$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: OOyirCWxVUC25oFx/72LupCEmnz2Hjmg5dGb8IeI43g= Subject key identifier: F2:E0:14:3A:42:E7:8F:CA:5C:29:F9:CB:CC:F3:CB:95:AF:54:65:A2 Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 1513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2BA0 Signing time: Sat 14 Jun 2025 16:46:08 +0000 Manifest this update: Sat 14 Jun 2025 16:46:08 +0000 Manifest next update: Sat 21 Jun 2025 16:46:08 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: lWMOSO45B8j3EcWg+TjMoSerxzxD5b3Zak0iwOHJ/KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5395 (0x1513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: Jun 14 16:46:08 2025 GMT Not After : Jun 21 16:46:08 2025 GMT Subject: CN=684da750-b55b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f7:35:07:5b:4e:24:82:b6:55:10:cd:2c:90: 66:53:01:83:81:b2:49:5a:60:bc:94:8b:4a:1e:11: b2:db:29:2d:3d:cf:4e:a5:98:13:ed:5c:e2:75:8f: ea:9e:dc:44:6b:80:20:e4:39:c3:be:27:c8:a6:bd: 4f:66:2a:dd:49:c6:25:4f:59:8b:43:38:7f:a0:dd: dc:c5:6e:7a:d8:74:ff:2b:e2:34:dd:2f:83:ac:91: 40:55:23:85:6d:fb:bb:9c:71:c2:c9:2b:78:c0:84: 1d:e9:a4:cb:c6:71:24:ed:e5:9b:bf:6d:a3:84:69: 68:34:a0:d1:12:22:ea:5e:15:a2:b4:3b:96:b1:75: f7:69:05:64:99:7d:af:b1:ec:16:75:6f:1f:57:4f: e0:36:11:fb:78:9d:63:cd:f6:b1:39:86:76:82:b4: dd:8e:0a:fc:78:25:db:fc:c5:2e:c8:83:35:e4:c9: 1c:b9:19:49:b9:c0:bd:f8:b2:03:28:97:5d:1a:8b: d5:c9:fb:5a:3c:77:f0:6c:04:92:34:5a:a6:48:e1: 28:c1:d5:74:83:2c:62:30:c4:b2:36:a0:4b:95:06: 14:84:ba:6d:58:b5:02:61:71:4a:25:88:7c:a8:cf: 87:f3:fc:2c:b1:45:8d:9a:d1:c5:1f:9a:d0:64:c8: fe:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E0:14:3A:42:E7:8F:CA:5C:29:F9:CB:CC:F3:CB:95:AF:54:65:A2 X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:9d:30:d9:c5:8b:3d:24:a5:aa:dc:d6:43:53:19:c3:85:21: 3e:ab:6a:6e:37:7f:9d:ab:38:f2:10:91:ac:7c:b2:d4:9b:5a: e3:76:5b:f6:b8:1f:c6:fa:fb:6e:41:b2:b7:36:ad:7b:07:3e: a1:90:2f:b6:9f:95:ce:5f:af:ed:4c:57:ac:ec:c4:65:59:c5: d8:0c:fe:6a:13:08:39:38:58:d8:23:16:10:f8:25:36:be:74: 9e:92:1a:b7:77:9f:0b:66:21:1e:9a:22:58:0d:ff:d9:ce:57: ee:ca:91:8c:00:35:f4:96:49:eb:92:92:55:cb:57:de:68:f2: 77:68:a3:5f:67:3b:7e:c6:11:7d:3f:a2:2f:a3:43:65:bd:05: e8:03:49:51:4b:c1:5a:42:6e:ca:8f:bc:1d:53:44:eb:35:69: c8:49:e5:74:8f:b0:09:30:f4:c8:65:de:37:ed:c8:90:18:98: 26:e7:97:4b:8e:99:f1:2a:e1:85:bf:3f:60:b2:66:4a:9b:82: 4b:fd:54:1d:8e:1c:3c:82:41:5b:de:bc:5a:3c:db:ee:9f:93: 0e:aa:d5:09:69:ed:bf:3d:31:df:c5:81:34:f3:42:a6:05:d2: 16:77:0a:ab:04:3e:22:b7:87:00:6a:6b:e9:b6:ed:b4:a4:c8: 8c:43:27:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjUwNjE0MTY0NjA4WhcNMjUwNjIxMTY0NjA4WjAYMRYwFAYD VQQDEw02ODRkYTc1MC1iNTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/c1B1tOJIK2VRDNLJBmUwGDgbJJWmC8lItKHhGy2yktPc9OpZgT7VzidY/q ntxEa4Ag5DnDvifIpr1PZirdScYlT1mLQzh/oN3cxW562HT/K+I03S+DrJFAVSOF bfu7nHHCySt4wIQd6aTLxnEk7eWbv22jhGloNKDREiLqXhWitDuWsXX3aQVkmX2v sewWdW8fV0/gNhH7eJ1jzfaxOYZ2grTdjgr8eCXb/MUuyIM15MkcuRlJucC9+LID KJddGovVyftaPHfwbASSNFqmSOEowdV0gyxiMMSyNqBLlQYUhLptWLUCYXFKJYh8 qM+H8/wssUWNmtHFH5rQZMj+pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLgFDpC 54/KXCn5y8zzy5WvVGWiMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsnTDZxYs9JKWq3NZDUxnDhSE+q2puN3+dqzjyEJGsfLLUm1rjdlv2 uB/G+vtuQbK3Nq17Bz6hkC+2n5XOX6/tTFes7MRlWcXYDP5qEwg5OFjYIxYQ+CU2 vnSekhq3d58LZiEemiJYDf/ZzlfuypGMADX0lknrkpJVy1feaPJ3aKNfZzt+xhF9 P6Ivo0NlvQXoA0lRS8FaQm7Kj7wdU0TrNWnISeV0j7AJMPTIZd437ciQGJgm55dL jpnxKuGFvz9gsmZKm4JL/VQdjhw8gkFb3rxaPNvun5MOqtUJae2/PTHfxYE080Km BdIWdwqrBD4it4cAamvptu20pMiMQyd4 -----END CERTIFICATE-----Generated at Sun Jun 15 09:46:12 2025 by rpki-client