$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: TuCnhnZZYJxQNdWjOjVoenhSllMrJXs8UWEhstosbJk= Subject key identifier: 95:A2:74:B4:8E:5F:4C:40:C4:00:40:38:14:FE:C4:AE:93:42:1D:FE Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0793 Signing time: Thu 12 Jun 2025 21:39:03 +0000 Manifest this update: Thu 12 Jun 2025 21:39:03 +0000 Manifest next update: Thu 19 Jun 2025 21:39:03 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: BuU3J0PgVhI5XEzUNDImv/pVAEqcESmOggCWjs93kfQ=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1952 (0x7a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Jun 12 21:39:03 2025 GMT Not After : Jun 19 21:39:03 2025 GMT Subject: CN=684b48f7-d0f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:be:29:69:9a:0c:d5:af:78:0c:7e:d7:a5: 78:18:81:0e:e7:ee:36:85:71:8c:4a:61:18:ef:97: f8:d7:df:03:36:fd:cb:1c:90:dc:84:72:cc:fd:44: 2f:1f:92:39:4a:0f:fb:ee:e8:35:97:85:7e:6c:40: 96:75:3d:80:b7:7e:12:44:59:d9:95:f4:70:bd:10: c4:53:5d:61:cd:3c:54:dd:2c:c4:d9:64:ee:55:16: 2f:5b:c0:46:3f:4a:07:81:31:72:e1:5f:20:1a:1c: ea:d5:55:cf:02:c2:59:dd:94:81:c5:55:3d:3f:0a: c1:27:fa:47:b8:a0:fa:83:cd:f0:07:a1:a9:f5:29: a5:fe:2f:93:de:de:f1:6e:91:92:a4:b3:c8:ca:b8: d1:f7:56:53:56:7e:7c:b4:1b:0e:76:5e:45:38:86: cf:89:fc:76:39:ec:7f:1d:57:fc:76:ea:90:bb:94: 94:38:97:e4:3e:ed:dd:4c:4a:2e:9c:d7:c3:36:13: 35:73:34:a2:24:41:d5:13:79:b3:13:e5:d2:0e:43: 9c:a6:6e:4b:88:37:0d:a7:ea:ce:4e:35:d5:7c:32: 92:f5:b1:81:5b:0d:dc:b2:7c:66:bd:b9:77:6d:a3: ea:ef:1f:40:63:29:8f:a5:f1:c4:66:c0:1c:07:7f: 3d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A2:74:B4:8E:5F:4C:40:C4:00:40:38:14:FE:C4:AE:93:42:1D:FE X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:84:34:6b:f3:bc:23:1c:e3:5a:32:53:a3:67:17:a3:8b:f9: 3b:9a:d7:01:63:6f:d7:13:b8:f6:7f:8f:47:e5:47:fc:bb:82: 65:5d:bd:e9:80:a4:63:bc:14:c0:e8:d8:38:7d:0c:41:84:7e: 0d:d9:e9:44:fb:8a:0f:e3:8d:3c:11:c1:f7:d9:e2:34:21:f7: e0:2b:9c:17:4f:5d:4e:51:25:4b:48:29:38:45:56:12:ad:46: d4:7e:38:37:26:d3:5e:72:c5:26:1e:80:13:d7:7f:57:31:b3: 0f:a6:31:44:af:88:7c:be:f4:fb:8b:fa:66:f3:69:9d:d5:3d: 67:13:33:c8:04:20:b7:cc:ae:96:64:d5:71:fc:70:14:45:d6: f2:95:6a:04:9b:aa:ef:88:5c:e1:53:fa:d9:93:6a:ea:f5:a3: a6:00:d2:fc:88:a6:99:55:96:03:af:70:fd:76:3d:49:13:55: ce:5d:13:65:a8:e6:e8:38:86:b9:5d:9e:6a:eb:ab:0d:a2:a1: 4a:b0:20:e3:bb:04:fd:bf:a2:bf:02:07:b0:b4:8c:d6:c0:86: 4c:a6:83:11:e5:b4:1c:1d:38:4a:b9:3e:97:ed:3c:92:e9:b0: de:a8:82:43:6a:f6:60:ed:bb:af:19:87:90:03:02:4d:1c:06: 07:d0:9c:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUwNjEyMjEzOTAzWhcNMjUwNjE5MjEzOTAzWjAYMRYwFAYD VQQDEw02ODRiNDhmNy1kMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8S+KWmaDNWveAx+16V4GIEO5+42hXGMSmEY75f4198DNv3LHJDchHLM/UQv H5I5Sg/77ug1l4V+bECWdT2At34SRFnZlfRwvRDEU11hzTxU3SzE2WTuVRYvW8BG P0oHgTFy4V8gGhzq1VXPAsJZ3ZSBxVU9PwrBJ/pHuKD6g83wB6Gp9Sml/i+T3t7x bpGSpLPIyrjR91ZTVn58tBsOdl5FOIbPifx2Oex/HVf8duqQu5SUOJfkPu3dTEou nNfDNhM1czSiJEHVE3mzE+XSDkOcpm5LiDcNp+rOTjXVfDKS9bGBWw3csnxmvbl3 baPq7x9AYymPpfHEZsAcB389lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWidLSO X0xAxABAOBT+xK6TQh3+MB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBohDRr87wjHONaMlOjZxeji/k7mtcBY2/XE7j2f49H5Uf8u4JlXb3p gKRjvBTA6Ng4fQxBhH4N2elE+4oP4408EcH32eI0IffgK5wXT11OUSVLSCk4RVYS rUbUfjg3JtNecsUmHoAT139XMbMPpjFEr4h8vvT7i/pm82md1T1nEzPIBCC3zK6W ZNVx/HAURdbylWoEm6rviFzhU/rZk2rq9aOmANL8iKaZVZYDr3D9dj1JE1XOXRNl qOboOIa5XZ5q66sNoqFKsCDjuwT9v6K/AgewtIzWwIZMpoMR5bQcHThKuT6X7TyS 6bDeqIJDavZg7buvGYeQAwJNHAYH0Jxa -----END CERTIFICATE-----Generated at Sat Jun 14 19:24:37 2025 by rpki-client