$ rpki-client -vvf rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft File: ijORleLOKXW194maPQLOYu-Rvzk.mft (raw, json) Hash identifier: qkCSty1kp7vjKAnmqDUGSx/YPDO2/azeoD33x8VoEkU= Subject key identifier: 79:69:F0:3A:20:FC:91:7C:90:BF:00:CC:7F:27:52:E6:C9:D9:3C:AE Authority key identifier: 8A:33:91:95:E2:CE:29:75:B5:F7:89:9A:3D:02:CE:62:EF:91:BF:39 Certificate issuer: /CN=A91183D4/serialNumber=8A339195E2CE2975B5F7899A3D02CE62EF91BF39 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft Manifest number: 026F Signing time: Tue 17 Jun 2025 01:18:21 +0000 Manifest this update: Tue 17 Jun 2025 01:18:21 +0000 Manifest next update: Tue 24 Jun 2025 01:18:21 +0000 Files and hashes: 1: ijORleLOKXW194maPQLOYu-Rvzk.crl (hash: hCACuM5oj7tUaRVGdl2Tslpw23mRRjbkEh/TiAqIjcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.crl rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91183D4, serialNumber=8A339195E2CE2975B5F7899A3D02CE62EF91BF39 Validity Not Before: Jun 17 01:18:21 2025 GMT Not After : Jun 24 01:18:21 2025 GMT Subject: CN=6850c25d-91bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:88:a3:fe:57:8e:3d:35:63:16:b8:eb:0a:52: a5:66:92:0a:c0:56:3a:68:0c:1c:58:a0:8c:94:60: 9c:a4:28:0d:58:4e:b0:34:c1:dd:22:07:8b:11:e0: bb:69:39:09:58:a4:6a:3d:f7:d3:03:e1:55:6b:f9: 94:7d:14:ef:71:40:aa:69:19:71:75:16:9e:33:7e: 17:e0:57:e4:a1:9f:0b:13:8b:55:ce:c5:a2:10:2d: c0:ce:5f:de:c9:80:74:79:ff:1c:1a:bd:c4:63:e4: 3d:3b:96:e1:fc:a3:b5:e4:c1:1e:30:48:32:3c:7d: ae:9f:25:a0:e3:05:25:0e:e4:d1:fe:65:c3:bc:d3: fe:10:d3:d6:7e:61:bf:89:4a:6f:e6:8d:97:3c:23: 4f:82:90:42:68:4c:ff:17:0b:88:92:54:fb:c1:6d: b7:84:f2:97:b8:02:37:74:50:cc:70:13:86:1a:7d: 73:ed:54:62:1f:2e:c6:25:08:5c:c1:36:66:44:33: 60:e7:05:96:7d:87:c7:9d:b9:52:6f:47:53:82:aa: 05:87:78:d8:7f:1c:37:e7:c6:37:28:d6:8b:e9:d8: 0f:60:ca:b4:88:67:18:fc:5e:17:25:ed:4a:f6:63: dc:f7:01:95:97:c8:58:93:03:15:6d:ce:47:5c:b2: fa:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:69:F0:3A:20:FC:91:7C:90:BF:00:CC:7F:27:52:E6:C9:D9:3C:AE X509v3 Authority Key Identifier: keyid:8A:33:91:95:E2:CE:29:75:B5:F7:89:9A:3D:02:CE:62:EF:91:BF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e7:dd:78:8c:0e:af:32:20:ca:00:7e:06:50:f3:c1:60:51: 40:f6:a1:27:b0:c1:67:a8:0a:5a:f6:61:e5:36:8b:9f:78:45: 