$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: WiOYi/DKMEwrhQl3kYRc9Of43IGZSTNi11yxGh17L3U= Subject key identifier: 7D:8F:C9:E0:CD:7E:40:53:08:BE:B7:08:69:A6:6C:65:36:B2:3E:6A Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 18AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 18A4 Signing time: Sat 14 Jun 2025 16:26:35 +0000 Manifest this update: Sat 14 Jun 2025 16:26:34 +0000 Manifest next update: Sat 21 Jun 2025 16:26:34 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: bEw3gt4DiktWd8TF61m3F3MGBvSnTMnnrZBAzJN1Rfg=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: cv0ZUc0lebxpCeCaHLbic5zL6MtIPbL3843SH+qN9Dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6317 (0x18ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Jun 14 16:26:34 2025 GMT Not After : Jun 21 16:26:34 2025 GMT Subject: CN=684da2ba-77e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:41:4f:b1:df:96:79:1e:3a:c0:9c:42:1e:e5: 6d:2d:6a:16:15:1a:56:65:19:77:ee:cc:fe:db:04: b3:5f:fd:35:00:23:76:5b:c5:37:ee:eb:90:5f:c2: 2c:01:94:3b:97:33:55:24:77:79:20:a3:b7:2b:c2: 4c:94:6f:72:7b:b8:dc:bf:c8:36:fd:7f:45:29:df: 7b:b4:98:b4:92:1a:e8:f3:89:c2:4b:3d:2e:15:f4: 57:95:fc:c0:94:a4:71:21:b2:1b:4d:28:c1:55:2d: de:ac:b2:c2:64:a9:a0:68:1a:e9:86:84:fd:bc:21: 73:62:ce:7d:9f:a9:48:64:b3:36:9d:cb:83:fa:10: 44:58:e7:ae:f9:2b:46:32:6c:d7:e7:e8:f2:62:68: ce:c0:d4:09:f0:3a:75:9f:77:87:ae:90:cd:5e:a5: 83:3b:7a:9d:62:30:d5:4d:48:0b:9b:79:3a:e6:f6: fe:9a:33:6b:b6:49:17:e7:2a:06:d3:2f:bc:b6:92: 68:0e:0b:0c:17:90:9f:4d:c0:8a:6d:2c:a4:1f:e2: 52:c8:6c:47:b7:1c:14:31:e5:e1:1e:cc:10:d6:1b: 57:ca:98:68:02:63:df:bb:43:01:57:cf:78:bc:47: 41:dd:24:cd:df:05:30:c1:eb:3e:81:f5:c2:be:f3: 68:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8F:C9:E0:CD:7E:40:53:08:BE:B7:08:69:A6:6C:65:36:B2:3E:6A X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:40:2e:c5:50:fc:ae:74:b7:b4:cb:4d:62:4b:92:39:c6:2d: c0:81:9d:5a:0b:07:0e:0e:bc:a5:7d:63:ca:83:f7:21:5f:b7: b5:01:cd:73:4c:c2:3a:44:b5:14:bb:f8:4b:a0:ce:ec:4f:c9: 04:b3:1f:e1:e2:71:22:fd:29:97:7f:9f:15:55:41:60:22:5b: f3:4e:ab:65:81:66:e0:bf:11:5a:c1:d5:c1:1b:64:dc:53:20: 01:a4:65:56:02:2c:aa:72:8c:79:46:9a:0b:49:c2:b6:8a:28: 59:1f:46:93:73:36:05:04:8e:db:a9:f2:31:c1:51:50:5f:45: 8a:02:8f:60:d2:6b:ee:c7:a5:af:85:c4:cc:93:8f:dd:c1:3d: 75:b9:b7:85:08:dd:ed:23:af:f2:e1:39:bb:94:70:cb:8e:b2: 95:40:a9:0c:00:90:81:71:d1:7b:09:ee:f6:f8:b6:ae:cf:ca: 11:3c:61:4a:00:30:1b:4c:a7:cb:80:b8:01:e7:1a:c1:01:c4: 42:4a:f5:f6:12:78:0e:ac:37:c7:81:bb:b7:d7:43:5f:fc:92: 2f:47:1a:dd:48:bc:d9:88:c4:ad:7b:36:bc:e6:fa:00:93:54: 0c:a5:97:a7:85:5d:d0:b2:b6:8e:36:80:45:91:d1:e4:87:9d: ca:1d:af:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUwNjE0MTYyNjM0WhcNMjUwNjIxMTYyNjM0WjAYMRYwFAYD VQQDEw02ODRkYTJiYS03N2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEFPsd+WeR46wJxCHuVtLWoWFRpWZRl37sz+2wSzX/01ACN2W8U37uuQX8Is AZQ7lzNVJHd5IKO3K8JMlG9ye7jcv8g2/X9FKd97tJi0khro84nCSz0uFfRXlfzA lKRxIbIbTSjBVS3erLLCZKmgaBrphoT9vCFzYs59n6lIZLM2ncuD+hBEWOeu+StG MmzX5+jyYmjOwNQJ8Dp1n3eHrpDNXqWDO3qdYjDVTUgLm3k65vb+mjNrtkkX5yoG 0y+8tpJoDgsMF5CfTcCKbSykH+JSyGxHtxwUMeXhHswQ1htXyphoAmPfu0MBV894 vEdB3STN3wUwwes+gfXCvvNoTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2PyeDN fkBTCL63CGmmbGU2sj5qMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByQC7FUPyudLe0y01iS5I5xi3AgZ1aCwcODrylfWPKg/chX7e1Ac1z TMI6RLUUu/hLoM7sT8kEsx/h4nEi/SmXf58VVUFgIlvzTqtlgWbgvxFawdXBG2Tc UyABpGVWAiyqcox5RpoLScK2iihZH0aTczYFBI7bqfIxwVFQX0WKAo9g0mvux6Wv hcTMk4/dwT11ubeFCN3tI6/y4Tm7lHDLjrKVQKkMAJCBcdF7Ce72+Lauz8oRPGFK ADAbTKfLgLgB5xrBAcRCSvX2EngOrDfHgbu310Nf/JIvRxrdSLzZiMSteza85voA k1QMpZenhV3QsraONoBFkdHkh53KHa8O -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:19 2025 by rpki-client