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Aug 8 16:37:23 2025 GMT Not After : Aug 15 16:37:23 2025 GMT Subject: CN=689627c3-cd36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f0:ce:d9:2f:01:b8:9a:33:55:6f:b2:46:db: e1:80:40:b2:1b:44:a6:ef:0b:04:bf:d5:e0:bf:c2: d3:4d:12:b1:61:42:59:bf:a0:17:71:5d:55:0a:c0: 5f:fd:2e:0b:ee:4b:23:d6:b5:11:a3:cf:87:83:88: 89:6f:0b:3c:3f:86:08:0e:11:cf:bb:00:84:59:e1: 85:6b:0a:01:42:e1:a5:bb:0e:b2:bb:12:d8:0f:23: 09:aa:ab:90:c8:a1:74:f9:4b:eb:f6:5e:16:9b:45: 28:5e:f7:90:4a:b8:71:f7:87:77:4c:d8:ad:9c:e6: f9:15:69:d6:98:9e:d0:97:be:d8:bf:9b:ff:c4:e1: 94:a3:03:9c:75:b8:f2:13:c2:b6:05:29:6a:46:c4: 9d:53:3a:6d:0c:99:73:6f:4e:43:4c:79:b2:64:98: 62:85:51:17:15:15:f8:9d:ec:ce:e7:43:9c:88:74: 75:83:23:d6:40:07:35:a4:e2:08:42:a4:92:16:7d: 10:04:aa:dd:86:1d:28:b2:e2:17:ad:ec:a3:e1:a0: 4f:2e:f4:4d:ce:b9:6d:38:78:58:01:c5:95:78:4c: 71:85:b7:33:8d:5b:82:3e:7e:e7:82:48:46:07:68: d9:2e:da:39:13:b2:d1:55:bf:6d:9d:e9:31:ac:be: 4f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CC:1B:FA:47:61:AC:14:F8:B2:4C:E3:88:FE:2B:24:16:26:67:72 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:b4:38:db:b1:a1:4e:18:cc:3a:23:58:a7:0f:17:9c:8e:d1: 70:08:ab:bf:91:f2:af:59:7f:f6:0e:34:f2:74:ce:6f:ed:aa: 46:f5:44:2f:86:d4:60:82:62:89:eb:fa:54:25:9c:75:2d:1e: 14:73:07:d4:85:a0:89:53:42:11:f0:5c:ca:fd:95:6e:48:7d: 57:82:41:6b:5d:ac:1b:36:f8:11:2f:62:a5:6c:a7:9f:3b:d2: db:11:d1:3a:d9:cf:fa:22:b4:f3:34:86:41:81:4f:26:a7:de: bd:44:3e:f3:7e:9c:41:cb:03:42:fd:fb:d9:fe:b7:13:b3:d5: 16:e2:46:8d:10:75:92:50:a2:86:38:60:60:85:87:37:d8:04: 96:59:94:e3:f3:94:48:4d:6e:08:3d:44:da:c3:49:c3:b6:40: aa:f8:bb:77:06:18:e2:c5:c3:7e:4a:63:8b:3b:b6:58:ee:06: d5:cc:02:93:e0:4e:2b:08:db:6e:82:a3:f9:62:3a:d5:79:a7: ff:79:a5:9d:43:28:ba:98:6a:51:5e:a2:a1:96:b1:cf:49:f7: 00:35:50:8b:31:37:79:4a:e6:ba:81:53:3c:a8:28:18:10:78: 17:6e:1a:c0:d3:60:72:82:a5:1a:f4:df:18:f5:93:85:e0:df: 8b:17:ba:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUwODA4MTYzNzIzWhcNMjUwODE1MTYzNzIzWjAYMRYwFAYD VQQDEw02ODk2MjdjMy1jZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fDO2S8BuJozVW+yRtvhgECyG0Sm7wsEv9Xgv8LTTRKxYUJZv6AXcV1VCsBf /S4L7ksj1rURo8+Hg4iJbws8P4YIDhHPuwCEWeGFawoBQuGluw6yuxLYDyMJqquQ yKF0+Uvr9l4Wm0UoXveQSrhx94d3TNitnOb5FWnWmJ7Ql77Yv5v/xOGUowOcdbjy E8K2BSlqRsSdUzptDJlzb05DTHmyZJhihVEXFRX4nezO50OciHR1gyPWQAc1pOII QqSSFn0QBKrdhh0osuIXreyj4aBPLvRNzrltOHhYAcWVeExxhbczjVuCPn7ngkhG B2jZLto5E7LRVb9tnekxrL5PNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfMG/pH YawU+LJM44j+KyQWJmdyMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0tDjbsaFOGMw6I1inDxecjtFwCKu/kfKvWX/2DjTydM5v7apG9UQv htRggmKJ6/pUJZx1LR4UcwfUhaCJU0IR8FzK/ZVuSH1XgkFrXawbNvgRL2KlbKef O9LbEdE62c/6IrTzNIZBgU8mp969RD7zfpxBywNC/fvZ/rcTs9UW4kaNEHWSUKKG OGBghYc32ASWWZTj85RITW4IPUTaw0nDtkCq+Lt3BhjixcN+SmOLO7ZY7gbVzAKT 4E4rCNtugqP5YjrVeaf/eaWdQyi6mGpRXqKhlrHPSfcANVCLMTd5Sua6gVM8qCgY EHgXbhrA02BygqUa9N8Y9ZOF4N+LF7ou -----END CERTIFICATE-----Generated at Sun Aug 10 04:50:00 2025 by rpki-client