$ rpki-client -vvf rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft File: iavBOYslsdbOj_e_sysS6fCWc_k.mft (raw, json) Hash identifier: BUJFMgdqAPu+omru82RtDJdZBaRLwytaEEAjMOxHgA4= Subject key identifier: D6:01:CE:30:1F:64:F2:30:C5:7C:61:A6:62:EA:37:C0:1D:22:62:ED Authority key identifier: 89:AB:C1:39:8B:25:B1:D6:CE:8F:F7:BF:B3:2B:12:E9:F0:96:73:F9 Certificate issuer: /CN=A9143035/serialNumber=89ABC1398B25B1D6CE8FF7BFB32B12E9F09673F9 Certificate serial: 0464 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft Manifest number: 045F Signing time: Sat 14 Jun 2025 23:53:49 +0000 Manifest this update: Sat 14 Jun 2025 23:53:49 +0000 Manifest next update: Sat 21 Jun 2025 23:53:49 +0000 Files and hashes: 1: iavBOYslsdbOj_e_sysS6fCWc_k.crl (hash: kghZuZk3gp5oghnQJcfON5WiuRLCPbJJGkiFpeNea0U=) 2: 6B47EC68529E11EC9C7C2081C4F9AE02.roa (hash: RyLNM9Y2xKP2/pPGOLqXFeZG9/xveuZYuPTjdQJUT2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.crl rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143035, serialNumber=89ABC1398B25B1D6CE8FF7BFB32B12E9F09673F9 Validity Not Before: Jun 14 23:53:49 2025 GMT Not After : Jun 21 23:53:49 2025 GMT Subject: CN=684e0b8d-2e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:30:dd:05:42:ae:3c:66:34:05:81:9c:e6:86: 73:bc:9d:f1:9a:89:d8:85:d0:c2:91:71:cb:15:93: e5:7c:77:84:93:67:81:52:ef:1a:78:95:07:61:50: 3d:cd:21:2e:d9:6b:15:cc:da:52:90:ab:23:ab:cf: ae:1c:cd:2a:28:71:08:af:03:e7:c6:e5:91:86:fa: a6:56:68:16:f4:f8:8d:61:aa:6f:ea:23:7e:2f:39: 0b:aa:76:13:c2:c3:18:f4:92:f2:08:8e:d6:fc:ef: 1b:32:ef:ec:85:35:d7:6e:53:d2:98:bb:b2:f2:bd: d2:fa:e5:a4:5f:c7:aa:0f:12:0c:e6:a3:d3:e9:86: 6a:13:ca:ff:6c:3f:8a:67:87:b8:80:3f:66:39:08: 9a:ef:8a:fa:e4:fc:c4:45:28:ed:89:26:9b:80:2f: 3d:a5:a5:be:88:51:24:bf:b5:f5:f1:4b:40:ca:41: ab:a3:73:0e:59:ab:de:bd:81:41:c0:32:59:c8:72: 64:3f:4b:f5:a1:26:f2:e2:ed:6f:e8:30:f7:f3:bf: 88:f0:6d:75:17:b4:d0:bc:fa:a1:0e:87:82:b1:46: f9:33:b2:75:2f:31:5a:5b:9d:98:45:50:57:44:68: 68:41:96:11:a5:e7:8f:ad:00:75:3f:a8:18:2e:35: 40:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:01:CE:30:1F:64:F2:30:C5:7C:61:A6:62:EA:37:C0:1D:22:62:ED X509v3 Authority Key Identifier: keyid:89:AB:C1:39:8B:25:B1:D6:CE:8F:F7:BF:B3:2B:12:E9:F0:96:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:86:6f:65:52:5e:5d:1d:03:fb:8c:cb:c4:28:ad:0c:9a:33: 