$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: zs0yo+H75zMWX+aU0IMm7uRzSjPf5/UPoprYgV01gA4= Subject key identifier: E9:7C:95:3D:6D:F5:CA:CF:E8:90:26:AD:83:22:A4:CD:A6:A6:81:C2 Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 050A Signing time: Wed 18 Jun 2025 23:30:08 +0000 Manifest this update: Wed 18 Jun 2025 23:30:07 +0000 Manifest next update: Wed 25 Jun 2025 23:30:07 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: hUfkVDauIRxkkeUQvrHkPwYiY9BGwkleHbFYqON7dYk=) 2: 47B1CB6E460D11F091179886C4F9AE02.roa (hash: UJrloLrvsoge3wfmese2Zva7x1vRvjjKxNvEsNCfNYE=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: IKJkF5tTVOAg9Gcj+RMqJavUI1QmsLflBy8eIb93AAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Jun 18 23:30:07 2025 GMT Not After : Jun 25 23:30:07 2025 GMT Subject: CN=68534bff-4e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:95:70:2e:81:b0:8d:c3:ab:6c:cf:04:1d:cc: ee:6a:92:7f:e2:ec:1b:c1:f7:9c:19:57:07:5d:42: 9f:6b:e5:33:4c:a6:a9:e6:06:20:16:81:39:22:10: 36:95:79:e2:fb:a2:d1:23:b5:0b:3b:7d:ca:70:17: ca:f4:c6:a7:59:78:47:67:8e:f0:f0:a7:47:ff:1e: 85:67:8a:90:05:9e:ca:e8:10:91:0d:8c:fa:09:51: 1d:a7:9d:be:d6:bd:e1:f8:8d:53:d1:44:5b:5d:9b: fe:06:c4:1b:3d:d7:bd:83:da:78:64:6b:19:ce:2e: c9:f8:43:0e:0a:c1:34:da:b5:e4:5f:e3:22:9d:03: b8:33:10:e4:6c:27:87:3e:78:82:e4:1b:d9:5b:25: c1:48:d3:a3:69:c1:05:b6:3a:0c:3d:26:a5:17:80: 04:2b:c2:4e:83:1a:d7:ac:3e:b2:4e:3b:e9:17:fa: 91:07:e2:86:3d:e0:10:c5:00:8d:b9:98:24:13:5a: 22:33:90:1b:07:f3:31:6f:51:4d:ee:8f:7b:a8:bc: 7d:ee:e0:77:8c:74:95:77:9d:ab:e9:3a:9a:53:d8: 0d:c8:5a:a2:04:1a:fe:3b:ce:ae:b0:2a:98:cb:8e: fd:6d:03:89:a8:47:1c:74:e7:bd:04:ea:bd:a8:64: 38:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7C:95:3D:6D:F5:CA:CF:E8:90:26:AD:83:22:A4:CD:A6:A6:81:C2 X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:2b:0c:d6:e6:10:33:be:c6:8a:70:44:cb:4d:6f:e6:fb:05: 85:1a:7c:a9:04:88:2f:6f:76:fb:c7:35:f8:2c:f0:6c:b9:b3: f1:17:c5:ec:ed:2e:ae:53:19:da:25:ee:e0:f3:66:da:1c:cf: d7:97:2c:47:15:20:4b:23:fe:72:87:90:b3:53:b2:e7:19:4c: 8b:3c:21:21:52:d6:ca:37:97:37:9b:96:1d:2a:50:2c:b7:31: bc:84:73:f3:bc:2c:8e:2c:ac:d6:7a:5e:77:55:c5:e8:82:16: 5f:90:0d:e3:63:b5:f7:60:ae:63:10:2c:29:1d:54:70:4a:de: 61:88:ba:a5:ee:28:ae:d2:81:61:92:fc:7f:31:e1:4b:7e:45: 71:f2:d6:75:5b:74:86:58:03:eb:2b:d7:8c:91:d2:57:67:31: b5:a2:d3:78:8c:01:bf:5e:a1:0c:60:6d:12:16:b4:4c:9f:11: 3e:31:17:11:65:cb:b7:f9:95:3d:80:eb:f4:58:81:d8:4a:66: 90:cb:95:11:8d:e7:cb:0d:96:f9:d8:3e:eb:2d:c0:cc:ac:e9: 27:05:bd:45:5f:5d:a7:9f:a2:3d:84:ae:5d:78:41:42:be:73: 4c:55:22:42:80:e4:fe:40:fb:1f:0b:a8:90:96:72:14:c9:67: 17:41:ac:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUwNjE4MjMzMDA3WhcNMjUwNjI1MjMzMDA3WjAYMRYwFAYD VQQDEw02ODUzNGJmZi00ZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5VwLoGwjcOrbM8EHczuapJ/4uwbwfecGVcHXUKfa+UzTKap5gYgFoE5IhA2 lXni+6LRI7ULO33KcBfK9ManWXhHZ47w8KdH/x6FZ4qQBZ7K6BCRDYz6CVEdp52+ 1r3h+I1T0URbXZv+BsQbPde9g9p4ZGsZzi7J+EMOCsE02rXkX+MinQO4MxDkbCeH PniC5BvZWyXBSNOjacEFtjoMPSalF4AEK8JOgxrXrD6yTjvpF/qRB+KGPeAQxQCN uZgkE1oiM5AbB/Mxb1FN7o97qLx97uB3jHSVd52r6TqaU9gNyFqiBBr+O86usCqY y479bQOJqEccdOe9BOq9qGQ4UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOl8lT1t 9crP6JAmrYMipM2mpoHCMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOKwzW5hAzvsaKcETLTW/m+wWFGnypBIgvb3b7xzX4LPBsubPxF8Xs 7S6uUxnaJe7g82baHM/XlyxHFSBLI/5yh5CzU7LnGUyLPCEhUtbKN5c3m5YdKlAs tzG8hHPzvCyOLKzWel53VcXoghZfkA3jY7X3YK5jECwpHVRwSt5hiLql7iiu0oFh kvx/MeFLfkVx8tZ1W3SGWAPrK9eMkdJXZzG1otN4jAG/XqEMYG0SFrRMnxE+MRcR Zcu3+ZU9gOv0WIHYSmaQy5URjefLDZb52D7rLcDMrOknBb1FX12nn6I9hK5deEFC vnNMVSJCgOT+QPsfC6iQlnIUyWcXQaw+ -----END CERTIFICATE-----Generated at Thu Jun 19 01:34:01 2025 by rpki-client