$ rpki-client -vvf rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft File: IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft (raw, json) Hash identifier: O7JSO4QvltQhFeWv1B6Jmg1dZSKJ9d0LGPqvVX2OFpc= Subject key identifier: 8E:08:36:D2:06:33:4D:66:B7:F1:06:38:C7:08:B8:34:84:11:05:38 Authority key identifier: 21:F2:02:27:55:9D:B1:F8:63:84:9A:B6:43:23:3C:3E:93:57:76:A6 Certificate issuer: /CN=A91159B7/serialNumber=21F20227559DB1F863849AB643233C3E935776A6 Certificate serial: 0D0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft Manifest number: 0D02 Signing time: Sat 14 Jun 2025 17:58:44 +0000 Manifest this update: Sat 14 Jun 2025 17:58:43 +0000 Manifest next update: Sat 21 Jun 2025 17:58:43 +0000 Files and hashes: 1: IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl (hash: mefwlCIVcxArwluVQ4mTBrOt/FwUPsG1KWQgOFxqYsI=) 2: 7FC0801ED4EF11EC84AABC0CC4F9AE02.roa (hash: JfyJc8hrLZucoRHk+LPv3mbsPGDOx4vwQyrUYoddmy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3342 (0xd0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91159B7, serialNumber=21F20227559DB1F863849AB643233C3E935776A6 Validity Not Before: Jun 14 17:58:43 2025 GMT Not After : Jun 21 17:58:43 2025 GMT Subject: CN=684db853-000a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e4:b8:70:3a:3e:21:2d:d6:85:c8:76:cf:55: e6:50:ad:38:51:98:c4:9e:0e:0f:73:02:f9:22:9a: c2:82:59:99:0c:b8:b7:b1:b7:c4:06:d2:f8:22:4c: 56:0a:98:25:30:d4:10:59:2e:45:13:64:ba:6c:53: be:f3:9c:e0:05:ce:2b:38:ca:44:c8:98:92:ff:ad: 27:88:e0:a8:ea:ed:e0:c4:a0:5e:23:17:09:dc:9a: 22:36:c9:0d:fe:74:1c:58:ac:27:ad:0e:53:19:89: ab:5d:d3:66:0a:58:63:1d:7f:4f:1e:b2:f9:1a:fc: a2:43:b9:d4:b5:b6:f3:1c:6d:66:29:58:e7:3b:e4: 16:d0:18:40:b7:5c:2c:d6:d2:3e:27:5a:c1:1c:11: 6c:e9:de:04:0f:07:41:43:70:06:3a:f0:62:ab:14: 5e:82:15:35:6d:57:58:2f:d9:0e:15:e0:38:3e:57: 8f:51:35:58:39:06:d5:0b:23:b9:d5:6b:17:8c:66: 6f:81:be:57:ff:7f:86:86:a3:b8:a8:03:84:ea:d4: a3:d8:e4:cc:ae:9f:c5:10:55:eb:49:53:eb:56:91: 66:8b:ea:40:e9:e6:97:bd:19:16:28:a4:1d:5d:8e: 19:8d:41:d4:9e:4e:a9:d3:30:0a:43:59:3d:b8:63: 23:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:08:36:D2:06:33:4D:66:B7:F1:06:38:C7:08:B8:34:84:11:05:38 X509v3 Authority Key Identifier: keyid:21:F2:02:27:55:9D:B1:F8:63:84:9A:B6:43:23:3C:3E:93:57:76:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:23:3f:68:bf:ab:0e:01:ed:8c:f7:fe:e7:80:d8:d1:b5:b5: 