$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft File: KoE65dYVKWBF2z4sQsuPzaxq0gw.mft (raw, json) Hash identifier: uRIcaAbhEx6rtu5ix5gYagpy0nYBY8tcI8mesJzrlHQ= Subject key identifier: 8F:F3:F6:F3:78:3B:6E:91:45:DA:C4:54:6C:35:C8:09:E5:2C:28:0A Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft Manifest number: 0197 Signing time: Sat 21 Jun 2025 02:40:30 +0000 Manifest this update: Sat 21 Jun 2025 02:40:29 +0000 Manifest next update: Sat 28 Jun 2025 02:40:29 +0000 Files and hashes: 1: KoE65dYVKWBF2z4sQsuPzaxq0gw.crl (hash: uOGBNzUSB2lAqSzrz99lckJpoxIXK0voYAnIOhZVRm0=) 2: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (hash: XP8lLbicS7mB1IqZ6ApZEYlo1iErgLT+WwIjnSaqxSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8, serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Jun 21 02:40:29 2025 GMT Not After : Jun 28 02:40:29 2025 GMT Subject: CN=68561b9e-2d5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:22:49:1e:e3:10:28:5b:cd:97:1c:a2:d8:9e: e5:4d:8c:f1:39:ce:7f:58:16:4e:c8:29:d2:ce:c5: bc:cf:da:8e:96:46:7a:94:9c:79:ae:84:db:34:6d: 12:6e:f1:81:13:45:67:62:e7:0f:af:57:b0:53:6a: f9:a1:d1:4c:7a:18:a4:6d:ea:cb:0a:f0:f7:7a:1f: 8c:d4:b8:5b:d9:84:20:2b:58:72:fd:e2:73:81:2e: c1:df:0c:fb:d1:2e:7f:cd:c7:67:56:bd:96:09:82: 39:df:68:77:ba:27:df:42:25:fd:77:8b:ad:43:2c: 2c:bd:32:9c:2f:76:04:19:87:2a:92:89:fe:a5:52: 78:86:07:06:21:0a:cb:9b:6e:81:9d:b0:4d:87:32: 55:48:e9:bd:a3:3f:c5:4e:b6:80:5e:20:79:03:9e: fa:7d:49:cb:c5:52:71:38:52:b6:c8:06:2b:5a:9a: b6:84:55:4a:43:58:b4:02:aa:c1:d7:cd:ac:42:1a: d1:29:1a:f3:c0:15:08:bf:9c:61:81:dc:a7:21:d5: e1:d6:aa:ee:db:ff:3d:0a:6f:33:9f:62:61:cb:db: 12:35:e3:25:45:87:a4:94:75:d9:18:ff:32:62:84: 1a:a5:30:dc:73:38:41:ac:66:df:af:bd:18:11:9e: 21:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F3:F6:F3:78:3B:6E:91:45:DA:C4:54:6C:35:C8:09:E5:2C:28:0A X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:fd:4d:4e:8b:72:e2:0c:ce:65:fd:fb:ba:44:2e:6a:43:26: c9:3f:e7:61:f3:54:a2:eb:87:06:72:de:0e:9a:16:b0:f4:30: 29:ff:7f:d7:b6:01:0c:0c:84:69:37:51:8b:17:64:a4:2e:15: a9:df:68:7c:5c:fa:53:bf:18:4e:1e:ab:ec:d5:7b:89:a5:7a: 56:a4:6f:68:34:52:a6:cb:d6:f3:96:87:9b:35:ba:32:58:8a: 47:7b:cc:f8:1b:ef:2d:f6:98:db:5a:d5:3d:5a:11:fe:8d:ec: 5f:ec:76:df:4e:d5:f9:db:6b:51:e1:12:1b:36:31:0c:c5:ba: f4:73:ac:78:5c:92:8e:a4:f9:1a:17:ef:f2:84:15:55:84:06: 0e:33:66:4c:6b:f4:d4:e0:67:57:09:10:2b:6a:60:fa:b5:c5: 6f:8d:3a:30:87:9c:ca:7c:77:20:dc:ca:f2:e1:d5:af:32:17: 66:6a:1a:7b:82:b3:1e:72:97:44:2e:88:f8:57:3b:c7:0d:c0: a2:bd:8a:61:5e:b8:a3:d6:1f:bc:04:09:a8:bf:7e:0b:6d:48: 82:4f:cc:fa:f0:72:22:9e:da:92:d9:8c:e5:84:f1:46:bd:86: 3f:ce:03:50:11:9a:ad:8d:e0:4c:64:23:da:03:14:fe:67:0c: c0:2a:82:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjUwNjIxMDI0MDI5WhcNMjUwNjI4MDI0MDI5WjAYMRYwFAYD VQQDEw02ODU2MWI5ZS0yZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SJJHuMQKFvNlxyi2J7lTYzxOc5/WBZOyCnSzsW8z9qOlkZ6lJx5roTbNG0S bvGBE0VnYucPr1ewU2r5odFMehikberLCvD3eh+M1Lhb2YQgK1hy/eJzgS7B3wz7 0S5/zcdnVr2WCYI532h3uiffQiX9d4utQywsvTKcL3YEGYcqkon+pVJ4hgcGIQrL m26BnbBNhzJVSOm9oz/FTraAXiB5A576fUnLxVJxOFK2yAYrWpq2hFVKQ1i0AqrB 182sQhrRKRrzwBUIv5xhgdynIdXh1qru2/89Cm8zn2Jhy9sSNeMlRYeklHXZGP8y YoQapTDcczhBrGbfr70YEZ4hGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/z9vN4 O26RRdrEVGw1yAnlLCgKMB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0JGOC9BMjJCRDE1OEUwMTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktX QkYyejRzUXN1UHpheHEwZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW/U1Oi3LiDM5l/fu6RC5qQybJP+dh81Si64cGct4Omhaw9DAp/3/X tgEMDIRpN1GLF2SkLhWp32h8XPpTvxhOHqvs1XuJpXpWpG9oNFKmy9bzloebNboy WIpHe8z4G+8t9pjbWtU9WhH+jexf7HbfTtX522tR4RIbNjEMxbr0c6x4XJKOpPka F+/yhBVVhAYOM2ZMa/TU4GdXCRAramD6tcVvjTowh5zKfHcg3Mry4dWvMhdmahp7 grMecpdELoj4VzvHDcCivYphXrij1h+8BAmov34LbUiCT8z68HIintqS2YzlhPFG vYY/zgNQEZqtjeBMZCPaAxT+ZwzAKoKk -----END CERTIFICATE-----Generated at Sat Jun 21 19:37:36 2025 by rpki-client