$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: ADX3mOaZdklL70VX+aXgHp7Sm/H/s0zE6LoLGsfByvc= Subject key identifier: 95:D4:A5:6E:2F:8A:CD:89:C3:57:9A:D3:66:99:4B:8B:AA:06:C7:08 Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 0519 Signing time: Thu 12 Jun 2025 23:12:18 +0000 Manifest this update: Thu 12 Jun 2025 23:12:17 +0000 Manifest next update: Thu 19 Jun 2025 23:12:17 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: 7a0n3gaRSkZbPKFUUbZlADBRCKyQI+tKJwQq7N6JpdM=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Jun 12 23:12:17 2025 GMT Not After : Jun 19 23:12:17 2025 GMT Subject: CN=684b5ed1-44d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:af:f9:21:35:45:b0:2f:03:5f:17:50:da:b6: 11:5f:bb:d4:c3:5b:72:d2:05:f1:51:22:e3:cb:4d: fb:c4:70:f1:d7:14:d1:ca:8c:8b:a2:b4:9c:9b:16: da:45:e0:b1:32:3f:4d:e5:82:ce:44:0e:0a:4d:70: 3a:dc:74:53:51:c3:b0:24:ba:f8:7f:3b:f1:f1:7c: 42:54:81:ce:5d:f6:3f:a6:6f:00:a0:ea:db:72:ee: b6:92:21:b3:d7:e6:be:67:b0:0d:e5:3a:66:f3:56: 51:e6:cc:82:e0:65:bd:60:86:dd:25:c6:d6:c2:09: 7d:68:f2:8a:01:f6:e9:4e:24:43:24:be:9d:b5:49: 7d:71:96:9c:ba:78:06:40:53:16:f9:a8:cf:1a:1d: ec:f9:bc:da:ad:4c:43:db:0b:b6:cd:33:2f:3d:c3: 59:99:e5:c7:c8:0e:f9:ae:1f:d6:be:c0:91:ca:4c: 28:68:36:b4:69:90:c4:c4:9e:c2:4c:09:53:4b:0f: 9d:43:04:71:67:cd:b2:34:ef:03:ad:2f:34:e5:6b: c6:6a:8b:e6:b2:1e:52:c4:e5:5d:ab:13:08:39:fd: 2b:9f:89:f8:de:77:7a:75:56:7a:bd:a4:04:c1:44: 06:43:a0:ce:ec:5b:cb:96:76:23:41:8d:ba:f7:f3: 55:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D4:A5:6E:2F:8A:CD:89:C3:57:9A:D3:66:99:4B:8B:AA:06:C7:08 X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:29:a2:c2:12:eb:4e:83:1f:83:94:95:b3:51:41:14:6d:52: 10:43:6b:5d:aa:b4:25:52:16:0f:88:5a:f2:2f:96:11:ec:05: e9:8b:a2:7c:28:63:50:1a:af:d7:fd:8c:58:15:23:c0:7a:eb: 4e:b8:15:17:a0:8d:e7:45:c6:bf:2a:b3:aa:a2:02:86:fc:f1: 51:f2:11:7f:10:27:94:5a:21:81:39:92:f5:c3:1a:fb:d4:9b: c3:8b:9a:5d:2d:ee:89:4d:99:16:e3:61:f7:5a:96:19:ab:e8: c1:6b:b5:89:31:7e:db:24:8c:ba:c9:f6:48:fc:a3:cd:f6:1a: b2:09:48:29:bb:bc:97:b5:c9:55:67:1f:33:a2:1c:81:8e:aa: 43:21:00:d2:8b:dd:8c:e3:9b:40:8a:6c:c3:ec:b2:04:2f:07: 7a:e8:df:8d:3e:8f:51:9a:11:3d:e6:ff:14:44:d5:86:f1:b8: 13:9d:09:ac:17:84:0a:9b:59:8c:0f:6a:4f:97:5c:8a:7b:58: eb:06:dd:01:67:3d:af:e2:3f:fe:08:b2:75:dd:70:db:7c:97: d0:88:aa:84:c7:9c:f0:25:38:9f:71:aa:63:d9:34:6c:9a:4c: 20:95:38:66:db:06:c0:f9:88:d1:db:63:1c:46:58:17:7f:b9: 07:b7:d8:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwNjEyMjMxMjE3WhcNMjUwNjE5MjMxMjE3WjAYMRYwFAYD VQQDEw02ODRiNWVkMS00NGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApK/5ITVFsC8DXxdQ2rYRX7vUw1ty0gXxUSLjy037xHDx1xTRyoyLorScmxba ReCxMj9N5YLORA4KTXA63HRTUcOwJLr4fzvx8XxCVIHOXfY/pm8AoOrbcu62kiGz 1+a+Z7AN5Tpm81ZR5syC4GW9YIbdJcbWwgl9aPKKAfbpTiRDJL6dtUl9cZacungG QFMW+ajPGh3s+bzarUxD2wu2zTMvPcNZmeXHyA75rh/WvsCRykwoaDa0aZDExJ7C TAlTSw+dQwRxZ82yNO8DrS805WvGaovmsh5SxOVdqxMIOf0rn4n43nd6dVZ6vaQE wUQGQ6DO7FvLlnYjQY269/NVfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXUpW4v is2Jw1ea02aZS4uqBscIMB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKKaLCEutOgx+DlJWzUUEUbVIQQ2tdqrQlUhYPiFryL5YR7AXpi6J8 KGNQGq/X/YxYFSPAeutOuBUXoI3nRca/KrOqogKG/PFR8hF/ECeUWiGBOZL1wxr7 1JvDi5pdLe6JTZkW42H3WpYZq+jBa7WJMX7bJIy6yfZI/KPN9hqyCUgpu7yXtclV Zx8zohyBjqpDIQDSi92M45tAimzD7LIELwd66N+NPo9RmhE95v8URNWG8bgTnQms F4QKm1mMD2pPl1yKe1jrBt0BZz2v4j/+CLJ13XDbfJfQiKqEx5zwJTifcapj2TRs mkwglThm2wbA+YjR22McRlgXf7kHt9jV -----END CERTIFICATE-----Generated at Sat Jun 14 17:46:10 2025 by rpki-client