$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: s0AzOsOzBVlRn/ixJ29jbaTZUG+vjHfLTz7GUrOunnQ= Subject key identifier: 31:25:F2:64:05:E9:C9:EE:60:68:61:BE:81:EC:EC:87:DA:02:DC:1B Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 34D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 34A8 Signing time: Sat 14 Jun 2025 14:19:44 +0000 Manifest this update: Sat 14 Jun 2025 14:19:44 +0000 Manifest next update: Sat 21 Jun 2025 14:19:44 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: C0AuU8KD0NPNX0DHKuVMUo6FMxkm2vSVwEsONcL720c=) 2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: T96snG6T3ksqfKF7mowlYs05xmmtsddFbccqyfqSTxQ=) 3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: aiAqLVoZ6cEM6hY/DjBukcfxFi5I+NxU4FFn5k2CPUQ=) 4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: XONO8AScATR8p+dgN33QWapfnhUPZs7VGzeHh0uX4pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13522 (0x34d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Jun 14 14:19:44 2025 GMT Not After : Jun 21 14:19:44 2025 GMT Subject: CN=684d8500-69b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9c:65:5a:b3:0d:2e:77:1b:1a:2f:c3:20:ec: 88:c1:42:a6:85:4b:2f:46:3d:2a:61:de:aa:1e:7c: 20:c2:8c:db:e1:e0:dd:cb:8d:47:e0:03:e8:18:60: 79:04:d1:f4:aa:98:5d:0e:fa:b2:b1:b8:ef:84:d2: 76:ad:ea:be:87:07:40:db:db:57:1c:74:58:1d:9f: 3e:a7:5a:a3:66:c5:15:4a:d8:65:b8:d0:93:11:99: f1:5e:a0:96:8d:f1:6a:23:d7:b9:84:81:51:31:4e: 63:5c:2f:84:f0:2f:d3:96:6d:11:51:89:75:53:63: 8c:c9:4d:48:5e:9b:cd:58:4f:21:d8:0a:a2:a9:94: 25:05:89:a8:1a:dc:e4:0f:4b:ad:c5:a3:fa:7f:bf: e6:8c:1d:35:66:09:82:64:ec:11:74:f8:5f:bd:38: 3b:34:23:80:5f:2e:43:27:11:46:51:b4:ee:c6:b1: 17:a1:3a:82:f1:32:79:1a:f6:8f:be:20:9e:59:ec: 00:2c:21:f9:6a:91:5d:cc:5a:31:a8:48:48:d0:75: 39:64:cf:76:7f:98:91:4d:42:36:f6:34:09:7d:c8: fd:b5:07:d2:74:9c:60:64:0e:a4:47:11:6f:88:d0: c5:fc:e1:e6:17:24:78:ec:27:a6:63:c9:ef:7b:50: c3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:25:F2:64:05:E9:C9:EE:60:68:61:BE:81:EC:EC:87:DA:02:DC:1B X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ed:4e:7c:3e:3e:a7:f6:dd:11:ea:68:01:dc:2c:36:d7:7c: 70:46:e3:c9:b9:b7:71:79:7b:84:31:cf:9a:09:14:88:f4:e0: 1f:46:3a:45:74:13:45:6c:15:fd:ab:17:40:d6:3d:78:49:e4: 84:12:aa:15:c9:2b:4e:01:df:28:04:c9:b9:37:ed:f3:49:4d: 68:9f:b2:cc:e3:d9:ea:b0:34:2e:60:f4:9e:21:0e:d5:80:bc: a2:dc:f4:23:14:02:3e:fe:b1:9f:0d:74:c0:76:c1:42:4d:0f: e8:0a:e2:fe:07:dd:67:2a:b9:2e:99:c4:62:9f:c5:2d:a3:e4: 9a:0a:d6:b5:e8:ed:ef:84:66:96:3c:b9:42:d2:d5:30:46:89: 1d:b0:17:d4:f3:b2:fd:98:b5:06:9e:be:e9:d5:24:91:8a:28: 6d:4f:f6:b5:c5:d7:ed:31:c4:3a:04:25:2a:77:4e:e2:f6:cb: 76:fa:dc:90:ef:fd:59:fc:00:8d:ce:f0:be:fa:14:c3:07:e0: 87:5c:ef:89:27:7f:eb:8c:1e:40:42:3b:b0:2e:6a:b6:7a:9a: 2e:74:11:d6:8e:0b:0c:76:44:29:c9:0b:81:95:70:51:7d:49: 2c:a3:55:1a:e9:59:09:3f:d5:1c:d3:4d:24:f5:0e:42:c0:5c: 4b:69:e6:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUwNjE0MTQxOTQ0WhcNMjUwNjIxMTQxOTQ0WjAYMRYwFAYD VQQDEw02ODRkODUwMC02OWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05xlWrMNLncbGi/DIOyIwUKmhUsvRj0qYd6qHnwgwozb4eDdy41H4APoGGB5 BNH0qphdDvqysbjvhNJ2req+hwdA29tXHHRYHZ8+p1qjZsUVSthluNCTEZnxXqCW jfFqI9e5hIFRMU5jXC+E8C/Tlm0RUYl1U2OMyU1IXpvNWE8h2AqiqZQlBYmoGtzk D0utxaP6f7/mjB01ZgmCZOwRdPhfvTg7NCOAXy5DJxFGUbTuxrEXoTqC8TJ5GvaP viCeWewALCH5apFdzFoxqEhI0HU5ZM92f5iRTUI29jQJfcj9tQfSdJxgZA6kRxFv iNDF/OHmFyR47CemY8nve1DDvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEl8mQF 6cnuYGhhvoHs7IfaAtwbMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB27U58Pj6n9t0R6mgB3Cw213xwRuPJubdxeXuEMc+aCRSI9OAfRjpF dBNFbBX9qxdA1j14SeSEEqoVyStOAd8oBMm5N+3zSU1on7LM49nqsDQuYPSeIQ7V gLyi3PQjFAI+/rGfDXTAdsFCTQ/oCuL+B91nKrkumcRin8Uto+SaCta16O3vhGaW PLlC0tUwRokdsBfU87L9mLUGnr7p1SSRiihtT/a1xdftMcQ6BCUqd07i9st2+tyQ 7/1Z/ACNzvC++hTDB+CHXO+JJ3/rjB5AQjuwLmq2epoudBHWjgsMdkQpyQuBlXBR fUkso1Ua6VkJP9Uc000k9Q5CwFxLaeYb -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:19 2025 by rpki-client