$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: 3fqppTlC7eo3nXXvdJncT4Ak+yGURCNS8rV3VwR/Oi4= Subject key identifier: 9D:58:FA:55:A8:5D:27:A0:8B:6F:5F:36:DE:0F:A2:C6:A4:30:8A:3A Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 070B Signing time: Thu 12 Jun 2025 21:33:18 +0000 Manifest this update: Thu 12 Jun 2025 21:33:17 +0000 Manifest next update: Thu 19 Jun 2025 21:33:17 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: n8xs1zrf1+LYvUV+mdzOCryRpP2hgmRYyn2oP5cwezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Jun 12 21:33:17 2025 GMT Not After : Jun 19 21:33:17 2025 GMT Subject: CN=684b479d-6e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:65:6b:97:b7:5b:1b:1e:73:0c:66:fa:36:63: 50:c6:76:0d:db:78:7f:1d:1d:db:f4:71:9a:3e:f1: ed:b8:5a:1b:8f:0c:ea:7e:a8:e9:71:99:3f:5f:4b: c1:73:4c:f0:15:29:3c:de:81:46:36:c8:ed:94:c5: de:0d:80:ce:34:7c:43:ff:36:71:3b:37:a8:c9:8c: e8:5f:1c:03:c8:75:12:6e:3e:7e:1b:99:69:c8:ab: ff:f1:f0:a3:73:34:98:05:c2:c1:4d:31:d9:98:a8: 78:bd:64:8b:22:a7:57:06:1c:b3:96:3d:b9:83:08: c9:ab:9f:f9:6d:5e:f8:73:2b:a3:c7:20:86:5f:ca: b3:a4:f5:0c:16:6a:ce:e8:29:51:3d:52:13:0e:48: 59:79:40:79:52:fc:0d:9a:c6:26:34:7c:69:cb:3f: 2d:e6:05:ff:4d:fd:3e:eb:c3:fe:19:39:0a:a5:fe: 0d:05:82:64:03:c5:f8:e9:d7:ba:97:8b:06:1c:14: ab:67:60:fc:f0:ed:4c:bd:88:ae:b0:bc:ae:af:b8: d3:a2:6c:b4:52:df:c7:19:5f:a5:47:3e:db:d8:51: 47:c2:ba:6f:a1:ad:c7:e8:38:ca:66:95:d3:54:8c: 26:96:95:a5:01:40:b8:90:42:35:84:51:b4:3f:c1: 36:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:58:FA:55:A8:5D:27:A0:8B:6F:5F:36:DE:0F:A2:C6:A4:30:8A:3A X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:16:24:35:d0:db:e5:0f:87:d9:ab:e1:c4:e2:e8:7e:c1:6f: 73:d5:fd:2e:88:c5:db:55:d1:f4:2e:fc:07:b3:1d:20:1c:8b: b3:5a:00:6c:e6:1f:a1:9d:7b:34:7b:8b:c9:a1:64:46:43:d8: 9b:e6:ba:dc:ee:b9:14:8d:65:d4:9c:09:af:30:28:c1:a9:0d: e4:46:15:ed:90:d0:9e:1e:11:b9:75:4d:eb:7b:19:7c:61:8e: ce:cf:14:3f:b6:f7:2c:0d:0c:cc:0f:48:0f:4e:23:ef:65:60: e0:f9:4c:05:d6:15:2e:4a:38:ae:ed:ba:7d:63:d3:9a:20:d7: 39:a2:02:ea:f8:68:1a:4b:ef:b6:8d:ac:d8:66:1c:a5:5f:24: a4:fd:58:c6:0d:d0:e0:d8:db:f6:b6:3a:5c:b8:3a:0e:2a:9d: 37:a8:fb:de:e6:d1:18:0f:d0:5e:fa:6a:30:0b:04:ea:3a:ea: c7:12:a2:2e:98:ce:19:7f:f7:85:63:dd:f7:06:c6:7d:60:e1: 48:29:16:e6:1a:50:92:79:46:54:0b:e7:7b:69:d7:d6:29:29: 65:23:da:32:dc:27:e6:b1:3e:96:ab:94:6a:7f:61:b6:a0:48: a6:05:52:3e:47:d1:d5:c5:fb:5f:3e:cf:8f:9e:7a:83:41:cb: cf:14:0e:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUwNjEyMjEzMzE3WhcNMjUwNjE5MjEzMzE3WjAYMRYwFAYD VQQDEw02ODRiNDc5ZC02ZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mVrl7dbGx5zDGb6NmNQxnYN23h/HR3b9HGaPvHtuFobjwzqfqjpcZk/X0vB c0zwFSk83oFGNsjtlMXeDYDONHxD/zZxOzeoyYzoXxwDyHUSbj5+G5lpyKv/8fCj czSYBcLBTTHZmKh4vWSLIqdXBhyzlj25gwjJq5/5bV74cyujxyCGX8qzpPUMFmrO 6ClRPVITDkhZeUB5UvwNmsYmNHxpyz8t5gX/Tf0+68P+GTkKpf4NBYJkA8X46de6 l4sGHBSrZ2D88O1MvYiusLyur7jTomy0Ut/HGV+lRz7b2FFHwrpvoa3H6DjKZpXT VIwmlpWlAUC4kEI1hFG0P8E2OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1Y+lWo XSegi29fNt4PosakMIo6MB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2FiQ10NvlD4fZq+HE4uh+wW9z1f0uiMXbVdH0LvwHsx0gHIuzWgBs 5h+hnXs0e4vJoWRGQ9ib5rrc7rkUjWXUnAmvMCjBqQ3kRhXtkNCeHhG5dU3rexl8 YY7OzxQ/tvcsDQzMD0gPTiPvZWDg+UwF1hUuSjiu7bp9Y9OaINc5ogLq+GgaS++2 jazYZhylXySk/VjGDdDg2Nv2tjpcuDoOKp03qPve5tEYD9Be+mowCwTqOurHEqIu mM4Zf/eFY933BsZ9YOFIKRbmGlCSeUZUC+d7adfWKSllI9oy3CfmsT6Wq5Rqf2G2 oEimBVI+R9HVxftfPs+PnnqDQcvPFA4J -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:59 2025 by rpki-client