$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: rnU5HDpSmEVNwr88ciWME1n9kNvYPVcT6Air+b2T9no= Subject key identifier: B4:8F:9A:56:FC:7F:65:51:35:BB:3B:B9:62:51:1F:54:04:40:1F:A4 Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 05D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 05CB Signing time: Sat 14 Jun 2025 22:48:42 +0000 Manifest this update: Sat 14 Jun 2025 22:48:42 +0000 Manifest next update: Sat 21 Jun 2025 22:48:42 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: NcY2MwAhkh3dhKhb7Le5ZFROVoLDy4IyItVNQp4cBnA=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1489 (0x5d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: Jun 14 22:48:42 2025 GMT Not After : Jun 21 22:48:42 2025 GMT Subject: CN=684dfc4a-9656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1d:51:c5:ba:61:3f:85:34:11:f6:47:0d:09: d8:bb:08:47:ff:9f:8f:78:37:31:03:b4:89:22:f7: 59:f2:80:76:43:82:83:61:54:a0:6c:0b:69:27:77: 70:ac:a7:5e:c6:8d:3d:56:7e:51:47:40:a5:7f:ac: 0f:d1:5d:3f:62:a8:a9:4e:63:33:1e:96:3a:e1:d2: 5f:ac:e6:54:d7:23:ae:72:ad:f0:fb:12:08:59:e6: 69:86:d1:37:d9:e1:d1:7f:8f:2f:e5:6d:ba:17:63: bc:d1:cb:43:ff:d5:ae:06:9b:df:ad:ac:65:cb:ed: fc:7c:73:fd:75:b6:fd:3c:1e:7d:98:2a:50:4e:a1: 9b:0d:6b:a5:e0:f6:f2:89:d6:f5:59:75:5f:2d:99: 34:71:5e:d7:16:24:ff:40:3a:a1:a0:18:24:e6:45: fa:cd:5f:e3:7d:e0:b9:17:78:df:f2:9f:7d:cd:a2: d4:3a:81:63:08:bf:24:4c:68:d1:2e:be:7a:ce:ac: 39:91:ef:9b:99:88:4f:4a:7d:7e:1e:dc:96:9c:bc: c5:ec:97:a9:bc:72:4b:2a:6e:d5:54:d5:c3:4a:3e: 4b:ad:70:a7:ca:0b:f0:c2:7f:7c:37:c9:91:fe:c8: 38:d7:ee:3e:5d:f1:5f:08:1e:14:9d:52:7a:e9:00: ed:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8F:9A:56:FC:7F:65:51:35:BB:3B:B9:62:51:1F:54:04:40:1F:A4 X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:58:0f:6f:ec:a7:24:95:38:c9:fa:12:8d:75:5c:e9:f6:34: 3f:c7:a3:8d:f3:36:23:9a:3b:67:0c:2c:9b:10:08:88:a5:90: 5f:16:48:13:35:b8:95:4a:03:e9:b4:5e:3b:6f:e5:e0:b8:f3: 11:1a:ee:73:63:29:8e:1a:41:e4:d0:b9:3a:ab:2d:de:5a:89: 88:1e:b4:da:77:b6:bb:83:db:dc:40:c8:93:14:08:8f:af:b5: 2d:3a:35:16:72:b3:2a:2c:bb:cb:88:62:4c:d0:d2:aa:46:f2: ae:60:ff:a8:a2:19:49:5b:db:e2:ed:f9:79:22:fc:04:e7:4a: cf:51:51:8e:d1:20:de:c1:0c:99:a1:b9:bf:25:9d:9f:fe:3e: 46:77:db:a9:3f:37:eb:a6:02:78:9f:af:8e:49:f8:49:cb:a6: ef:4c:51:fc:6d:49:62:e6:3f:85:20:df:70:c1:38:69:e4:f4: f1:ed:70:bd:67:8f:5e:5d:32:ea:be:32:a7:a1:21:cf:e6:64: 1e:87:ae:0c:20:87:93:ac:11:87:89:58:ee:c3:82:7f:3d:3a: 1b:21:eb:b4:4b:03:62:d5:bd:c4:ef:d2:f1:e2:49:8a:d0:08: 27:4b:09:22:00:bb:7b:08:04:4b:2f:f2:29:36:51:63:41:1a: f8:73:df:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUwNjE0MjI0ODQyWhcNMjUwNjIxMjI0ODQyWjAYMRYwFAYD VQQDEw02ODRkZmM0YS05NjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzR1RxbphP4U0EfZHDQnYuwhH/5+PeDcxA7SJIvdZ8oB2Q4KDYVSgbAtpJ3dw rKdexo09Vn5RR0Clf6wP0V0/YqipTmMzHpY64dJfrOZU1yOucq3w+xIIWeZphtE3 2eHRf48v5W26F2O80ctD/9WuBpvfraxly+38fHP9dbb9PB59mCpQTqGbDWul4Pby idb1WXVfLZk0cV7XFiT/QDqhoBgk5kX6zV/jfeC5F3jf8p99zaLUOoFjCL8kTGjR Lr56zqw5ke+bmYhPSn1+HtyWnLzF7JepvHJLKm7VVNXDSj5LrXCnygvwwn98N8mR /sg41+4+XfFfCB4UnVJ66QDtQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSPmlb8 f2VRNbs7uWJRH1QEQB+kMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzWA9v7KcklTjJ+hKNdVzp9jQ/x6ON8zYjmjtnDCybEAiIpZBfFkgT NbiVSgPptF47b+XguPMRGu5zYymOGkHk0Lk6qy3eWomIHrTad7a7g9vcQMiTFAiP r7UtOjUWcrMqLLvLiGJM0NKqRvKuYP+oohlJW9vi7fl5IvwE50rPUVGO0SDewQyZ obm/JZ2f/j5Gd9upPzfrpgJ4n6+OSfhJy6bvTFH8bUli5j+FIN9wwThp5PTx7XC9 Z49eXTLqvjKnoSHP5mQeh64MIIeTrBGHiVjuw4J/PTobIeu0SwNi1b3E79Lx4kmK 0AgnSwkiALt7CARLL/IpNlFjQRr4c9+i -----END CERTIFICATE-----Generated at Sun Jun 15 05:00:19 2025 by rpki-client