$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: DXJ4vD8kDKI3odn4D+7oGElOKWfUDZCOfuf8iP0ZPNc= Subject key identifier: 3B:20:93:CB:48:A9:2C:08:A2:59:1E:44:85:F7:85:46:80:90:86:57 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0353 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 034F Signing time: Sun 15 Jun 2025 00:43:07 +0000 Manifest this update: Sun 15 Jun 2025 00:43:07 +0000 Manifest next update: Sun 22 Jun 2025 00:43:07 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: zrzYeXZy8HBnVU5YH7q1X0jmDGAOnRkrC6hlvlxOeWo=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 851 (0x353) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Jun 15 00:43:07 2025 GMT Not After : Jun 22 00:43:07 2025 GMT Subject: CN=684e171b-f8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:fb:9a:23:76:94:d0:ed:79:3d:db:8b:fe: df:34:c9:c5:cb:88:f3:b9:e0:3d:58:9b:72:4a:fd: ae:4f:31:cb:78:74:15:36:7e:fa:d1:c6:1c:7b:7d: 65:38:46:6d:87:2e:fb:f0:8d:03:b2:5f:44:d9:8d: 23:bc:a9:10:87:59:61:95:09:79:91:7e:50:ad:66: 8e:b8:ce:fd:26:4e:63:1f:ce:ff:8b:d9:f0:30:64: db:d3:c8:39:67:26:71:cf:5d:cd:8e:1d:73:7c:70: 69:fa:10:7a:b2:8d:d4:ee:23:72:8a:6d:20:c4:c8: 43:47:26:b3:e7:36:18:6d:0c:02:70:b8:b3:4b:1f: b8:99:58:3c:ae:88:ce:de:ca:77:8e:15:1f:58:a0: 2c:08:e4:69:6e:3b:a5:49:64:89:12:f4:9e:f9:37: a8:a8:99:9a:ac:91:24:66:23:b8:6b:cb:e9:36:a5: 88:ff:a9:5e:37:1a:11:69:f6:90:e4:79:72:cd:5f: f0:e7:c3:e0:16:ff:7f:9c:15:3a:27:7d:06:38:74: 1e:e8:b0:27:ad:e8:80:2f:fa:c6:42:64:5b:54:e6: 7d:c3:80:ab:0c:a3:99:ec:6e:cc:36:30:ae:ad:57: a6:73:dd:93:4e:e0:82:88:ff:3a:ee:c4:31:e2:51: ae:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:20:93:CB:48:A9:2C:08:A2:59:1E:44:85:F7:85:46:80:90:86:57 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:65:74:0d:02:6e:89:39:6f:f8:ee:5b:9c:2f:07:79:78:c0: d5:09:4e:ee:e6:b9:fd:de:0a:42:15:b0:cb:a2:cd:13:c3:96: 8b:85:24:54:68:d7:3e:52:02:8c:96:a3:61:79:37:7e:2b:5c: 25:51:e6:01:22:5a:47:b1:2f:19:be:8a:cb:9e:c1:e1:4c:10: 89:ae:f1:09:72:9f:84:ae:5e:46:62:b5:93:a2:6b:e6:90:e4: 8d:07:f7:9f:c1:ba:a6:0d:1f:a0:87:db:b6:4b:f9:43:44:69: 09:8f:cc:23:13:64:3f:5d:3f:11:73:2e:05:9e:23:31:4a:70: 9a:f0:ec:13:f0:7d:3f:a8:f5:17:36:fc:0a:3b:00:a6:30:fb: 55:8d:a8:50:fb:65:a2:a4:98:dd:e7:55:99:34:89:2a:09:19: a1:e5:fe:ee:34:7d:3a:41:11:4b:15:6f:cb:13:54:74:30:a7: 2a:fa:d4:3c:c6:e9:1e:80:7a:5b:c6:b1:82:26:4c:df:6b:7e: ac:77:60:11:de:97:a0:33:14:50:ff:da:9a:bc:67:81:82:22: fb:c9:a3:43:00:3d:a4:74:ad:d5:a3:35:5c:51:79:74:62:9e: fc:1e:03:64:a1:8e:80:04:fb:81:ed:ab:b6:31:0e:99:02:25: dc:be:04:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNjE1MDA0MzA3WhcNMjUwNjIyMDA0MzA3WjAYMRYwFAYD VQQDEw02ODRlMTcxYi1mOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq37miN2lNDteT3bi/7fNMnFy4jzueA9WJtySv2uTzHLeHQVNn760cYce31l OEZthy778I0Dsl9E2Y0jvKkQh1lhlQl5kX5QrWaOuM79Jk5jH87/i9nwMGTb08g5 ZyZxz13Njh1zfHBp+hB6so3U7iNyim0gxMhDRyaz5zYYbQwCcLizSx+4mVg8rojO 3sp3jhUfWKAsCORpbjulSWSJEvSe+TeoqJmarJEkZiO4a8vpNqWI/6leNxoRafaQ 5HlyzV/w58PgFv9/nBU6J30GOHQe6LAnreiAL/rGQmRbVOZ9w4CrDKOZ7G7MNjCu rVemc92TTuCCiP867sQx4lGuXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsgk8tI qSwIolkeRIX3hUaAkIZXMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxZXQNAm6JOW/47lucLwd5eMDVCU7u5rn93gpCFbDLos0Tw5aLhSRU aNc+UgKMlqNheTd+K1wlUeYBIlpHsS8ZvorLnsHhTBCJrvEJcp+Erl5GYrWTomvm kOSNB/efwbqmDR+gh9u2S/lDRGkJj8wjE2Q/XT8Rcy4FniMxSnCa8OwT8H0/qPUX NvwKOwCmMPtVjahQ+2WipJjd51WZNIkqCRmh5f7uNH06QRFLFW/LE1R0MKcq+tQ8 xukegHpbxrGCJkzfa36sd2AR3pegMxRQ/9qavGeBgiL7yaNDAD2kdK3VozVcUXl0 Yp78HgNkoY6ABPuB7au2MQ6ZAiXcvgQR -----END CERTIFICATE-----Generated at Mon Jun 16 10:13:00 2025 by rpki-client