16:7c:c8:5c:0c:01:48:5a:ed:9a:eb:d2:17:ae:db:68:e2:f5: 9d:e8:6f:e8:89:26:b6:a9:d6:b4:a4:4b:10:e7:01:b7:fa:2a: a6:1e:7e:63:2c:19:cd:7d:34:02:96:81:17:a0:b9:be:29:24: 79:f2:3d:ec:04:89:e8:94:33:f1:c6:22:bd:c5:a7:b5:4e:ec: f9:5c:8b:b9:79:e3:b5:33:ee:d3:31:e9:5b:a6:2b:fc:9d:d0: 2b:18:7e:7b:9b:46:7a:ea:7f:1e:f5:96:af:df:06:be:dc:68: e9:82:82:0c:cd:a0:2a:56:20:9f:ab:fc:8c:b5:ea:5a:c8:6f: 5d:fe:84:64:91:bc:bc:7f:e7:7d:5e:53:f6:ab:1b:82:b3:75: ee:e4:c9:f7:26:1a:36:2f:b0:32:cf:1e:9d:bb:92:55:85:10: 9c:1e:75:c6:c3:54:89:bc:5d:7f:5f:36:3b:c9:1f:2c:55:94: 25:de:26:9d:a4:a4:1a:1a:4e:4a:1d:b2:59:52:03:49:0b:f1: 4f:e2:d7:0b:e4:98:3e:05:9c:7b:0f:85:8c:6f:78:92:44:bc: c2:ba:b5:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzRDQxMTAvBgNVBAUTKDhBMzM5MTk1RTJDRTI5NzVCNUY3ODk5QTNEMDJDRTYy RUY5MUJGMzkwHhcNMjUwNjE3MDExODIxWhcNMjUwNjI0MDExODIxWjAYMRYwFAYD VQQDEw02ODUwYzI1ZC05MWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIij/leOPTVjFrjrClKlZpIKwFY6aAwcWKCMlGCcpCgNWE6wNMHdIgeLEeC7 aTkJWKRqPffTA+FVa/mUfRTvcUCqaRlxdRaeM34X4FfkoZ8LE4tVzsWiEC3Azl/e yYB0ef8cGr3EY+Q9O5bh/KO15MEeMEgyPH2unyWg4wUlDuTR/mXDvNP+ENPWfmG/ iUpv5o2XPCNPgpBCaEz/FwuIklT7wW23hPKXuAI3dFDMcBOGGn1z7VRiHy7GJQhc wTZmRDNg5wWWfYfHnblSb0dTgqoFh3jYfxw358Y3KNaL6dgPYMq0iGcY/F4XJe1K 9mPc9wGVl8hYkwMVbc5HXLL6DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlp8Dog /JF8kL8AzH8nUubJ2TyuMB8GA1UdIwQYMBaAFIozkZXizil1tfeJmj0CzmLvkb85 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODNENC9GNkJFODY5NjE0 QUMxMUVEODNBNzZFNTlDNEY5QUUwMi9pak9SbGVMT0tYVzE5NG1hUFFMT1l1LVJ2 emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lqT1JsZUxPS1hXMTk0bWFQUUxPWXUtUnZ6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODNENC9GNkJFODY5NjE0QUMxMUVEODNBNzZFNTlDNEY5QUUwMi9pak9SbGVMT0tY VzE5NG1hUFFMT1l1LVJ2emsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ5914jA6vMiDKAH4GUPPBYFFA9qEnsMFnqApa9mHlNoufeEUWfMhc DAFIWu2a69IXrtto4vWd6G/oiSa2qda0pEsQ5wG3+iqmHn5jLBnNfTQCloEXoLm+ KSR58j3sBInolDPxxiK9xae1Tuz5XIu5eeO1M+7TMelbpiv8ndArGH57m0Z66n8e 9Zav3wa+3GjpgoIMzaAqViCfq/yMtepayG9d/oRkkby8f+d9XlP2qxuCs3Xu5Mn3 Jho2L7Ayzx6du5JVhRCcHnXGw1SJvF1/XzY7yR8sVZQl3iadpKQaGk5KHbJZUgNJ C/FP4tcL5Jg+BZx7D4WMb3iSRLzCurUa -----END CERTIFICATE-----Generated at Wed Jun 18 18:37:50 2025 by rpki-client