$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: wkphYmVRIDx7DpNjrSVGNyCKPHfxAsaJLnHtIFBQNgc= Subject key identifier: D1:3D:91:51:6A:34:DC:7C:D9:87:7C:2B:23:3D:BB:E4:EC:3F:D1:98 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0AC5 Signing time: Wed 18 Jun 2025 19:19:53 +0000 Manifest this update: Wed 18 Jun 2025 19:19:53 +0000 Manifest next update: Wed 25 Jun 2025 19:19:53 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: os/RgUg3W42tHo3jMi5sgggLtv90qc8HpVYyYDjxstw=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Jun 18 19:19:53 2025 GMT Not After : Jun 25 19:19:53 2025 GMT Subject: CN=68531159-1d9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0d:6e:e4:7d:71:3a:e8:b6:43:91:9e:43:3c: 8a:3c:5d:87:8f:67:7f:b9:68:f1:84:b2:d5:63:8e: fc:79:bb:1d:05:5e:74:02:67:d3:67:bd:36:fd:0a: d5:30:3b:3e:15:bc:bd:a5:ca:57:35:49:4c:19:f8: 53:0e:f7:c5:19:78:82:0d:66:74:f6:8c:e4:70:46: 7b:c3:93:fc:8f:32:88:fc:d3:97:e6:fd:2d:a1:0e: bf:ae:8e:88:4e:d5:01:1c:9e:cf:d1:67:ed:50:e1: 82:5a:82:01:c3:75:ef:64:a5:ee:33:8b:28:d8:38: e8:78:ac:5c:95:0d:57:01:d0:96:4b:86:ff:67:41: 77:71:08:30:01:14:de:69:b1:b2:f2:df:30:0e:f3: c7:a1:00:7d:76:ec:52:70:c0:9e:55:34:21:c1:94: 11:15:6f:4c:29:66:39:e4:60:88:b7:56:05:8b:e5: f6:18:cc:e0:39:9a:81:ef:4b:64:ce:af:8c:33:c5: 9f:0c:13:36:79:36:7b:70:5a:66:e2:fb:e6:2c:7f: cf:c7:cd:70:c9:7b:58:e2:ae:94:3d:48:41:7e:aa: 94:8b:2b:78:e9:59:f2:11:b3:5e:63:a4:33:e7:03: 88:0e:6e:a1:63:49:df:3e:b6:ed:10:54:e9:a1:99: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3D:91:51:6A:34:DC:7C:D9:87:7C:2B:23:3D:BB:E4:EC:3F:D1:98 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:66:a5:74:ad:a8:c6:9f:22:34:27:71:dc:1e:37:8a:aa:df: eb:60:36:f7:50:04:f7:a4:ba:0e:22:30:2c:76:f9:76:d7:09: b5:d8:4e:f4:9e:e5:a2:c9:b8:3e:99:c0:7e:d2:b3:4c:d8:07: e1:7a:9c:11:07:2b:c3:4c:b2:a7:48:36:2b:e1:d4:c0:c5:e0: f0:8d:a9:a1:c6:76:72:6a:65:8c:c7:aa:0f:2f:0e:28:cc:c4: ac:97:a5:fd:c3:33:f9:7a:3a:df:d1:65:19:63:f7:f9:22:a6: 31:9a:a3:0b:a6:ae:25:f6:b1:75:06:1b:99:6b:ee:2e:72:2e: 13:ae:01:da:c9:b8:49:40:28:da:82:eb:68:4c:dd:9f:04:13: 2e:3f:f0:19:90:71:68:18:d8:fe:c1:8e:3c:5e:7f:1d:96:60: ee:76:08:f7:b4:db:fd:c1:4f:c7:65:f4:5a:e5:4f:8f:65:26: 10:a0:30:32:98:27:68:2b:3d:6f:96:f3:15:ab:06:ef:c3:34: ab:7d:85:ce:d8:b8:43:5d:11:29:0a:db:26:15:03:97:c5:23: c9:94:f7:53:73:39:a6:8c:bd:45:5a:31:b0:74:4b:ba:fe:ee: 90:12:e9:1e:ed:e2:c0:b6:4f:c3:43:7e:3c:ac:50:e9:79:0f: 28:07:3f:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUwNjE4MTkxOTUzWhcNMjUwNjI1MTkxOTUzWjAYMRYwFAYD VQQDEw02ODUzMTE1OS0xZDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4A1u5H1xOui2Q5GeQzyKPF2Hj2d/uWjxhLLVY478ebsdBV50AmfTZ702/QrV MDs+Fby9pcpXNUlMGfhTDvfFGXiCDWZ09ozkcEZ7w5P8jzKI/NOX5v0toQ6/ro6I TtUBHJ7P0WftUOGCWoIBw3XvZKXuM4so2DjoeKxclQ1XAdCWS4b/Z0F3cQgwARTe abGy8t8wDvPHoQB9duxScMCeVTQhwZQRFW9MKWY55GCIt1YFi+X2GMzgOZqB70tk zq+MM8WfDBM2eTZ7cFpm4vvmLH/Px81wyXtY4q6UPUhBfqqUiyt46VnyEbNeY6Qz 5wOIDm6hY0nfPrbtEFTpoZl5ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNE9kVFq NNx82Yd8KyM9u+TsP9GYMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBZqV0rajGnyI0J3HcHjeKqt/rYDb3UAT3pLoOIjAsdvl21wm12E70 nuWiybg+mcB+0rNM2AfhepwRByvDTLKnSDYr4dTAxeDwjamhxnZyamWMx6oPLw4o zMSsl6X9wzP5ejrf0WUZY/f5IqYxmqMLpq4l9rF1BhuZa+4uci4TrgHaybhJQCja gutoTN2fBBMuP/AZkHFoGNj+wY48Xn8dlmDudgj3tNv9wU/HZfRa5U+PZSYQoDAy mCdoKz1vlvMVqwbvwzSrfYXO2LhDXREpCtsmFQOXxSPJlPdTczmmjL1FWjGwdEu6 /u6QEuke7eLAtk/DQ348rFDpeQ8oBz8N -----END CERTIFICATE-----Generated at Thu Jun 19 04:41:27 2025 by rpki-client