$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: a3OhvpoBrJ53Rdkg03RBhR+/JfrxrotZ6z+VlOGEL4Y= Subject key identifier: C4:C3:9F:CE:F9:A1:1A:94:93:71:85:13:8D:90:78:9E:51:29:96:74 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 34AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 349B Signing time: Wed 18 Jun 2025 14:34:44 +0000 Manifest this update: Wed 18 Jun 2025 14:34:44 +0000 Manifest next update: Wed 25 Jun 2025 14:34:44 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: RWGLzr1/+ppgoRcJeNENpP1bxQrD37VgUmp9K5Ycgpw=) 2: E5A47506DFCE11EFBC4CD631C4F9AE02.roa (hash: c4SXQlCG+2MPlFiFY6VkhLPxbsV0onAe5fUK8o5OyyY=) 3: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 4: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: MbcvEjB6bBsz71diYW6luEzJdUqDQqlK0r5oh/a4AKQ=) 5: E7CA9A12F28F11EF94898048C4F9AE02.roa (hash: 81pcSGnQVVs4NUfFkM30moatmNOjQUrd7XABbRORB0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13483 (0x34ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Jun 18 14:34:44 2025 GMT Not After : Jun 25 14:34:44 2025 GMT Subject: CN=6852ce84-05b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:85:81:fe:ce:57:7b:43:b8:00:25:51:7a:3d: 9f:1c:9c:bb:63:76:9e:43:6c:98:4a:c6:5e:29:89: bc:33:3c:72:dc:5b:fd:18:35:d5:66:59:bf:f4:ef: f6:72:30:0a:60:f5:af:f3:dd:83:86:4d:5b:6f:69: d3:ec:cb:7e:6b:60:a2:dc:9e:98:5d:b7:f3:68:6f: d4:c2:8d:bb:bf:73:6e:37:17:87:17:43:82:6b:84: 51:97:be:8f:d5:07:3a:b9:21:af:85:a4:e6:0c:cb: a9:d1:3a:fb:5b:e5:b4:81:38:85:b3:c3:d6:28:45: 56:14:e4:11:c3:9c:7d:17:bd:02:4b:8e:37:70:1b: b8:85:a4:b1:25:14:41:35:f7:a2:2d:00:60:39:21: ac:f4:e8:ca:f8:f9:6c:4e:4d:45:ef:aa:7f:a8:35: 52:ad:8b:6b:5b:d3:fc:ef:b7:c4:dc:86:80:e6:7b: 2d:c1:20:ee:6a:e3:9f:ea:ae:24:5a:73:91:6c:b2: 39:66:2e:f1:1d:6b:b7:71:44:97:1f:18:0c:cd:9c: 7f:11:52:e2:2e:d4:05:43:12:ef:82:bd:28:ca:61: 87:67:e6:0f:e9:89:37:cf:5a:3f:a7:24:a8:8c:68: 32:09:13:8e:3b:c9:0e:fc:dc:16:08:2e:e0:03:6b: 57:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C3:9F:CE:F9:A1:1A:94:93:71:85:13:8D:90:78:9E:51:29:96:74 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:3a:c1:2e:b4:37:9a:8b:ee:22:57:60:33:d8:f5:67:52:9c: 76:96:f7:8d:16:9a:ae:c9:c0:41:4a:2e:59:71:b6:eb:8f:88: 5c:a9:2f:a6:9f:83:cd:eb:6f:b1:fd:ea:e4:85:3c:ef:39:5f: 1e:2a:bf:f2:65:d7:89:c5:cc:93:1a:92:45:9a:9d:66:bb:17: a7:05:ee:57:bf:c3:3a:71:73:b0:86:84:cd:1e:93:b4:de:69: 96:01:fb:e3:28:39:ed:00:23:69:83:16:3d:c4:b8:50:fd:27: 4a:4f:20:05:e3:8c:49:ec:b5:3e:cf:ab:82:e2:5a:d5:b2:cc: b5:3b:a2:07:a3:e5:07:90:8f:80:74:a7:8c:40:a2:b7:c3:b6: 40:d9:8e:bf:c9:f1:98:7c:95:32:62:c1:be:2d:35:c8:50:92: 5a:5b:ce:99:ce:52:91:48:d7:94:45:a6:35:7d:ac:7d:70:b1: ad:8d:58:08:43:ef:1e:1d:54:a6:ec:44:b6:a8:3e:4c:aa:72: fb:b2:a6:a0:ea:27:57:5e:1c:fb:e0:ed:69:0b:34:f7:33:1a: d8:6a:dc:fa:6a:c1:13:80:57:04:42:b9:fd:a1:0c:3d:c8:1c: 35:d2:2a:ac:7f:25:25:7c:62:c8:12:d7:7f:99:8d:7c:ca:5b: 6c:b9:f4:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUwNjE4MTQzNDQ0WhcNMjUwNjI1MTQzNDQ0WjAYMRYwFAYD VQQDEw02ODUyY2U4NC0wNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IWB/s5Xe0O4ACVRej2fHJy7Y3aeQ2yYSsZeKYm8Mzxy3Fv9GDXVZlm/9O/2 cjAKYPWv892Dhk1bb2nT7Mt+a2Ci3J6YXbfzaG/Uwo27v3NuNxeHF0OCa4RRl76P 1Qc6uSGvhaTmDMup0Tr7W+W0gTiFs8PWKEVWFOQRw5x9F70CS443cBu4haSxJRRB NfeiLQBgOSGs9OjK+PlsTk1F76p/qDVSrYtrW9P877fE3IaA5nstwSDuauOf6q4k WnORbLI5Zi7xHWu3cUSXHxgMzZx/EVLiLtQFQxLvgr0oymGHZ+YP6Yk3z1o/pySo jGgyCROOO8kO/NwWCC7gA2tXnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTDn875 oRqUk3GFE42QeJ5RKZZ0MB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArOsEutDeai+4iV2Az2PVnUpx2lveNFpquycBBSi5Zcbbrj4hcqS+m n4PN62+x/erkhTzvOV8eKr/yZdeJxcyTGpJFmp1muxenBe5Xv8M6cXOwhoTNHpO0 3mmWAfvjKDntACNpgxY9xLhQ/SdKTyAF44xJ7LU+z6uC4lrVssy1O6IHo+UHkI+A dKeMQKK3w7ZA2Y6/yfGYfJUyYsG+LTXIUJJaW86ZzlKRSNeURaY1fax9cLGtjVgI Q+8eHVSm7ES2qD5MqnL7sqag6idXXhz74O1pCzT3MxrYatz6asETgFcEQrn9oQw9 yBw10iqsfyUlfGLIEtd/mY18yltsufQi -----END CERTIFICATE-----Generated at Thu Jun 19 14:32:32 2025 by rpki-client