$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: VYc84HDMLR1rRXeTWuUobltggglm2Kx5L7geYtb+Cw0= Subject key identifier: 3E:33:C6:8C:52:B0:FD:8D:4D:B4:E0:94:A7:F2:97:0E:2D:84:A3:35 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 06FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C05 Signing time: Sat 14 Jun 2025 18:31:41 +0000 Manifest this update: Sat 14 Jun 2025 18:31:41 +0000 Manifest next update: Sat 21 Jun 2025 18:31:41 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: sraQQhbck9ibaF8v8x/UbmC/Ojf/+9WzlzN0LV1SCsk=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1791 (0x6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Jun 14 18:31:41 2025 GMT Not After : Jun 21 18:31:41 2025 GMT Subject: CN=684dc00d-7cef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:23:6f:ed:30:35:e7:9d:06:12:28:03:82:ed: 5c:2e:bf:8b:36:ce:e8:72:d6:c1:75:10:25:68:1e: 29:9a:4a:22:2c:c4:d6:10:1b:28:75:9f:de:27:18: 49:d9:75:5d:79:8f:c6:35:ae:64:92:85:e4:53:38: 4c:6b:36:d9:4e:19:19:49:b1:de:ea:17:51:3e:ca: 7f:74:91:8b:b3:e7:ef:9f:99:af:84:f8:35:dc:ba: 3a:99:45:98:df:f5:73:50:b2:13:46:bd:45:8f:af: c5:c6:26:cf:b2:20:f1:3d:aa:bf:15:a8:96:47:cf: 1d:8c:05:27:45:44:93:b3:72:d1:e1:98:f0:bb:07: 84:73:ce:1e:39:68:e1:43:0e:23:e0:fb:42:47:fc: c0:26:2b:43:db:9b:ea:bc:d9:74:e4:48:81:37:b6: 71:9c:b8:c3:de:14:f2:77:35:2b:3e:c6:b2:3f:52: 41:80:e7:53:42:a5:f5:59:0f:a6:c6:1a:b3:9b:27: ba:2a:7d:72:a4:12:b1:91:a8:fa:20:69:13:99:fe: b2:28:97:67:c3:8a:6d:5d:56:09:99:7e:0d:e2:c1: 97:df:14:6e:8b:cc:81:d9:21:2b:44:28:13:48:d6: df:c3:27:a0:6e:e9:d5:74:9e:8e:29:16:08:b1:45: e7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:33:C6:8C:52:B0:FD:8D:4D:B4:E0:94:A7:F2:97:0E:2D:84:A3:35 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:b9:0e:b7:51:77:2b:aa:3b:31:20:68:91:93:cd:4d:90:68: 7e:c0:75:51:99:08:1a:60:fc:93:58:aa:5a:b8:a5:f5:64:4f: 88:be:67:ea:17:00:eb:6e:c7:f6:43:96:06:25:ce:dc:3f:8a: 52:f8:13:a4:ef:16:d5:7a:24:02:71:4d:5b:e4:0e:0e:01:9a: 00:71:57:de:9b:e3:5d:61:54:99:fb:bf:fb:4e:07:4a:4b:5d: 0c:1f:6f:85:0f:4e:9d:54:dd:b8:f7:f1:b4:d3:d4:90:bd:c9: 73:6e:c9:d5:cd:90:b2:f3:a5:c2:e0:cb:bf:3e:04:82:9d:10: df:b6:27:62:13:e3:9f:1c:56:53:d0:37:39:66:8e:31:cf:8e: 09:f8:64:8c:4c:ab:b8:d4:4b:77:b5:2c:e5:4c:20:05:b4:b2: 4b:d0:41:eb:7a:10:e2:3f:73:bc:6a:f0:55:af:98:cf:30:41: 17:0e:24:a2:ae:b4:53:02:a6:ec:41:d9:9e:a8:80:88:81:d8: 7e:c9:d6:3a:a0:5b:14:e3:6a:5a:2d:f0:d4:5e:da:ff:17:97: a5:e2:ed:58:1a:68:aa:02:bf:ab:c5:f6:d9:23:fa:93:04:b5: 58:42:d1:40:9c:e1:4b:45:5e:12:dc:eb:be:5f:88:99:1b:fa: ca:91:7d:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwNjE0MTgzMTQxWhcNMjUwNjIxMTgzMTQxWjAYMRYwFAYD VQQDEw02ODRkYzAwZC03Y2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSNv7TA1550GEigDgu1cLr+LNs7octbBdRAlaB4pmkoiLMTWEBsodZ/eJxhJ 2XVdeY/GNa5kkoXkUzhMazbZThkZSbHe6hdRPsp/dJGLs+fvn5mvhPg13Lo6mUWY 3/VzULITRr1Fj6/FxibPsiDxPaq/FaiWR88djAUnRUSTs3LR4ZjwuweEc84eOWjh Qw4j4PtCR/zAJitD25vqvNl05EiBN7ZxnLjD3hTydzUrPsayP1JBgOdTQqX1WQ+m xhqzmye6Kn1ypBKxkaj6IGkTmf6yKJdnw4ptXVYJmX4N4sGX3xRui8yB2SErRCgT SNbfwyegbunVdJ6OKRYIsUXn0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4zxoxS sP2NTbTglKfylw4thKM1MB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFuQ63UXcrqjsxIGiRk81NkGh+wHVRmQgaYPyTWKpauKX1ZE+Ivmfq FwDrbsf2Q5YGJc7cP4pS+BOk7xbVeiQCcU1b5A4OAZoAcVfem+NdYVSZ+7/7TgdK S10MH2+FD06dVN249/G009SQvclzbsnVzZCy86XC4Mu/PgSCnRDftidiE+OfHFZT 0Dc5Zo4xz44J+GSMTKu41Et3tSzlTCAFtLJL0EHrehDiP3O8avBVr5jPMEEXDiSi rrRTAqbsQdmeqICIgdh+ydY6oFsU42paLfDUXtr/F5el4u1YGmiqAr+rxfbZI/qT BLVYQtFAnOFLRV4S3Ou+X4iZG/rKkX30 -----END CERTIFICATE-----Generated at Sun Jun 15 09:47:29 2025 by rpki-client