$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: 4LcO2S7HeYTkdRgUq+pQUIbskn/KUoP5R3QCJMpVw2Q= Subject key identifier: 30:26:15:70:19:84:3F:18:DD:21:87:64:C8:23:2E:BB:4C:96:B3:0E Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 04BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 04B3 Signing time: Thu 12 Jun 2025 23:29:50 +0000 Manifest this update: Thu 12 Jun 2025 23:29:50 +0000 Manifest next update: Thu 19 Jun 2025 23:29:50 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: LtRvgrGx7y5yJaOcQ5L5L2OP/luNWfuHwGvHC2Nhcy0=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Jun 12 23:29:50 2025 GMT Not After : Jun 19 23:29:50 2025 GMT Subject: CN=684b62ee-0a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:14:34:2a:4c:74:7e:1c:f7:3b:04:90:3a:bf: ef:4d:a1:8a:da:e5:53:35:d4:70:20:ea:9d:22:9b: 59:86:85:2a:6b:d9:50:33:e3:e3:78:d9:d3:e4:4f: 65:bd:b6:25:36:df:d0:83:3d:25:46:30:72:ff:4d: ac:cb:11:43:38:1e:64:38:4e:a5:94:e8:83:77:4d: ce:7e:45:f3:e8:f0:36:01:79:d5:74:46:db:51:bc: c6:40:9f:f3:08:0a:9f:19:4a:7a:87:d2:6e:34:54: 18:ac:0e:9c:20:fa:8a:96:4d:5b:91:c7:6b:b0:23: 1c:d4:d3:97:6b:a1:35:8b:85:37:9d:e8:71:7c:5e: 4b:3d:10:eb:eb:92:8b:85:a7:97:46:36:22:26:b9: ab:7a:55:b8:f1:2c:2e:47:a3:6c:37:13:de:a7:3d: 53:9e:ad:89:7d:ee:38:46:73:ef:18:9e:0f:1c:b5: f9:87:e6:f1:b9:f1:67:c3:1f:95:2f:33:1b:e7:23: c0:b0:fc:47:57:97:cc:cb:ba:66:03:d7:1e:46:42: 02:21:5b:68:0b:d3:2d:b3:e4:26:dc:fc:00:de:db: 47:30:44:8b:cc:8c:94:75:0a:69:04:24:ac:5e:f4: 7c:34:f6:90:3e:91:6a:7d:c1:5b:30:ae:91:d7:da: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:26:15:70:19:84:3F:18:DD:21:87:64:C8:23:2E:BB:4C:96:B3:0E X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:22:18:22:2d:f1:c3:ba:c6:f4:d0:4b:d4:74:a8:6e:00:ae: 03:6b:c9:1e:23:d9:23:e9:fe:5b:89:67:91:15:1d:08:4d:92: 25:09:d8:7e:59:b5:1c:e0:6f:03:c8:b8:38:39:88:f6:09:aa: e4:2b:c1:21:9d:e0:e9:d0:95:36:0c:5f:0a:13:52:6f:95:1f: 8f:a2:78:7a:0d:59:98:d7:86:16:c6:79:e9:bf:b8:9f:9d:ba: 07:82:11:12:7c:79:32:03:d6:af:0a:f2:d0:d0:08:fd:c2:c3: eb:0b:ba:66:95:8b:4b:e8:66:d3:78:a5:c8:e8:63:d8:93:38: 7b:2c:8e:82:b4:b4:01:87:02:d7:d8:b5:e0:42:e4:7e:13:6f: 28:5f:40:b4:20:5f:69:7e:4d:4d:77:f0:65:ee:92:f6:c3:44: d1:2e:04:d5:1b:fa:87:fa:4a:1d:bb:5d:d6:2a:8c:3e:e6:81: b2:68:61:68:1b:a2:1d:c5:97:2d:55:04:a9:50:81:97:a4:ac: 03:a1:76:d6:60:d0:2a:e7:a3:ed:bd:62:b6:6c:d7:c7:89:41: 25:b8:09:9e:52:69:ca:9f:3f:a7:e8:41:ac:68:47:53:fd:be: 40:b8:4e:54:7c:7f:c0:32:38:44:f7:32:74:f2:fa:d3:c0:be: 1a:8e:73:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUwNjEyMjMyOTUwWhcNMjUwNjE5MjMyOTUwWjAYMRYwFAYD VQQDEw02ODRiNjJlZS0wYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxQ0Kkx0fhz3OwSQOr/vTaGK2uVTNdRwIOqdIptZhoUqa9lQM+PjeNnT5E9l vbYlNt/Qgz0lRjBy/02syxFDOB5kOE6llOiDd03OfkXz6PA2AXnVdEbbUbzGQJ/z CAqfGUp6h9JuNFQYrA6cIPqKlk1bkcdrsCMc1NOXa6E1i4U3nehxfF5LPRDr65KL haeXRjYiJrmrelW48SwuR6NsNxPepz1Tnq2Jfe44RnPvGJ4PHLX5h+bxufFnwx+V LzMb5yPAsPxHV5fMy7pmA9ceRkICIVtoC9Mts+Qm3PwA3ttHMESLzIyUdQppBCSs XvR8NPaQPpFqfcFbMK6R19qG8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAmFXAZ hD8Y3SGHZMgjLrtMlrMOMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcIhgiLfHDusb00EvUdKhuAK4Da8keI9kj6f5biWeRFR0ITZIlCdh+ WbUc4G8DyLg4OYj2CarkK8EhneDp0JU2DF8KE1JvlR+Ponh6DVmY14YWxnnpv7if nboHghESfHkyA9avCvLQ0Aj9wsPrC7pmlYtL6GbTeKXI6GPYkzh7LI6CtLQBhwLX 2LXgQuR+E28oX0C0IF9pfk1Nd/Bl7pL2w0TRLgTVG/qH+kodu13WKow+5oGyaGFo G6IdxZctVQSpUIGXpKwDoXbWYNAq56PtvWK2bNfHiUEluAmeUmnKnz+n6EGsaEdT /b5AuE5UfH/AMjhE9zJ08vrTwL4ajnO8 -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:12 2025 by rpki-client