$ rpki-client -vvf rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft File: ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft (raw, json) Hash identifier: PDDcSaTMx9jUacf02ok1mqsBBwC6v83ROc2mjhrXwxw= Subject key identifier: BB:DD:16:D4:8C:D7:CE:B9:26:0C:F9:6A:95:FE:1B:44:9C:02:3C:B8 Authority key identifier: 22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 Certificate issuer: /CN=A911A828/serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft Manifest number: 01B5 Signing time: Fri 13 Jun 2025 02:08:26 +0000 Manifest this update: Fri 13 Jun 2025 02:08:26 +0000 Manifest next update: Fri 20 Jun 2025 02:08:26 +0000 Files and hashes: 1: ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl (hash: S/WmFzoffRXRrmcdYt+Vr8BV81IR+CZPcuAG6u7a7dg=) 2: E816DFFAA90111ED867DA161C4F9AE02.roa (hash: J+hbcg1f000uZywitLiVEmVwojqXye5u/Ee0tXQliec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A828, serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Validity Not Before: Jun 13 02:08:26 2025 GMT Not After : Jun 20 02:08:26 2025 GMT Subject: CN=684b881a-5d13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5e:2f:2b:9e:84:ce:02:3c:37:16:21:90:53: dc:0b:ed:f7:31:86:c7:4b:7e:4b:37:1e:e4:e4:d7: b8:82:f3:2f:c0:32:9b:e5:05:51:61:6e:dc:10:49: 27:56:6f:06:f6:12:12:b3:7b:14:39:9f:52:d3:a7: 5f:45:6f:bf:18:4a:d5:fe:ef:24:44:23:55:1a:19: 8b:99:f8:c8:7f:c8:2e:86:d8:67:1c:a1:28:73:70: 8f:30:e2:b7:f8:04:33:e6:4f:d7:8a:74:48:6f:a2: 4a:85:42:39:b5:91:91:26:48:45:51:19:d6:a7:f9: db:66:33:9a:3d:3b:dc:a9:ec:8d:92:c5:0a:93:43: 1e:c4:50:53:9d:62:70:8d:f8:94:81:52:4b:23:3e: f4:db:fc:d1:b9:b0:01:b7:ea:4e:65:3f:f0:20:eb: 86:53:81:be:eb:29:94:8a:22:18:60:be:7b:08:2a: 4d:fe:5b:7b:60:af:5f:00:7a:e8:ff:fc:4b:3c:c9: b5:b5:9a:94:1f:c4:1c:9b:5c:29:e0:88:f1:4c:41: fe:7d:9a:6e:f8:cf:dc:d5:67:c7:a5:5c:f2:36:ff: 4e:e7:7a:df:23:cb:cf:32:03:a1:47:a9:0d:d0:d2: 60:1a:eb:ce:bb:f9:08:38:09:95:88:94:44:a2:c9: cd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DD:16:D4:8C:D7:CE:B9:26:0C:F9:6A:95:FE:1B:44:9C:02:3C:B8 X509v3 Authority Key Identifier: keyid:22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:be:91:56:73:93:1e:86:14:3d:3b:c6:85:72:74:c1:f6:da: 65:a0:20:a7:e5:20:5f:9b:54:d2:c0:9a:fe:c9:ad:4a:5f:53: 73:35:88:ba:ac:64:73:f2:bd:5f:58:95:0d:a7:99:fc:c3:c2: 5f:e8:3a:08:8a:34:4e:77:b0:d4:6b:68:f7:32:9b:d7:c1:cb: e1:b3:cf:9e:47:f5:02:08:de:eb:03:6b:0f:6b:02:41:93:38: 80:ba:aa:32:93:a2:cb:31:ce:96:32:76:ac:d2:ea:cd:a0:00: 06:b5:f2:d5:5f:28:ad:0a:c1:92:d7:59:e8:db:ca:06:05:02: 8e:98:ac:3c:3b:e8:ac:4b:ec:8e:ff:38:3c:2d:d2:ef:65:3a: 9f:ff:87:5e:52:a5:0d:dc:b4:e0:75:37:5a:a8:12:e8:39:39: 3b:a8:94:25:25:11:0b:f8:62:c4:b9:ce:5e:de:0a:09:e6:84: ee:d8:e3:c3:98:ee:97:97:26:69:18:0d:e8:e5:b9:07:5a:cf: 83:32:b3:7c:f0:69:01:8b:38:0f:c3:8e:1c:2c:8c:f5:22:a6: dd:88:eb:58:72:f7:ea:32:9b:66:c7:42:7f:f3:2a:40:5c:da: 3c:0c:3c:ca:03:b4:48:f5:88:f4:76:00:e5:58:13:c7:0e:82: ec:e5:1c:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE4MjgxMTAvBgNVBAUTKDIyNjAzRDZBMzNGMDZFMEE5RDEwRkJCMUVEOUUxRDM3 NDkyNDcwMDEwHhcNMjUwNjEzMDIwODI2WhcNMjUwNjIwMDIwODI2WjAYMRYwFAYD VQQDEw02ODRiODgxYS01ZDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4l4vK56EzgI8NxYhkFPcC+33MYbHS35LNx7k5Ne4gvMvwDKb5QVRYW7cEEkn Vm8G9hISs3sUOZ9S06dfRW+/GErV/u8kRCNVGhmLmfjIf8guhthnHKEoc3CPMOK3 +AQz5k/XinRIb6JKhUI5tZGRJkhFURnWp/nbZjOaPTvcqeyNksUKk0MexFBTnWJw jfiUgVJLIz702/zRubABt+pOZT/wIOuGU4G+6ymUiiIYYL57CCpN/lt7YK9fAHro //xLPMm1tZqUH8Qcm1wp4IjxTEH+fZpu+M/c1WfHpVzyNv9O53rfI8vPMgOhR6kN 0NJgGuvOu/kIOAmViJREosnN3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvdFtSM 1865Jgz5apX+G0ScAjy4MB8GA1UdIwQYMBaAFCJgPWoz8G4KnRD7se2eHTdJJHAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTgyOC9EREY5MDA1QUE4 RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2JncWRFUHV4N1o0ZE4wa2tj QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ltQTlhalB3YmdxZEVQdXg3WjRkTjBra2NBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTgyOC9EREY5MDA1QUE4RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2Jn cWRFUHV4N1o0ZE4wa2tjQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3vpFWc5MehhQ9O8aFcnTB9tploCCn5SBfm1TSwJr+ya1KX1NzNYi6 rGRz8r1fWJUNp5n8w8Jf6DoIijROd7DUa2j3MpvXwcvhs8+eR/UCCN7rA2sPawJB kziAuqoyk6LLMc6WMnas0urNoAAGtfLVXyitCsGS11no28oGBQKOmKw8O+isS+yO /zg8LdLvZTqf/4deUqUN3LTgdTdaqBLoOTk7qJQlJREL+GLEuc5e3goJ5oTu2OPD mO6XlyZpGA3o5bkHWs+DMrN88GkBizgPw44cLIz1IqbdiOtYcvfqMptmx0J/8ypA XNo8DDzKA7RI9Yj0dgDlWBPHDoLs5Ryb -----END CERTIFICATE-----Generated at Sat Jun 14 19:00:09 2025 by rpki-client