$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: iJEPytrOYJHvUnecD2kd7WoL+5xBD4Q/fgK9tP205/Q= Subject key identifier: 5D:49:4D:58:75:87:69:BA:6A:14:59:58:C8:7C:33:8A:E9:FB:AB:C7 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: C2 Signing time: Thu 19 Jun 2025 05:09:01 +0000 Manifest this update: Thu 19 Jun 2025 05:09:01 +0000 Manifest next update: Thu 26 Jun 2025 05:09:01 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: c6OtS1dT3lRrMAXFu841uXFoJzRHNSqMKsVoouRX2LY=) 2: D055D382225711EF975F6747C4F9AE02.roa (hash: vSUF8UhOaMH+V+SNryLP4jUhOyX0+t5vpdmlCLCB3Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Jun 19 05:09:01 2025 GMT Not After : Jun 26 05:09:01 2025 GMT Subject: CN=68539b6d-5a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b8:e7:66:23:41:53:4d:20:f6:00:9c:d2:be: ad:14:ed:cf:86:4b:64:1f:12:83:10:9e:70:2d:09: 36:0c:af:9e:f4:9a:15:f6:df:55:0f:b1:c4:30:9f: 13:0a:26:5e:56:7d:b4:dc:4c:fa:33:af:a8:b0:de: db:23:6d:da:0d:69:40:ce:3e:96:ba:a7:be:b6:ae: b1:f6:eb:5f:15:fc:d3:90:ff:58:9e:b4:2a:07:5f: cf:08:40:59:97:3f:cc:bb:52:1f:30:c0:eb:0a:51: 83:d7:db:f4:dd:e1:82:00:22:03:8b:ec:3e:b2:63: 48:c1:a0:38:9c:93:09:dd:52:41:d8:f2:6f:0a:f8: f4:c4:bc:8a:1b:77:0b:08:2a:2e:6d:ab:88:10:62: 71:0e:4f:14:56:16:0e:a7:fb:05:ac:ad:c7:ef:38: be:f3:93:eb:d2:8f:f6:c7:d8:3e:4c:33:24:66:16: 5d:08:f9:df:c5:06:4c:e3:7d:7e:19:e6:d5:a4:5b: 52:28:63:c1:81:9e:4e:28:cb:68:1c:6a:ec:c0:59: f3:bf:89:91:d4:a1:d2:98:a3:bb:d2:4b:72:d2:93: c4:90:10:92:0d:34:56:63:6b:83:bb:2b:c4:d7:dd: e4:23:6d:94:19:59:41:e0:50:8e:74:a1:8f:ff:3b: 5d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:49:4D:58:75:87:69:BA:6A:14:59:58:C8:7C:33:8A:E9:FB:AB:C7 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:d7:c9:4f:8a:ae:0f:3a:7c:b3:65:89:87:22:95:88:df:ea: e5:eb:73:ac:a4:15:3a:3c:98:97:05:95:46:84:2a:9e:67:67: ca:2b:de:f8:36:0b:58:e1:b4:40:55:76:4e:a1:60:91:cd:d1: 7f:57:10:4c:35:1c:dd:cc:85:73:71:a2:e6:da:e6:e2:93:1a: 62:6f:c4:7e:88:61:ac:58:22:12:31:35:ff:bf:a6:2e:b5:9c: b2:58:db:ec:73:82:32:09:5e:6f:bf:ed:a5:77:a2:c6:bc:11: d3:7c:61:d4:b3:cd:21:de:5f:be:fe:3f:8a:b6:85:a6:f1:29: 25:12:94:0c:da:86:82:4c:2e:4e:c3:4b:51:a8:0e:79:c3:b6: 33:2b:ae:c6:50:b4:c8:5e:8b:85:72:d1:46:5b:a1:28:b8:73: 81:ee:db:c4:36:b3:b3:70:90:ec:44:b5:69:6b:49:30:dc:72: 83:67:44:8d:3c:ea:96:33:39:12:0f:1e:ab:4d:88:35:3c:c8: f3:1c:01:d1:bf:22:85:1e:5d:7f:06:68:34:e6:b0:5a:7b:a5: 57:d2:9b:50:f1:ee:8f:fd:eb:0f:3d:a7:a6:01:da:45:c8:b1: 26:53:cd:e6:4b:56:a0:32:6e:40:76:95:3c:ef:e1:13:3a:b7: e6:5c:aa:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUwNjE5MDUwOTAxWhcNMjUwNjI2MDUwOTAxWjAYMRYwFAYD VQQDEw02ODUzOWI2ZC01YTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubjnZiNBU00g9gCc0r6tFO3PhktkHxKDEJ5wLQk2DK+e9JoV9t9VD7HEMJ8T CiZeVn203Ez6M6+osN7bI23aDWlAzj6Wuqe+tq6x9utfFfzTkP9YnrQqB1/PCEBZ lz/Mu1IfMMDrClGD19v03eGCACIDi+w+smNIwaA4nJMJ3VJB2PJvCvj0xLyKG3cL CCoubauIEGJxDk8UVhYOp/sFrK3H7zi+85Pr0o/2x9g+TDMkZhZdCPnfxQZM431+ GebVpFtSKGPBgZ5OKMtoHGrswFnzv4mR1KHSmKO70kty0pPEkBCSDTRWY2uDuyvE 193kI22UGVlB4FCOdKGP/ztdxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1JTVh1 h2m6ahRZWMh8M4rp+6vHMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb18lPiq4POnyzZYmHIpWI3+rl63OspBU6PJiXBZVGhCqeZ2fKK974 NgtY4bRAVXZOoWCRzdF/VxBMNRzdzIVzcaLm2ubikxpib8R+iGGsWCISMTX/v6Yu tZyyWNvsc4IyCV5vv+2ld6LGvBHTfGHUs80h3l++/j+KtoWm8SklEpQM2oaCTC5O w0tRqA55w7YzK67GULTIXouFctFGW6EouHOB7tvENrOzcJDsRLVpa0kw3HKDZ0SN POqWMzkSDx6rTYg1PMjzHAHRvyKFHl1/Bmg05rBae6VX0ptQ8e6P/esPPaemAdpF yLEmU83mS1agMm5AdpU87+ETOrfmXKrp -----END CERTIFICATE-----Generated at Fri Jun 20 13:37:12 2025 by rpki-client