22:aa:4d:26:ab:a0:4e:38:e2:5a:cc:ad:52:1a:77:e2:b3:31: f4:a5:c0:90:8f:da:0e:59:b2:3b:aa:65:89:e7:03:a9:ef:49: dc:6f:d5:5d:3c:6a:dc:04:d5:d8:c7:82:b9:66:4f:eb:06:a6: 4b:64:8e:ba:b2:80:d0:75:4a:ec:7f:dd:3f:8b:3f:5c:fd:17: bb:c7:9f:30:ae:4f:c3:46:bd:81:ad:83:ba:d3:88:36:cf:ba: 35:b5:a5:46:55:ee:01:90:88:f0:17:1e:51:c8:ca:b7:40:c7: b6:84:56:b6:86:d1:58:81:d9:65:fb:ab:78:36:9b:32:c3:a8: 0d:36:2e:53:de:a7:5b:cb:b6:36:31:cb:41:1f:45:ec:75:39: 81:97:87:97:cc:70:ab:dc:9d:ab:10:7c:0e:5b:08:11:5c:f6: be:9e:b1:84:73:d7:c9:20:71:db:07:58:49:e6:88:f8:f3:fe: 3b:0a:1c:11:78:e7:96:a8:2d:dd:7f:82:4e:1c:b6:46:c4:ce: b8:24:5c:10:13:44:93:56:dd:2e:05:96:3c:55:b6:93:11:8e: ab:8f:94:f9:87:d5:4d:f5:d8:27:95:3a:0c:4e:5e:3e:aa:7c: 56:9f:1a:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMwMzUxMTAvBgNVBAUTKDg5QUJDMTM5OEIyNUIxRDZDRThGRjdCRkIzMkIxMkU5 RjA5NjczRjkwHhcNMjUwNjE0MjM1MzQ5WhcNMjUwNjIxMjM1MzQ5WjAYMRYwFAYD VQQDEw02ODRlMGI4ZC0yZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjDdBUKuPGY0BYGc5oZzvJ3xmonYhdDCkXHLFZPlfHeEk2eBUu8aeJUHYVA9 zSEu2WsVzNpSkKsjq8+uHM0qKHEIrwPnxuWRhvqmVmgW9PiNYapv6iN+LzkLqnYT wsMY9JLyCI7W/O8bMu/shTXXblPSmLuy8r3S+uWkX8eqDxIM5qPT6YZqE8r/bD+K Z4e4gD9mOQia74r65PzERSjtiSabgC89paW+iFEkv7X18UtAykGro3MOWavevYFB wDJZyHJkP0v1oSby4u1v6DD387+I8G11F7TQvPqhDoeCsUb5M7J1LzFaW52YRVBX RGhoQZYRpeePrQB1P6gYLjVACQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYBzjAf ZPIwxXxhpmLqN8AdImLtMB8GA1UdIwQYMBaAFImrwTmLJbHWzo/3v7MrEunwlnP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzAzNS8xOEM2MjkxMjUy OUIxMUVDOUEwQjBBN0RDNEY5QUUwMi9pYXZCT1lzbHNkYk9qX2Vfc3lzUzZmQ1dj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhdkJPWXNsc2RiT2pfZV9zeXNTNmZDV2Nfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzAzNS8xOEM2MjkxMjUyOUIxMUVDOUEwQjBBN0RDNEY5QUUwMi9pYXZCT1lzbHNk Yk9qX2Vfc3lzUzZmQ1djX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYhm9lUl5dHQP7jMvEKK0MmjMiqk0mq6BOOOJazK1SGnfiszH0pcCQ j9oOWbI7qmWJ5wOp70ncb9VdPGrcBNXYx4K5Zk/rBqZLZI66soDQdUrsf90/iz9c /Re7x58wrk/DRr2BrYO604g2z7o1taVGVe4BkIjwFx5RyMq3QMe2hFa2htFYgdll +6t4Npsyw6gNNi5T3qdby7Y2MctBH0XsdTmBl4eXzHCr3J2rEHwOWwgRXPa+nrGE c9fJIHHbB1hJ5oj48/47ChwReOeWqC3df4JOHLZGxM64JFwQE0STVt0uBZY8VbaT EY6rj5T5h9VN9dgnlToMTl4+qnxWnxq2 -----END CERTIFICATE-----Generated at Sun Jun 15 08:46:13 2025 by rpki-client