$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: CrHwpkf6OYUdNVoG0EIeau9amcLZqjXyYYRf1ZbLW6o= Subject key identifier: 29:78:2F:3D:66:38:6F:A5:4F:CD:DC:9A:42:76:4C:80:A5:FA:94:84 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 9B Signing time: Fri 13 Jun 2025 05:11:32 +0000 Manifest this update: Fri 13 Jun 2025 05:11:32 +0000 Manifest next update: Fri 20 Jun 2025 05:11:32 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: 8KNJQ0v4YloJFcrzsmTgsazny4+VfCgMudgIZFMhx7A=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: 7P9QGIuS2YxmoaQtTvokUjWFQu4qLuQF/pm4P1jB/wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Jun 13 05:11:32 2025 GMT Not After : Jun 20 05:11:32 2025 GMT Subject: CN=684bb304-61e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5d:9e:95:2a:99:30:77:7c:43:6a:8b:0b:7d: 9f:43:d4:c6:a8:49:f8:04:7f:a3:78:51:75:d3:b7: 0a:13:f5:45:4e:e0:c5:e1:2b:55:fa:bf:69:4f:0a: a9:a5:4c:65:ae:f7:36:38:14:1b:7d:67:ce:72:c2: 99:8f:9d:fb:d9:21:c1:ea:62:98:64:bc:b4:62:39: 8e:e4:92:1a:c2:64:60:5a:65:d7:ec:75:a5:2e:a0: 43:ac:8c:7b:eb:75:67:70:83:a3:5d:f9:c1:2c:61: 56:95:b5:f8:20:29:64:6b:6a:c2:80:49:73:4a:23: 3b:9b:4a:6a:64:db:d3:5a:d0:ff:22:90:87:97:2f: 7c:1a:e0:f8:a2:5a:82:53:23:9e:a0:3e:db:f8:9a: 77:cf:57:99:2a:52:b7:66:19:4d:a3:5e:39:7f:e9: 4b:0c:0a:9b:31:bd:87:2f:1f:61:6f:f7:a8:fa:a4: ce:30:26:40:df:19:e4:22:d1:3d:1a:a8:cf:10:d1: f3:96:50:48:d1:76:7b:f4:b1:14:dc:f7:d7:48:98: 26:7c:08:14:9b:a5:8a:9a:c8:18:f7:6b:e5:a4:4f: ca:1b:9a:b5:21:ea:4a:89:96:ba:c7:d3:9f:9c:64: 6a:f5:9f:d6:ea:e8:5e:f0:1f:05:66:e3:d1:58:fd: 8c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:78:2F:3D:66:38:6F:A5:4F:CD:DC:9A:42:76:4C:80:A5:FA:94:84 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:0a:b3:2d:bf:f1:1d:9a:b1:58:bf:9a:1a:8d:0c:ff:3f:42: 28:f4:ef:c0:44:34:2a:ad:74:cb:a1:9a:63:91:36:b1:95:aa: 68:9f:81:fe:4f:38:7a:c4:08:9c:6e:6b:f7:55:dd:0b:49:b3: b7:e0:71:49:c7:55:09:fd:6b:eb:a8:32:93:65:26:ad:02:43: c4:6e:45:10:66:82:9c:93:1a:84:fc:9e:76:a6:92:fd:89:8c: 57:2a:8b:aa:22:73:71:64:3e:cb:d4:24:64:5e:9a:60:98:e3: 3d:78:77:62:99:84:7c:94:98:72:65:5e:bb:e0:e6:69:8c:64: 76:6a:f6:d6:d9:8f:88:1b:6b:72:fc:b4:83:a5:48:b5:99:0a: b3:4f:22:b8:a3:08:93:48:49:37:4f:96:ad:c8:e2:9a:94:b4: 91:9b:1f:f2:c4:96:40:59:45:cf:f0:a5:d0:f7:9e:ca:75:7b: 65:9e:b5:58:f6:02:dd:3c:fc:99:33:68:d2:5e:26:90:44:ee: 3b:9e:51:b8:a7:77:9e:bd:0f:08:69:d6:ba:c2:37:a1:e0:bd: 91:52:5f:f2:09:a1:12:37:45:46:38:90:f7:1d:92:9d:cb:76: 01:cf:7a:f7:35:09:3d:28:4e:4e:a8:11:0d:3e:e2:8f:74:e1: ed:87:53:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUwNjEzMDUxMTMyWhcNMjUwNjIwMDUxMTMyWjAYMRYwFAYD VQQDEw02ODRiYjMwNC02MWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA112elSqZMHd8Q2qLC32fQ9TGqEn4BH+jeFF107cKE/VFTuDF4StV+r9pTwqp pUxlrvc2OBQbfWfOcsKZj5372SHB6mKYZLy0YjmO5JIawmRgWmXX7HWlLqBDrIx7 63VncIOjXfnBLGFWlbX4IClka2rCgElzSiM7m0pqZNvTWtD/IpCHly98GuD4olqC UyOeoD7b+Jp3z1eZKlK3ZhlNo145f+lLDAqbMb2HLx9hb/eo+qTOMCZA3xnkItE9 GqjPENHzllBI0XZ79LEU3PfXSJgmfAgUm6WKmsgY92vlpE/KG5q1IepKiZa6x9Of nGRq9Z/W6uhe8B8FZuPRWP2MBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCl4Lz1m OG+lT83cmkJ2TICl+pSEMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaCrMtv/EdmrFYv5oajQz/P0Io9O/ARDQqrXTLoZpjkTaxlapon4H+ Tzh6xAicbmv3Vd0LSbO34HFJx1UJ/WvrqDKTZSatAkPEbkUQZoKckxqE/J52ppL9 iYxXKouqInNxZD7L1CRkXppgmOM9eHdimYR8lJhyZV674OZpjGR2avbW2Y+IG2ty /LSDpUi1mQqzTyK4owiTSEk3T5atyOKalLSRmx/yxJZAWUXP8KXQ957KdXtlnrVY 9gLdPPyZM2jSXiaQRO47nlG4p3eevQ8Iada6wjeh4L2RUl/yCaESN0VGOJD3HZKd y3YBz3r3NQk9KE5OqBENPuKPdOHth1OK -----END CERTIFICATE-----Generated at Sat Jun 14 17:52:44 2025 by rpki-client