$ rpki-client -vvf rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft File: I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft (raw, json) Hash identifier: HVguQMuVFyEgCaRejIh2O/1oa/vBGfp/U9sFV6x4qO8= Subject key identifier: 20:4A:61:1E:22:7A:1A:77:28:EF:52:9D:CA:EF:50:D5:FE:11:BC:F7 Authority key identifier: 23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 Certificate issuer: /CN=A91122B3/serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft Manifest number: 9D Signing time: Fri 13 Jun 2025 05:13:39 +0000 Manifest this update: Fri 13 Jun 2025 05:13:39 +0000 Manifest next update: Fri 20 Jun 2025 05:13:39 +0000 Files and hashes: 1: I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl (hash: 9QbdIZSRzRbeyW4TggmMsL/w2/cBQX9Dr8SVbTCBdJk=) 2: AA5E96065B9F11EF9F1B175DC4F9AE02.roa (hash: 835GCMndjNXvDx8DWI9YwArs6Gdw+YBn2q/Ep2PzpX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91122B3, serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Validity Not Before: Jun 13 05:13:39 2025 GMT Not After : Jun 20 05:13:39 2025 GMT Subject: CN=684bb383-38b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:40:d8:65:c7:65:44:c1:f7:bb:53:1d:5d:de: af:ba:1b:d2:df:d2:f6:4b:d7:43:ab:42:e5:d1:8b: 36:6d:5d:41:3f:f0:2d:67:b5:ac:40:c2:6d:c0:10: 86:95:57:eb:6a:50:56:b9:3c:ca:e2:42:48:68:f0: fb:99:e9:bb:79:47:4d:c6:ba:f6:5d:fe:04:9c:09: 67:df:d1:af:46:2b:48:92:e3:0a:96:cc:10:91:a3: 81:cd:34:6c:13:9a:f8:cb:7c:5f:ee:d8:ef:a7:5b: 29:4b:f7:3a:f2:40:07:25:ee:5f:cd:01:47:8b:0d: 53:7f:14:c7:25:30:cf:72:9a:d2:55:4e:df:0c:24: d6:85:52:f5:22:64:be:7f:89:c5:89:e0:08:2b:7e: e5:a7:89:fd:60:51:9e:1c:55:95:18:30:63:d9:3e: c8:76:6a:d1:9a:ec:72:10:88:86:49:1a:74:c4:3f: 01:ca:32:b3:9c:9b:ad:85:10:0f:aa:c8:0e:ba:4a: 80:97:aa:55:54:2b:29:67:db:6f:8b:e6:c4:75:3c: 73:ce:56:db:b9:65:fe:45:97:c8:a0:8f:2b:b1:c5: fd:25:93:11:f8:84:78:c0:4a:40:f6:95:f7:88:02: d6:ce:54:51:09:d9:44:91:21:90:56:7f:f7:e1:25: ba:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:4A:61:1E:22:7A:1A:77:28:EF:52:9D:CA:EF:50:D5:FE:11:BC:F7 X509v3 Authority Key Identifier: keyid:23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ad:ab:49:bc:86:65:f9:69:e5:2c:b1:32:8d:1d:af:39:94: a8:0e:18:95:83:c9:da:77:4d:5e:a1:4d:b2:84:42:2b:ad:f8: dc:f0:b4:36:6a:52:2f:fd:19:7c:14:5b:dc:ad:a7:fa:1a:97: 49:4d:7f:06:88:ec:ad:bf:55:7e:d1:fc:6d:99:19:b2:66:87: 4c:39:05:07:37:3f:60:03:8d:c2:31:41:c8:b9:f0:71:72:d6: bf:53:2c:51:00:11:6b:59:34:bf:69:9c:4c:08:fb:b6:01:b3: 93:18:bd:42:4c:37:59:ce:29:d9:59:ba:76:a4:de:3f:73:d6: 79:2a:e0:4d:6a:79:ef:0d:ce:ed:3e:2d:c6:f4:d9:3d:c6:e9: bb:18:27:2c:b4:1c:87:5a:f2:e1:22:14:2d:22:1d:11:d6:17: ff:cb:0e:a0:cd:b5:f4:3d:03:13:51:8a:9e:1b:25:ba:b8:b6: 57:1d:89:6c:44:95:c6:35:04:1e:f8:e8:bb:59:87:39:6c:2c: de:dc:54:e6:fa:52:f5:74:9d:af:3e:5b:4c:f4:37:76:4d:e8: 7a:a3:81:5f:c2:aa:12:2f:91:ea:f3:24:ba:17:0c:a3:b1:25: 5c:50:3b:27:d3:fc:8b:59:a0:da:95:d5:dd:be:77:1b:f5:c7: c5:ba:a4:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIyQjMxMTAvBgNVBAUTKDIzQzBCMkQ3QUNFMTA5RDNERkU4M0FFQkVGMkVBMzE0 OUM1Q0FDMTcwHhcNMjUwNjEzMDUxMzM5WhcNMjUwNjIwMDUxMzM5WjAYMRYwFAYD VQQDEw02ODRiYjM4My0zOGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUDYZcdlRMH3u1MdXd6vuhvS39L2S9dDq0Ll0Ys2bV1BP/AtZ7WsQMJtwBCG lVfralBWuTzK4kJIaPD7mem7eUdNxrr2Xf4EnAln39GvRitIkuMKlswQkaOBzTRs E5r4y3xf7tjvp1spS/c68kAHJe5fzQFHiw1TfxTHJTDPcprSVU7fDCTWhVL1ImS+ f4nFieAIK37lp4n9YFGeHFWVGDBj2T7IdmrRmuxyEIiGSRp0xD8ByjKznJuthRAP qsgOukqAl6pVVCspZ9tvi+bEdTxzzlbbuWX+RZfIoI8rscX9JZMR+IR4wEpA9pX3 iALWzlRRCdlEkSGQVn/34SW6nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBKYR4i ehp3KO9SncrvUNX+Ebz3MB8GA1UdIwQYMBaAFCPAstes4QnT3+g66+8uoxScXKwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjJCMy81RTRENDc2MjVC OUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENkUGY2RHJyN3k2akZKeGNy QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4Q3kxNnpoQ2RQZjZEcnI3eTZqRkp4Y3JCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjJCMy81RTRENDc2MjVCOUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENk UGY2RHJyN3k2akZKeGNyQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABratJvIZl+WnlLLEyjR2vOZSoDhiVg8nad01eoU2yhEIrrfjc8LQ2 alIv/Rl8FFvcraf6GpdJTX8GiOytv1V+0fxtmRmyZodMOQUHNz9gA43CMUHIufBx cta/UyxRABFrWTS/aZxMCPu2AbOTGL1CTDdZzinZWbp2pN4/c9Z5KuBNannvDc7t Pi3G9Nk9xum7GCcstByHWvLhIhQtIh0R1hf/yw6gzbX0PQMTUYqeGyW6uLZXHYls RJXGNQQe+Oi7WYc5bCze3FTm+lL1dJ2vPltM9Dd2Teh6o4FfwqoSL5Hq8yS6Fwyj sSVcUDsn0/yLWaDaldXdvncb9cfFuqRi -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:44 2025 by rpki-client