30:ba:24:4d:5c:cd:fc:97:a5:ff:65:45:36:04:68:c2:81:f2: 37:c4:7b:f3:ff:58:bf:33:22:b0:7b:99:e1:ca:cf:00:89:0a: 8a:d7:21:49:4f:6c:11:8a:75:9a:e2:6a:46:c9:8f:0b:5c:49: 4f:6a:45:4e:13:41:2a:24:99:85:1b:a5:72:a3:9b:ca:50:c4: 27:e6:67:bc:0e:5d:ca:aa:cb:11:65:05:b2:36:c0:89:3e:1d: ef:4f:83:63:4d:7f:83:60:c1:15:74:07:6f:11:c9:5a:11:bc: 77:54:78:bc:fc:91:b1:20:07:99:bb:4f:23:8f:07:e6:e0:79: 2c:25:ae:9a:02:d2:3a:c3:f3:20:48:ef:42:b4:56:4f:47:76: b7:31:54:55:48:c5:ed:3d:c7:fb:70:cd:6f:e8:02:d3:dc:f9: e2:6c:64:d7:b7:24:a0:11:cc:63:a5:ff:c7:c7:40:2a:cf:c1: 6b:18:30:98:a4:61:7c:18:0c:f7:bc:86:b3:f9:39:c9:8b:1f: 7e:96:8a:18:0f:37:38:17:d6:db:04:9d:45:6a:68:df:6a:1b: 43:73:c2:04:e7:67:41:b6:3c:2f:38:a0:c3:0e:67:b0:84:a0: f1:b3:f4:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU5QjcxMTAvBgNVBAUTKDIxRjIwMjI3NTU5REIxRjg2Mzg0OUFCNjQzMjMzQzNF OTM1Nzc2QTYwHhcNMjUwNjE0MTc1ODQzWhcNMjUwNjIxMTc1ODQzWjAYMRYwFAYD VQQDEw02ODRkYjg1My0wMDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uS4cDo+IS3Whch2z1XmUK04UZjEng4PcwL5IprCglmZDLi3sbfEBtL4IkxW CpglMNQQWS5FE2S6bFO+85zgBc4rOMpEyJiS/60niOCo6u3gxKBeIxcJ3JoiNskN /nQcWKwnrQ5TGYmrXdNmClhjHX9PHrL5GvyiQ7nUtbbzHG1mKVjnO+QW0BhAt1ws 1tI+J1rBHBFs6d4EDwdBQ3AGOvBiqxReghU1bVdYL9kOFeA4PlePUTVYOQbVCyO5 1WsXjGZvgb5X/3+GhqO4qAOE6tSj2OTMrp/FEFXrSVPrVpFmi+pA6eaXvRkWKKQd XY4ZjUHUnk6p0zAKQ1k9uGMjdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4INtIG M01mt/EGOMcIuDSEEQU4MB8GA1UdIwQYMBaAFCHyAidVnbH4Y4SatkMjPD6TV3am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTlCNy9BNEVDNTNGNkUy QjAxMUU5OUFCQjgxNTFDNEY5QUUwMi9JZklDSjFXZHNmaGpoSnEyUXlNOFBwTlhk cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmSUNKMVdkc2ZoamhKcTJReU04UHBOWGRxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTlCNy9BNEVDNTNGNkUyQjAxMUU5OUFCQjgxNTFDNEY5QUUwMi9JZklDSjFXZHNm aGpoSnEyUXlNOFBwTlhkcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtIz9ov6sOAe2M9/7ngNjRtbUwuiRNXM38l6X/ZUU2BGjCgfI3xHvz /1i/MyKwe5nhys8AiQqK1yFJT2wRinWa4mpGyY8LXElPakVOE0EqJJmFG6Vyo5vK UMQn5me8Dl3KqssRZQWyNsCJPh3vT4NjTX+DYMEVdAdvEclaEbx3VHi8/JGxIAeZ u08jjwfm4HksJa6aAtI6w/MgSO9CtFZPR3a3MVRVSMXtPcf7cM1v6ALT3PnibGTX tySgEcxjpf/Hx0Aqz8FrGDCYpGF8GAz3vIaz+TnJix9+looYDzc4F9bbBJ1Famjf ahtDc8IE52dBtjwvOKDDDmewhKDxs/R5 -----END CERTIFICATE-----Generated at Sat Jun 14 19:21:50 2025 by rpki-client