$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json) Hash identifier: x6LRZRQdhnWBat4vGAdIaqtijGcwk5Z3IjYzS5iYcMg= Subject key identifier: 1F:7F:77:F5:0A:7C:AF:01:12:BC:76:04:EF:6B:0D:03:77:9B:30:E3 Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft Manifest number: 0499 Signing time: Sat 14 Jun 2025 23:42:45 +0000 Manifest this update: Sat 14 Jun 2025 23:42:44 +0000 Manifest next update: Sat 21 Jun 2025 23:42:44 +0000 Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: 6yGYdGr5Vyq9jMguvECO0JXfcYZktdEex8nj4qhBDTs=) 2: F9343F063B0911EC82AE0828C4F9AE02.roa (hash: pIsS/aAz3NlTfiRznLCHJWwJfZnRVJbtBleuPSnoEO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913097A, serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Validity Not Before: Jun 14 23:42:44 2025 GMT Not After : Jun 21 23:42:44 2025 GMT Subject: CN=684e08f5-0261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:27:e3:3e:c3:6f:a9:9f:df:da:4a:e6:ea: 14:57:17:d3:6b:da:c2:c8:ec:f4:4b:ed:aa:f2:4a: fc:21:34:a3:34:2d:bb:3f:b6:32:f9:bf:85:38:a1: 4f:6c:97:96:97:1c:62:15:c6:8a:09:31:c3:41:7a: b8:63:86:86:f2:b0:53:81:dc:a3:98:2e:66:6f:0f: be:39:eb:7c:e9:f7:96:c0:b6:ea:cd:45:de:de:cf: 18:43:0d:0c:58:f8:6f:4b:91:65:6a:7d:01:c0:06: 39:6c:18:5c:8d:bb:23:82:69:48:f5:cc:50:5a:3a: 17:56:f3:2a:24:a3:fd:0c:9e:c5:df:72:47:92:e6: 2d:cb:31:9f:a9:ff:99:7a:d8:ae:9c:81:5d:d2:b7: 80:f0:45:c3:b3:f2:6b:40:b0:d6:9c:0c:6a:de:e3: 79:31:dd:bb:fb:d9:07:46:ec:ce:8f:f4:4d:50:a5: b2:47:c9:7a:ca:54:68:aa:ed:68:4e:46:98:f6:09: cf:6e:33:f8:1b:37:59:e2:31:73:56:d5:15:14:98: bd:27:50:b3:99:b9:2c:4e:ff:07:a8:53:d2:38:c8: 6b:ee:7f:02:f7:5e:dc:a2:0c:62:b3:78:35:b9:36: 93:72:f7:0b:55:5d:5d:8c:fe:4a:e6:4e:c6:72:c2: 3b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:7F:77:F5:0A:7C:AF:01:12:BC:76:04:EF:6B:0D:03:77:9B:30:E3 X509v3 Authority Key Identifier: keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:9b:17:cd:94:a8:90:3e:56:f3:24:21:e0:74:8a:f1:6f:9e: 42:ab:e4:20:4e:4f:57:9d:bc:a9:6c:0e:72:b3:5e:3a:67:64: b6:c3:be:03:a9:c4:2a:6a:ec:2c:89:0a:12:d3:d4:d1:b5:1b: 61:fa:78:2d:cd:b3:b9:9a:c1:e1:7b:7b:9f:38:85:17:8f:30: 87:50:96:6f:cb:b0:7d:57:b8:d6:98:62:81:61:b2:4f:c3:1d: a2:0b:c4:5a:8d:88:4f:1b:6f:0b:59:35:9f:c9:a9:e9:07:e7: 91:01:61:43:cc:c4:c5:75:3d:3c:2d:99:2a:8a:8a:c4:f9:ab: 5f:b5:b2:93:ad:5d:d8:3c:1a:31:d1:99:b4:87:2a:c7:c2:ff: 48:65:9d:22:f6:67:0b:86:96:92:ec:e8:7c:ae:08:8a:20:75: 2c:8e:2f:e2:94:fc:21:db:8f:83:20:84:e6:0a:67:c0:55:95: 64:11:0c:0c:8c:c3:9a:2e:f6:99:4b:ad:e1:e6:4f:23:26:77: 75:da:27:f3:b0:39:cb:b9:7f:13:dc:2e:e2:3f:73:d0:68:24: 0e:c7:ee:f4:e4:bc:67:7b:02:ee:65:d6:e8:a1:40:c7:51:b8: 1e:9f:df:b3:4b:80:5a:a6:32:3c:45:0a:d5:a9:b9:1c:2f:96: b3:40:f3:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA5N0ExMTAvBgNVBAUTKDg5NDM2NjNEQ0Y4MzA5RkEyNzRBNDY1MkZBODNBQkQy NkQ4NDI2NEYwHhcNMjUwNjE0MjM0MjQ0WhcNMjUwNjIxMjM0MjQ0WjAYMRYwFAYD VQQDEw02ODRlMDhmNS0wMjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEQn4z7Db6mf39pK5uoUVxfTa9rCyOz0S+2q8kr8ITSjNC27P7Yy+b+FOKFP bJeWlxxiFcaKCTHDQXq4Y4aG8rBTgdyjmC5mbw++Oet86feWwLbqzUXe3s8YQw0M WPhvS5Flan0BwAY5bBhcjbsjgmlI9cxQWjoXVvMqJKP9DJ7F33JHkuYtyzGfqf+Z etiunIFd0reA8EXDs/JrQLDWnAxq3uN5Md27+9kHRuzOj/RNUKWyR8l6ylRoqu1o TkaY9gnPbjP4GzdZ4jFzVtUVFJi9J1CzmbksTv8HqFPSOMhr7n8C917cogxis3g1 uTaTcvcLVV1djP5K5k7GcsI7LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9/d/UK fK8BErx2BO9rDQN3mzDjMB8GA1UdIwQYMBaAFIlDZj3Pgwn6J0pGUvqDq9JthCZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDk3QS82MTY3QTZEMjNC MDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENmb25Ta1pTLW9PcjBtMkVK azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVTm1QYy1EQ2ZvblNrWlMtb09yMG0yRUprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDk3QS82MTY3QTZEMjNCMDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENm b25Ta1pTLW9PcjBtMkVKazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4mxfNlKiQPlbzJCHgdIrxb55Cq+QgTk9XnbypbA5ys146Z2S2w74D qcQqauwsiQoS09TRtRth+ngtzbO5msHhe3ufOIUXjzCHUJZvy7B9V7jWmGKBYbJP wx2iC8RajYhPG28LWTWfyanpB+eRAWFDzMTFdT08LZkqiorE+atftbKTrV3YPBox 0Zm0hyrHwv9IZZ0i9mcLhpaS7Oh8rgiKIHUsji/ilPwh24+DIITmCmfAVZVkEQwM jMOaLvaZS63h5k8jJnd12ifzsDnLuX8T3C7iP3PQaCQOx+705LxnewLuZdbooUDH Ubgen9+zS4BapjI8RQrVqbkcL5azQPNR -----END CERTIFICATE-----Generated at Sun Jun 15 08:32:04 2025 by rpki-client