$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: DRd5cIUzTG3zi7ogNBnn+w4P4TMWtmk7kzGY1cNdqTg= Subject key identifier: 5E:C2:38:8E:73:DF:1B:39:3D:2C:A1:2A:0E:EA:35:FF:B4:A7:05:F2 Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 2FF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 2FCE Signing time: Wed 18 Jun 2025 15:26:00 +0000 Manifest this update: Wed 18 Jun 2025 15:25:59 +0000 Manifest next update: Wed 25 Jun 2025 15:25:59 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: nrL72b4Ae68t970MkYSM3f5ySe6c3I/ETmhDOOAGsz0=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: E2NZXpYraOPVv0cpnUWbQpkzMNGT1LYi52LyYrBbmwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 15:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12274 (0x2ff2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Jun 18 15:25:59 2025 GMT Not After : Jun 25 15:25:59 2025 GMT Subject: CN=6852da88-d07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b0:a5:1b:7e:f2:81:a0:95:22:4b:6a:c9:bd: 0c:04:20:dd:2c:c3:1d:c7:48:7a:e0:4c:ac:db:57: b0:5a:2e:74:be:d2:c3:e5:a0:0f:59:af:b4:b1:ce: a3:2b:9b:a6:51:63:09:d7:e6:71:56:14:6f:fc:7a: bc:f7:a8:5f:00:b1:67:7e:1e:8b:a3:d9:98:71:c5: 1c:b4:b6:2c:ad:f4:66:82:1e:78:b2:46:61:06:82: 1b:9f:b2:29:a7:8b:79:16:69:d0:3a:59:49:cb:d0: 50:44:b2:97:be:61:d4:d3:d0:0e:1d:91:74:8d:30: a5:c4:2f:f4:cd:28:b6:2a:19:99:4c:22:3f:4f:f2: d8:ba:d6:e3:c5:37:97:28:60:45:1f:00:6d:eb:a6: 8a:6f:4d:43:d2:76:2d:b1:ce:f5:5a:67:a3:5a:f8: ad:d5:75:78:23:0d:84:75:a4:8c:18:61:ba:61:f7: 8e:3b:b1:dc:48:ae:d8:31:96:21:8d:ea:f3:6e:b3: 16:27:13:98:50:80:3c:20:f7:47:d1:dc:ba:69:40: 90:51:9d:ea:2b:bf:4a:1d:a9:70:a3:5c:1b:22:17: 1c:b9:a5:2f:58:92:9c:09:89:0f:21:36:9c:ef:b1: 2c:13:aa:c2:0d:a6:42:a2:05:1e:6a:73:8d:c1:de: 87:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C2:38:8E:73:DF:1B:39:3D:2C:A1:2A:0E:EA:35:FF:B4:A7:05:F2 X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:94:00:94:2d:71:9e:85:20:bd:34:38:af:19:05:23:85:44: 26:25:86:54:98:10:7b:fb:6f:1b:9b:e4:ac:f2:c5:bb:dc:a0: d4:cb:45:2b:6c:a5:9b:00:49:ed:98:0e:3d:eb:7a:fa:20:b1: ef:92:ab:4c:e1:a3:c8:bf:ed:75:e4:1e:21:b8:4b:4b:84:75: 39:4e:31:48:4b:5d:e5:c7:a1:53:d5:03:07:cd:ed:88:7b:1c: 18:c8:cf:a3:8a:bf:4a:d5:e0:10:aa:77:65:b7:a1:4b:a6:c3: ac:05:e9:f4:8f:7d:d8:45:19:e2:d1:89:f6:4a:e7:f3:28:c7: aa:67:3f:53:9c:95:9e:ef:1c:e6:33:2c:73:c8:02:6a:d6:f7: 5e:30:97:e7:16:e8:92:bd:53:5f:5c:ae:db:e3:66:84:04:d1: 39:29:d7:e1:92:e1:91:3a:f6:93:59:f6:1b:a0:58:25:8b:ba: d1:7b:98:86:b4:ac:b9:b2:14:1f:3b:7f:22:56:f7:3e:76:7d: 02:47:76:2e:44:d7:85:ac:67:ce:8e:f4:24:6a:3d:67:cb:ad: b9:8a:1a:6b:68:06:45:da:2e:aa:36:5f:1b:1f:27:11:4e:26: 08:58:0a:65:69:ed:02:e5:14:f6:9f:ad:b7:95:0d:89:a3:2d: 06:b3:d4:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwNjE4MTUyNTU5WhcNMjUwNjI1MTUyNTU5WjAYMRYwFAYD VQQDEw02ODUyZGE4OC1kMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbClG37ygaCVIktqyb0MBCDdLMMdx0h64Eys21ewWi50vtLD5aAPWa+0sc6j K5umUWMJ1+ZxVhRv/Hq896hfALFnfh6Lo9mYccUctLYsrfRmgh54skZhBoIbn7Ip p4t5FmnQOllJy9BQRLKXvmHU09AOHZF0jTClxC/0zSi2KhmZTCI/T/LYutbjxTeX KGBFHwBt66aKb01D0nYtsc71WmejWvit1XV4Iw2EdaSMGGG6YfeOO7HcSK7YMZYh jerzbrMWJxOYUIA8IPdH0dy6aUCQUZ3qK79KHalwo1wbIhccuaUvWJKcCYkPITac 77EsE6rCDaZCogUeanONwd6HyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7COI5z 3xs5PSyhKg7qNf+0pwXyMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBylACULXGehSC9NDivGQUjhUQmJYZUmBB7+28bm+Ss8sW73KDUy0Ur bKWbAEntmA4963r6ILHvkqtM4aPIv+115B4huEtLhHU5TjFIS13lx6FT1QMHze2I exwYyM+jir9K1eAQqndlt6FLpsOsBen0j33YRRni0Yn2SufzKMeqZz9TnJWe7xzm MyxzyAJq1vdeMJfnFuiSvVNfXK7b42aEBNE5KdfhkuGROvaTWfYboFgli7rRe5iG tKy5shQfO38iVvc+dn0CR3YuRNeFrGfOjvQkaj1ny625ihpraAZF2i6qNl8bHycR TiYIWAplae0C5RT2n623lQ2Joy0Gs9Ta -----END CERTIFICATE-----Generated at Fri Jun 20 14:28:07 2025 by rpki-client