$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: PugjnXjXLOoOGnhx2Et8meAo2WNOyKWv+3CBpoYGaE0= Subject key identifier: 49:3B:B3:A6:4F:6B:23:B6:47:2C:65:D7:63:92:8A:FE:40:6D:63:D1 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 37 Signing time: Fri 13 Jun 2025 06:30:57 +0000 Manifest this update: Fri 13 Jun 2025 06:30:57 +0000 Manifest next update: Fri 20 Jun 2025 06:30:57 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: LZZuycICLaGzah2yfTC3ZAD0PzBjvIFThQLjiE69/ac=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Jun 13 06:30:57 2025 GMT Not After : Jun 20 06:30:57 2025 GMT Subject: CN=684bc5a1-a5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c4:d0:26:b2:58:39:87:48:82:a7:65:79:e1: e4:ab:ef:e1:bc:7d:9d:19:85:4d:16:9d:13:ae:83: bc:d8:fe:29:4e:fb:0e:bd:80:e8:8b:ec:80:5b:c4: be:e4:48:27:b5:e0:0b:bb:20:94:05:bd:20:cf:e5: 8d:0d:c2:18:01:11:c2:94:5a:e9:d2:3a:5d:34:54: 31:4b:f7:ef:c4:e0:ce:94:f5:88:72:44:cf:01:6c: bd:e7:67:f0:96:2f:37:34:dc:c5:c2:ca:74:2f:fa: 4e:51:dc:96:7a:ff:17:18:9a:88:44:ed:ae:1f:9d: b9:91:05:7e:44:54:ec:45:45:a5:11:29:34:8f:85: 0c:b8:fc:40:e8:5f:c6:be:22:ac:79:a8:94:d2:c1: 1e:f5:f3:31:a6:ad:b8:a3:a4:11:f1:e6:42:75:2c: 9d:5c:b0:de:0f:87:eb:15:56:10:c7:71:d1:7f:2f: 27:03:7e:da:53:5a:1a:18:14:3f:99:0d:c2:00:15: e9:28:57:7b:39:7f:ed:56:b3:66:9c:0e:72:4e:83: 30:1e:72:53:fb:a7:9b:e1:34:f5:71:f4:7a:6b:59: 23:a0:e9:1b:9d:60:9e:01:60:f8:bd:ae:85:6d:22: b0:ea:de:cb:b3:64:18:82:7d:dc:e3:17:47:0d:96: 0b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:3B:B3:A6:4F:6B:23:B6:47:2C:65:D7:63:92:8A:FE:40:6D:63:D1 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:64:1c:b5:24:ba:0e:77:6f:77:75:27:62:b5:bc:b3:9b:47: 5d:c9:57:7a:19:1d:a7:13:5a:2b:93:16:e6:68:eb:6a:69:e3: f1:29:c0:e7:ed:64:a6:66:69:67:dc:26:c0:4b:cf:39:ff:48: c9:c8:e9:d0:e8:89:f1:ea:a8:ed:a5:c3:d3:72:1e:a2:43:c9: 48:4e:26:be:7e:45:cc:16:22:ee:03:8c:de:70:21:e3:c8:34: 01:5e:e9:15:29:12:23:11:7a:e1:e0:aa:b9:d7:30:74:46:dc: 0d:ec:5f:8d:24:75:58:36:4a:5c:77:3e:77:9f:e6:23:f2:5f: 2f:9e:de:ff:da:66:39:54:61:6c:ec:69:4c:65:83:9b:53:0b: 2e:b7:c4:b1:d6:3c:c5:ae:c8:4f:c8:78:e5:e5:11:14:68:eb: 9e:e9:c1:50:25:04:a6:3e:57:a4:28:5b:b3:c0:53:5c:9e:16: 66:5c:42:c4:a6:2a:69:86:6c:87:1b:01:4d:95:51:9b:32:78: 2a:1a:91:fc:e9:c5:ab:40:16:ca:3a:a5:c1:d9:b5:31:cc:28: 67:4f:b4:da:8f:dc:5b:51:3e:57:e8:b8:d4:01:60:80:ca:16: 88:64:6c:6c:37:7c:2b:24:f1:86:e3:37:8f:c0:01:c5:7e:d0: 1a:9c:10:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTA2MTMwNjMwNTdaFw0yNTA2MjAwNjMwNTdaMBgxFjAUBgNV BAMTDTY4NGJjNWExLWE1YTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKxNAmslg5h0iCp2V54eSr7+G8fZ0ZhU0WnROug7zY/ilO+w69gOiL7IBbxL7k SCe14Au7IJQFvSDP5Y0NwhgBEcKUWunSOl00VDFL9+/E4M6U9YhyRM8BbL3nZ/CW Lzc03MXCynQv+k5R3JZ6/xcYmohE7a4fnbmRBX5EVOxFRaURKTSPhQy4/EDoX8a+ Iqx5qJTSwR718zGmrbijpBHx5kJ1LJ1csN4Ph+sVVhDHcdF/LycDftpTWhoYFD+Z DcIAFekoV3s5f+1Ws2acDnJOgzAeclP7p5vhNPVx9HprWSOg6RudYJ4BYPi9roVt IrDq3suzZBiCfdzjF0cNlgtRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSTuzpk9r I7ZHLGXXY5KK/kBtY9EwHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALRkHLUkug53b3d1J2K1vLObR13JV3oZHacTWiuTFuZo62pp4/EpwOft ZKZmaWfcJsBLzzn/SMnI6dDoifHqqO2lw9NyHqJDyUhOJr5+RcwWIu4DjN5wIePI NAFe6RUpEiMReuHgqrnXMHRG3A3sX40kdVg2Slx3Pnef5iPyXy+e3v/aZjlUYWzs aUxlg5tTCy63xLHWPMWuyE/IeOXlERRo657pwVAlBKY+V6QoW7PAU1yeFmZcQsSm KmmGbIcbAU2VUZsyeCoakfzpxatAFso6pcHZtTHMKGdPtNqP3FtRPlfouNQBYIDK FohkbGw3fCsk8YbjN4/AAcV+0BqcEAQ= -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:18 2025 by rpki-client