$ rpki-client -vvf rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft (raw, json) Hash identifier: lOkLG4tc+VhUYXtCRNaJYlM9P/xuABoJOEfEovux/Ko= Subject key identifier: 55:C4:9E:B8:EB:95:8D:1C:80:57:D7:A0:B1:06:67:D0:93:F9:69:EC Authority key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 Certificate issuer: /CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft Manifest number: 0637 Signing time: Thu 12 Jun 2025 22:18:54 +0000 Manifest this update: Thu 12 Jun 2025 22:18:53 +0000 Manifest next update: Thu 19 Jun 2025 22:18:53 +0000 Files and hashes: 1: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl (hash: SLmkmkxtsgjUPxLTlrz2m9FnYuLbgsISIXmSZmI85rg=) 2: EA266BB0965911EB9A717E21C4F9AE02.roa (hash: unXzVSB7rlCBOdPMYdpaMnBlAZNAT9x8+AUdN+A92PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:18:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178580, serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Validity Not Before: Jun 12 22:18:53 2025 GMT Not After : Jun 19 22:18:53 2025 GMT Subject: CN=684b524d-a398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ac:3f:09:39:1a:97:c9:ba:b9:66:e6:9f:c3: fe:30:62:5d:27:3c:be:d5:75:0d:23:b0:0c:7f:2e: 0d:96:49:16:2d:29:82:38:11:36:2b:7c:e5:6a:6f: a5:6e:b8:9d:62:60:9f:24:54:7c:b8:7b:ce:8c:53: 7e:71:24:22:5d:11:bc:71:35:9b:9a:a3:65:77:32: f5:9c:74:8f:34:c0:ea:be:a1:b0:62:b2:c5:c9:9a: 98:d4:e8:be:f1:49:83:08:08:98:2a:b2:b6:6e:03: 15:86:a8:99:46:32:76:dd:2e:c7:33:f3:cd:88:7d: 60:ec:b5:5e:19:08:de:c9:5d:2a:8a:c9:f1:35:c8: 35:b0:14:6a:de:28:30:51:a5:89:04:c1:db:39:cd: 3e:fe:0d:c7:51:19:d6:ea:73:59:a2:14:51:a4:a5: d8:3a:41:45:19:e7:72:d3:55:91:6c:c7:5a:c4:1b: 69:20:d5:9d:97:03:31:42:f0:55:88:ef:a4:ff:03: 32:87:65:75:a7:91:ed:d5:94:3e:76:8f:c9:1c:5a: ad:92:f1:2f:68:cd:cb:8a:86:01:db:62:c0:07:67: 2c:39:62:bb:46:24:9c:3e:48:27:97:76:40:73:f3: b9:45:15:fb:c4:5e:0b:88:cf:18:b5:0c:c6:b8:f2: dc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C4:9E:B8:EB:95:8D:1C:80:57:D7:A0:B1:06:67:D0:93:F9:69:EC X509v3 Authority Key Identifier: keyid:45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:3a:89:40:f6:d9:fb:b8:37:37:ac:7a:a3:1a:0d:85:fa:10: 45:b4:c7:08:cd:47:86:75:09:d5:90:5a:f0:85:1f:15:f0:07: 0b:89:4d:f3:4b:b5:86:7d:4d:56:92:89:e2:68:6c:bb:24:24: 96:0d:3c:d2:f9:1a:69:3e:4f:92:9d:89:a6:64:7f:89:ed:3f: b8:55:38:18:25:73:25:49:7d:2f:ea:93:6c:e5:8b:d6:e4:27: 71:22:50:23:c8:fa:18:ac:79:61:21:99:2a:31:78:85:d7:e2: 51:06:f3:d7:8d:30:f1:d9:93:65:aa:7f:30:98:e4:2a:95:06: b4:36:b2:4c:3e:b7:d6:2a:c0:c7:d1:b2:d7:ec:6a:46:a9:06: a8:62:64:ef:76:5a:ec:99:32:47:ab:90:1e:02:9d:c6:12:67: e7:80:11:b5:3d:0c:02:11:90:b6:f3:e8:cd:80:72:e8:70:6a: 10:1b:33:c3:4d:b1:40:34:68:4f:b9:e4:e5:3a:1a:49:2f:bf: a3:80:5c:0f:9c:c0:39:ab:00:9d:58:cd:15:78:6f:97:f8:80: c7:ad:28:46:0d:5c:98:25:da:95:0b:f6:84:5a:c7:3f:0e:4e: c2:7f:15:87:a1:57:0c:6d:c5:dc:46:f7:99:67:f0:59:f1:95: f9:bc:2c:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg1ODAxMTAvBgNVBAUTKDQ1QzlCOUJENDdEODIxODQ4NTk5QTY3RDdGMjI5NTZF MDkxM0M3RjYwHhcNMjUwNjEyMjIxODUzWhcNMjUwNjE5MjIxODUzWjAYMRYwFAYD VQQDEw02ODRiNTI0ZC1hMzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Kw/CTkal8m6uWbmn8P+MGJdJzy+1XUNI7AMfy4NlkkWLSmCOBE2K3zlam+l bridYmCfJFR8uHvOjFN+cSQiXRG8cTWbmqNldzL1nHSPNMDqvqGwYrLFyZqY1Oi+ 8UmDCAiYKrK2bgMVhqiZRjJ23S7HM/PNiH1g7LVeGQjeyV0qisnxNcg1sBRq3igw UaWJBMHbOc0+/g3HURnW6nNZohRRpKXYOkFFGedy01WRbMdaxBtpINWdlwMxQvBV iO+k/wMyh2V1p5Ht1ZQ+do/JHFqtkvEvaM3LioYB22LAB2csOWK7RiScPkgnl3ZA c/O5RRX7xF4LiM8YtQzGuPLcDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXEnrjr lY0cgFfXoLEGZ9CT+WnsMB8GA1UdIwQYMBaAFEXJub1H2CGEhZmmfX8ilW4JE8f2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODU4MC8zOUY5NjZGODk2 NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZU0ZtYVo5ZnlLVmJna1R4 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbTV2VWZZSVlTRm1hWjlmeUtWYmdrVHhfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODU4MC8zOUY5NjZGODk2NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZ U0ZtYVo5ZnlLVmJna1R4X1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpOolA9tn7uDc3rHqjGg2F+hBFtMcIzUeGdQnVkFrwhR8V8AcLiU3z S7WGfU1WkoniaGy7JCSWDTzS+RppPk+SnYmmZH+J7T+4VTgYJXMlSX0v6pNs5YvW 5CdxIlAjyPoYrHlhIZkqMXiF1+JRBvPXjTDx2ZNlqn8wmOQqlQa0NrJMPrfWKsDH 0bLX7GpGqQaoYmTvdlrsmTJHq5AeAp3GEmfngBG1PQwCEZC28+jNgHLocGoQGzPD TbFANGhPueTlOhpJL7+jgFwPnMA5qwCdWM0VeG+X+IDHrShGDVyYJdqVC/aEWsc/ Dk7CfxWHoVcMbcXcRveZZ/BZ8ZX5vCyX -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:28 2025 by rpki-client